defended-net/malwatch

v1.5.1 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 1d Forensics & Incident Response

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

go linux malware scanner security server

Affected surfaces

crypto_tls

Summary

AI summary

Updates Refactors, Tests, and CI across a mixed release.

Changes in this release

Type	Severity	Summary	CVE
Dependency	Low	Updates YARA library dependency to version 4.5.5. Updates YARA library dependency to version 4.5.5. Source: llm_adapter@2026-06-13 Confidence: high	—
Dependency	Low	Updates stdlib crypto dependency to version 0.50.0. Updates stdlib crypto dependency to version 0.50.0. Source: llm_adapter@2026-06-13 Confidence: low	—

Full changelog

Changelog

Sec

00999f227bd7a7d81432bd89b494bdb490e5bd96 sec: update stdlib crypto to 0.50.0

Refactors

f9178db5ca81349f4fb3ef21982d62385e413d30 refactor: add exile act new fsys handling compatibility
f510c5379fd50a947e8ad6e5037eb4f80230b147 refactor: add scan worker condemn optimisation
5fc03d7b4580995f33da37fdff5f97b6e40b9efd refactor: cli scan rename
af13b038ed47ab2439ace53ccd179cef6dc8b1bf refactor: harden directadmin integration
9a4ec0c84cdf9837febc25827659b8219df36972 refactor: harden fsys
11e1c6c57f61e422dca7d2d2eab6f01ccc80e774 refactor: improve db uid and gid handling
91dd098924f0365c4d6bd7ca2d26d10800c5dc95 refactor: improve scan walk cancellation
a26ccce1c9b7adf399df93d447ea865868bc3d23 refactor: monitor dead code cleanup
2b417c60c351943ad52271fac13770ea58de148f refactor: optimally load clean act sigs
f7285cd1ff903ef59555b7df3ffafde339d87672 refactor: optimise json alerts
a879c078f8741c68b15a45744e13f7453f483470 refactor: remove clean act dead code
43f7aaf680ec416306332ba72eef661143841fe3 refactor: safer monitor scan result handling
5eb4b4ebcc65b81acd73444530d0b4280190890f refactor: safer regex during boot
64dda98b1f944b9895acbfc8f7fa79a89af8df74 refactor: safer sig swap
b86e7d217c54ccb31f18f892e7348a20eb8db534 refactor: safer ticker stop
22ba46a9fe5faedd6a61c2820fdd8c823fa25551 refactor: scan state private mutex
34f5364a448fde7e134a79e2251e1b0ab4038a8b refactor: simplify scan job iteration

Tests

f2258d74379d8499822985926320e2dc722ccbf6 test: add exec test lint
1f60e4aec737dcf8c94eefc9c13d2021a50a6167 test: add restore env check
962a7078532e72e9748e255be368dfd4c0dd2422 test: fix mock cpanel filename typo
d352755a2c47f6ac0ce0687b706589b99ebcec82 test: fix scan err pkg typo
ce67db42f7c6d55207473f0114d30ca4123c880c test: improve exit code cases
420a1f2ab5f6e506078e1116d7f530fc0a9dd8ee test: bypass http test lint
25ec03c2e443a8d24ed79f5a8d15e272b7305858 test: bypass s3 test lint

CI

d20dd688d21549e2b860bd378b8a68a342b274ad ci: add mimalloc build dockerfile
2c71e03c5d1d546237fbefb7774ed93e6c649ac5 ci: harden and extend gh workflows for added sec and race checks

Build

161d06e1b2d962e65dd0d6e84f433a9c8b8e7055 build: harden dockerfile

Deps

c2b86927b122f8f75c9d232cfb2c75b85edcfe06 dep: update yara to 4.5.5

Please review our documentation.

Security Fixes

Updated stdlib crypto dependency to 0.50.0 (potential upstream vulnerability fixes)

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track defended-net/malwatch

Get notified when new releases ship.

About defended-net/malwatch

All releases →