92e0195118
No shellcheck in ./t/
2025-11-24 11:19:13 +01:00
d359e1108d
proper definition of os variable
2025-11-24 11:07:16 +01:00
7ba99cd1e9
For MacOS we rather use homebrew's OpenSSL
2025-11-24 11:04:59 +01:00
7b2804df41
remove STARTTLS
2025-11-24 10:48:41 +01:00
4ad81cea9b
Merge pull request #2953 from testssl/dependabot/github_actions/actions/checkout-6
...
Bump actions/checkout from 5 to 6
2025-11-21 15:12:34 +01:00
7423aa8add
Merge pull request #2951 from testssl/fixAndImprove_opossum_check_2950
...
Fix and improve Opossum check
2025-11-21 15:11:07 +01:00
ba4855026f
Bump actions/checkout from 5 to 6
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 5 to 6.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v5...v6 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: '6'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-11-21 00:02:35 +00:00
76824b5762
Fix and improve Opossum
...
Under some circumstances the opossum vulnerability check got stuck
because the cat commdn was waiting for reading from the descriptor.
In some case like #2950 this happened when the HTTP head command
was incorrectly send in the first place.
This PR makes sure that the HTTP head is correct and it replaces
cat by read in a loop so that the HTTP response is read without
being blocked.
Also for http_head_printf() the argumensats passed were cleaned up.
2025-11-19 20:55:20 +01:00
718c6fe4ed
Merge pull request #2947 from 24icewolf42/fix-mtls-client-pem-check
...
Add support for EC private key in mTLS check
2025-11-17 11:19:09 +01:00
91caad69c5
Improve regex for private key check in mTLS
2025-11-17 08:26:15 +01:00
1394cc8d7d
Merge pull request #2949 from testssl/shellcheck_ignore_files
...
Ignore files types for shellcheck
2025-11-15 14:43:59 +01:00
fd97a75241
Add comments for paths_ignore
2025-11-15 14:05:08 +01:00
c07d17ea8f
Fix indentation + comment wrt paths_ignore
2025-11-15 13:56:19 +01:00
00476b751a
Ignore files types for shellcheck
2025-11-15 13:39:09 +01:00
12e4ebd203
Merge pull request #2948 from testssl/ratingdoc_update
...
Update docs after raiting only switch
2025-11-15 13:37:06 +01:00
c9a886c396
Update docs after riing only swicth
...
see #2945
2025-11-15 13:31:42 +01:00
7c62ae5d2e
Add support for EC private key in mTLS check
2025-11-13 16:57:11 +01:00
ae48b680fa
Merge pull request #2945 from magnuslarsen/3.3dev
...
feat: --rating-only flag to only test checks required for rating
2025-11-13 08:00:15 +01:00
640444e1fc
feat: --rating-only flag to only test checks required for rating
2025-11-12 11:14:16 +01:00
932c91f67c
Merge pull request #2941 from testssl/dependabot/github_actions/actions/checkout-5
...
Bump actions/checkout from 4 to 5
2025-11-11 16:46:21 +01:00
bdf62198a8
Bump actions/checkout from 4 to 5
...
Bumps [actions/checkout](https://github.com/actions/checkout ) from 4 to 5.
- [Release notes](https://github.com/actions/checkout/releases )
- [Changelog](https://github.com/actions/checkout/blob/main/CHANGELOG.md )
- [Commits](https://github.com/actions/checkout/compare/v4...v5 )
---
updated-dependencies:
- dependency-name: actions/checkout
dependency-version: '5'
dependency-type: direct:production
update-type: version-update:semver-major
...
Signed-off-by: dependabot[bot] <support@github.com >
2025-11-11 00:10:32 +00:00
4ba3500b0b
Merge pull request #2940 from testssl/shellcheck_cherrypicked_2428
...
Shellcheck cherrypicked from PR #2428
2025-11-10 14:37:35 +01:00
d4cc41405f
Skipping push as it seems expensive and may cause delays
...
... no bypasses for direct commit for those changes anyway
2025-11-10 12:29:05 +01:00
2fcd01c693
fix FP
2025-11-10 12:15:58 +01:00
0347f2ffee
24.04 Ubuntu's instead of latest
2025-11-10 12:05:42 +01:00
191b1e791d
add shellcheck to ci
2025-11-10 12:01:06 +01:00
f219fd6ca3
Merge pull request #2938 from testssl/fix_2937
...
