Features:
- Replay now supports exporting/importing Workflows, Safelists, and Badlists (https://github.com/CybercentreCanada/assemblyline/issues/92)
- Workflows:
- Workflows that are imported onto another system aren't allowed to be edited however you can create a duplicate from the UI. This is to ensure there is no data overwritten from the origin system of the workflow during syncing
- You can toggle the enabled state of the workflow regardless of the origin of the workflow
- Workflows that are imported onto another system aren't allowed to be edited however you can create a duplicate from the UI. This is to ensure there is no data overwritten from the origin system of the workflow during syncing
- PRs:
- Workflows:
- Assemblyline's base container image will be on Debian Bookworm using Python 3.11 (https://github.com/CybercentreCanada/assemblyline/issues/101)
- (Kubernetes only) As a result of moving to Python 3.11, we've changed how we create certificates for services and their dependencies when
enableInternalEncryption: true
, it's advised to use the latest version of the helm chart.
- Because of the changes to the magic on the OS, we've added identification of
executable/linux/pie(32|64)
files, this means files that were formerlyexecutable/linux/(so|elf).*
might change and have an impact on routing to services
- PRs (core):
- https://github.com/CybercentreCanada/assemblyline/pull/186
- https://github.com/CybercentreCanada/assemblyline-base/pull/1527
- https://github.com/CybercentreCanada/assemblyline-core/pull/875
- https://github.com/CybercentreCanada/assemblyline-ui/pull/828
- https://github.com/CybercentreCanada/assemblyline-service-server/pull/120
- https://github.com/CybercentreCanada/assemblyline-service-utilities/pull/132
- https://github.com/CybercentreCanada/assemblyline-v4-service/pull/727
- https://github.com/CybercentreCanada/assemblyline_client/pull/40
- https://github.com/CybercentreCanada/assemblyline-helm-chart/pull/95
- https://github.com/CybercentreCanada/assemblyline/pull/186
- (Kubernetes only) As a result of moving to Python 3.11, we've changed how we create certificates for services and their dependencies when
- Enable group lookups using UID instead of DN for LDAP authentication (@mback2k)
Bugfixes:
- Get rid of passlib package and use bcrypt directly for encryption & hashing (related to base change)
- Add a configuration to specify proxies to be used with AI API connections (
config.ui.ai.proxies
)
- Error messaging rendering
- Resetting service params from User Settings
- Malware Archive hotfix.
- When terminating a service container, do so in the proper way that doesn't interrupt the service before it pushes it's results
- Toggle AI Executive Summary from User Settings
Optimizations:
- Updater: Speed up container installation/updates so that way the slowest of the jobs doesn't hold up the rest (related to base change)
- Scaler: (Kubernetes only) Rotate service dependency certificates a week before expiration (related to base change)
- Service Server: Use standards compliant header names