|
| 1 | +--- |
| 2 | +rss_title: Codacy release notes RSS feed |
| 3 | +rss_href: /feed_rss_created.xml |
| 4 | +description: Release notes for Codacy Cloud November 2025. |
| 5 | +included_jira_versions: ['2025.11'] |
| 6 | +codacy_tools_version_old: https://github.com/codacy/codacy-tools/releases/tag/8.16.41 |
| 7 | +codacy_tools_version_new: https://github.com/codacy/codacy-tools/releases/tag/8.16.78 |
| 8 | +--- |
| 9 | + |
| 10 | +# Cloud November 2025 |
| 11 | + |
| 12 | +These release notes are for the Codacy Cloud updates during November 2025. |
| 13 | + |
| 14 | +📢 [Visit the Codacy roadmap](https://roadmap.codacy.com) and <span class="skip-vale">let us know</span> your feedback on both new and planned product updates! |
| 15 | + |
| 16 | +## Product enhancements and Bug fixes |
| 17 | + |
| 18 | +**New Features** |
| 19 | + |
| 20 | +- **Malicious Package Detection:** Codacy now detects malicious packages as they are introduced via PR, or nightly via SCA (for clients with SCA enabled). Malicious packages are identified by [OSSF](https://github.com/ossf/malicious-packages) and updated daily in Codacy's platform. |
| 21 | + This feature is automatically enabled for: |
| 22 | + - All existing coding standards/projects that have 'Vulnerable Dependencies (critical)' detection enabled. |
| 23 | + - All new coding standards and projects. |
| 24 | + See [Codacy's documentation](https://docs.codacy.com/getting-started/supported-languages-and-tools/) to know which package ecosystems are supported. (TAROT-3600) |
| 25 | +- **False Positive PR Comments:** False Positive detection now leaves a comment directly on your Pull Request, allowing you to review and handle potentially incorrect flags immediately. (CF-1975) |
| 26 | + |
| 27 | +**Improvements** |
| 28 | + |
| 29 | +- Ignoring security issues in the "Quality" dashboard now automatically ignores the corresponding finding in the "Security and Risks Management" dashboard. (CF-2045) |
| 30 | + |
| 31 | +**Bug Fixes** |
| 32 | + |
| 33 | +- Fixed an issue regarding error notifications (toasts) that caused them to close unexpectedly when clicking the "Show details" button. (LK-1773) |
| 34 | + |
| 35 | +## Tool versions |
| 36 | + |
| 37 | + |
| 38 | +- **Aligncheck**: **1.0.0** |
| 39 | +- **Ameba**: **1.6.4** |
| 40 | +- **Bandit**: **1.8.3** |
| 41 | +- **Brakeman**: **4.3.1** |
| 42 | +- **Bundler-audit**: **0.9.1** |
| 43 | +- **Checkov**: **3.2.457** |
| 44 | +- **Checkstyle**: **10.26.1** |
| 45 | +- **Clang-tidy**: **10.0.1** |
| 46 | +- **Codenarc**: **3.6.0** |
| 47 | +- **Codesniffer**: **3.10.1** |
| 48 | +- **Coffeelint**: **5.2.11** |
| 49 | +- **Cppcheck**: **2.18.0** |
| 50 | +- **Credo**: **1.7.12** |
| 51 | +- **Csslint**: **1.0.5** |
| 52 | +- **Dartanalyzer**: **3.9.3** |
| 53 | +- **Deadcode**: **1.0.0** |
| 54 | +- **Detekt**: **1.23.8** |
| 55 | +- **Eslint v7**: **7.32.0** |
| 56 | +- **Eslint v8**: **8.57.0** |
| 57 | +- **Eslint v9**: **9.38.0** |
| 58 | +- **Faux-pas**: **1.7.2** |
| 59 | +- **Flawfinder**: **2.0.19** |
| 60 | +- **Gorevive**: **1.12.0** |
| 61 | +- **Gosec**: **2.22.7** |
| 62 | +- **Hadolint**: **2.12.0** |
| 63 | +- **Jackson-linter**: **2.19.2** |
| 64 | +- **Jshint**: **2.13.6** |
| 65 | +- **Lizard**: **1.17.31** |
| 66 | +- **Markdownlint**: **0.33.0** |
| 67 | +- **Phpmd**: **2.14.1** |
| 68 | +- **Pmd**: **6.55.0** |
| 69 | +- **Pmd7**: **7.16.0** |
| 70 | +- **Prospector**: **1.17.2** |
| 71 | +- **Psscriptanalyzer**: **1.24.0** |
| 72 | +- **Pylint v1**: **1.9.5** |
| 73 | +- **Pylint v3**: **3.3.9** |
| 74 | +- **Reek**: **6.5.0** |
| 75 | +- **Remark-lint**: **10.0.1** |
| 76 | +- **Roslyn**: **1.23.0** |
| 77 | +- **Rubocop**: **1.80.2** |
| 78 | +- **Ruff**: **0.12.7** |
| 79 | +- **Scalameta-pro**: **1.4.4** |
| 80 | +- **Scalastyle**: **1.5.1** |
| 81 | +- **Semgrep**: **1.78.0** |
| 82 | +- **Shellcheck**: **0.10.0** |
| 83 | +- **Sonar-csharp**: **9.32** |
| 84 | +- **Sonar-visual-basic**: **8.13** |
| 85 | +- **Spectral**: **1.22.0** |
| 86 | +- **Spotbugs**: **4.8.4** |
| 87 | +- **Sqlfluff**: **3.4.2** |
| 88 | +- **Sqlint**: **0.2.1** |
| 89 | +- **Staticcheck**: **2025.1.1** |
| 90 | +- **Stylelint**: **16.23.0** |
| 91 | +- **Swiftlint**: **0.61.0** |
| 92 | +- **Tailor**: **0.12.0** |
| 93 | +- **Trivy**: **0.67.2** |
| 94 | +- **Tslint**: **6.1.3** |
| 95 | +- **Tsqllint**: **1.16.0** |
0 commit comments