https://docs.openkat.nl/release_notes/1.16.html
What's Changed
- Bump weasyprint from 61.0 to 61.2 in /rocky by @dependabot in #2625
- Fix setting clearence level on plugin detail page by @noamblitz in #2623
- Refactor onboarding wizard to use Generate Report flow to create a DNS report by @Rieven in #2561
- Update tabler icons to v3.01 by @Rieven in #2640
- New Rocky Paginator by @Rieven in #2627
- Makefile .env-default typo by @noamblitz in #2647
- Replace
requestswithhttpxby @ammar92 in #2576 - Fix missing apt update in keiko github action by @dekkers in #2668
- Textual changes by @HeleenSG in #2676
- Remove unnecessary loop in
FilterRequestin scheduler by @jpbruinsslot in #2684 - fix: openssl boefje stuck on port 80 by @tobiasBDO in #2600
- Remove superfluous curly bracket open from graph view template by @originalsouth in #2700
- Improvements of Aggregate Report by @madelondohmen in #2643
- refactor the leakix normalizer to be less one giant method. by @underdarknl in #2363
- Add fix-byte-order-marker and pretty-format-json to pre-commit by @dekkers in #2634
- Fix pdf alignment by @HeleenSG in #2674
- Fix critical vulnerability counter by @madelondohmen in #2712
- Improve generate report by @madelondohmen in #2633
- Fix #1739 by @originalsouth in #2705
- Upgrade
pre-commithooks by @ammar92 in #2729 - Remove Docker Compose: "version" by @originalsouth in #2718
- Undo project-directory in Rocky by @originalsouth in #2734
- Feat stepper design v2 by @HeleenSG in #2704
- Plugins overview in appendix not showing any plugins by @Rieven in #2694
- Fix in System Specific by @madelondohmen in #2732
- Query non-reference fields and subclass-specific fields through path queries by @Donnype in #2662
- Feature/boefjes to oci images by @Donnype in #2709
- Dont report vulnerabilites without version info of the software for snyk by @noamblitz in #2730
- Add xtdb-cli tool to Octopoes by @originalsouth in #2733
- Bump actions/configure-pages from 4 to 5 by @dependabot in #2745
- Remove octopoes coverage workflow by @dekkers in #2755
- Updated
phonenumbersanddjango-phonenumber-fieldby @ammar92 in #2757 - fix schema errors on empty / missing schemas by @underdarknl in #2744
- OOI selection at Aggregate report does not remember changed selection by @Rieven in #2619
- Fix static files for container images/Debian packages when DEBUG is on by @dekkers in #2742
- Upgrade
pillowby @ammar92 in #2783 - Replace
blackwithruffs formatter by @ammar92 in #2762 - Feature/disallowed domains in csp by @noamblitz in #2624
- Add 127.0.0.1 to allowed hosts in Debian package by @dekkers in #2758
- Replace Wappalyzer by @ammar92 in #2727
- Add why container stdout/stderr can't be used for boefjes output by @dekkers in #2673
- Fix/2721 improve error handling by better exception aggregation v2 by @originalsouth in #2795
- Set katalogus limit to 200 by @dekkers in #2798
- Use public cryptography API in SSL certificate normalizer by @dekkers in #2796
- More improvements for reports by @madelondohmen in #2722
- Prevent confusing errors from leaking into the general logs by @originalsouth in #2815
- Fix wrong type in save_raw and list_origin_parameters httpx params by @dekkers in #2819
- Update performance of Findings Report by @madelondohmen in #2799
- Change titles to meet configuration page design by @madelondohmen in #2818
- Updated
idnapackage by @ammar92 in #2845 - Fix missing cipher csv in Debian package by @dekkers in #2850
- Add 1.15 release name by @dekkers in #2854
- Bump sqlparse from 0.4.4 to 0.5.0 in /rocky by @dependabot in #2856
- Update
dnspythonby @ammar92 in #2861 - Bump aiohttp from 3.9.3 to 3.9.4 in /boefjes by @dependabot in #2867
- Add new boefjes and normalizers cover images to KAT-alogus by @Rieven in #2859
- Update and fix nuclei by @noamblitz in #2865
- Add some additional exception handling to the scheduler by @jpbruinsslot in #2814
- Use qualified image URLs in docker-compose by @dekkers in #2869
- Introduce importing/exporting capabilities in Octopoes/xtdb-multinode-tool (addressing #2761) by @originalsouth in #2855
- Don't show records of the nameservers of chosen hostnames in DNS report by @noamblitz in #2809
- Styling Report Types names by @Rieven in #2791
- Backup scripts from TobiasBDO by @ring-ring-ring in #1794
- Plugin overview table by @madelondohmen in #2804
- Add some additional exception handling to the scheduler by @jpbruinsslot in #2878
- Fixed image reference in
pdio_subfinderplugin by @ammar92 in #2860 - Implement Octopoes Models documentation by @ammar92 in #2858
- Updated some packages by @ammar92 in #2891
- Add stepper to report configuration by @madelondohmen in #2868
- Translations update from Hosted Weblate by @weblate in #2792
- Build nmap OCI image that handles both nmap-tcp and nmap-udp using a new
oci_argumentsfield by @Donnype in #2832 - Fix and improve running boefjes/normalizer by hand by @dekkers in #2802
- Docs update on OCI image building from current Python/Docker boefjes by @Donnype in #2827
- Specify bit in the answer raw file instead of as mimetype by @dekkers in #2900
