Debloat

Latest version: v1.6.2

Safety actively analyzes 714919 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 2 of 5

1.5.6.3

- Bug Fixes
- Modified NSIS Parser to address issue identified in the implementation. More details here: https://github.com/binref/refinery/issues/49
- TLDR, NSIS Installers with the properly of uncompressed data was not previously accounted for due to lack of examples. They now are accounted for.
- Modified compression check in bloated overlay analysis
- previous compression check was erroneous and worked only based on miracles.
- Improvements
- Modified trimming threshold: 0.05 -> 0.15
- New trimming threshold allows for lower compressed junk.
- New trimming threshold removes more junk without being too aggressive.
- Known issue
- The certificate preservation option does not preserve the certificate in all use-cases, particularly cases where junk is in the overlay.

1.5.6.2

- Bug Fix
- Not all possible paths returned a result code. An additional result code was added.

1.5.6.1

- Bug Fix
- Added the result code for real this time.

1.5.6

- Cert Support
- Added support in both CLI and GUI to preserve the authenticode certificate.
- Authenticode certificate is removed by default because the certificate becomes invalid. When it becomes invalid it becomes unclear whether the certificate was always invalid or not.
- Bug Fix
- A result code was missing which could cause problems in processing that looked for a result code.

1.5.5

- General Improvements
- Added functionality to print debloat version/ added to GUI UI
- Deduped results_codes into processor file
- New Use Case
- Identified a use case that wasn't being solved, improved program logic to solve.
- Packed files with a bloated section.

1.5.4

- General Improvements
- This version prints report codes indicating which inflation tactic is identified.
- This version can now handle instances where no pattern exists within the junk data, or the pattern is disrupted by a few characters. This version uses the trimming method from binary refinery in two cases that were found to be more efficient.
- A performance testing script has been included.

The new updates hand a few edge use-cases that were not solvable before and fixes one bug.

Bugfix: If debloat was unable to trim a inflated section, it would tell you it could and then exit telling you that it could not.

New use-case solved: This solves the use-case where there a pattern exists in the overlay, but additional bytes have been added to disrupt the pattern. As much as 1 byte is enough to disrupt the pattern. This is not a problem anymore.

Page 2 of 5

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.