From 3c4141589d368d7001f3927dcbcd28e4e3ec1f4b Mon Sep 17 00:00:00 2001 From: Moritz Date: Mon, 15 Aug 2022 13:26:39 +0200 Subject: [PATCH] Release v4.0.1 (#1143) * update scripts/lint.py to validate rule metadata using pydantic (#1141) * doc: v401 Co-authored-by: Mike Hunhoff --- CHANGELOG.md | 28 +++++++++++++++++++++------- capa/version.py | 2 +- 2 files changed, 22 insertions(+), 8 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 9f8ce501..a66774d4 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -6,23 +6,37 @@ ### Breaking Changes -### New Rules (1) +### New Rules (0) -- anti-analysis/obfuscation/obfuscated-with-vs-obfuscation jakub.jozwiak@mandiant.com -- +- ### Bug Fixes -- linter: use pydantic to validate rule metadata #1141 @mike-hunhoff -- build binaries using PyInstaller no longer overwrites functions in version.py ### capa explorer IDA Pro plugin ### Development ### Raw diffs -- [capa v4.0.0...master](https://github.com/mandiant/capa/compare/v4.0.0...master) -- [capa-rules v4.0.0...master](https://github.com/mandiant/capa-rules/compare/v4.0.0...master) +- [capa v4.0.1...master](https://github.com/mandiant/capa/compare/v4.0.1...master) +- [capa-rules v4.0.1...master](https://github.com/mandiant/capa-rules/compare/v4.0.1...master) + + +## v4.0.1 (2022-08-15) +Some rules contained invalid metadata fields that caused an error when rendering rule hits. We've updated all rules and enhanced the rule linter to catch such issues. + +### New Rules (1) + +- anti-analysis/obfuscation/obfuscated-with-vs-obfuscation jakub.jozwiak@mandiant.com + + +### Bug Fixes +- linter: use pydantic to validate rule metadata #1141 @mike-hunhoff +- build binaries using PyInstaller no longer overwrites functions in version.py #1136 @mr-tz + +### Raw diffs +- [capa v4.0.0...v4.0.1](https://github.com/mandiant/capa/compare/v4.0.0...v4.0.1) +- [capa-rules v4.0.0...v4.0.1](https://github.com/mandiant/capa-rules/compare/v4.0.0...v4.0.1) ## v4.0.0 (2022-08-10) Version 4 adds support for analyzing .NET executables. capa will autodetect .NET modules, or you can explicitly invoke the new feature extractor via `--format dotnet`. We've also extended the rule syntax for .NET features including `namespace` and `class`. diff --git a/capa/version.py b/capa/version.py index af04abc6..740d7f28 100644 --- a/capa/version.py +++ b/capa/version.py @@ -1,4 +1,4 @@ -__version__ = "4.0.0" +__version__ = "4.0.1" def get_major_version():