- Implement support for SQGs in Audit when using CLI binary
- Add ability to select CLI binary as a runtime for Audit for enterprise customers
- Support tagging of local OpenAPI files with platform tags
- Allow removing Scenarios in Scan config UI
- Increase stdout buffer size when running the Scan using the CLI binary
- Added ability to tag local API files or link them to the platform APIs
- Updated Scan configuration web UI to allow specifying reportMaxSize option
- Added extra check for the CLI binary updates when testes in the Config web UI
- Added workaround for ENOMEM exceptions when invoking the platform APIs
- Fix issue with example background colors in SwaggerUI preview #295
- Remove whitespace characters during the freemium signup flow
- Show subscription status in the Config webapp
- Add Scan button to the toolbar
- Do not automatically re-try failing HTTP request sent from Scan / Try it UIs
- New UI for logins and signups for 42Crunch platform
- Do not rely on platform API calls when creating Scan configuration for enterprise customers, if CLI runtime is choosen
- Do not display warnings when displaying high priority semantic/structural issues in the Audit
- Better handling of http proxies when CLI binary is used
- Allow specifying location for the CLI binary
- Fix issue in the Scan when using response processing with 'default' responses
- Make API Security Testing Binary required to run Audits
- Add ability to extract variables in Scan by clicking on the response body values
- Add 'Context' tab to the Scan UI to show information about variables used by Operation
- Fix issue with text editor contents jerking on code lenses being added/removed during editing #275
- Add support for floating windows in extension webviews
- Change default runtime for Scan to API Security Testing Binary
- Allow all users to run 42Crunch Scan
- Show 42Crunch icon in the status bar to authenticated users
- Add command "Open Scan configuration file for the current OpenAPI file" to display relevant Scan config
- Add Audit/Scan code lenses to the top of the OpenAPI file
- Allow switching between different authentication types (Security Audit Token/IDE Token) if both are available
- Allow running full Scans (in addition to per-operation Scans)
- Fix resource leak issue reported in #266
- Add setting to disable contribution of OpenAPI schemas for YAML files #269
- Allow configuring auth info for external references #256
- Downgrade swagger-ui dependency in preview to fix #264
- Display 'security' property in the operation nodes in OpenAPI Explorer
- Make scand-manager timeout configurable
- Fix issue where authorization tests dialog would not show in Scan UI
- Updated to the lastest SwaggerUI version for OpenAPI preview
- Support form/urlencoded bodies in external requests in Scan UI
- Support raw bodies in Scan UI
- Display 'requestBody' in the operation node OpenAPI Explorer
- Display operation child nodes in OperationID / Tag nodes in OpenAPI Explorer
- Fix labels of issue severity in the Scan report
- Stop hiding debug logs in the Logging view in the Scan report
- Fix issue where the temp apis on the platform were not properly cleaned up
- Check for updates of the 42Crunch AST binary and prompt user to upgrade
- Add support for BOLA/BFLA tests in Scan UI
- Fix for creating temp APIs when API Naming Convention is configured
- Fixes for form validation in Settings webapp
- Change scope of a number of configuration settings to "machine", to disallow overriding this in a workspace, as having different per-workspace settings for likes of "platformUrl" was very confusing.
- Implement context menu command to remove operations and paths in OpenAPI Explorer view
- Allow configuring name of a temporary collection when using 42Crunch Platform for performing Security Audit, and make sure it matches org's collection naming convention
- Allow specifying a list of tags to be automatically added to all APIs created by the extention on 42Crunch platform
- Fix display of SQG configuration for audits executed using 42Crunch Platform
- In 42Crunch Platform explorer view, APIs with 'technical names' are made read-only, and if possible a link to a filesystem location for relevant OpenAPI file is provided
- Fix issue when dots in operationId prevented 'Try' in Scan UI from sending the request
- Add Scan/Audit/Try it commands to the context menu in the OpenAPI tree
- Cleanup context menu titles removing 'OpenAPI:' prefix
- Update schemas for 42Crunch protection-types extensions
- Show extra logs when running Conformance Scan
- New OpenAPI tree, with individual sections merged into one tree and new Search functionality.
- Support for running Security Audit and Conformance Scan locally, using 42Crunch CLI binaries.
- New UI for API Conformance Scan with support for scenarios, authentication, etc.
