DefectDojo/django-DefectDojo 2.53.0

2.53.0 🌈

on GitHub

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.52.0

• Remove left over log statement @valentijnscholten (#13784)
• fix: enable uwsgi DD_UWSGI_EXTRA_ARGS passthrough @Bump-Action (#13756)
• fix(helm): Avoid forbidden chars in annotation @kiblik (#13772)
• 🎉 Add 'fix_available' field to zora parser @manuel-sommer (#13760)
• Unit Testing: Do no run in debug mode in order to reduce logging @Maffooch (#13241)
• docs: Update number of concurrent connections for uWSGI @NoaFayn (#13752)
• Add path filter for docs in gh-pages workflow @Maffooch (#13755)
• Change log level from info to debug for Watson indexing @Maffooch (#13748)
• system settings caching optimization + test cases @valentijnscholten (#13739)
• Add boto3 dependency to dependabot configuration @Maffooch (#13733)
• 🐛 fix severity order of trivy @manuel-sommer (#13736)
• 🎉 implement zora vulnerabilty parser @manuel-sommer (#13744)
• 💄 restructure github vulnerability reports @manuel-sommer (#13745)
• [docs] update Jira documentation for Jira Spaces @paulOsinski (#13749)
• [docs] Add Apollo script @paulOsinski (#13734)
• Feat: Add HPA & PDB Helm Chart Support #13391 @carlosmt86 (#13512)
• fix(helm): Missing annotation for "master-into-..." @kiblik (#13722)
• feat(renovate): Do not split updates for renovate @kiblik (#13723)
• Qualys parser add CVEs to Vulnerability Ids for xml files @Jino-T (#13710)
• feat(helm): Relocate docs/schema hints @kiblik (#13698)
• [docs] typo fixes @paulOsinski (#13709)
• ⬆️ Bump ruff from 0.14.4 to 0.14.5 @manuel-sommer (#13708)
• 🐛 fix finding closed with a provided mitigated date #13699 @manuel-sommer (#13700)
• fix(helm): merge extraAnnotations with init job annotations @qlimenoque (#13677)
• docs: Update the API pull documentation @sNiXx (#13689)
• 🎉 Add pwn sast fix_available field @manuel-sommer (#13702)
• log a line when custom hash method is used @valentijnscholten (#13679)
• 🐛 fix DD_EDITABLE_MITIGATED_DATA close finding internal server error #13699 @manuel-sommer (#13701)
• reimport: support pro compute hash code method @valentijnscholten (#13680)
• fix(helm/renovate/dependabot): Commit changes & fix condition format @kiblik (#13695)
• feat(renovate): Wait 2 days to use latest k8s @kiblik (#13694)
• 🎉 Add Kubeaudit fix_available field @manuel-sommer (#13684)
• 🎉 implement new threatmapper file format #13639 @manuel-sommer (#13655)
• 🐛 fix debug mode in logging #13659 @manuel-sommer (#13662)
• 🐛 fix nancy severity calculation #13656 @manuel-sommer (#13657)
• 🎉 add Dawnscanner fix_available field. @manuel-sommer (#13660)
• 🎉 Advance ibm app parser with fix_available @manuel-sommer (#13663)
• 💄 beautify drheader jsonfiles @manuel-sommer (#13672)
• feat(renovate): track oldest maintained k8s @kiblik (#13670)
• 🐛 harden jfrog xray unified file parsing #13628 @manuel-sommer (#13632)
• Improve tag handling in importers and add tests for tag imports @Maffooch (#13650)
• [docs] SLAs for Pro @paulOsinski (#13652)
• 💄 Nancy parser docs: fix tool link @manuel-sommer (#13633)
• fix(helm): Fix PVC templating after #13210 @kiblik (#13619)
• 🐛 fix nancy file format update #12860 @manuel-sommer (#13634)
• SLA Calculations: Remove product grade calculation and consolidate task handlers @Maffooch (#13630)
• fix(helm/dependabot/renovate): Fix broken automatic update @kiblik (#13613)
• feat(renovate): track oldest maintained k8s @kiblik (#13545)
• 🐛 fix TestForms date validation #13623 @manuel-sommer (#13624)
• [docs] moving Parser Docs to new index @paulOsinski (#13528)
• Make Finding Group Push to Jira Push Push to Duplicate Issues @Jino-T (#13573)
• 🐛 calender: Fix incorrect end dates for engagements and tests #13593 @manuel-sommer (#13595)
• feat(renovate): Update renovate only weekly @kiblik (#13611)
• 🐛 Catch AuthTokenError in middleware @manuel-sommer (#13608)

💣 Breaking changes

• feat(helm): Use Valkey @kiblik (#13408)

