Changelog
All notable changes to Spider-Nix will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
Unreleasedβ
Addedβ
- Complete CI/CD pipeline with GitHub Actions
- Main CI workflow with Python 3.11-3.13 matrix testing
- Security scanning workflow (Bandit, Safety, pip-audit, Gitleaks)
- Nix build validation workflow
- Code coverage tracking with pytest-cov and Codecov integration
- Pre-commit hooks for automated quality gates
- Ruff formatting and linting
- Mypy type checking
- Bandit security scanning
- Secret detection
- Type checking with mypy configuration
- Enhanced Justfile with new commands:
just hooks-install- Install pre-commit hooksjust test-cov- Run tests with coveragejust typecheck- Run type checkingjust security- Run security scansjust ci-local- Simulate full CI locallyjust clean-all- Clean including coverage artifacts
- Comprehensive documentation:
- Complete README.md overhaul with badges, architecture diagram, and metrics
- CONTRIBUTING.md with development guidelines
- SECURITY.md with vulnerability reporting process
- This CHANGELOG.md
- MIT LICENSE file
- Enhanced Nix flake with dev tools (pytest-cov, mypy, bandit, pre-commit)
- Codecov configuration for coverage reporting
- Dependabot configuration for automated dependency updates
Changedβ
- Enhanced pyproject.toml with comprehensive tool configurations
- Added pytest coverage options and settings
- Added mypy type checking configuration
- Added bandit security scanning configuration
- Added coverage.run and coverage.report settings
- Updated .gitignore with coverage, type checking, and security artifacts
- Improved development environment setup documentation
0.1.0 - 2026-01-15β
Addedβ
- HTTP async crawler with httpx and asyncio
- Browser crawler with Playwright for JavaScript rendering
- Advanced anti-detection stealth techniques:
- Canvas fingerprinting protection
- WebGL vendor/renderer spoofing
- Navigator properties masking
- Screen resolution randomization
- Automation detection bypass
- Intelligent proxy rotation engine with 4 strategies:
- Round-robin
- Random selection
- Least-used
- Best-performer (health-based)
- OSINT reconnaissance module:
- DNS enumeration (7 record types)
- WHOIS lookups
- Subdomain discovery (Certificate Transparency + bruteforce)
- Port scanner with service detection:
- Async TCP/UDP scanning
- 25+ service signatures
- Banner grabbing and version fingerprinting
- Configurable concurrency (100 concurrent connections)
- Vulnerability scanner:
- Security header analysis (HSTS, CSP, X-Frame-Options, etc.)
- CVE matching for detected services
- Misconfiguration detection
- Security score calculation (0-100)
- Content analyzer:
- Technology detection (Wappalyzer-style, 50+ frameworks/CMS)
- Email/phone/social media harvesting
- API endpoint discovery
- Metadata extraction
- External API integrations:
- Shodan client (host lookup, IP intelligence)
- VirusTotal client (URL/domain/IP reputation)
- URLScan.io client (scan submission and results)
- Correlation engine:
- Entity-relationship graph building
- Multi-source data aggregation
- Graph export (JSON, Graphviz DOT)
- Relationship querying
- Job intelligence module:
- Career page discovery (subdomains + path-based)
- Job opportunity analyzer
- Seniority level detection (Junior/Mid/Senior/Staff)
- Salary range extraction
- Tech stack identification
- Storage backends:
- JSON (JSONL format)
- CSV (flattened export)
- SQLite with FTS5 full-text search
- CLI with Typer and Rich:
crawl- Web crawling (HTTP/browser modes)recon dns- DNS enumerationrecon whois- WHOIS lookupsrecon subdomains- Subdomain discoveryrecon portscan- Port scanningjob-hunt- Career opportunity discoveryproxy-fetch- Public proxy fetchingproxy-stats- Proxy validation
- Test suite with pytest and pytest-asyncio (63 test cases)
- NixOS flake for reproducible development environment
- Justfile for common development commands
- Configuration management with Pydantic models
- Basic README with project description and usage examples