Skip to content

Releases: microsoft/binskim

v4.4.1

28 Mar 14:48
@marekaldorf marekaldorf
v4.4.1
a7d210a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.4.1 Latest
Latest

v4.4.1 NuGet

What's Changed

MPORTANT
We switched fully on net9.0 so please change your PATHs accordingly. tools\netcoreapp3.1\win-x64\BinSkim.exe -> tools\net9.0\win-x64\BinSkim.exe

New Contributors

Full Changelog: v4.4.0...v4.4.1

Contributors

steveisok, marekaldorf, and lukaskohl-msft
Assets 2
Loading

v4.3.1

28 Mar 14:52
@marekaldorf marekaldorf
v4.3.1
a7d210a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.3.1

v4.3.1

  • Dependency upgrade: Update msdia140.dll from 14.40.33810.0 to 14.40.33812. 1000
  • BUGFIX: Fix TryGetPortablePdbMetadataReader unexpectedly causes UnauthorizedAccessException error when the PDB file is missing. 1004
  • BUGFIX: Fork telemetry to log always to Console and AppInsights in the same time when Error occur. 1002
Loading

v4.4.0

18 Mar 16:55
@marekaldorf marekaldorf
v4.4.0
f47771d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v4.4.0

v4.4.0 NuGet Package

  • NEW: Cross-Platform .rsp File Support. 1016

What's Changed

  • Cross-Platform .rsp File Support by @lukaskohl-msft in #1016
  • Release v4.4.0 by @AllDwarf in #1054
  • Fixing release 4.4.0 with the revision possibility removal by @AllDwarf in #1056

New Contributors

Full Changelog: https://github.com/microsoft/binskim/blob/main/ReleaseHistory.md

Contributors

marekaldorf and lukaskohl-msft
Loading

v2.0.0-rc1

17 Nov 00:18
@suvamM suvamM
v2.0.0-rc1
df8ac07
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.0.0-rc1

v2.0.0-rc1 NuGet Package

  • BUGFIX: Eliminate BA2004.EnableSecureSourceCodeHashing false positives to Windows Runtime components (resulting from references to Win RT API metadata files).
  • BREAKING: Removed SARIF 1.0 support from BinSkim. Now option -v | --sarif-output-version does not accept value OneZeroZero. 719
  • Update Sarif.Sdk submodule from fc9a9df to e557b69. Critically, this update resolves transient Collection modified exception during analysis. #722
  • Eliminate BA2015.EnableHighEntropyVirtualAddresses false positives for some 32-bit exes. #721
  • FEATURE: Raw command line passed to the linker now exposed on ObjectModuleDetail instances. #708
  • BUGFIX: Fix error ERR997.ExceptionLoadingPdb : '[filename]' was not evaluated because its PDB could not be loaded (E_PDB_NOT_FOUND). when reading PE file built with PDBPageSize:8192 or greater, by upgrading msdia140.dll from 14.27.28826.96 to 14.32.31326.0. 685
  • FEATURE: Add BA3031.EnableClangSafeStack, rename BA3030.UseCheckedFunctionsWithGcc to BA3030.UseGccCheckedFunctions #663
  • Upgrade Sarif.Sdk by updating submodule from fc9a9df to 698adb6. #674
  • Introduce first performance rule BA6001.DisableIncrementalLinkingInReleaseBuilds #667
  • Introduce more performance rules BA6002.EliminateDuplicateStrings, BA6004.EnableCOMDATFolding, BA6005.EnableOptimizeReferences, BA6006.EnableLinkTimeCodeGeneration #691
  • BUGFIX: Fix command line parameter in documents: -Wl,z,relro with -Wl,-z,relro, and -Wl,z,now with -Wl,-z,now. 736
Loading

v1.9.5

21 Jun 21:38
@marmegh marmegh
v1.9.5
052388b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.9.5

v1.9.5 NuGet Package

  • Bump ELFSharp from 2.13.2 to 2.14.0. #628
  • Bump System.Reflection.Metadata from 5.0.0 to 6.0.1 and System.Collections.Immutable from 5.0.0 to 6.0.0. #605
  • Bump ELFSharp from 2.14.0 to 2.15.0. #631
  • FEATURE: Enable BinSkim for MacOS. #576
  • Bump Sarif.Sdk by updating submodule from 4e9f606 to fc9a9df. #638
  • FALSE POSITIVE FIX: Skip BA2025.EnableShadowStack rule for ARM Binaries which cannot use /CETCOMPAT. #650
  • BUGFIX: Fix missing commandLineId from CommandLineInformation event. #652
Loading

v1.9.4

14 Mar 17:56
@marmegh marmegh
v1.9.4
60e6b95
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.9.4

v1.9.4 NuGet Package

  • FEATURE: Add new PE CV_CFL_LANG language code for ALIASOBJ and Rust. 530
  • BUGFIX: Fix BA2014.DoNotDisableStackProtectionForFunctions to eliminate false positive reports that GsDriverEntry has disabled the stack protector. 551
  • BREAKING: Rename BA2026.EnableAdditionalSdlSecurityChecks to BA2026.EnableMicrosoftCompilerSdlSwitch to clarify rule purpose. #586
  • BUGFIX: Fix Newtonsoft.Json.JsonSerializationException when reading SARIF V1 with telemetry enabled. 613
Loading

v1.9.3

16 Feb 04:06
@eddynaka eddynaka
v1.9.3
913c9ec
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.9.3

v1.9.3 NuGet Package

  • BUGFIX: Fix KeyNotFoundException exception raised by BA2006.BuildWithSecureTools when individual MinimumToolVersions properties are removed from XML configuration. #565
  • BUGFIX: Fix BA2006.BuildWithSecureTools is not emitting the compiler list. Commit SHA 135946
Loading

v1.9.2

03 Feb 02:46
@eddynaka eddynaka
v1.9.2
05cafca
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.9.2

v1.9.2 NuGet Package

  • BUGFIX: Fix MultithreadedAnalyzeCommandBase artifacts generation and enforcing JSON properties ordering. #555
Loading

v1.9.1

11 Jan 13:24
@eddynaka eddynaka
v1.9.1
91b8a1c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.9.1

v1.9.1 NuGet Package

  • BUGFIX: Fix incorrect analysis for non-Microsoft compiler on BA2006.BuildWithSecureTools. #545
  • BUGFIX: Fix JsonSerializationException that occurs when saving SARIF v1 with telemetry enabled. #535
  • BUGFIX: Fix NullReferenceException when --Hashes and telemetry rules are enabled. #531
  • BUGFIX: Fix error ERR998.ExceptionInAnalyze - PropertiesDictionary isn't thread safe. #539
Loading

v1.9.0

15 Dec 10:30
@eddynaka eddynaka
v1.9.0
3e01b11
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.9.0

v1.9.0 NuGet Package

  • BUGFIX: Fix telemetry session creation. 515
Loading