Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.
Changes since 2.35.0
- The Jira environment is built using only existing endpoints @ccronca (#10428)
- Ruff: Add safe S* rules, fix order for EXE @kiblik (#10084)
- Ruff: add and fix INP @kiblik (#10089)
- fix(Risk_Acceptance): Remove redundancy in strings of Treatments @kiblik (#10361)
- 🐛 fix acunetix360 NoneType object #10435 @manuel-sommer (#10440)
- Shuffle tests @kiblik (#10335)
- Ruff: add T10 @kiblik (#10087)
- Ruff: add more safe TRY rules @kiblik (#10114)
- Fix create notification for group of findings @ccronca (#10433)
- 🐛 fix qualys webapp scan request body @manuel-sommer (#10422)
- fix(loc): Do not use _(...) in combination with format @kiblik (#10407)
- fix: slack address on issue template @fcecagno (#10411)
- 🐛 fix Nonetype in Acunetix, #10370 @manuel-sommer (#10381)
- Upgrade Django to 4.2.13 @kiblik (#9493)
- Rest Framework Tests: Isolate tests by request type @Maffooch (#10387)
- Entrypoint Scripts: Add container level breakouts to prevent doom loopings @Maffooch (#10374)
- fix(imp-options): Wrong type-checker in validate_api_scan_configuration @kiblik (#10345)
- Use Postgres in rest-framework-tests @kiblik (#9885)
- 🐛 fix netsparker issue #10311 @manuel-sommer (#10312)
🚩 Changes to settings.dist.py
/ local_settings.py
- ✨ add deepfence threatmapper @manuel-sommer (#9688)
- Enhance Kubescape parser @a-ruff (#10369)
- 🐛 fix trivy operator deduplication setting @manuel-sommer (#10389)
🚀 General features and enhancements
🚀 API features and enhancements
- Ruff: add and fix RSE @kiblik (#10093)
- feat(api - user contact): Add all user data @kiblik (#10416)
- Finding Reports: Support string based filtering @Maffooch (#10426)
- openapi fix: allow last_login to be null @cedricbu (#10360)
- Mark UserProfile properties user_contact_info and global_role as optional @sfowl (#10314)
🐛 Bug Fixes
- Jira Finding Group Templates: Correct object links @Maffooch (#10393)
- Async Importer: Correct typing bug with
DD_ASYNC_FINDING_IMPORT
enabled @Maffooch (#10373) - String Filtering: Correct Typo For Reviewers @Maffooch (#10353)
- Importer: Correct
add_findings_to_auto_group
args @Maffooch (#10351) - String Filtering: Support ID matching for links on listing pages @Maffooch (#10352)
🖌 Updates in UI
- Bugfix -> Dev: Release 2.36.0 @Maffooch (#10483)
- Metrics performance improvements @dogboat (#10446)
- fix(passwords): Merge clean location of login related templates @kiblik (#10340)
- feat(email notif): Scan_added - put findings to
<details>
@kiblik (#10253) - Finding Reports: Support string based filtering @Maffooch (#10426)
- Jira Finding Group Templates: Correct object links @Maffooch (#10393)
🧰 Maintenance
- Bump boto3 from 1.34.132 to 1.34.135 @dependabot (#10470)
- Bump redis from 5.0.6 to 5.0.7 @dependabot (#10465)
- Bump debugpy from 1.8.1 to 1.8.2 @dependabot (#10457)
- Bump boto3 from 1.34.131 to 1.34.132 @dependabot (#10452)
- Bump coverage from 7.5.3 to 7.5.4 @dependabot (#10447)
- Bump nginx from
69f8c2c
toa45ee5d
@dependabot (#10448) - chore(deps): update redis:7.2.5-alpine docker digest from 7.2.5 to 7.2.5-alpine (docker-compose.yml) @renovate (#10444)
- chore(deps): update postgres:16.3-alpine docker digest from 16.3 to 16.3-alpine (docker-compose.yml) @renovate (#10441)
- chore(deps): update redis:7.2.5-alpine docker digest from 7.2.5 to 7.2.5-alpine (docker-compose.yml) @renovate (#10442)
- Bump boto3 from 1.34.130 to 1.34.131 @dependabot (#10443)
- chore(deps): update postgres:16.3-alpine docker digest from 16.3 to 16.3-alpine (docker-compose.yml) @renovate (#10439)
- chore(deps): update dependency ruff from 0.4.9 to v0.4.10 (requirements-lint.txt) @renovate (#10438)
- chore(deps): update postgres:16.3-alpine docker digest from 16.3 to 16.3-alpine (docker-compose.yml) @renovate (#10427)
- Bump sqlalchemy from 2.0.30 to 2.0.31 @dependabot (#10432)
- Bump boto3 from 1.34.128 to 1.34.130 @dependabot (#10436)
- Bump boto3 from 1.34.127 to 1.34.128 @dependabot (#10425)
- Update docker/build-push-action action from v5 to v6 (.github/workflows/release-x-manual-docker-containers.yml) @renovate (#10413)
- Bump boto3 from 1.34.126 to 1.34.127 @dependabot (#10415)
- Bump django-crispy-forms from 2.0 to 2.2 @dependabot (#10414)
- Bump django-debug-toolbar from 4.3.0 to 4.4.2 @dependabot (#10274)
- Bump django-filter from 23.5 to 24.2 @dependabot (#9993)
- Update dependency ruff from 0.4.8 to v0.4.9 (requirements-lint.txt) @renovate (#10406)
- Bump packageurl-python from 0.15.0 to 0.15.1 @dependabot (#10403)
- Bump boto3 from 1.34.125 to 1.34.126 @dependabot (#10404)
- Bump redis from 5.0.5 to 5.0.6 @dependabot (#10405)
- Update gcr.io/cloudsql-docker/gce-proxy Docker tag from 1.35.3 to v1.35.4 (helm/defectdojo/values.yaml) @renovate (#10394)
- Bump openpyxl from 3.1.3 to 3.1.4 @dependabot (#10397)
- Bump boto3 from 1.34.123 to 1.34.125 @dependabot (#10398)
- Bump braces from 3.0.2 to 3.0.3 in /docs @dependabot (#10376)
- Bump boto3 from 1.34.120 to 1.34.123 @dependabot (#10380)
- Bump boto3 from 1.34.119 to 1.34.120 @dependabot (#10349)
- chore(deps): update helm release rabbitmq from 14.3.3 to ~14.4.0 (helm/defectdojo/chart.yaml) @renovate (#10347)
- Bump redis from 5.0.4 to 5.0.5 @dependabot (#10350)
- chore(deps): update postgres:16.3-alpine docker digest from 16.3 to 16.3-alpine (docker-compose.yml) @renovate (#10337)
- Bump cryptography from 42.0.7 to 42.0.8 @dependabot (#10341)
- chore(deps): update dependency ruff from 0.4.7 to v0.4.8 (requirements-lint.txt) @renovate (#10344)
- Bump boto3 from 1.34.118 to 1.34.119 @dependabot (#10342)
- chore(deps): update postgres:16.3-alpine docker digest from 16.3 to 16.3-alpine (docker-compose.yml) - autoclosed @renovate (#10327)
- Bump drf-spectacular-sidecar from 2024.5.1 to 2024.6.1 @dependabot (#10329)
- Bump uwsgi from 2.0.25.1 to 2.0.26 @dependabot (#10331)
- Bump boto3 from 1.34.117 to 1.34.118 @dependabot (#10330)