Releases: Contrast-Security-OSS/contrast-ai-smartfix-action
Contrast AI SmartFix Release v1.0.9
Contrast AI SmartFix Release
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
Please see our README here: https://github.com/Contrast-Security-OSS/contrast-ai-smartfix-action.
v1.0.9 Highlights:
Full support for using GitHub Copilot or Claude Code as the remediation coding agent instead of the internal SmartFix Coding Agent (which requires BYO-LLM keys).
See the new /docs folder for coding agent specific configuration instructions.
We also started a refactoring effort to support the future development of the SmartFix codebase.
What's Changed
- Bump version to v1.0.9 by @JacobMagesHaskinsContrast in #52
- AIML-116 refactor library directory structure by @JacobMagesHaskinsContrast in #53
- AIML-122: add claude code external agent config by @dougj-contrast in #54
- AIML-124: external_agent.generate_fixes() to support claude code on existing issue by @dougj-contrast in #55
- AIML-126: update closed and merged handlers to support claude branch naming convention by @dougj-contrast in #57
- AIML-145 revise documentation for multiple coding agents by @JacobMagesHaskinsContrast in #60
- AIML-125: external agent generate fixes add claude PR support by @dougj-contrast in #58
- Aiml 150 fix finding pr for copilot by @JacobMagesHaskinsContrast in #61
- AIML-149: Claude documentation updates and fixes by @dougj-contrast in #62
- Release candidate v1 0 9 by @JacobMagesHaskinsContrast in #63
Full Changelog: v1...v1.0.9
Contributors
Assets 2
Contrast AI SmartFix Release v1.0.8
Contrast AI SmartFix Release
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
Please see our README here: https://github.com/Contrast-Security-OSS/contrast-ai-smartfix-action.
v1.0.8 Highlights:
Reverted the version of the Filesystem MCP server used for code edits due to intermittent connection issues with GitHub's Windows runners
Added support for prompt caching with Anthropic LLMs (via AWS Bedrock or Anthropic API).
Misc. improvements for GitHub Copilot coding agent support.
What's Changed
- Bump version to v1.0.8 by @JacobMagesHaskinsContrast in #49
- AIML-77 misc reporting and error handling improvements by @JacobMagesHaskinsContrast in #46
- AIML-84 Extend Google ADK's LiteLlm classes for prompt caching by @JacobMagesHaskinsContrast in #50
- Release candidate v1.0.8 by @JacobMagesHaskinsContrast in #51
Full Changelog: v1...v1.0.8
Contributors
Assets 2
Contrast AI SmartFix Release v1.0.7
Contrast AI SmartFix Release
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
Please see our README here: https://github.com/Contrast-Security-OSS/contrast-ai-smartfix-action.
v1.0.7 Highlights:
Improved beta support for using Github Copilot (instead of the internal SmartFix coding agent) to remediate vulnerabilities and make PRs.
Official support for .NET and Node.js projects.
Multiple library updates and other minor improvements.
What's Changed
- Bump version to v1.0.7 by @JacobMagesHaskinsContrast in #39
- AIML-60 & AIML-62 Skip creating a new branch name and doing the pre-fix build if not using the SmartFix coding agent by @JacobMagesHaskinsContrast in #40
- AIML-61 Tail the vuln data if it is large to avoid having Issues that are over the character limit. Also, refactor. by @JacobMagesHaskinsContrast in #41
- AIML-63 cleanup issue for missing vuln data by @JacobMagesHaskinsContrast in #42
- AIML-59 Add python linter by @JacobMagesHaskinsContrast in #43
- AIML-64: Look into adjusting model temperature via google ADK by @dougj-contrast in #44
- AIML-75 update libs by @JacobMagesHaskinsContrast in #45
- Aiml 81 update readme for dotnet and node support by @JacobMagesHaskinsContrast in #47
- Release candidate v1.0.7 by @JacobMagesHaskinsContrast in #48
Full Changelog: v1...v1.0.7
Contributors
Assets 2
Contrast AI SmartFix Release v1.0.6
Contrast AI SmartFix Release
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
Please see our README here: https://github.com/Contrast-Security-OSS/contrast-ai-smartfix-action.
v1.0.6 Highlights:
Initial beta support for using Github Copilot (instead of the internal SmartFix coding agent) to remediate vulnerabilities and make PRs.
