v1.2.0

What's Changed

• add oracle-uses-curve-spot-price by @bleep3r in #62
• arbitary-low-level-call: custom type as source by @Raz0r in #63
• Cairo rules by @favelanky in #64

New Contributors

• @favelanky made their first contribution in #64

Full Changelog: v1.1.0...v1.2.0

v1.1.0

What's Changed

• update scanning instructions by @Raz0r in #56
• add thirdweb-vulnerability rule by @KasimoNagasaki in #57
• Adding the exact balance check rule by @beched in #20
• Solana rules by @Raz0r in #58
• use taint mode by @Raz0r in #61

Full Changelog: v1.0...v1.1.0

v1.0.0

What's Changed

• add argument types in function declarations by @Raz0r in #3
• Create sense-oracle-access-control.yml by @arbazkiraak in #4
• Added a reference to a relevant CTF challenge by @pi3ch in #7
• new rule: encode-packed-collision by @Raz0r in #9
• Adding a rule to detect the dangerous oz ecdsa usage by @beched in #10
• Unrestricted transferOwnership() added by @PassKeyRa in #12
• sense-missing-oracle-access-control: fix onSwap fp by @Raz0r in #13
• uniswap-callback-not-protected: fix fp by @Raz0r in #14
• unrestricted-transferownership: fix fp by @Raz0r in #16
• erc20-public-transfer: fix fp by @Raz0r in #17
• erc20-public-burn: fix fp by @Raz0r in #18
• new rule: msg-value-multicall by @Raz0r in #11
• add _msgSender() checks by @h1kk4 in #19
• • No bidi characters rule by @PassKeyRa in #21
• delegatecall to arbitrary address by @Frodan in #26
• add more cases + constant have to be initialized by @h1kk4 in #24
• added new gaz rules by @h1kk4 in #27
• delegatecall with gas param by @h1kk4 in #28
• Update README.md by @Raz0r in #32
• • new gas rules by @Frodan in #30
• state-variable-can-be-set-to-immutable rule by @Frodan in #29
• update readme, rm immutable vars rule & smol fixes by @Raz0r in #33
• storage variable length should be cached too by @h1kk4 in #34
• fix empty transferownership by @Raz0r in #37
• "Incorrect use of blockhash" rule by @Frodan in #39
• "Accessible selfdestruct" rule by @Frodan in #36
• fixed output + extended inheritance pattern by @h1kk4 in #44
• Uniswap: no slippage check rule added by @PassKeyRa in #40
• use-abi-encodecall-when-possible rule by @h1kk4 in #47
• Use Ownable2Step rather than Ownable by @h1kk4 in #43
• Balancer readonly reentrancy rules by @h1kk4 in #48
• rule to detect curve readonly reentrancy by @h1kk4 in #49
• check revert string length by @h1kk4 in #50
• plus-equal-cost-more-for-state-variables by @h1kk4 in #51
• fix metadata & add CI validation by @Raz0r in #52
• pair-public-transferFeesSupportingTaxTokens and rebase-order-bug by @KasimoNagasaki in #53
• Add rule add-redeemFresh-redeemAmount-unsafe-calculation by @KasimoNagasaki in #54

New Contributors

• @Raz0r made their first contribution in #3
• @arbazkiraak made their first contribution in #4
• @pi3ch made their first contribution in #7
• @beched made their first contribution in #10
• @PassKeyRa made their first contribution in #12
• @h1kk4 made their first contribution in #19
• @Frodan made their first contribution in #26
• @KasimoNagasaki made their first contribution in #53

Full Changelog: https://github.com/Decurity/semgrep-smart-contracts/commits/v1.0