Workflow

Debloat

Latest version: v1.6.2

Safety actively analyzes 681775 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 1 of 5

1.6.2

- Fixes bug in adjust_offsets method that impacted tactic-7. Bug was introduced in 1.5.6.4 as a bad attempt at error handling.
- When adjusting offsets, it was possible for an error to be thrown because adjusting the offset would set it to an invalid value. However, this would happen because the value was invalid to begin with. The incorrect value was being improperly handled. I'm not 100% sure that I have it correct, but the new change works as expected.

1.6.1

- Fixes legacy bug that could result in failure to identify NSIS installers.
- In previous builds, we only checked a small window for the NSIS header. That window has been increased.
- Updates the tkinterdnd hook file to only collect binaries associated with the operating system it is being built for.
- Add placeholders for 2 new use cases to solve for.
- Updates buildCLI.txt to specify output filename.
- Add file for GitHub build automation.

1.6.0

- Improves NSIS Parser to handle an irregular NSIS format
- Adds solution for Use Case 17
- Attackers can include junk marked as the code signing signature. In previous versions, the certificate preservation would preserve the junk. Without certificate preservation, the junk would be removed but return a Result Code of "0 - No Solution Found" even though the file was deflated.
- Bug Fix
- Adds error handling to escape non-unicode PE section names

1.5.6.6

- Bug Fix
- Patches bug in Result-Code 4 where an excess could be removed.
- This was due to a miscalculation. In these instances, the "dynamic trim" and "refinery trim" methods were essentially being applied to the same data, then calculating an excess of junk.
- The check for duplicate items in an NSIS Installer has been improved.
- Previous check looked for item at the same offset; this version checks to see that all features are the same.

1.5.6.5

- Bug Fix
- Inadvertently changed "sample_compression" limit, thought it'd be OK, but it actually causes this check's main purpose to fail (that is, failing quickly when needed). Got some new ideas out of it though.

1.5.6.4

- Bug Fixes
- Fixed logic that could incorrectly flag .text sections as suspicious.
- Handled rare error that could occur in updating offsets.
- Certificate preservation now works reliably for all use-cases.

Page 1 of 5

Links

Releases

Has known vulnerabilities

Next

© 2024 Safety CLI Cybersecurity Inc. All Rights Reserved.