Fix pattern for matching /etc/hosts entries
2025-11-03 23:39:04 +01:00
da8a6f2f34
Fix pattern for matching /etc/hosts entries
...
`grep -w` matches also `string1-whatsoever` so that entries like
```
192.168.0.10 anystring anystring-apache
192.168.0.11 anystring-tomcat
```
matched 3 entries over 2 lines.
This PR fixes #2937 by improving the match pattern, so that
`string1` needs a trailing whitespace or a EOL -- besides a
leaing whitespace.
2025-11-03 22:30:26 +01:00
c19d3fff0c
Merge pull request #2935 from testssl/fix_2933
...
Add new Sectigo R46 cert, update Java/Mozilla.pem
2025-11-01 18:00:27 +01:00
3e495f456a
Add new Sectigo R46 certs + update Java/Mozilla.pem
...
Fixes #2933 .
2025-11-01 14:15:36 +01:00
a0c99d855e
Merge pull request #2934 from testssl/shorten_badssl
...
Shorten badssl GHA as they fail too often
2025-10-30 20:41:46 +01:00
1ce514d95f
Shorten badssl GHA as they fail too often
...
* Remove checks which aren't needed in t/51_badssl.com.t t/33_isJSON_severitylevel_valid.t
* tryying to make some files more readable
2025-10-30 18:35:43 +01:00
0b9715c239
Merge pull request #2930 from testssl/fix_2929
...
Fix date parsing bc of locale problem
2025-10-30 15:54:23 +01:00
da436e7d87
Fix date parsing bc of locale problem
...
The new block making sure that rust coreutils work properly (PR #2913 )
introduced a new check in order to determine which date functions
to use.
The function however parsed only for English error messages ("No such file").
This PR fixes that by setting LC_ALL to C.
Fixes #2929 .
2025-10-30 13:30:08 +01:00
d3a96d9382
Merge pull request #2927 from testssl/fix_2926_ua_sneaky
...
Update "sneaky" user agent
2025-10-28 15:16:04 +01:00
ce820cdaf5
Update "sneaky" user agent
...
fixes #2926 for 3.3dev.
2025-10-28 10:26:06 +01:00
08ed5521a9
Merge pull request #2922 from testssl/shellcheck1
...
Squash some shellcheck *errors*
2025-10-13 22:10:44 +02:00
c53e7a3955
Fix more shellcheck complaints (high severity)
...
... and fine tune some comments in the beginning
2025-10-13 21:06:02 +02:00
8bc2185a72
Merge pull request #2923 from testssl/drwetter-patch-1
...
Minor fine tuning
2025-10-12 11:49:26 +02:00
2cfa23e7f7
Minor fine tuning
...
* version 3.2 was removed from links
* badges updated
* minor language improvements
2025-10-12 11:34:56 +02:00
672493ebe7
Fix check for /bin/sh
2025-10-11 18:59:51 +02:00
7090d5fbdd
Saving everything before commit/push is supposed to be better ;-)
2025-10-11 18:00:48 +02:00
8392a4aed5
Squash some shellcheck *errors*
...
and some warnings.
Five errors of type [SC2145](https://www.shellcheck.net/wiki/SC2145 ) are left as I am not sure whether
it'll be safe to follow the recommendation
2025-10-11 13:19:28 +02:00
ae69789ecb
Merge pull request #2916 from testssl/update_Linux_CA_store
...
Update Linux CA store
2025-10-09 22:12:09 +02:00
07a0aa4bef
Merge pull request #2919 from testssl/update_GHAs
...
Update GHAs
2025-10-09 21:27:38 +02:00
9ff79c472f
Remove workflows/docker-3.2.yml for 3.3dev
2025-10-09 21:25:30 +02:00
d732088923
Roff pages won't trigger a unit test anymore
2025-10-09 21:24:45 +02:00
0a7810ea47
Update Linux CA store
...
from Debian 13. Fixes #2915
2025-10-09 20:42:21 +02:00
df100d986b
Merge pull request #2913 from testssl/fix_2909
...
Fix date for Ubuntu >= 25.10
2025-10-09 20:30:15 +02:00
80d05c0831
Merge pull request #2912 from testssl/early_data
...
TLS 1.3 early data / 0-RTT
2025-10-09 18:55:14 +02:00
Dirk Wetter