What's New in v8.7.0
Security Hardening & Code Quality Audit
25 findings resolved across CRITICAL, HIGH, MEDIUM, LOW, and INFO severities.
Critical Fixes:
- API Keys to Keychain: All cloud AI backend API keys migrated from UserDefaults to macOS Keychain
- Command Injection Prevention: Nmap arguments validated and escaped to prevent shell injection
High Fixes:
- XML Injection Prevention: Nmap XML output parsed safely to prevent XXE attacks
- Input Validation: IP addresses, hostnames, and port ranges validated with strict regex
- Race Condition Fix: Thread-safe scan state management with proper synchronization
Medium Fixes:
- Typed error enums replacing string-based errors
- Safe array access with bounds checking
- Proper process cleanup on scan cancellation
- String interpolation optimization
Low/Info Fixes:
- Stale TODO cleanup and documentation
- Unused code removal
- MARK section comments for code organization
- Error handling improvements in network operations
Install
Download the DMG below, open it, and drag NMAP Scanner to Applications.
Requirements: macOS 13.0+, nmap installed (brew install nmap)