Critical & security fixes
- #14878 Handle release of LTS version
- #14877 Live Stream Sync: File operations create infinite event loop in bidirectional sync
- #14966 Error when clicking enrichment button after adding an external reference
- #15017 [worker] Regression: opencti_operation set to 'event' instead of actual operation type in push_handler.py
- #15027 Improve SSE resolutions
- #14895 consumer drawer visible for every user
- #14015 Fix use of header for full synchronization
- #14169 Reducing allowed content in CSP
- #14808 Login button label is not working in SAML configuration
- #15026 SSO mappings expression should not be case sensitive
- #15010 SSO V7 conversion of OpenID configuration without group mapping set a wrong default group configuration.
- #14996 SSO V7 GROUPS_MANAGEMENT__GROUPS_MAPPING empty fails on map is not a function
- #15034 OIDC provider don't relay state
- #14920 Send retry in RabbitMQ improvements
- #11790 Incorrect redirect after logout when using base_path
- #15007 [BUG] Small memory leak in sseMiddleware sendEvent
Security updates
- pyjwt updated from 2.11.0 to 2.12.0
- dompurify updated from 3.3.1 to 3.3.3
- express-rate-limit updated from 8.2.1 to 8.3.1
- file-type updated from 21.3.0 to 21.3.3
- tar updated from 7.5.9 to to 7.5.11
- undici updated from 7.22.0 to 7.24.4
Pull Requests:
- [backend] backport of add sha256 to file metadata & use sha256 to check for duplicate upload (#14877) by @JeremyCloarec in #14970
- [frontend] Error when clicking enrichment button after adding an external reference (#14966) by @SarahBocognano in #14988
- [worker] Fix opencti_operation set to 'event' instead of actual operation type (#15017) by @xfournet in #15020
- [backend] Improve SSE resolutions (#15027) by @aHenryJard in #15030
Full Changelog: 7.260309.0-lts1...7.260309.0-lts.2