🚩 Changes to settings.dist.py / local_settings.py

• JIRA: add retry/rate limit support @valentijnscholten (#13786)
• Add OpenReports import support @mfyll (#13562)
• 🎉 implement certfr vulnid @manuel-sommer (#13730)
• Deduplicate findings in batches @valentijnscholten (#13491)
• 🎉 Add VA vulnid @manuel-sommer (#13675)
• 🎉 Make social auth exceptions configurable @manuel-sommer (#13596)
• Adding SOCIAL_AUTH_REDIRECT_IS_HTTPS, to enable use of HTTPS protocol when redirecting after login using social auth. @marcelhorner (#13614)
• 🎉 implement n0s1 scanner #13564 @manuel-sommer (#13580)

🚩 Database migration

• 🐛 fix create questionnaire with empty survey @manuel-sommer (#13728)
• 🎉 Advance reimport to update fix_available field #12633 @manuel-sommer (#12922)

🚀 API features and enhancements

• Add choice fields for business criticality, platform, lifecycle, and origin @Maffooch (#13740)
• Add notification when finding is created via the API @Juu (#13732)
• 🐛 add user mention notifications in note creation for Engagement, Finding, and Tests @Maffooch (#13696)

🖌 Updates in UI

• 🎉 Advance reimport to update fix_available field #12633 @manuel-sommer (#12922)

