Releases: ArmisSecurity/armis-cli
Releases · ArmisSecurity/armis-cli
v1.6.1
Armis CLI v1.6.1
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Features
Bug Fixes
- 468b73d: [PPSC-717] fix(sarif): stabilize ruleId to prevent recurring false positive alerts (#147) (@yiftach-armis)
- 89fbb1d: [PPSC-719] fix(security): upgrade go-git to v5.18.0 (CVE-2026-41506) (#148) (@yiftach-armis)
Others
- c2ece0a: chore(deps): bump actions/github-script from 8 to 9 (#140) (@dependabot[bot])
- 1b60bb7: chore(deps): bump golang.org/x/term from 0.40.0 to 0.42.0 (#101) (@dependabot[bot])
Full Changelog: v1.6.0...v1.6.1
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
shb7628, dependabot, and yiftach-armis
Assets 15
- 1022 Bytes
2026-04-28T15:45:59Z - 96 Bytes
2026-04-28T15:45:56Z - 5.12 MB
2026-04-28T15:45:53Z - 33.8 KB
2026-04-28T15:45:55Z - 4.8 MB
2026-04-28T15:45:54Z - 33.8 KB
2026-04-28T15:45:56Z - 5.05 MB
2026-04-28T15:45:53Z - 33.8 KB
2026-04-28T15:45:55Z - 4.63 MB
2026-04-28T15:45:53Z - 33.8 KB
2026-04-28T15:45:54Z -
2026-04-28T15:20:34Z -
2026-04-28T15:20:34Z - Loading
v1.6.0
Armis CLI v1.6.0
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Features
Others
Full Changelog: v1.5.0...v1.6.0
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
shb7628
Assets 15
v1.5.0
Armis CLI v1.5.0
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Bug Fixes
- 3056c98: [PPSC-602] fix(security): armisignore size limit and go-git CVE remediation (#136) (@yiftach-armis)
- 4aceb86: [PPSC-602] fix: abort install when checksum tools unavailable (CWE-494) (#124) (@shb7628)
- 4cbecc2: [PPSC-602] fix: add top-level read-only permissions to workflow (CKV2_GHA_1) (#123) (@shb7628)
- b42e84d: [PPSC-602] fix: add upper bound to scan and upload timeouts (CWE-770) (#122) (@shb7628)
- cc37801: [PPSC-602] fix: security code scanning remediations (#135) (@yiftach-armis)
- 78f04f2: [PPSC-678] fix: graceful degradation when result fetching fails (#141) (@shb7628)
Others
- 6fcd865: [PPSC-601] docs(install): add Windows parity to installation guide (#104) (@yiftach-armis)
- c283d7a: [PPSC-602] CWE-190: Integer overflow in calculateFilesSize (#105) (@shb7628)
- 56573c9: [PPSC-602] CWE-215: Debug info exposure in auth (#109) (@shb7628)
- e60d65e: [PPSC-607] docs(ci): add missing actions: read permission to README examples (#133) (@yiftach-armis)
- 52ae351: chore(deps): bump anchore/sbom-action from 0.23.0 to 0.24.0 (#103) (@dependabot[bot])
- 68800b1: chore(deps): bump github.com/mattn/go-runewidth from 0.0.20 to 0.0.21 (#97) (@dependabot[bot])
Full Changelog: v1.4.0...v1.5.0
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
shb7628, dependabot, and yiftach-armis
Assets 15
v1.4.0
Armis CLI v1.4.0
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Features
- 189ce43: [PPSC-181] feat(api): implement streaming multipart uploads (#91) (@yiftach-armis)
- e237621: [PPSC-522] feat(auth): enable JWT authentication flags (#95) (@yiftach-armis)
- 87bde01: [PPSC-525] feat(cmd): add output flag and improve CI/progress (#92) (@yiftach-armis)
- eb91b0d: [PPSC-526] feat(scan): add --changed flag for scanning only git-changed files (#93) (@yiftach-armis)
- 2f5ab89: [PPSC-563] feat(auth): remove auth-endpoint flag (#98) (@yiftach-armis)
Bug Fixes
- f29f266: [PPSC-539] fix(update): display update notification consistently after commands (#94) (@yiftach-armis)
Others
- 95e7b28: [PPSC-579] docs(auth): establish JWT as primary authentication method (#99) (@yiftach-armis)
- 992dabf: [PPSC-581] docs: update CHANGELOG for v1.4.0 (#100) (@yiftach-armis)
- 5c090e9: chore(deps): bump actions/download-artifact from 7 to 8 (#89) (@dependabot[bot])
- 3830e02: chore(deps): bump actions/upload-artifact from 6 to 7 (#87) (@dependabot[bot])
- 7f923b2: chore(deps): bump anchore/sbom-action from 0.22.2 to 0.23.0 (#90) (@dependabot[bot])
- b8fc318: chore(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.0 (#88) (@dependabot[bot])
Full Changelog: v1.2.1...v1.4.0
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
dependabot and yiftach-armis
Assets 15
v1.3.0
c2c8a4e
This commit was signed with the committer’s verified signature.
