Skip to content

v1.5.4

Choose a tag to compare

View all tags
@MirrexOne MirrexOne released this 22 Feb 16:30
· 4 commits to main since this release
v1.5.4
b2a1519

This release fixes critical false positive scenarios in the SQL injection scanner and improves internal performance.

  • SQL Injection Fixes: Constants and query parameters are no longer incorrectly flagged as tainted variables.
  • Prepared Statements: Added support for *sql.Stmt and *sqlx.Stmt to ignore safe parameter arguments.
  • Heuristics Update: Removed broad naming patterns that caused false positives on common terms like "sqlite".
  • TUI Optimization: Optimized memory usage in the terminal UI by reducing string allocations.
  • Testing: Added new test cases to ensure the stability of SQL analysis.
Assets 9
Loading