v2.7.0

Release 2.7.0

The parameters timeout, initalDelay, and debug are no longer set in the options parameter for Client.analyze. These are all now seperate (optional) arguments.

Client.analyze(options, timeout, initialDelay, debug)

Fixed a bug preventing token refresh when using the same Client for more than 10 minutes.

Documentation updates.

v2.6.0

Release 2.6.0

Implemented a fix to prevent sending bad data to the API.

v2.5.2

Release 2.5.2

Add another fix for URL so that it works correctly in a web browser.

v2.5.1

Release 2.5.1

Fix handling of URL to enable correct functionality in a web browser.

v2.5.0

Release 2.5.0

Add the getUserInfo method to retrieve information about the logged-in user.

v2.4.0

Release 2.4.0

Fix bugs with undefined data in requester.js.

Fix a bug involving not setting the login access token.

Fix a bug with simpleRequester error handling.

Much of this work was kindly contributed by Teruhiro Tagomori at NRI Secure Technologies.

v2.3.0

Release 2.3.0

Correct polling time in time-out consideration.
This work was kindly contributed by Teruhiro Tagomori at NRI Secure Technologies.

Added armlet.mythXToolUse(toolNames, [inputApiUrl]) to report use counts for various MythX tools that run analysis. See example program mythx-api-version for how to use.

Update extend, and install some example programs:

• mythx-tool-use: gets counts on how many times a MythX tool was used. This is installed now.
• mythx-api-version: "mythx" prefix added. This is installed now, where previously it was not.

v2.2.0

Release 2.2.0

Fixed refreshing the JWT access token inside an analysis request. It was apparently incorrect since the beginning.

Fixed the handling of the initialDelay parameter.
This work was kindly contributed by Teruhiro Tagomori at NRI Secure Technologies.

Improved error messages from the MythX yet again, specifcally where the access token was not refreshed,
and also authentication errors.

In more cases we return a string on MythX HTTP errors rather than more complex objects with useless tracebacks.

2.1.0

Release 2.1.0

Added login instance method to Client object

Added a new method login which can reduce the number of API login requests that are needed.

For a client like truffle-security which can perform analysis of the contracts in a truffle project, rather than issue a login request for each contract, only a single login is required.

This work was kindly contributed by Teruhiro Tagomori at NRI Secure Technologies.

Improved Error Messaging

Error-message text Bad Gateway should no longer appear. A more meaningful description is given.

Fixed some bugs.

mythx-analysis

Added a --yaml option to show the results in YAML format rather than JSON.

Information sent to MythX for contracts that use "imports" should contain more information inside the AST, since MythX will soon be able to use it.

Miscellaneous

Fixed armlet handling of the JWT's token refresh.

v2.0.1

Release 2.0.1

Overall, slight improvements have been made.

Polling Performance values have been tweaked to give better performance

The recommended default initial delay is now 45 seconds, while the quick-mode time out value is now
5 minutes.

Error messaging has been improved

• distracting and not-helpful tracebacks have been removed
• the UUID is given on those error messages where it can be useful

mythx-analysis

The standalone CLI program to run MythX Solidity or solc JSON output has a new option --no-cache-lookup disables cache lookup on the MythX side. Normally this isn't desired, but if you need to force a new analysis, this is one way to do it.

Miscelleaneous

Documentation has been updated and improved.