-
#46
995fbc9Thanks @julio-rocketchat! - Ensures that Pi Agent can support different providers and adds docs -
#40
ff4acb6Thanks @julio-rocketchat! - Adds Pi Agent as an adapter -
#45
2ee9faeThanks @julio-rocketchat! - Add line range prefix (e.g.,[R49-R60]) to GitHub annotation messages for all security scanners
-
#50
6701cd6Thanks @julio-rocketchat! - Fix duplicate notifications being sent on every scan when exception approvals are active -
#54
3d78f29Thanks @julio-rocketchat! - Checks if the PR has already been merged and doesn't run Layne
- #38
eb7d3f6Thanks @julio-rocketchat! - Cache GitHub team member lookups for 30 minutes to avoid redundant API calls on every exception-approve command.
-
#27
25248ccThanks @julio-rocketchat! - Adds a new diff_only mode and allows mode to be configured -
#35
23f1b32Thanks @julio-rocketchat! - Rewrites the codebase from JavaScript to TypeScript for improved type safety and developer experience. No behavioral changes; deployment, configuration schema, and all external interfaces are identical. -
#22
294d984Thanks @julio-rocketchat! - Adds a new feature that allows exceptions to be approved by specific teams or people -
#29
2427573Thanks @julio-rocketchat! - Makes timeouts configurable on global and per repo levels -
#34
8a4126fThanks @julio-rocketchat! - Adds support for warnings for commenter as well as rule names
- Exception Approvals: Configure specific users or teams who can approve PRs that would otherwise fail the security scan. When an authorized approver approves a PR, Layne automatically re-runs the scan and passes it with a clear audit trail. Features include:
- Automatic re-run on
pull_request_reviewwebhook when authorized approver approves - Team membership resolution via GitHub API
- Approval validation against current commit SHA (new commits invalidate approvals)
- Configurable exception labels (
onException) - Always-on notifications for exception usage
- Full audit trail in check run summary and chat notifications
- See Exception Approvals documentation
- Automatic re-run on
- #18
3c06f0bThanks @julio-rocketchat! - Fixes an issue in the Claude adapter that makes it hallucinate code lines when reporting it
-
#15
e000196Thanks @julio-rocketchat! - Adds support for creating comments in the PRs -
#13
4c19ba0Thanks @julio-rocketchat! - Adds a new suppressor feature to ignore findings with a "// SECURITY: XYZ" comment
-
#6
a11a412Thanks @julio-rocketchat! - Adds support for workflow jobs alongside workflow runs -
#8
62af89eThanks @julio-rocketchat! - Fixes a bug in which Layne ends up scanning files that are unrelated to the PR -
#10
cafaf75Thanks @julio-rocketchat! - Fixes an issue that wouldn't reschedule a Layne scan if there's an existing failed scan -
a88504dThanks @julio-rocketchat! - Changes the documentation to add security architecture and PR guidelines -
#4
f2de34fThanks @julio-rocketchat! - Adds a new trigger for Layne: workflow_run -
#2
e0b5410Thanks @julio-rocketchat! - Adds the Slack notifier and support to Slack notifications via webhooks