Skip to content

Releases: zalando/zally

v2.1.1

09 Dec 11:18
@vadeg vadeg
v2.1.1
b4cd6de
Compare
Choose a tag to compare
v2.1.1 Latest
Latest
  • d63f8f3 chore(deps): bump express from 4.16.2 to 4.17.3 in /web-ui
  • cfe3bd2 chore(deps): bump decode-uri-component from 0.2.0 to 0.2.2 in /web-ui
  • 2c97f32 chore(deps): bump loader-utils from 1.4.0 to 1.4.2 in /web-ui
  • 7cff2b0 Adapt GitHub actions to Node v18, too
  • 5bc02c4 Update node to version 18 (latest LTS)
  • 6ee42be Update message function names
  • 1ca4240 Fix formatting and integration test
  • 6781dec Add rule to check NoContent response
  • 791f892 Improve violation message and code readability
  • 8f238d5 Update CODEOWNERS to keep only actual maintainers.
  • 66dbe2b chore(deps): bump terser from 5.12.1 to 5.15.0 in /web-ui
  • 794ff88 chore(deps): bump async from 2.6.3 to 2.6.4 in /web-ui
  • 4dc9132 Update ProprietaryHeadersRuleTest.kt
  • c22b732 Switch to NodeJs 18 runtime
  • 23b6551 Switch to CDP runtimes
  • 1beed96 feat: change owner
  • 90127d5 Documentation improvements (#1393)
  • 832ee74 chore(deps): bump eventsource from 1.0.7 to 1.1.1 in /web-ui
  • 3464ec6 fix: remove duplicate hostname violations on invalid audience (#1386)
  • cbcb412 feat: upgrade swagger dependencies (#1379)
  • 99c679b chore(deps): bump minimist from 1.2.5 to 1.2.6 in /web-ui
  • fe9b094 fix: spring vulnerability (#1378)
  • 3d3776d Update libraries and git configuration
  • 9c4a494 Update sass-loader
  • 1dbad98 Fix build
  • 6140e4d fix: missing annotation changes (#1367)
  • 1a9a9ce feat: change severity of proprietary header rule (#1367)
  • 23bcc7d chore(deps): bump url-parse from 1.5.3 to 1.5.10 in /web-ui
  • d7b2298 Update MAINTAINERS
  • c1954f1 Remove "type" field from common types list
  • 51ec8d5 Update Postgres version and cleanup project
  • 630df38 chore(deps): bump follow-redirects from 1.14.7 to 1.14.8 in /web-ui
  • 5eeb11c chore(deps-dev): bump node-sass from 6.0.1 to 7.0.0 in /web-ui
  • 17f1e4f chore(deps): bump follow-redirects from 1.13.0 to 1.14.7 in /web-ui
  • e730551 feat: update rule creation docs with org.zalando (#1337)
  • d97021b feat: adapt build scripts to main (#1344)
  • 8c40305 fix: correct imports and syntax (#1318)
  • 31555fb Merge branch 'master' into issue/1318-update-dependencies
  • 524ccfd Check IANA media types in the Rule 172
  • e1cd02d Remove blank line and change the build command in GH Actions
  • 309638b chore(deps): bump hoek from 4.2.0 to 4.2.1 in /web-ui
  • 55417a9 Change OpenAPI.getAllParameters() helper function return type to Collection
  • e3200ec Mention zally maven plugin and remove the Roadmap
  • 46cea10 Switch to yarn in delivery.yaml and enable tests
  • 3fe8715 Fix GitHub workflow
  • 5a43fde Update web UI to Node 14
  • e653dd4 Use BOM approach for junit depnendency
  • cbc175e Remove unnecessary brackets
  • 72e8430 Migrate to junit5
  • 2154747 Fix tests warnings.
  • 0241e43 Update to junit5 (zally-rule-api)
  • fceeede Update snakeyaml to 1.29
  • 666310b Update Postgres version and clean up the build script
  • 91afb59 Remove "github-integration" module from build script
  • 0528733 chore(deps): bump tmpl from 1.0.4 to 1.0.5 in /web-ui
  • 0a21a91 Merge pull request #1313 from zalando/test-image-build
  • 4b9980b Remove debug configuration
  • 55ecff3 Remove docker check and add diagnostic information
  • 78498b1 Fix build errors Name contains characters which can cause problems on Windows
  • d1cb00e Remove "github-integration" module
  • 3c8f4b7 Update go modules
  • 325bed5 Update to next snapshot version
  • 7800b51 Release 2.1.0
  • ca8e034 fix: authorization token propagation (#1306)
  • 2bdba43 Remove jitpack maven repository from dependencies.
  • 2cc83bf chore(deps): bump url-parse from 1.5.1 to 1.5.3 in /web-ui
  • f1785d1 chore(deps): bump path-parse from 1.0.6 to 1.0.7 in /web-ui
  • 86364a0 Remove test reports publish
  • 31fc004 Revert removing jcenter dependency from github-integration
  • 6f6c244 Fix broken maven central transitive dependency
  • 36fb9d2 Remove jcenter repository dependency.
  • eb75e94 Adapt SQL syntax to SQL92
  • f3d45a3 Update index query
  • 47ec99e Add index on api_review_id column in rule_violations table.
  • 3f829a9 Merge pull request #1282 from zalando/gh-890-drop-json-payload-column
  • bb9361e Replace Guava classloader with a default Java classloader
  • a1161e1 Drop json_payload column.
  • 0ffd3f1 Replace docker wrappers with overlays
  • b123ba9 Add overlay
  • 1beb8df Remove docker wrapper from the server build
