apunkt/nyx
1
0
Fork 0
mirror of https://github.com/elicpeter/nyx.git synced 2026-06-12 19:55:14 +02:00
Code Issues Projects Releases Packages Wiki Activity

Commit graph

  • 5702b82cff image-builder: refresh pinned digests image-builder/refresh-digests elicpeter 2026-06-12 08:47:06 +00:00
  • 5b4aa86d75 fixed failing tests and updated screenshots master elipeter 2026-06-11 17:34:59 -05:00
  • 246f32a419 fix(engine): CFG/SSA/taint/IPA soundness, precision & recall fixes elipeter 2026-06-11 16:46:01 -05:00
  • 59e4359257
         Merge pull request #92 from nyx-sec/attack-surface-overhaul Eli Peter 2026-06-10 13:29:35 -05:00
  • 92755eceb0 fix: clippy and thirdparty licenses update elipeter 2026-06-10 13:26:57 -05:00
  • 3cc5eef877 docs: clarify per-finding exposure logic elipeter 2026-06-10 13:21:56 -05:00
  • 792db2b86f feat(surface): make attack surface first-class in the finding pipeline elipeter 2026-06-10 13:01:53 -05:00
  • 1abcdedbfe feat(surface): make attack surface first-class in the finding pipeline elipeter 2026-06-10 13:01:48 -05:00
  • d1e26ad7bf
         Merge cd7b11153a into c9776a5caf dependabot[bot] 2026-06-09 08:35:42 +00:00
  • cd7b11153a
         chore(deps): bump the cargo-minor-and-patch group with 3 updates dependabot/cargo/cargo-minor-and-patch-fe5bb9e3f2 dependabot[bot] 2026-06-09 08:35:39 +00:00
  • 1fc11411f3
         Merge 852acfb13f into c9776a5caf dependabot[bot] 2026-06-09 08:35:02 +00:00
  • 852acfb13f
         chore(deps-dev): bump the frontend-minor-and-patch group across 1 directory with 2 updates dependabot/npm_and_yarn/frontend/frontend-minor-and-patch-a4e62fc582 dependabot[bot] 2026-06-09 08:34:58 +00:00
  • c9776a5caf
         Introduce repro cli subcommand Eli Peter 2026-06-05 13:34:07 -05:00
  • a2d1a1583f updated CHANGELOG.md elipeter 2026-06-05 13:13:42 -05:00
  • 8a7d2b8010 added repro subcommand elipeter 2026-06-05 13:10:58 -05:00
  • c1fa6a87cf
         ui-fixes Eli Peter 2026-06-05 12:39:39 -05:00
  • f52b3bed1e changed sizes elipeter 2026-06-05 12:39:13 -05:00
  • 214bf91b63 bumped dep elipeter 2026-06-05 12:27:16 -05:00
  • 49fa174607 added svg for confirmed verdict badge elipeter 2026-06-05 12:04:09 -05:00
  • 291fe5d7be updated CHANGELOG.md elipeter 2026-06-05 11:36:52 -05:00
  • 184156e81b
         chore(deps): bump org.springframework:spring-context dependabot[bot] 2026-06-05 16:07:51 +00:00
  • 25863d222a
         Merge pull request #86 from nyx-sec/triage-works-in-cli Eli Peter 2026-06-05 10:59:40 -05:00
  • d09a97008e updated CHANGELOG.md elipeter 2026-06-05 10:53:09 -05:00
  • 50821048e5
         chore(deps): bump requests dependabot[bot] 2026-06-05 15:51:59 +00:00
  • 36a53e983a
         chore(deps): bump org.springframework:spring-webmvc dependabot[bot] 2026-06-05 15:50:37 +00:00
  • 1148e65f36 fix(cli): apply repository triage file during scans elipeter 2026-06-05 10:50:25 -05:00
  • 233ef9e679
         chore(deps): bump flask dependabot[bot] 2026-06-05 15:43:19 +00:00
  • 43bc0b3b92
         chore(deps): bump org.springframework:spring-web dependabot[bot] 2026-06-05 15:28:07 +00:00
  • 6b74a15c74
         chore(deps): bump the cargo-minor-and-patch group across 1 directory with 9 updates dependabot[bot] 2026-06-05 15:20:35 +00:00
  • 6fcaade7a0
         Merge branch 'master' into dependabot/npm_and_yarn/frontend/frontend-minor-and-patch-c4c8ff778b Eli Peter 2026-06-05 10:19:12 -05:00
  • 991c84a1eb
         Dynamic (#77) Eli Peter 2026-06-05 10:16:30 -05:00
  • 061e1f981c fix failing ci + update docs elipeter 2026-06-05 09:56:04 -05:00
  • db35cdff2c fix failing ci elipeter 2026-06-04 17:26:21 -05:00