- Fixes to support updated scan report
- Fix bug with sorting and filtering issues in Security Audit report
- Update styling of Security Audit Report
- Display SQG status in Security Audit
- Add filtering to Conformance Scan and Security Audit reports
- Implement single-operation Security Audit
- Add configuration option to disable use of CodeLenses #185
- Add support running Conformance Scan using scand-manager
- Add Settings webapp
- Update Data Dictionary browser UI
- Show Audit report in case pre-scan Audit fails
- Fix issue in TryIt where request parameters couldn't be deleted
- Fix issue where TryIt woudln't use value defined in parameter's 'example' #213
- Fix issue where Scan report incorrectly shows that response code wasn't found
- Fix color for trashcan icon in the dark theme
- Fix issue with TryIt request body editing input failing on invalid JSON
- Improve errors displaying when editing request parameters in TryIt
- Fix issue with TryIt failing on Swagger/OpenAPI files with no servers or host defined
- Fix issue with TryIt failing to display UI #209
- Fix issue with extra quotes added by intellisence #210
- Add support for Swagger 2.0 in TryIt and Conformance Scan
- Restyle TryIt and Scan UI
- Add support for single operation Conformance Scan
- Update Data Dictionary to use "format" attribute instead of x-42c-format
- Update Security Audit report
- Offer to update OpenAPI document using information from Data Dictionary prior to running Security Audit
- Fix performance degradation when editing large documents, #178
- Fix attempt to resolve $ref's in staged git changes, #179
- Stop trying to resolve $ref's in non-OpenAPI documents unless the document is referred by other OpenAPI document, #171
- Add TryIt feature to allow sending HTTP requests directly from the extension
- Miscelaneous improvements in data-dictionary linter
- Activate data-dictionary linter only when platform intergration is enabled
- Add data-dictionary to the platform integration
- Remove scan command from platform integration
- Fix issue #169 where rendering of 'application/xml' schemas in SwaggerUI preview would fail
- Update quickfixes to use new keys in Audit KDB
- Check 42Crunch platform naming conventions in 42Crunch platform integration component
- Fix x-42c-sample schema definition
- Update SwaggerUI version used in preview
- Updated schema with 42Crunch extensions definitions
- Update webapp for displaying Security Audit reports
- Update preview to use the latest versions of SwaggerUI and Redoc
- Add command to load Security Audit report from file
- Fix incorrect schemas for 42Crunch extensions
- Fix issue with setting platform-related properties on extension activation
- KDB articles moved online
- Add optional integration with 42Crunch Platform
- Fix issue #156 where a file with external $refs was failing to generate preview
- Improve autocompletion for $refs in YAML files
- Update KDB articles for Security Audit
- Fix issue #151 where tabs in YAML OpenAPI file were preventing preview from being shown
- Fix issues #145 and #146 by allowing to configure preview update interval
- Fix issue #154 where editing unnamed YAML file resulted in opening new files
- Autocomplete x-42c custom properties
- Complete migration to a new YAML/JSON AST parser library
- Update KDB articles for Security Audit
- Fix issue #140 an audit regression caused by previous update
- Fix issue with quickfix formatting in YAML files
- Fix issue #85 adding support for integers longer than MAX_SAFE_INTEGER
- Report duplicate keys and comments in JSON as errors
- Prohibit using JSONC with trailing commas
- Retain formatting of an integer values with trailing .0
- Update audit KDB artciles
- Update Swagger UI to 3.48.0
- Declare support for untrusted and virtual workspaces in the extension manifest
- Fix 42Crunch icon affected by VS Code update
- Trigger $ref autocompletion on single quotes when editing YAML file (contributed by @klementtan)
- Update KDB articles
- Fix regressions introduced in previous release
- Add 'Operation ID' panel to OpenAPI tree view
- Fix issues with preview generation Issue #123
- Fix styling issue in preview Issue #121
- Do not unnecessarily re-render the preview when switching away to the editor pane.
- Fix issue working with multi-file Swagger 2.0 files
- Update KDB articles and migrate to new security audit service
- Fix issue where remote reference was not handled correctly Issue #115
- Update security audit report styling
- Fix malformed URI exception when running audit Issue #114
- Fix go to reference issue Issue #113
- Implemented quickfixes for Security Audit
- Implemented support for external (http:// and https://) $refs resolving Issue #101 Issue #102
- Published extension to OpenVSX registry resolving Issue #98
- Implemented quickfix functionality to resolve a subset of audit issues.
