1.1.0

CodeAuditAssistant 1.1.0发布

十分感谢大家的支持，1.1.0 版本新增了一些功能和修复了一些 bug，同时大幅优化了查找算法的速度，避免因某些情况出现的idea卡死问题，重构了反编译功能，功能更加健壮。

重构

• 重构了反编译器，现在反编译器更加健壮且成功率大大提升。（使用中如果存在提示反编译失败，也可以获得成功的大部分代码）

新增

• 新增自定义 sink 点功能 #28 #25
• 方法搜索现在支持使用通配符/正则表达式进行搜索，使用 * 或 ? 匹配任意字符串和单个字符，使用 regex: 开头支持正则表达式 #28

修复

• 修复了跳转行为下一行的问题 #22
• 修复了 SinkFinder 左侧的滚动条问题 #26 #23
• 修复了 SinkFinder 的按行号排序错误问题 #24
• 修复了 SPEL 漏报问题 #25
• 临时修复虚拟文件为空导致报错，2025版本无法安装的问题 #29

CodeAuditAssistant 1.1.0 released!

Thanks for your support, version 1.1.0 adds some new features and fixes some bugs, and greatly optimizes the speed of the search algorithm to avoid the idea stuck in some cases, and refactors the decompile function to make it more robust.

Refactoring

• The decompiler has been refactored, now it is more robust and the success rate has been greatly improved. （Now the decompiler is more robust and has a much higher success rate. (If there is a hint that the decompiler fails, you can still get most of the successful code)

New

• New custom sink point feature #28 #25
• Method search now supports wildcard/regular expression searching, using * or ? matches arbitrary strings and single characters, and regular expressions are supported starting with regex: #28

Fixes

• Fixed next line of jump behavior #22
• Fixed issue with scrollbar on left side of SinkFinder #26 #23
• Fixed sorting by line number bug in SinkFinder #24
• Fixed SPEL omission #25
• Temporary fix for empty virtual file that causes errors and prevents version 2025 from installing #29

Translated with DeepL.com (free version)

1.0.1

变更日志 | Change log

• 支持 i18n 进行多语言支持，现在中文用户会看到全中文界面

• 优化 Sink 查找逻辑，现在会去掉一些高误报方法

• 优化 Sink 展示方式，现在可按分类在 Sink Finder 中查看

• Support i18n for multi-language support, now Chinese users will see the full Chinese interface

• Optimize Sink finding logic, now will remove some high false positives

• Optimize Sink display, now can be viewed by category in Sink Finder

CodeAuditAssistant-223-1.0.1 is for IDEA Version > 2022.3
CodeAuditAssistant-233-1.0.1 is for IDEA Version > 2023.3
如果你的 IDEA 版本大于2022.3 可以下载 CodeAuditAssistant-223-1.0.1
如果你的 IDEA 版本大于2023.3 可以下载 CodeAuditAssistant-233-1.0.1

1.0.0

CodeAuditAssistant-223-1.0.0 is for IDEA Version > 2022.3
CodeAuditAssistant-233-1.0.0 is for IDEA Version > 2023.3
如果你的 IDEA 版本大于2022.3 可以下载 CodeAuditAssistant-223-1.0.0
如果你的 IDEA 版本大于2023.3 可以下载 CodeAuditAssistant-233-1.0.0

Preview-v1.2

Changelog

• fix: Error of getting dependencies #7

Fix error the return value of "org.apache.maven.model.Model.getDependencyManagement()" is null

• fix: Error of IDEA version >= 243 #8

Fixed the error when IDEA version is greater than 243, change the minimum IDEA version to 223.

• ci: Update Release Script
• ci: Update build.gradle.kts

Preview-v1.1

Changelog

• Fix icons bug
• upload .gitattributes
• fix NoClassDefFoundError: me/gosimple/nbvcxz/Nbvcxz #2
• update workFlow
• fix Mybatis XML SQLI #6
• add Filter rules
• feat: Enhancements to Decompiler #4

Enhanced Maven parsing capabilities to better identify dependencies.
Add Decompiler#resolveModules

Closes #4

• ci: Use actions/upload-artifact@v4.4.3 to upload common build.
• docs: update README.md
• feat: Add injection filter detection rules

Find possible injection filters by looking for keywords (SQLFilter,XSSFilter, ClearXSS, etc.).

• ci: Preview version 1.1
• ci: update WorkFlow
• ci: update WorkFlow

Preview-v1.0

预览版本
现在支持一键扫描Maven依赖并将Maven打包的项目反编译回Maven项目
支持识别当前项目下lib目录的jar包，并反编译回Maven项目
sink点寻找使用Code -> Inspect Code功能，所有规则目前在Security -> SecurityInspector 下
详细使用文档可以查看SecurityInspector