  • e66b03106e fixed codeigniter vuln never confirms elipeter 2026-06-04 16:08:06 -05:00
  • 52bd729811 fixing failing ci elipeter 2026-06-04 15:02:30 -05:00
  • 03b698ddc1 fixed dynamic sandbox hardening to graft /proc elipeter 2026-06-04 13:53:29 -05:00
  • 18baf71bcc edited ci to --no-fail-fast and potential java fixes elipeter 2026-06-04 10:54:41 -05:00
  • 969653735c ci fixes elipeter 2026-06-04 10:26:27 -05:00
  • 3edb17e60b fix linux java elipeter 2026-06-03 23:26:31 -05:00
  • 8974b91bfc fix linux java elipeter 2026-06-03 22:27:24 -05:00
  • 2e12c19c48 fix java elipeter 2026-06-03 22:10:01 -05:00
  • 072d00e817
         chore(deps): bump the frontend-minor-and-patch group across 1 directory with 11 updates dependabot[bot] 2026-06-03 23:28:09 +00:00
  • 609218adfb
         chore(deps): bump the cargo-minor-and-patch group across 1 directory with 6 updates dependabot[bot] 2026-06-03 23:26:22 +00:00
  • 425a9ed2a6 fixed python venv config elipeter 2026-06-03 17:38:22 -05:00
  • b16d468db6 update java test cases to pass on java 18 elipeter 2026-06-03 17:28:43 -05:00
  • d84505f196 fix missing var elipeter 2026-06-03 16:53:58 -05:00
  • b32dc7ac0b fix failing tests elipeter 2026-06-03 16:48:12 -05:00
  • 7fe1abda8b fix failing tests and rules elipeter 2026-06-03 16:24:11 -05:00
  • ddf9ff13e2 fixed some dynamic and static bugs and failing test cases elipeter 2026-06-03 15:56:00 -05:00
  • 20093972a9 feat(dynamic): improve sandbox hardening and build caching elipeter 2026-06-03 12:26:10 -05:00
  • 7468d2214b tests, docs: simplify OnceLock usage in Linux sandbox tests, update Java patterns in rules documentation elipeter 2026-06-03 11:36:52 -05:00
  • eb4332edb5 docs: update inline references and improve XSS detection in Java servlet writers, refactor matchers for clarity and extend sanitizer support elipeter 2026-06-03 11:32:30 -05:00
  • c2cd6f009e feat(dynamic, eval): enhance hardening validation, CI budget tuning, and source-keyed target-dir isolation elipeter 2026-06-03 07:35:57 -05:00
  • 2e456c15d1 chore(lint): suppress dead_code warnings for const-eval functions to address MSRV-specific lint behavior elipeter 2026-06-02 22:15:41 -05:00
  • c29cf69d42 feat(tests): support partial confirmations with synthetic-fallback handling in header injection and open redirect scenarios elipeter 2026-06-02 21:25:00 -05:00
  • 4c824ed543 refactor(ssa): streamline operand iteration and formatting in ssa_transfer module elipeter 2026-06-02 20:39:11 -05:00
  • 5615074177 feat(dynamic): add synthetic-fallback handling for partial confirmations and improve validation propagation elipeter 2026-06-02 20:38:59 -05:00
  • 1ebeb233c4 feat(lint): centralize clippy::collapsible_if allowance in Cargo.toml and remove redundant file-level declarations elipeter 2026-06-02 18:30:14 -05:00
  • 1f5777ff11 feat(dynamic): replace fixed sleeps with drain_events_until for reliable event handling in tests under load elipeter 2026-06-02 14:11:22 -05:00
  • 879f965379 style(comments): remove decorative comment borders across files for consistency and cleaner code structure elipeter 2026-06-02 14:03:07 -05:00
  • 321d0a61ab cargo fmt elipeter 2026-06-02 13:49:39 -05:00
  • 9c99f6c6a9 feat(ssa): optimize branch condition handling via constant folding, enhance precision for taint analysis, and expand OWASP Benchmark support elipeter 2026-06-02 13:41:45 -05:00
  • ec76c9e08f style(dynamic): reformat struct initialization for improved readability and consistency elipeter 2026-06-01 22:51:19 -05:00
  • 8ee6e3af7c feat(dynamic): enhance corpus sync script with improved payload parsing, registry checks, and expanded validation logic elipeter 2026-06-01 22:51:05 -05:00