- Add a warning to the CSP validator for 'self' on script-src directives. by @underdarknl in #2672
- Replace old plugin in Vulnerability Report by @madelondohmen in #2910
- Update
jinja2andtqdmby @ammar92 in #2919 - Add wappalyzer software to weburl instead of hostname by @noamblitz in #2912
- Set no limit by default in the KATalogus plugin API by @Donnype in #2921
- Replace python-jose with pyjwt by @Donnype in #2925
- Fixes in OOI Add/ Edit form by @ammar92 in #2906
- Update required and suggested plugin section in report configuration by @madelondohmen in #2897
- Remove many new ports open boefje/normalizer by @dekkers in #2932
- Add workaround for Granian HTTP/2 bug by @dekkers in #2931
- Add prettier pre-commit hook by @dekkers in #2928
- Cleanup and squash migrations by @dekkers in #2934
- Update cve_2023_35078_not_vulnerable.html by @underdarknl in #2935
- Install CA root keys as package by @originalsouth in #2917
- Developer documentation about reports by @madelondohmen in #2908
- Change normalizer function signature by @dekkers in #2927
- Adding 'Checked logs for warnings/errors' to QA checklist by @stephanie0x00 in #2951
- fix version handling when no version is present. by @underdarknl in #2962
- Fix aggregate plugin overview table by @madelondohmen in #2896
- Fix typing in boefjes/normalizers by @dekkers in #2933
- Update granian and remove workaround for fixed bug by @dekkers in #2980
- Updated packages by @ammar92 in #2972
- Add drill trace option in dnssec boefje by @dekkers in #2979
- Fix task api status code response for malformed id in the scheduler by @jpbruinsslot in #2953
- User documentation for reports by @stephanie0x00 in #2898
- Translations update from Hosted Weblate by @weblate in #2930
- Adding IPv6 support to documentation for Docker setups by @stephanie0x00 in #2813
- Reports: Fix select all OOIs by @Rieven in #2909
- Translations update from Hosted Weblate by @weblate in #2996
- Fix merge conflicts in weblate by @dekkers in #3007
- Phase out the Repository model from the KATalogus by @Donnype in #2984
- Rewrite xtdb-cli.py with "click" by @originalsouth in #2957
- Translations update from Hosted Weblate by @weblate in #3012
- Add raw AuthToken SQL migration by @Donnype in #3009
- chore: Resolves css-issues found by sonarcloud by @HeleenSG in #3034
- Fixes text in secondary menu on scan profile detail page by @TwistMeister in #3035
- Fix empty consumes of boefjes will trigger tasks in scheduler by @jpbruinsslot in #3017
- Translations update from Hosted Weblate by @weblate in #3018
- Translations update from Hosted Weblate by @weblate in #3048
- fix: π§ update db normalize setting by @zcrt in #2777
- Documentation - developer and helper functionality documentation for xtdb-cli tool by @stephanie0x00 in #3023
- Fixed 2 small mistakes in documentation by @Souf149 in #3089
- feat: π add API titles by @zcrt in #3055
- Translations update from Hosted Weblate by @weblate in #3091
- Add Frysk to our selectable list of languages by @underdarknl in #3090
- Updated
urllib3by @ammar92 in #3098 - Update README.rst, add some more details ad links to conform to iReal⦠by @underdarknl in #3049
- Add Boefje and Normalizer models in the KATalogus by @Donnype in #3011
- Update feature and PR templates by @madelondohmen in #3063
- Add burp normalizer docs by @stephanie0x00 in #3101
- Bump braces from 3.0.2 to 3.0.3 in /rocky by @dependabot in #3100
- feat: π add human readable hostnames to vulnerability report by @zcrt in #2952
- fix consistent form width by @HeleenSG in #3104
- Translations update from Hosted Weblate by @weblate in #3115
- Match frontend with design - part 1 by @madelondohmen in #3109
- Update report overview table in report manual by @madelondohmen in #3106
- Translations update from Hosted Weblate by @weblate in #3125
- Match frontend with design - part 2 by @madelondohmen in #3132
- Update helper text for nmap-ports boefje by @stephanie0x00 in #3097
- RFD 0001: Add RFD for Requests for Discussion by @jpbruinsslot in #3002
- Fix pydantic serialization of enum on PATCH of tasks by @jpbruinsslot in #2944
- Documentation on how to make a boefje, normalizer, model, bit and report with examples. by @Souf149 in #2967
- Translations update from Hosted Weblate by @weblate in #3154
- Fix Snyk boefje creating empty CVE ids by @dekkers in #3144
- Fix rabbtimq exception handling in scheduler by @jpbruinsslot in #3092
- Bump djangorestframework from 3.14.0 to 3.15.2 in /rocky by @dependabot in #3157
- Add workflow that builds containerized images on ghcr.io by @Donnype in #3148
- Optimize queries executed when running bits by @originalsouth in #3024
- Saving reports by @noamblitz in #2904
- Ignore missing csp if page is not xss capable by @noamblitz in #3126
- fix: Sidemenu by @HeleenSG in #2821
- Added
reports.mdto the documentation tree by @Souf149 in #3112 - Update renderNormalizerOutputOOIs.js by @underdarknl in #3142
- Translations update from Hosted Weblate by @weblate in #3172
New Contributors
Full Changelog: v1.15.0rc1...v1.16.0rc1