Skip to content

V2.1.0 #1

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
mraml merged 9 commits into from
Jan 22, 2026
Merged

V2.1.0 #1

mraml merged 9 commits into from
Jan 22, 2026

Conversation

@mraml
Copy link
Owner

@mraml mraml commented Jan 22, 2026

Release v2.1.0: Stability & Security Hardening

This release focuses on critical engineering improvements to ensure nod works seamlessly in real-world environments. It addresses key issues with PyPI distribution, large repository performance, and JSON validation logic, while introducing a formal test suite.

🔴 Critical Fixes

  • Fixed "Broken Pip" Installation: * Added MANIFEST.in and updated the configuration loader to correctly bundle and locate default rule packs (defaults/*.yaml). Installing via pip install nod-linter now works out-of-the-box.
  • Smart File Ignoring:
    • Implemented fnmatch support for .nodignore.
    • Added default exclusions for performance-killing directories like node_modules, venv, __pycache__, dist, and build.
  • JSON Validation Logic:
    • Fixed a logic flaw where distributed JSON specs were aggregated into text blobs, breaking deep validation. The scanner now correctly parses JSON files individually to support must_match field validation.

🛡️ Security Hardening

  • High-Fidelity Secret Detection: * Updated the security_baseline profile. Replaced the generic "hardcoded credential" placeholder with rigorous regex patterns to detect: * AWS Access Keys (AKIA...) * OpenAI Secret Keys (sk-...) * Private Key blocks (-----BEGIN PRIVATE KEY-----) * Generic high-entropy assignments (password = "...").

✨ Usability Polish

  • Version Flag: Added nod --version to quickly check the installed release.
  • Quiet Mode: Added nod --quiet (or -q) to suppress banners and success messages, ideal for cleaner CI/CD logs.

🏗️ Engineering Maturity

  • Automated Test Suite: Introduced tests/test_core.py using unittest to validate core logic, config loading, and regex engines, preventing future regressions.
  • Strict Type Hinting: Enhanced code readability and safety with comprehensive PEP 484 type annotations throughout the codebase.

🚦 Upgrade Guide

# Update via pip
pip install --upgrade nod-linter

# Update GitHub Action
uses: mraml/nod@v2.1.0

License: Apache 2.0

mraml added 9 commits January 22, 2026 17:16
@mraml
Update config.py
c336e73
@mraml
Update utils.py
e841666 
update utils.py to add a matcher and scanner.py to fix the directory walking loop (ignoring node_modules, etc.) and the JSON aggregation logic
@mraml
Update scanner.py
908efce 
fix the directory walking loop (ignoring node_modules, etc.) and the JSON aggregation logic
@mraml
Update pyproject.toml
c746130 
Ensure the package data is included
@mraml
Create MANIFEST.in
7dbfcba
@mraml
Create test_core.py
03ba8b0
@mraml
Update rules-security-baseline.yaml
27028cd
@mraml
Update __init__.py
96b30c7
@mraml
Update cli.py
a821139 
dding:

    --version: Prints the version and exits.

    --quiet: Suppresses non-critical output (headers, success messages). Only prints failures or errors.
@mraml mraml merged commit e5afb5b into main Jan 22, 2026
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@mraml