  • 467d41dcfb feat(ci): replace toolchain stripping with PATH-level deny wrappers for reproducibility elipeter 2026-06-01 20:01:07 -05:00
  • 67a2e753b3 feat(build): enhance license file packaging logic and add Rust toolchain setup in docs workflow elipeter 2026-06-01 19:57:32 -05:00
  • 9914d26bdf style(all): reformat long lines across files for improved code readability and alignment of nested structures elipeter 2026-06-01 19:54:28 -05:00
  • e64fb25dae style(dynamic): improve code readability by reformatting long lines and aligning nested structures elipeter 2026-06-01 19:42:22 -05:00
  • d3bfd6c848 feat(dynamic): add Java path-traversal payload support, update harness and stubs for entry-driven verification, and increment corpus version to 17 elipeter 2026-06-01 19:42:10 -05:00
  • 8a418669d9 feat(dynamic): extend per-language undrivable entry detection with Go and Java support, refine diagnostic signatures for enhanced accuracy elipeter 2026-06-01 16:18:51 -05:00
  • 7027dbca0a feat(dynamic): remap command injection sink cap to CODE_EXEC, update corpus markers to NYX_PWN_791_CMDI, and enhance spec derivation strategies for wider coverage and consistency elipeter 2026-06-01 15:58:11 -05:00
  • 738f1fedbc feat(dynamic): implement entry-driven verification with fallback to synthetic direct-sink, enhance per-language emitters, and improve test coverage elipeter 2026-06-01 12:34:38 -05:00
  • 130bf904eb feat(dynamic): update to version 0.8.0 with enhanced dynamic verification features and improved performance elipeter 2026-06-01 11:22:36 -05:00
  • 6bca7a7c97 feat(dynamic): replace fixed canary with per-spec cryptographically-random canary for enhanced security elipeter 2026-06-01 10:49:32 -05:00
  • e0833537e4 feat(eval-corpus): add Track R.2 polyglot corpora (RailsGoat, DVWA, DVPWA, gosec, RustSec) with curated manifests, negative controls, and CI validation elipeter 2026-06-01 10:04:38 -05:00
  • 2a4d49b68b chore: remove stale scheduled_tasks.lock file elipeter 2026-05-31 21:18:38 -05:00
  • a5929bb169 chore: remove stale scheduled_tasks.lock file elipeter 2026-05-29 15:39:39 -05:00
  • 08a2568d56 feat(eval-corpus): implement OWASP Benchmark v1.2 acceptance with precision/recall floors, confirmed-rate tracking, and per-(cap,lang) budget enforcement elipeter 2026-05-29 15:39:27 -05:00
  • c0501884ae feat(dynamic): add PartiallyConfirmed status for finer-grained sink-reachability categorization, update dynamic verification, telemetry, and reporting systems elipeter 2026-05-29 14:35:39 -05:00
  • 635b213825 refactor(server, scan): introduce target management with active target switching, enhance DB pool handling, and integrate target-aware task routes for improved modularity elipeter 2026-05-29 13:14:29 -05:00
  • acdc71cd88 refactor(scan, dynamic): implement cap-routed concurrency lanes for batched verification and prewarmed sandbox baseline directories; enhance handling for streaming pull tasks elipeter 2026-05-29 11:45:34 -05:00
  • bd76cd5b9d refactor(dynamic): introduce build pools for Python, C, C++, Go, Ruby, PHP, and Node.js with shared caching and warming improvements; enhance test coverage with micro-benchmarks elipeter 2026-05-29 10:23:49 -05:00
  • 3d710c856d refactor(dynamic): integrate worker timeout handling, JSON response parsing with serde, and extend Pubsub emulator with streaming pull lifecycle handling elipeter 2026-05-28 12:16:10 -05:00
  • c3a1550315 refactor(scan): implement IndexWriteQueue for single-writer SQLite handling, introduce ReproEnvGuard for safer environment variable management, and refactor tests to enhance isolation and determinism elipeter 2026-05-28 11:08:59 -05:00