🧰 Maintenance

• Update dependency renovatebot/renovate from 42.21.0 to v42.27.0 (.github/workflows/renovate.yaml) @renovate (#13788)
• chore(deps): bump boto3 from 1.41.4 to 1.41.5 @dependabot (#13782)
• Update dependency prettier from 3.6.2 to v3.7.2 (docs/package.json) @renovate (#13781)
• Update nginx/nginx-prometheus-exporter Docker tag from 1.4.2 to v1.5.1 (helm/defectdojo/values.yaml) @renovate (#13726)
• chore(deps): bump boto3 from 1.41.1 to 1.41.4 @dependabot (#13778)
• chore(deps): update actions/setup-python action from v6.0.0 to v6.1.0 (.github/workflows/test-helm-chart.yml) @renovate (#13774)
• chore(deps): bump packageurl-python from 0.17.5 to 0.17.6 @dependabot (#13773)
• chore(deps): bump psycopg[c] from 3.2.12 to 3.2.13 @dependabot (#13764)
• chore(deps): bump ruff from 0.14.5 to 0.14.6 @dependabot (#13763)
• Update gcr.io/cloudsql-docker/gce-proxy Docker tag from 1.37.9 to v1.37.10 (helm/defectdojo/values.yaml) @renovate (#13725)
• Update peter-evans/create-pull-request action from v7.0.8 to v7.0.9 (.github/workflows/update-sample-data.yml) @renovate (#13757)
• Update dependency renovatebot/renovate from 42.13.3 to v42.21.0 (.github/workflows/renovate.yaml) @renovate (#13759)
• chore(deps): bump boto3 from 1.41.0 to 1.41.1 @dependabot (#13753)
• chore(deps): update actions/checkout action from v5.0.1 to v6 (.github/workflows/validate_docs_build.yml) @renovate (#13747)
• chore(deps): update dependency yamale from 6.0.0 to v6.1.0 (.github/workflows/test-helm-chart.yml) @renovate (#13746)
• Update dependency vite from 7.2.2 to v7.2.4 (docs/package.json) @renovate (#13741)
• chore(deps): bump boto3 from 1.40.75 to 1.41.0 @dependabot (#13743)
• chore(deps): bump redis from 7.0.1 to 7.1.0 @dependabot (#13742)
• chore(deps): bump boto3 from 1.40.74 to 1.40.75 @dependabot (#13731)
• chore(deps): update actions/checkout action from v5.0.0 to v5.0.1 (.github/workflows/validate_docs_build.yml) @renovate (#13724)
• chore(deps): bump datatables.net from 2.3.4 to 2.3.5 in /components @dependabot (#13716)
• chore(deps): bump boto3 from 1.40.73 to 1.40.74 @dependabot (#13715)
• chore(deps): update dependency renovatebot/renovate from 42.5.4 to v42.13.3 (.github/workflows/renovate.yaml) @renovate (#13713)
• Update dependency kubernetes from v1.31.13 to v1.32.10 (.github/workflows/k8s-tests.yml) @renovate (#13719)
• Update dependency renovatebot/renovate from 42.5.0 to v42.5.4 (.github/workflows/renovate.yaml) @renovate (#13712)
• Update postgres:18.1-alpine Docker digest from 18.1 to 18.1-alpine (docker-compose.yml) @renovate (#13711)
• chore(deps): update postgres docker tag from 18.0 to v18.1 (docker-compose.yml) @renovate (#13704)
• chore(deps): bump boto3 from 1.40.72 to 1.40.73 @dependabot (#13706)
• chore(deps): bump boto3 from 1.40.71 to 1.40.72 @dependabot (#13697)
• Update dependency gohugoio/hugo from v0.152.1 to v0.152.2 (.github/workflows/validate_docs_build.yml) @renovate (#13665)
• Update dependency @docsearch/js from 4.3.1 to v4.3.2 (docs/package.json) @renovate (#13674)
• chore(deps): bump vulners from 3.1.1 to 3.1.2 @dependabot (#13691)
• chore(deps): bump boto3 from 1.40.69 to 1.40.71 @dependabot (#13692)
• Update dependency kubernetes/kubernetes from v1.34.1 to v1.34.2 (.github/workflows/k8s-tests.yml) @renovate (#13693)
• Update dependency node from 24.11.0 to v24.11.1 (.github/workflows/validate_docs_build.yml) @renovate (#13686)
• Update dependency @docsearch/css from 4.3.1 to v4.3.2 (docs/package.json) @renovate (#13673)
• chore(deps): update dependency renovatebot/renovate from 42.0.3 to v42.5.0 (.github/workflows/renovate.yaml) @renovate (#13651)
• chore(deps): update softprops/action-gh-release action from v2.4.1 to v2.4.2 (.github/workflows/release-x-manual-helm-chart.yml) @renovate (#13654)
• chore(deps): bump boto3 from 1.40.68 to 1.40.69 @dependabot (#13661)
• chore(deps): bump django-crispy-forms from 2.4 to 2.5 @dependabot (#13642)
• chore(deps): bump django-dbbackup from 5.0.0 to 5.0.1 @dependabot (#13643)
• chore(deps): bump asteval from 1.0.6 to 1.0.7 @dependabot (#13646)
• chore(deps): update dependency vite from 7.2.1 to v7.2.2 (docs/package.json) @renovate (#13641)
• chore(deps): bump boto3 from 1.40.66 to 1.40.68 @dependabot (#13644)
• chore(deps): bump ruff from 0.14.3 to 0.14.4 @dependabot (#13645)
• chore(deps): update dependency renovatebot/renovate from 41.173.0 to v42 (.github/workflows/renovate.yaml) @renovate (#13638)
• fix(deps): update dependency @docsearch/css from 4.2.0 to v4.3.1 (docs/package.json) @renovate (#13616)
• fix(deps): update dependency @docsearch/js from 4.2.0 to v4.3.1 (docs/package.json) @renovate (#13617)
• chore(deps): update dependency renovatebot/renovate from 41.170.0 to v41.173.0 (.github/workflows/renovate.yaml) @renovate (#13622)
• chore(deps): update dependency vite from 7.1.12 to v7.2.1 (docs/package.json) @renovate (#13625)
• chore(deps): bump boto3 from 1.40.65 to 1.40.66 @dependabot (#13626)
• chore(deps): update helm/chart-testing-action action from v2.7.0 to v2.8.0 (.github/workflows/test-helm-chart.yml) @renovate (#13629)
• chore(deps): bump django from 5.1.13 to 5.1.14 @dependabot (#13631)
• chore(deps): update dependency renovatebot/renovate from 41.169.4 to v41.170.0 (.github/workflows/renovate.yaml) @renovate (#13615)
• chore(deps): update dependency vite from 7.1.11 to v7.1.12 (docs/package.json) @renovate (#13604)
• chore(deps): update dependency kubernetes/kubernetes from v1.34.0 to v1.34.1 (.github/workflows/k8s-tests.yml) @renovate (#13603)
• chore(deps): update dependency renovatebot/renovate from 41.169.2 to v41.169.4 (.github/workflows/renovate.yaml) @renovate (#13607)
• chore(deps): bump boto3 from 1.40.63 to 1.40.65 @dependabot (#13610)
• chore(deps): bump markdown from 3.9 to 3.10 @dependabot (#13609)
• chore(deps): bump nginx from 1.29.2-alpine3.22 to 1.29.3-alpine3.22 @dependabot (#13598)
• chore(deps): bump openapitools/openapi-generator-cli from v7.16.0 to v7.17.0 @dependabot (#13599)
• chore(deps): bump drf-spectacular from 0.28.0 to 0.29.0 @dependabot (#13600)
• chore(deps): update dependency renovatebot/renovate from 41.168.6 to v41.169.2 (.github/workflows/renovate.yaml) @renovate (#13594)
• chore(deps): update mccutchen/go-httpbin docker tag from 2.18.3 to v2.19.0 (docker-compose.override.dev.yml) @renovate (#13585)
• chore(deps): update dependency renovatebot/renovate from 41.168.0 to v41.168.6 (.github/workflows/renovate.yaml) @renovate (#13584)