Since we announced version 1.3 of Bearer CLI in early April, the team has been working relentlessly to make major movements and ship amazing new features.
Before you read it all, we advise you to update to the latest version in the background 🙂, that way you can start exploring all right after finishing this article!
New language support: Java 🎉
In addition to Ruby and JavaScript/TypeScript, we’re officially introducing today Java support with Bearer v1.16.0. We’ve been working for a few months on it now, some of you probably even noticed it, and now today we are delighted to officially make it available to everyone!
To make sure we provide great support from Day-1, we’ve been working closely with partners, and thanks to the OWASP foundation, we’ve been able to test it and improve it using the BenchmarkJava project.
We can safely say that Bearer already provides great Java support across the Industry - and we advise you to test it out today 🎉
Major language support improvement for Ruby and JS/TS 💅
We’ve been talking lately about how we battle test Bearer CLI and overall improve our language support, aka findings precision.
Altogether, these efforts help us deliver a greatly improved level of support for our existing language, Ruby and JavaScript/TypeScript, allowing us to be able to say without any hesitation that we provide today the best language support precision across the industry.
Note: Stay tuned for a public Benchmark we will be releasing next week!
Scan speed up by 400% ⚡
We know that no-one likes to wait for a scan to finish, and even less so developers looking intensively for that CI green checkbox!
Bearer CLI is now able to make better usage of the power of your machine, and essentially provide on average a 400% speed increase, making it one of the fastest scanners out-there!
For reference, we scan JuiceShop in about 51 seconds in total (on a MacBook Air M2):
Better pipeline integration than ever: Code review comments, GitHub Advanced Security, GitLab Security 🔗
In the past few weeks we have introduced numerous improvements to help you integrate Bearer CLI into your pipeline at every possible step, starting with a new code review comments integration), a GitLab Security scanning integration as well as GitHub Advanced Security integration.
New report output formats: SARIF and HTML 📂
You can now export Bearer CLI findings directly in SARIF, allowing you to further integrate Bearer into your Security tooling, as for example with DefectDojo.
And finally, we’re fulfilling a long time request by adding a new HTML output format, allowing you to provide scan results to your team with a beautiful layout.
Conclusion
Since we officially introduced Bearer CLI in early March, 4 months ago, we’ve been fortunate to gather a lot of feedback from the community, allowing us to ship faster than ever improvements and new features.
We thank you for it and kindly ask you keep it flowing 🙏