  • 71fade1d83 refactor(dynamic): extend framework-specific fallbacks with Spring HandlerExecutionChain, Go gqlgen, Django handler/middleware chain, Celery task registry, and Sidekiq client handling; enhance coverage and test logic elipeter 2026-05-27 15:29:52 -05:00
  • fd39304eed refactor(dynamic): enhance migration harnesses with Prisma, Sequelize-CLI, Laravel, Rails, Flask support; implement fallback logic and extend SQL framework integration elipeter 2026-05-27 15:06:51 -05:00
  • ed8decb510 refactor(dynamic): add GraphQL framework-specific fallbacks with Juniper, Relay, Apollo integration; enhancements for Prisma, Alembic, Channels, and ActionCable elipeter 2026-05-27 14:30:18 -05:00
  • 1a0e2d204b refactor(dynamic): extend Kafka protocol emulator with binary protocol support, Pubsub gRPC emulator, and enhance listener and endpoint handling elipeter 2026-05-27 14:11:31 -05:00
  • 030b054843 refactor(dynamic): extend Rabbit AMQP protocol emulator with exchange/queue management, publisher confirms, nack/reject handling, and enhanced test coverage elipeter 2026-05-27 13:42:23 -05:00
  • fd5e1f3e89 **refactor(dynamic): add AMQP protocol emulator for Rabbit with publish/deliver/ack support, enhance endpoint handling, and extend test coverage** elipeter 2026-05-27 13:10:58 -05:00
  • d5c51c5d8a refactor(dynamic): prioritize real clients over HTTP fallbacks for Rabbit, Kafka, and Pubsub across Java, Python, Go; integrate native SDK handling and extend test coverage elipeter 2026-05-27 12:49:41 -05:00
  • 8eeb9590b4 **refactor(dynamic): introduce framework-specific fallback logic for Quartz, Spring, Celery, Django, Express, and Socket.IO, enhance middleware/request handling and extend test coverage** elipeter 2026-05-27 12:30:24 -05:00
  • a12f7efc3a **refactor(dynamic): introduce NATS protocol emulator with publish/deliver support, enhance endpoint handling, and extend SDK compatibility for Go and Python** elipeter 2026-05-27 11:47:10 -05:00
  • a55849f1ca **refactor(dynamic): add HTTP emulators for Pubsub, Rabbit, and NATS with publish/deliver/ack logic, extend event recording, endpoint rewriting, and SDK compatibility across Java, Go, Python, and Rust** elipeter 2026-05-27 11:29:07 -05:00
  • 57d3677bd4 **refactor(dynamic): add Kafka HTTP emulator with publish/poll/commit support, extend endpoint rewriting and stub event recording across Java, Python, and Rust** elipeter 2026-05-27 11:01:46 -05:00
  • 433036aead refactor(dynamic): add SQS loopback HTTP emulator with real SDK compatibility, extend stub event recording and endpoint rewriting logic across Java and Python elipeter 2026-05-27 09:34:02 -05:00
  • 0903231189 refactor(dynamic): enhance event recording across brokers, improve SQL migration handling for frameworks, update runtime dependency management, and add test coverage elipeter 2026-05-27 08:23:48 -05:00
  • 9bf085ee48 refactor(dynamic): introduce SQL profile for migration hardening with SQLite egress restrictions, extend framework SQL handling logic, and update test coverage across harnesses elipeter 2026-05-26 23:12:35 -05:00
  • 6ee2bdda36 refactor(dynamic): introduce publish/poll/commit cycle for Kafka, expand SQS loopback with receive/delete support, enhance event recording, and unify migration SQL handling across frameworks elipeter 2026-05-26 15:39:18 -05:00
  • ed96f94bb5 refactor(dynamic): centralize runtime dependency handling across frameworks, enhance manifest generation for Rust, Java, Python, Go, and PHP, and improve framework adapter integration elipeter 2026-05-26 15:07:51 -05:00