  • f57ce89 Make CDP builds parallel and cleanup build steps
  • 6c0818a Revert redundant change
  • af5090a Update rules annotation processor to Java 11
  • 913f0bc Register Jackson datetime module for custom parser
  • dfa1167 Fix project directories
  • 486c5a0 Add a unit test which uses the API with unresolvable external parameter
  • 2a2a108 Fix github-integration docker image build
  • 345d406 fix: supported references for problem+json (#1274)
  • 8592203 Fix Docker base images
  • b4a7a7d Switch to JDK instead of JRE
  • 3cf1e9c Update docker image
  • 801b136 Update java version in GH actions and add myself to maintainers
  • 291f4bd Fix test, NPE in rules and catch parsing errors in OpenApi parser
  • a0551a4 * Update spring version * Fix a rule 174 to return a property reference if a property is a reference to a common schema component * Add logging configuration for tests * Log duplicated JSON pointers assignment in AST builder
  • 65e62d6 Fix dependencies
  • dd5614e Fix dependencies scope in Gradle
  • f96aa2e Migrate to Java 11 & Kotlin
  • 5375b9b add x-zalando-customer to the rule 183
  • 997339a Add an optiona flag to skip SSL request verification
  • b138ca8 Fix content field validation
  • 017cd28 chore(deps): bump extend from 3.0.1 to 3.0.2 in /web-ui
  • c51cd8b chore(deps): bump tar from 2.2.1 to 2.2.2 in /web-ui
  • 0381c04 chore(deps): bump ws from 5.2.2 to 5.2.3 in /web-ui
  • 78e08f3 chore(deps): bump acorn from 5.7.3 to 5.7.4 in /web-ui
  • f27d42c chore(deps): bump lodash from 4.17.19 to 4.17.21 in /web-ui
  • 835ad4f Update CLI to a newer Go version
  • b3d2920 Remove violation in case of successive parameters for rule 143
  • 963f890 Enable validation only for OpenAPI 3.
  • ee461fc Narrow support only for OpenAPI version 3.
  • b47f1a2 Add request and response parameters structure validation.
  • 5eb6f4b Add a test with parameter defined in components section
  • 5caff31 Remove Travis build file
  • 0820487 Setup skeleton for Gradle builds * Add CLI build step * Setup UI unit tests * Add Codecov support
  • 56a67e6 Fix cd path of CLI build instructions
  • 1dd0eeb fix: scope validation (#1251)
  • 97e2d11 Fix rule
  • 537ff62 Add validation of required path parameters
  • 5daa1ce fix: bearer authorization support (#1246)
  • 5cc6bc8 Improve validation for Rule 240
  • 5c29eda chore(deps): bump dns-packet from 1.2.2 to 1.3.4 in /web-ui
  • 842d373 Rename Rule name to match guidelines
  • 11ed7ec Add legacy hostnames validation and exceptions for specific audiences
  • 68418ef Improve formating
  • 294f8a4 Fix rule 105 and add more unit tests
  • fc0cf6d chore(deps): bump hosted-git-info from 2.5.0 to 2.8.9 in /web-ui
  • fbec67f chore(deps): bump url-parse from 1.4.4 to 1.5.1 in /web-ui
  • f77dad7 chore(deps): bump handlebars from 4.5.3 to 4.7.7 in /web-ui
  • 0d6292e chore(deps): bump ua-parser-js from 0.7.17 to 0.7.28 in /web-ui
  • 01f62a3 chore(deps): bump ssri from 6.0.1 to 6.0.2 in /web-ui
  • 0c6151e Add a Bearer security schema support
  • 9d39323 Add a check for repeating slashes (e.g. ///)
  • 03f9d1a Update tests and reformat the code
  • 38da19a Add Fashion Platform GW headers
  • 6f7ac0c Add rules for enumerations
  • 45622d5 chore(deps): bump yargs-parser from 5.0.0 to 5.0.1 in /web-ui
  • 41df1a0 chore(deps): bump y18n from 3.2.1 to 3.2.2 in /web-ui
  • e72e613 Fixes for #1209
  • 0374e65 chore(deps): bump pug from 2.0.0-rc.4 to 3.0.1 in /web-ui
  • 25b6ac9 chore(deps): bump elliptic from 6.5.3 to 6.5.4 in /web-ui
  • dc49e37 chore(deps): bump pug-code-gen from 2.0.0 to 2.0.3 in /web-ui
  • 577408f Add "self" as an exception for the pluralization rules
  • 2338b13 chore(deps): bump ini from 1.3.5 to 1.3.7 in /web-ui
  • 6c62297 chore(deps-dev): bump node-sass from 4.12.0 to 4.13.1 in /web-ui
  • 7fa7f06 chore(deps): bump dot-prop from 4.2.0 to 4.2.1 in /web-ui
  • 92bc448 feat: adapt problem specification (#1176)
  • ceb88b9 Update SECURITY
  • 71e802e chore(deps): bump http-proxy from 1.17.0 to 1.18.1 in /web-ui
  • affa632 Merge pull request #1184 from zalando/tfrauenstein-patch-1
  • 963c0fb fix typo
  • 5d3d385 Whitelisting of proprietary headers from RKeep (FS IF Frw)
  • 430837b chore(deps): bump elliptic from 6.4.0 to 6.5.3 in /web-ui
  • de71608 feat: add and whitelist X-Consumer-* zalando proprietary headers #594
  • 90f012b chore(deps-dev): bump codecov from 3.6.5 to 3.7.1 in /web-ui
  • 9714ef7 chore(deps): bump lodash from 4.17.13 to 4.17.19 in /web-ui
  • 14e0b70 Add release steps
Assets 2

