Release v1.1.0 🌈 · Privado-Inc/privado

Changes

Features:

Support for Console Output: Privado now shows the scan results as a summarized report on the console itself. Before this release, users had only two options either look at the privado.json file or view results on the Privado dashboard. Now, users can quickly see the scan results and for interesting scans visualize them on the dashboard or look at the privado.json file.
Upload command: Users can explicitly pass a command for uploading the results from their machine to the dashboard. This will help if the automatic upload fails or if the user by default does not want to upload results and only wants to upload results for a few repositories. Details of the command are in our documentation.
Added. flags to let CLI run in a non-interactive way: Users can now pass additional flags with the scan command to skip upload or explicitly upload results. This will be useful in a CI environment where there is no UI for users to interact with our consent question. Details on the flags are added to our documentation.
Added Support for Configurable Semantics. With semantics, users have control over how data propagates through a function call. For example - log.debug(name, email), the user can choose if the name would further taint email, log, or does not taint anything.

Enhancements:

Reduced noise in leakage detection
Account Data: Account Name and Account Password will stop detecting global credentials needed for connecting with databases or SaaS apps like JIRA.
Contact Data: Added more keywords to detect Phone Number: phone, cellphone, contact, etc.
Mnemonics: Added a new data element to track mnemonics which is a sensitive data element for web3 wallets and products.