yiftach-armis
Yiftach Cohen
Armis CLI v1.3.0
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Features
- 189ce43: [PPSC-181] feat(api): implement streaming multipart uploads (#91) (@yiftach-armis)
- 87bde01: [PPSC-525] feat(cmd): add output flag and improve CI/progress (#92) (@yiftach-armis)
- eb91b0d: [PPSC-526] feat(scan): add --changed flag for scanning only git-changed files (#93) (@yiftach-armis)
Bug Fixes
- f29f266: [PPSC-539] fix(update): display update notification consistently after commands (#94) (@yiftach-armis)
Others
- 5c090e9: chore(deps): bump actions/download-artifact from 7 to 8 (#89) (@dependabot[bot])
- 3830e02: chore(deps): bump actions/upload-artifact from 6 to 7 (#87) (@dependabot[bot])
- 7f923b2: chore(deps): bump anchore/sbom-action from 0.22.2 to 0.23.0 (#90) (@dependabot[bot])
- b8fc318: chore(deps): bump github.com/go-git/go-git/v5 from 5.16.5 to 5.17.0 (#88) (@dependabot[bot])
Full Changelog: v1.2.1...v1.3.0
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
dependabot and yiftach-armis
Assets 15
v1.2.1
Armis CLI v1.2.1
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Bug Fixes
- 1cc4e40: [PPSC-484] fix(ci): use GitHub theme-aware markdown for AppSec logo (#84) (@yiftach-armis)
Others
- 1fc6069: chore(ci): optimize CI testing workflow [PPSC-485] (#85) (@yiftach-armis)
- de00134: chore(deps): bump github.com/mattn/go-runewidth from 0.0.19 to 0.0.20 (#82) (@dependabot[bot])
- 25e066b: chore(deps): bump golang.org/x/term from 0.38.0 to 0.40.0 (#76) (@dependabot[bot])
- a789f2c: chore(deps): bump goreleaser/goreleaser-action from 6 to 7 (#83) (@dependabot[bot])
Full Changelog: v1.2.0...v1.2.1
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
dependabot and yiftach-armis
Assets 15
v1.2.0
86f73d4
This commit was signed with the committer’s verified signature.
yiftach-armis
Yiftach Cohen
Armis CLI v1.2.0
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Features
- 5b2706b: [PPSC-437] feat(output): add defense-in-depth secret masking (#77) (@yiftach-armis)
- f9ce933: [PPSC-475] feat(ci): add AppSec logo to security scan results (#79) (@yiftach-armis)
- 86f73d4: feat(update): show notification after any command (@yiftach-armis)
Bug Fixes
- 4872eb3: [PPSC-466] fix(ci): support empty fail-on for informational mode (#78) (@yiftach-armis)
- 27f674e: fix(ci): align golangci-lint version in release workflow (@yiftach-armis)
Others
- 489ebf6: [PPSC-474] feat(scan/image): smart local image detection (#80) (@yiftach-armis)
Full Changelog: v1.1.0...v1.2.0
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
yiftach-armis
Assets 15
v1.1.0
68feaa1
This commit was signed with the committer’s verified signature.