v2.1.0

20 Aug 20:41
@vadeg vadeg
v2.1.0
3ab6ec4
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.1.0

Changelog

  • Update dependency versions
  • Update Rule 136 to support repeating slashes (#1226 )
  • Add Bearer security scheme support (#1227)
  • Update Rule 224 to support legacy hostnames validation (#1238 )
  • Update Rule 240 to improve enums validation (#1245 )
  • Move to Github Actions from Travis
  • Add required path parameter fields validation (#1252 )
  • Update Rule 143 and remove violation in case of successive parameters for Rule 143 (#1260 )
  • Update Go version in CLI
  • Add skip-ssl-verification flag in CLI (#1270 )
Assets 6

Release 2.0.0

03 Jul 14:34
@vadeg vadeg
v2.0.0
c5af20e
Compare
Choose a tag to compare
Release 2.0.0

This version contains a breaking change or renaming base package to org.zalando.

Changes

  • Rename a base package from de.zalando to org.zalando (#1157)
  • Zally artefacts are now available at Maven Central (#964)

Thanks @roxspring, @nikhilunni, @tkrop for your contributions!

Assets 5

Version 1.3.0

19 Jun 13:04
@zeitlinger zeitlinger
1.3.0
7f872fe
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
Version 1.3.0

Special thanks again to @roxspring for the active involvement and all the great contributions!

