Changes
- Release 1.8.0 @valentijnscholten (#2931)
- Helm3 transition @dsever (#2892)
- Revert "build(deps): bump python from
09bb817toe525911" @Maffooch (#2895) - Veracode import: fixed false-positives and added SCA findings @reinier-vegter (#2879)
- New Import Parser drHeader @SPoint42 (#2846)
- Helm run changes @madchap (#2883)
- Bugfixing when the title of a vulnerability is more than 511 characters in SonarQube API @dvelardez (#2873)
- apiv2: fix multi-value and sorting on /products @xens (#2871)
- Rework apiv2 findings filters @xens (#2717)
- Fixed endpt status table not showing for adhoc findings @sc-tibco (#2860)
- Fix notifications spam (issue #2713) @H4ckd4ddy (#2834)
- api_v2: fix push notes to Jira @xens (#2810)
- Fix AWS Scout2 importing bug. Fix #2797 @dougmorato (#2798)
- Fix checkmarx parser when an exploitable finding is hidden by a false⦠@ptrovatelli (#2800)
- api_v2: fix push_to_jira when using the PATCH method @xens (#2801)
- change release flow so that moderators needs to merge rather than che⦠@ptrovatelli (#2494)
- hotfix: do not reopen false positives and out_of_scope on behalf of SDA SE @wurstbrot (#2599)
- Fix duplicated findings in reimport @edersonbrilhante (#2770)
- #2780 Support either prop defined as findings or Findings in AWS Security Hub Parser @tohch4 (#2782)
- #2475 and enhancement - JIRA webhook notification @manav-nagla (#2786)
- Added user-agent in sonarqube api requests @felipemgurian (#2740)
- JIRA: small bugfixes, improvements and cleanup @valentijnscholten (#2737)
- Gitleaks v5 - parser update @steeve85 (#2724)
- improve deduplication on engagement wording @valentijnscholten (#2728)
π New scanners
- Add an importer for kube-bench reports @StefanFl (#2910)
- Adding a parser for Checkov scanner @StefanFl (#2887)
- Risk Recon API Importer @cody-m-tibco (#2778)
- Implement AWS Security Hub Scan Parser @xee5ch (#2594)
π Features and enhancements
- Calculate metrics by endpoint status @Maffooch (#2926)
- docker-compose and helm: Add variables for celeryworker prefork and uwsgi thread/procs control @madchap (#2813)
- Search improvements and fixes @valentijnscholten (#2861)
- (jira) alerts: improve error handling and more @valentijnscholten (#2889)
- findings: add support for metadata @xens (#2862)
- Set component name/version for php symfony & dependency check parsers @valentijnscholten (#2845)
- Add request/response pairs to finding APIv2 calls @Maffooch (#2865)
- Add limited staff access to authorized users @cody-m-tibco (#2765)
- Add Notes at Engagement level and improvements at Test level @Maffooch (#2510)
- Custom dates on product type metrics @Maffooch (#2857)
- Adding CVSS3.0 Score to the DefectDojo @flkhndlr (#1887)
- Adding more envvars to settings.py @madchap (#2858)
- Add request_response pairs to the UI @Maffooch (#2806)
- Django saml2 plugin dedicated cert @dsever (#2791)
- Regulation gui/api extending @dsever (#2814)
- edit finding: fix parent/original duplicate + small fixes @valentijnscholten (#2843)
- K8s helm extending configs v2 @dsever (#2847)
- view finding: duplicate & similar finding improvements and fixes @valentijnscholten (#2748)
- Add Sonarqube integration endpoints to APIv2 @cody-m-tibco (#2683)
π Bug Fixes
- Fix custom report endpoint_status error @Maffooch (#2929)
- fix add finding from template req_resp key error @valentijnscholten (#2927)
- closed findings: filter by is_Mitigated instead of mitigated @valentijnscholten (#2912)
- Security and Bug Fixes @Maffooch (#2899)
- Search improvements and fixes @valentijnscholten (#2861)
- Import empty Anchore policies without error @ccojocar (#2896)
- bugfix for risk acceptance migration @alles-klar (#2849)
- Fix edit findings function @Maffooch (#2885)
- Fixing helm /var/run issue @madchap (#2868)
- Replaced .ix[] with .loc[] in AWS Prowler parser.py @FallenAtticus (#2822)
- Fixed dates sorted alphabetically @sc-tibco (#2832)
- Fixed cve field showing None when importing nessus .xml reports @sc-tibco (#2856)
- Fixes problems generating AsciiDOC product report @sc-tibco (#2836)
- edit finding: fix parent/original duplicate + small fixes @valentijnscholten (#2843)
- update threat model download process @Maffooch (#2841)
- Search fix watson references to deleted findings @valentijnscholten (#2823)
- Fix product endpt html report @sc-tibco (#2827)
- BUG-2824, add missing trivy finding fields and settings for deduplication @DaniJG (#2825)
- search: fix when searching for empty string @valentijnscholten (#2817)
- npm audit parser: fix cve parsing @valentijnscholten (#2809)
- Improve Burp Enterprise parser and update gitignore @cody-m-tibco (#2725)
- ESLint parser title error checking @SPoint42 (#2736)
