Update changelog and version for release v0.3.0 (#144)

prateeksen · web-flow · commit 5554739074c8 · 2024-11-20T14:31:00.000+05:30
* Update changelog and version for release v0.3.0

* updated minimum APM version to 9.16.0
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,10 +1,71 @@
 # New Relic Ruby Security Agent Release Notes
 
+## v0.3.0
+
+Version 0.3.0 introduces more control on IAST scanning through new configs(exclude_from_iast_scan, scan_schedule & scan_controllers) and 
+features like API inventory for gRPC server and IAST scan start related timestamps.
+
+Updated json_version: **1.2.8**
+
+- Feature: IAST scan exclusion for apis, http request parameters(header, query & body) & IAST detection categories and scan scheduling through delay, duration & cron schedule. [PR#131](https://github.com/newrelic/csec-ruby-agent/pull/131)
+
+- Feature: IAST scan request rate limit to control IAST scan request firing. [PR#132](https://github.com/newrelic/csec-ruby-agent/pull/132)
+
+- Feature: API endpoints support for gRPC server applications. [PR#143](https://github.com/newrelic/csec-ruby-agent/pull/143)
+
+- Feature: Reporting of IAST scanning application procStartTime, trafficStartedTime & scanStartTime. [PR#136](https://github.com/newrelic/csec-ruby-agent/pull/136)
+
+- Misc Chore: Optimised SSRF events parameters to send only URL in parameters. [PR#129](https://github.com/newrelic/csec-ruby-agent/pull/129)
+
+##### New security configs
+
+```yaml
+security:
+  exclude_from_iast_scan:
+    api: []
+    http_request_parameters:
+      header: []
+      query: []
+      body: []
+    iast_detection_category:
+      insecure_settings: false
+      invalid_file_access: false
+      sql_injection: false
+      nosql_injection: false
+      ldap_injection: false
+      javascript_injection: false
+      command_injection: false
+      xpath_injection: false
+      ssrf: false
+      rxss: false
+  scan_schedule:
+    delay: 0
+    duration: 0
+    schedule: ""
+    always_sample_traces: false
+  scan_controllers:
+    iast_scan_request_rate_limit: 3600
+```
+
+##### Deprecated security configs (will be removed in next major release v1.0.0)
+```yaml
+security:
+  request:
+    body_limit: 300
+  detection:
+    rci:
+      enabled: true
+    rxss:
+      enabled: true
+    deserialization:
+      enabled: true
+```
+
 ## v0.2.0
 
 Version 0.2.0 introuduces Error reporting as part of security. Any unhandled or 5xx errors in application runtime will now be visible in IAST capability UI. Updated json_version: **1.2.4**
 
-- Feature: Unhandled and 5xx error reproting [PR#134](https://github.com/newrelic/csec-ruby-agent/pull/134)
+- Feature: Unhandled and 5xx error reporting [PR#134](https://github.com/newrelic/csec-ruby-agent/pull/134)
 
 - Bugfix: Fix for API route not present in rails7 [PR#127](https://github.com/newrelic/csec-ruby-agent/pull/127)
 
diff --git a/lib/newrelic_security/version.rb b/lib/newrelic_security/version.rb
@@ -1,5 +1,5 @@
 module NewRelic
   module Security
-    VERSION = "0.2.0"
+    VERSION = "0.3.0"
   end
 end
diff --git a/newrelic_security.gemspec b/newrelic_security.gemspec
@@ -39,7 +39,7 @@ Gem::Specification.new do |spec|
   ]
   spec.require_paths = ['lib']
 
-  spec.add_dependency 'newrelic_rpm', '>= 9.12.0'
+  spec.add_dependency 'newrelic_rpm', '>= 9.16.0'
 
   spec.add_development_dependency 'minitest', "#{RUBY_VERSION >= '2.7.0' ? '~> 5.18' : '4.7.5'}"
 

Original file line number	Diff line number	Diff line change
`@@ -39,7 +39,7 @@ Gem::Specification.new do \|spec\|`
`39`	`39`	`]`
`40`	`40`	`spec.require_paths = ['lib']`
`41`	`41`
`42`		`- spec.add_dependency 'newrelic_rpm', '>= 9.12.0'`
	`42`	`+ spec.add_dependency 'newrelic_rpm', '>= 9.16.0'`
`43`	`43`
`44`	`44`	`spec.add_development_dependency 'minitest', "#{RUBY_VERSION >= '2.7.0' ? '~> 5.18' : '4.7.5'}"`
`45`	`45`