Checksums:

File Checksum
zally_1.3.0_linux_64bit.tar.gz 086b35898e744d0b3b2e20172af87ca8ded121443e52eaa39824e76e4c388983
zally_1.3.0_macOS_64bit.tar.gz 9cb7b853a282124421eb69e6128923955c1a8231b12c5cb37e1b1267361afd5d
zally_1.3.0_windows_64bit.tar.gz b3c7cf092dbbf27781abc2826c4c0b8b0fda865be92aed90884c428389426a82
Assets 5

Version 1.2.0

26 Sep 14:44
@maxim-tschumak maxim-tschumak
1.2.0
34a8ccc
Compare
Choose a tag to compare
Version 1.2.0

1.2.0 release includes support for OpenAPI 3, better structuring of rules and checks and, of course, bugfixes:

  • Support for OpenAPI 3 specifications
  • New checks and fixes for older implementations
  • Real pointers to the violation location within the specification document
  • Functionality to ignore specific rules on different levels in the specification document (x-zally-ignore)
  • More detailed usage statistics
  • An endpoint to lint raw API specifications

Many thanks to @roxspring, @netme, @ddufourboivin-zalando, @tkrop, @vecmezoni, @vecmezoni, @oleg, @ruiaraujo, @akryvko, @vadeg, @maschleg, @mkulak, @geeknarrator, @kingslef, @earth2marsh, @mfellner, @duergner, @rbarilani, @tobias-bahls.

Special thanks to @roxspring for the active involvement and all the great contributions!

Checksums:

File Checksum
zally_1.2.0_linux_64bit.tar.gz 7e4654cba7cbfe08459e3907ee1156aa1ff4d7a52fca001fa3277182ec5cc3e0
zally_1.2.0_macOS_64bit.tar.gz 724474e6fc55de98ca07667253c9acf7b7b1fcff94b8a6c38a239de6e6a05fce
zally_1.2.0_windows_64bit.tar.gz b4faf9e7357567536b998f71a42be66ad4d7bd77ee4b0069068c7365d3eaf244
Assets 5

Version 1.1.0

08 Aug 08:55
@maxim-tschumak maxim-tschumak
1.1.0
7892d69
Compare
Choose a tag to compare
Version 1.1.0

The second release of Zally includes new rules, new CLI, improvements, and bugfixes:

  • Accidentally rewritten CLI in Golang;
  • Added new rules (extensible enums, OAuth, HTTP status codes and many others);
  • Since COULD violations are old-school, we have renamed them to MAY;
  • Now we store statistics about the dark parts of your APIs to make our guidelines better;
  • Improved Web UI;
  • Done various technical and operational improvements:
    • in preparation to become popular reduced time outs;
    • refactored server-side code to make your contributions easier;
    • thought that 90% test coverage is not enough, so we decided to increase it;
    • now we can notify you that your CLI client is not cool anymore and you need to update it.

Thanks, @fmueller, @rbarilani, @innokenty, @akryvko, @maschleg, @mfellner, @cogitor, @bhaskarmelkani, @Nagogus, @Yogendra0Sharma, @mkulak, @EduardoAC, @netme, @maxim-tschumak ! Without you, it won't happen.

Checksums:

File Checksum
zally_1.1.0_linux_64bit.tar.gz 2f4b1bf2bc45ab2ccfbb36f850241e903dded37b6ef83d452575553b69670138
zally_1.1.0_macOS_64bit.tar.gz a534f4bb12092d26dce158857d3ed10c781ea078e1db409f68a690cdcd7f6fda
zally_1.1.0_windows_64bit.tar.gz 84f8751a451f62335585e716abef94e29c1be1562dac77e4d37d0048b16a2428
Assets 5

Version 1.0.0

18 Apr 13:48
@fmueller fmueller
v1.0.0
d8b10e5
Compare
Choose a tag to compare
Version 1.0.0

First major release of Zally. To use Zally you need a deployed server instance in your infrastructure. You can and should build this easily from source. You can download a pre-built CLI package here.

This release includes:

  • Server with a bunch of automated rules of Zalando's Restful API Guidelines
  • CLI to easily submit YAML and JSON files to server for API linting or even links to Swagger files
  • Web UI which offers same features as CLI and an editor for live editing your Swagger files
Assets 3