What's Changed
- Bump internal version to v1.0.6 by @JacobMagesHaskinsContrast in #30
- TS-39917 Fix README typo by @JacobMagesHaskinsContrast in #31
- AIML-45 Coding Agent Config updates by @JacobMagesHaskinsContrast in #33
- AIML-49 open external issue by @JacobMagesHaskinsContrast in #34
- AIML-51 Update merge handler for copilot by @JacobMagesHaskinsContrast in #36
- Aiml 48 query api for vuln details and format for issue body by @JacobMagesHaskinsContrast in #37
- AIML-52 doc updates for copilot support by @JacobMagesHaskinsContrast in #38
Full Changelog: v1...v1.0.6
Contributors
Assets 2
Contrast AI SmartFix Release v1.0.5
Contrast AI SmartFix Release
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
Please see our README here: https://github.com/Contrast-Security-OSS/contrast-ai-smartfix-action.
v1.0.5 Highlights:
- Upgraded to v1.5.0 of the Google Agent Development Kit library
- Support for more languages and GitHub runner VMs
- Improved AWS credential management for Bedrock LLMs
- Token counts
- Improved telemetry
- Bug fix for GitHub CLI use
What's Changed
- TS-39696: SmartFix should use github's defined default branch as the default for base_branch by @dougj-contrast in #23
- Bump internal version to v1.0.5 by @JacobMagesHaskinsContrast in #24
- TS-39794 Update shell support for windows and custom runners by @JacobMagesHaskinsContrast in #26
- TS-39624 count tokens by @JacobMagesHaskinsContrast in #27
- TS-39663 Update README for GA release by @JacobMagesHaskinsContrast in #28
- TS-39904 Fix GitHub infinite loop bug by @JacobMagesHaskinsContrast in #29
New Contributors
- @dougj-contrast made their first contribution in #23
Full Changelog: v1...v1.0.5
Contributors
Assets 2
Contrast AI SmartFix Early-Access Release v1.0.4
Contrast AI SmartFix Early-Access Release.
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
Please see our README here: https://github.com/Contrast-Security-OSS/contrast-ai-smartfix-action.
What's Changed
- Bump internal version to v1.0.4 by @JacobMagesHaskinsContrast in #19
- TS-39652 Setup remaining failure categories by @JacobMagesHaskinsContrast in #20
Full Changelog: v1...v1.0.4
Contributors
Assets 2
Contrast AI SmartFix Early-Access Release v1.0.3
Contrast AI SmartFix pre-release.
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
Please see our README here: https://github.com/Contrast-Security-OSS/contrast-ai-smartfix-action.
What's Changed
- TS-39583: Add API call to mark remediation as failed by @ChrisEdwards in #17
- Ts 39568 telemetry support by @JacobMagesHaskinsContrast in #18
Full Changelog: v1...v1.0.3
Contributors
Assets 2
Contrast AI SmartFix pre-release v1.0.2
Contrast AI SmartFix pre-release.
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
What's Changed
- TS-39575 Add Anthropic API key support by @ChrisEdwards in #13
- TS-39574 Ensure PRs don't include previous vulnerability fixes by @ChrisEdwards in #12
- TS-39576: Add build error analyzer by @ChrisEdwards in #15
- TS-39579: Prevent system prompts from being leaked in debug logs by @ChrisEdwards in #16
- TS-39550 cleanup by @JacobMagesHaskinsContrast in #14
New Contributors
- @ChrisEdwards made their first contribution in #13
Full Changelog: v1...v1.0.2
Contributors
Assets 2
Contrast AI SmartFix pre-release v1.0.1
Contrast AI SmartFix pre-release.
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
What's Changed
- TS-39550 Remove pip cache by @JacobMagesHaskinsContrast in #11
Full Changelog: v1.0.0...v1.0.1
Contributors
Assets 2
Initial pre-release
Initial Contrast AI SmartFix pre-release.
SmartFix is an AI-powered agent that automatically generates code fixes for vulnerabilities identified by Contrast Assess. It integrates into your developer workflow via GitHub Actions, creating Pull Requests (PRs) with proposed remediations.
Full Changelog: https://github.com/Contrast-Security-OSS/contrast-ai-smartfix-action/commits/v1.0.0