- fix popovers in view_test and improve js overall @valentijnscholten (#2727)
π§° Maintenance
- Questionnaire Renaming and Fixes @JoseRoman (#2420)
- build(deps): bump google-auth from 1.21.3 to 1.22.0 @dependabot-preview (#2928)
- fix chosen js dependency @valentijnscholten (#2904)
- build(deps): bump django-filter from 2.3.0 to 2.4.0 @dependabot-preview (#2920)
- build(deps): bump google-auth from 1.21.2 to 1.21.3 @dependabot-preview (#2915)
- add GitHub action for integration tests @valentijnscholten (#2918)
- build(deps): bump google-api-python-client from 1.12.1 to 1.12.2 @dependabot-preview (#2914)
- add flake8 check as github action @valentijnscholten (#2917)
- build(deps): bump python from
09bb817toe525911@dependabot-preview (#2903) - build(deps): bump moment from 2.28.0 to 2.29.0 in /components @dependabot-preview (#2902)
- build(deps): bump cryptography from 3.1 to 3.1.1 @dependabot-preview (#2901)
- Security and Bug Fixes @Maffooch (#2899)
- Add user post endpoint to APIv2 @Maffooch (#2875)
- build(deps): bump packageurl-python from 0.9.1 to 0.9.2 @dependabot-preview (#2893)
- build(deps): bump django-extensions from 3.0.8 to 3.0.9 @dependabot-preview (#2884)
- build(deps): bump python from
09bb817toe525911@dependabot-preview (#2891) - Quantify endpoint status objects when viewing findings @cody-m-tibco (#2855)
- build(deps): bump google-auth from 1.21.1 to 1.21.2 @dependabot-preview (#2874)
- build(deps): bump google-api-python-client from 1.11.0 to 1.12.1 @dependabot-preview (#2870)
- build(deps): bump coverage from 5.2.1 to 5.3 @dependabot-preview (#2866)
- build(deps): bump moment from 2.27.0 to 2.28.0 in /components @dependabot-preview (#2864)
- Bump helm chart versions @madchap (#2853)
- Dockerfile improvements @madchap (#2839)
- build(deps): bump psycopg2-binary from 2.8.5 to 2.8.6 @dependabot-preview (#2844)
- build(deps): bump google-auth from 1.21.0 to 1.21.1 @dependabot-preview (#2840)
- build(deps): bump django-extensions from 3.0.6 to 3.0.8 @dependabot-preview (#2842)
- build(deps): bump django from 2.2.15 to 2.2.16 @dependabot-preview (#2828)
- build(deps): bump asteval from 0.9.18 to 0.9.19 @dependabot-preview (#2830)
- build(deps): bump jquery from 3.5.0 to 3.5.1 in /components @dependabot-preview (#2829)
- Bump jquery from 3.4.1 to 3.5.0 in /components @dependabot (#2416)
- build(deps): bump django-extensions from 3.0.5 to 3.0.6 @dependabot-preview (#2820)
- Upgrade components minikube k8s helm @dsever (#2826)
- build(deps): bump python from 3.6.11-slim-buster to 3.6.12-slim-buster @dependabot-preview (#2793)
- build(deps): bump django-polymorphic from 2.1.2 to 3.0.0 @dependabot-preview (#2796)
- build(deps): bump cryptography from 3.0 to 3.1 @dependabot-preview (#2804)
- build(deps): bump django-prometheus from 2.0.0 to 2.1.0 @dependabot-preview (#2799)
- build(deps): bump google-api-python-client from 1.10.1 to 1.11.0 @dependabot-preview (#2811)
- build(deps): bump google-auth from 1.20.1 to 1.21.0 @dependabot-preview (#2812)
- build(deps): bump google-api-python-client from 1.10.0 to 1.10.1 @dependabot-preview (#2802)
- build(deps): bump python from
d9cc855to1ea811c@dependabot-preview (#2751) - build(deps): bump django from 2.2.14 to 2.2.15 @dependabot-preview (#2752)
- build(deps): bump justgage from 1.3.5 to 1.4.0 in /components @dependabot-preview (#2756)
- build(deps): bump django-slack from 5.14.4 to 5.15.2 @dependabot-preview (#2757)
- build(deps): bump djangorestframework from 3.11.0 to 3.11.1 @dependabot-preview (#2758)
- build(deps): bump google-auth from 1.20.0 to 1.20.1 @dependabot-preview (#2766)
- build(deps): bump django-extensions from 3.0.3 to 3.0.5 @dependabot-preview (#2768)
- build(deps): bump humanize from 2.5.0 to 2.6.0 @dependabot-preview (#2779)
- build(deps): bump nginx from 1.19.1-alpine to 1.19.2-alpine @dependabot-preview (#2785)
- build(deps): bump pygithub from 1.51 to 1.53 @dependabot-preview (#2789)
- build(deps): bump supervisor from 4.2.0 to 4.2.1 @dependabot-preview (#2792)
- Add Sonarqube integration endpoints to APIv2 @cody-m-tibco (#2683)
- build(deps): bump celery from 4.4.6 to 4.4.7 @dependabot-preview (#2749)
- build(deps): bump python-jose from 3.1.0 to 3.2.0 @dependabot-preview (#2741)
- build(deps): bump google-auth from 1.19.2 to 1.20.0 @dependabot-preview (#2739)
- build(deps): bump python from
9111ff3tod9cc855@dependabot-preview (#2729) - build(deps): bump coverage from 5.2 to 5.2.1 @dependabot-preview (#2723)
- Merge release/1.7.1 into dev @Maffooch (#2732)
π© Requires settings change
- Search improvements and fixes @valentijnscholten (#2861)
- BUG-2824, add missing trivy finding fields and settings for deduplication @DaniJG (#2825)