yiftach-armis
Yiftach Cohen
Armis CLI v1.1.0
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Features
- 2c4ec8b: [PPSC-272] feat(auth): add JWT/VIPR token authentication support (#55) (@yiftach-armis)
- 61138e6: [PPSC-349] feat(output): add --summary-top flag for summary positioning (#67) (@yiftach-armis)
- 58c2d99: [PPSC-402] feat(cli): improve CLI usability with color support and update checks (#69) (@yiftach-armis)
- 068e836: [PPSC-418] feat(output): redesign CLI with enhanced diff handling and color support (#70) (@yiftach-armis)
Bug Fixes
- 8f04334: [PPSC-420] fix(security): mask secrets and fix user-facing bugs for 1.1.0 (#72) (@yiftach-armis)
- 205bfe4: [PPSC-424] fix(output): skip syntax highlighting for redacted code snippets (#75) (@yiftach-armis)
- 68feaa1: fix(ci): pin Go version to 1.24 in release workflow (@yiftach-armis)
- 7063abf: fix(security): address findings from security scan (#71) (@yiftach-armis)
Others
- 6be1411: [PPSC-422] chore(release): remove JWT from release documentation (#73) (@yiftach-armis)
- 515808c: [PPSC-423] test(output): add SARIF schema validation and coverage measurement (#74) (@yiftach-armis)
- d32f7fb: chore(deps): bump anchore/sbom-action from 0.22.1 to 0.22.2 (#68) (@dependabot[bot])
- 7924f58: chore(release): prepare CHANGELOG for v1.1.0 (@yiftach-armis)
Full Changelog: v1.0.7...v1.1.0
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
dependabot and yiftach-armis
Assets 15
v1.0.7
Armis CLI v1.0.7
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Others
- 08b836a: [PPSC-335] feat(output,sarif): add standard fixes and improve progress output (#63) (@yiftach-armis)
- c4cbf15: chore(deps): bump actions/checkout from 4 to 6 (#49) (@dependabot[bot])
- 2c4d69c: chore(deps): bump anchore/sbom-action from 0.21.1 to 0.22.1 (#64) (@dependabot[bot])
- dccc2ec: chore(deps): bump tj-actions/changed-files from 46 to 47 (#50) (@dependabot[bot])
Full Changelog: v1.0.6...v1.0.7
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
dependabot and yiftach-armis
Assets 15
v1.0.6
Armis CLI v1.0.6
Enterprise-grade CLI tool for static application security scanning.
Installation
Quick Install Script:
curl -sSL https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.sh | bashWindows (PowerShell):
irm https://raw.githubusercontent.com/ArmisSecurity/armis-cli/main/scripts/install.ps1 | iexGo Install:
go install github.com/ArmisSecurity/armis-cli/cmd/armis-cli@latestManual Download:
Download the appropriate binary for your platform below.
Verification
All binaries are signed with cosign. To verify:
cosign verify-blob \
--certificate-identity-regexp 'https://github.com/ArmisSecurity/armis-cli/.github/workflows/release.yml@refs/tags/.*' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
--signature armis-cli-checksums.txt.sig \
armis-cli-checksums.txtChangelog
Features
- f046bc1: [PPSC-315] feat(scan): add sbom and vex document generation (#56) (@yiftach-armis)
- 658caa5: [PPSC-323] feat(output): add hybrid scan summary with brief status at top (#57) (@yiftach-armis)
- bfff936: [PPSC-331] feat(findings): add proposed fix support with AI validation (#60) (@yiftach-armis)
Bug Fixes
- ec8f3ec: fix: add missing permissions to security-scan workflow (#48) (@yiftach-armis)
Others
- cc35187: Use published armis-cli action in reusable workflow (#51) (@yiftach-armis)
- 46dba34: [PPSC-268] docs: add comprehensive CI integration guide (#52) (@yiftach-armis)
- 5a2938a: [PPSC-280] docs: add oss best practices and developer tooling (#53) (@yiftach-armis)
- f7d2a67: [PPSC-324] test: increase test coverage to 81.1% (#59) (@yiftach-armis)
- 85f3f3f: [PPSC-325] docs: add theme-aware logo support (#58) (@yiftach-armis)
- 9254d4b: [PPSC-332] fix(scan,output): fix workflow condition and avoid duplicated titles (#61) (@yiftach-armis)
- c554439: [PPSC-333] chore: prepare v1.0.6 release (#62) (@yiftach-armis)
Full Changelog: v1.0.5...v1.0.6
For issues or questions, visit: https://github.com/ArmisSecurity/armis-cli/issues
Contributors
yiftach-armis