Open
Conversation
Codecov Report❌ Patch coverage is Additional details and impacted files@@ Coverage Diff @@
## dev #2007 +/- ##
======================================
+ Coverage 92% 92% +1%
======================================
Files 416 434 +18
Lines 34690 35501 +811
======================================
+ Hits 31653 32399 +746
- Misses 3037 3102 +65 ☔ View full report in Codecov by Sentry. 🚀 New features to boost your workflow:
|
added 3 commits
November 25, 2024 10:29
added 13 commits
November 25, 2024 10:37
New Module: Kafka Output
New Module: RabbitMQ Output
New Module: ZeroMQ Output
New Module: NATS Output
Migrate from Poetry to UV
…toml Fix conflict in pyproject.toml
Drop support for python 3.9, add support for 3.14
Contributor
📊 Performance Benchmark Report
📈 Detailed Results (All Benchmarks)
🎯 Performance Summary! 1 regression ⚠️
17 unchanged ✅🔍 Significant Changes (>10%)
🐍 Python Version 3.11.14 |
openssl_dev_headers is not a real binary, so which() always fails, causing the full ansible playbook + ansible-galaxy collection install to run every time (~15s). Added _core_dep_satisfied() to check for the actual header file instead. Also deferred ansible/tldextract/sudo setup to only run when there's actually something to install. Reduces single module test time from ~17s to ~2s.
liquidsec
approved these changes
Feb 27, 2026
…rmatting
- git clean before branch checkout to prevent uv.lock conflicts when
switching between Poetry/UV branches
- refactor comment posting so both success and failure paths search for
existing comments before creating new ones
- fix fallback message using template literal instead of .join('\\n')
which produced literal \n characters instead of newlines
Fix benchmark report: uv.lock conflict, duplicate comments, broken formatting
Fix install_core_deps running ansible on every test invocation
liquidsec
approved these changes
Feb 28, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
BBOT 3.0 "
blazed_elijah" contains changes needed to store BBOT data in a persistent database. The idea is to release it alongside BBOT server, a tiny CLI-only database. This will be paired with a series of blog posts showing how BBOT server can be used on the command line to script out bug bounty hunting, threat intel, and ASM (i.e. running scheduled scans, exporting to CSV, diffing results over time, etc.).Together, BBOT 3.0 and BBOT server will give us a solid foundation to build a bunch of other useful tooling, like asset inventory. Sometime in the future, it may also be useful to frontend.
Breaking changes
1.
.dataand.data_jsonevent fieldsThe main breaking change in BBOT 3.0 is that the name of the
.datafield is different based on whether it's astrordict..data: string.data_json: dictionaryThe
siem_friendlyoption has been removed, since BBOT data is now SIEM-friendly by default.2. Changes to vulnerabilities
The
VULNERABILITYevent type has been removed in favor ofFINDING, which now has several improvements:namefield which holds a generic description common to all findings of the same type. This makes it easier to collapse and categorize them.confidencefieldseverityfieldFeatures
Potential changes