|
changes:
Support reload4j vulnerability detection
Added md5 hash for shaded log4j of newrelic.jar.
Added MD5 based Log4j version detection.
Print user and added user information to JSON report
Reduced memory footprint significantly.
For 5 million files in the single directory, previous version used 1.7GB.
v2.9.0 uses only 0.3GB for same number of files.
You can further reduce memory footprint using -Xmx switch.
For example, -Xmx100M will limit max memory usage to 100 megabytes
Consider max JAR or ZIP file size for tuning.
Report directory traversal error.
For example, Error: Access denied. Skipping c:\ProgramData\Microsoft\Windows Defender Advanced Threat Protection\Cache with administrator privileges.
Added --throttle option to limit CPU usage.
--throttle 1000 means that scanner is allowed to scan 1000 files per second.
Improved scan performance (x2.7)
Before patch: 340 seconds for 12926 directories and 48569 files
After patch: 122 seconds for 12926 directories and 48569 files
Bottleneck was I/O call for every single byte when commons-compress reads ZIP file.
|