- Fixed Identify bad or invalid $ref's with a warning Issue #86
- Added a button to create new OpenAPI file from the welcome view.
- Audit report now shows YAML examples in addition to JSON examples.
- Fixed Audit request fails when using yaml anchors Issue #100
- Added new command to copy JSON Pointer of the selected item in the outline. See Issue #37
- Made OpenAPI icon and the outline visible at all times. See Issue #78
- Fixed not working SwaggerUI Try Out feature Issue #80
- Fixed errors being shown for VS Code json files Issue #81
- Added keyboard shortcut for OpenAPI preview Issue #83
- Fixed confusing error message for invalid OpenAPI files Issue #84
- Added 'preview' button to the toolbar do display preview using the default renderer (configurable in the settings)
- Update Security Audit articles
- Merged (PR #775) by @gayanper: Add autocompletion support for remote references and support for both single and double qoutes
- Added support for generating preview of OpenAPI documentation with Swagger UI and ReDoc
- Fixed (#72): API tab not showing with SSH FS
- Add new command: Copy JSON Reference for the element under the cursor
- Show issue IDs in security audit reports
- Add JSONC support, including support for multi-file OpenAPI files
- Update Security Audit articles to match changes in the backend service
- Remove use of deprecated vscode-resource scheme
- Update Security Audit articles to match changes in the backend service
- Changes from @gayanper to improve completions
- Update Security Audit articles to match changes in the backend service
- Improve $ref autocompletion
- Update Security Audit articles to match changes in the backend service
- Fixed issue with multifile OAS bundling described in (#54): Audit fails with $ref that points to another file and contains ~1
- Fixes in YAML and JSON $ref completion
- Support files with external $refs in 42Crunch API Contract Security Audit
- Fixed (#46): Bug: Problems loading reference 'openapi-schemas:openapi-2.0.json'
- Fixed (#45): "JS-YAML: expected a single document in the stream, but found more" on non-OpenAPI YAML files
- Fixed (#38): Remove category "Language Packs" from extension package.json
- Fixed (#41): Honor 'yaml.customTags' setting
- Provide autocompletion for $ref's in YAML files.
- Fix issue where Go To Definition would not work, if the reference is made to the entire file (i.e., without '#' in ref)
- Display 'no assessment report' in the assessment report pane if the currently active editor has no report available
- Display relevant assessment report (if assessment result is known for a file) when switching between editors
- Alphabetically sort entries in OpenAPI Explorer (sorting can be disabled in Settings)
- Fixed issue where OpenAPI Explorer will not update when switching to an invalid .json or .yaml file
- Fixed (#34): Go to definition wouldn't work for paths with curly braces
- Misc improvements for assessment report
- Display responses and parameters in for operations
- Do not blank contents of OpenAPI expolrer on syntax errors
- Remove 'OpenAPI file is invalid' message displayed in assessment report in case of structual errors in OpenAPI file
- Fix issue with assessment report where some low priority issues were shown as a high priority ones
- Reverse sort order for issues in assessment report
- Fixed (#22): API Viewer goes blank after git add
- Fixed (#6): API icon disappears on Color Theme change and zoom in/out
- Fixed (#18): Duplicate paths cause API viewer to go blank
- Fixed (#21): Support for splitted files definitions
- Added integration with 42Crunch API Contract Security Audit
- Fixed (#17): Provide workaround for validation of remaining relative URLs
- Relax OpenAPIv3 schema definition of $ref to workaround errorneous problem reported for $ref by YAML extension 0.5.2
- Increase activity bar icon size
- Remove warning for YAML 0.5.1 extension
- Extension has been updated to require newer version of VS Code (1.37.1)
- Fixed (#11): Takes keybindings.json as OAS file
- Fixed (#13): External file $refs not supported by jump to definition
- Fixed (#10): Go to Definition doesn't work on YAML flow style mapping
- Fixed (#9): JSON schema to avoid picking up non-OpenAPI JSON files.
- Fixed (#7): check values of "openapi"/"swagger" attributes before activating plugin and applying schemas, so that the extension does not get activated by opening non-OpenAPI files.
- Implemented modifying YAML files with outline commands
- Implemented Go to definition for $ref in YAML
- Basic YAML support
- Fixed (#1)
- JSON OpenAPI v2 and v3 support
- Intellisense
- Navigation pane
- Code snippets
- Go to definition
- Schema enforcement