SSC-ICT-Innovatie/nl-kat-coordination v1.22.0

on GitHub

OpenKAT 1.22 – Deanna

Sneller werken, rustiger systemen

We zijn trots op de release van OpenKAT 1.22 “Deanna”. Deze versie is vernoemd naar Deanna, de moeder van onze mascotte Keiko. Zij is onlangs overleden. Met deze naam eren we haar en tegelijk staat deze release symbool voor een stevige, betrouwbare basis.

Deze release draait om één ding: performance. OpenKAT is op veel plekken flink geoptimaliseerd. Dat merk je direct:

• Alles voelt sneller
• Systemen worden minder belast
• Analyses verlopen efficiënter en soepeler

Met andere woorden: OpenKAT doet hetzelfde werk, maar slimmer en lichter.

Werkt gewoon fijner

Naast de technische verbeteringen is ook gekeken naar het dagelijks gebruik:

• Je kunt ruwe data sneller bekijken, bijvoorbeeld via een verbeterde JSON-weergave
• Overzichten en taken zijn duidelijker en praktischer ingericht
• Kleine aanpassingen zorgen ervoor dat je minder hoeft te klikken en zoeken

Precies die verbeteringen die het werk prettiger maken.

Achter de schermen

Er is veel werk gestoken in het stabieler maken van het platform. Denk aan:

• Minder kans op fouten of vastlopers
• Betere afhandeling van processen op de achtergrond
• Slimmere manier van omgaan met capaciteit en belasting

Het resultaat is een omgeving die rustiger draait en beter meebeweegt als het druk wordt.

Bekijk alle wijzigingen in de releasenotes

What's Changed

• Update Docker image tags to include 'openkat-' prefix by @underdarknl in #5038
• Handle OOI's that have no schedule in the boefjes elligeble OOI list there where currently missing by @underdarknl in #5031
• Optimize use of TypeAdapters in the octopoes client. by @underdarknl in #5020
• Order organizations by name in models.py by @underdarknl in #4983
• Adds some new endpoints to the xtdb cli and client by @underdarknl in #4975
• add ignore stanza for boefje.json.tmp files existing after a test run by @underdarknl in #5019
• Feat/bytes normalizer metas endpoint by @underdarknl in #4994
• Include User-Agent header in HTTP requests by @underdarknl in #5044
• Skip Docker registry login for fork PRs by @hasecon in #5047
• Add Optional sync flags to octopoes service, router and xtdbclient by @underdarknl in #5046
• Remove CSS/JS compressor. Its not compatible with JS modules by @underdarknl in #5032
• Fix nikto boefje: bug fixes and performance improvements by @hasecon in #4943
• Use the newly available sync param in rocky by @underdarknl in #5049
• Move scanprofile propagation from celery to daemon, and use xtdb's la… by @underdarknl in #5039
• Bump pyasn1 from 0.6.2 to 0.6.3 in /bytes by @dependabot[bot] in #5050
• Bump sphinxcontrib-mermaid from 1.2.3 to 2.0.0 by @dependabot[bot] in #5014
• make paginator smarter, avoid double lookups, cache results on page. by @underdarknl in #5040
• optimize various parts of the scheduler by @underdarknl in #5007
• Make error handling more robust, we saw some some crashes around reconnects by @underdarknl in #5051
• Change cve-finding-types default to public API by @hasecon in #5053
• Use existing organization property on request.user, and dont filter i… by @underdarknl in #5054
• Bump pydicom from 2.4.4 to 2.4.5 in /boefjes/boefjes/plugins/kat_dicom by @dependabot[bot] in #5058
• Add a bit more clarification to the scan profile propagation table by @underdarknl in #5056
• Use the new Deschedule mimetype to signal jobs that never need a new run again. by @underdarknl in #5055
• Update schema.json, fix max/maximum by @underdarknl in #5063
• Fix invalid JSON Schema keywords in kat_rpki schema by @hasecon in #5064
• Upgrade actions to node24 variants and version pin all actions by @underdarknl in #5065
• Replace pika with aio-pika in Bytes service by @hasecon in #5061
• Refactor observed_at handling / forms by @underdarknl in #5057
• Fix check_requirements workflow for fork PRs by @hasecon in #5078
• Update django.pot after observed_at refactoring by @hasecon in #5077
• Fix LeakIX boefje to only return results for scanned asset by @hasecon in #4944
• Add proper task list filtering, and refactor the all organizations task lists by @underdarknl in #5083
• Upgrade requests, pyjwt, cryptography, boto3, pygments by @underdarknl in #5082
• Fix nuclei boefjes crashing on HostnameHTTPURL inputs by @hasecon in #5052
• Feat/raw files in tasklist by @underdarknl in #4190
• Bump actions/configure-pages from 5.0.0 to 6.0.0 by @dependabot[bot] in #5098
• Bump dorny/paths-filter from 3.0.2 to 4.0.1 by @dependabot[bot] in #5097
• update a few dependencies, and also bump pytest by @underdarknl in #5092
• Bump picomatch from 2.3.1 to 2.3.2 in /rocky by @dependabot[bot] in #5066
• Bump actions/deploy-pages from 4.0.5 to 5.0.0 by @dependabot[bot] in #5096
• Bump softprops/action-gh-release from 2.5.0 to 2.6.1 by @dependabot[bot] in #5094
• Bump github/codeql-action from 4.32.4 to 4.35.1 by @dependabot[bot] in #5095
• Since 'sync' is optional since a while, a few propagation tests failed in robot testing by @underdarknl in #5101
• Add optimizations to various querys, shortcut when count is already available, etc by @underdarknl in #5088
• Bump cryptography from 46.0.6 to 46.0.7 in /boefjes by @dependabot[bot] in #5106
• Bump cryptography from 46.0.6 to 46.0.7 in /bytes by @dependabot[bot] in #5105
• Bump attrs from 25.4.0 to 26.1.0 by @dependabot[bot] in #5102
• Fix/octopoes rtest by @underdarknl in #5107
• Refactor SSH command execution to use subprocess by @underdarknl in #5104
• Update various dependencies (wrapt, opentelemetry), pin attrs by @underdarknl in #5110
• Bump pytest from 9.0.2 to 9.0.3 in /bytes by @dependabot[bot] in #5125
• Bump pytest from 9.0.2 to 9.0.3 in /boefjes by @dependabot[bot] in #5124
• Update expired FreeTSA certificate for RFC3161 timestamping by @hasecon in #5111
• Chore/upgrade dependencies by @underdarknl in #5126
• Fix/bytes login by @underdarknl in #5133
• Fix BoefjeRanker priority decay using .total_seconds() by @hasecon in #5117
• Make nikto boefje + normalizer work end-to-end on Nikto 2.6 by @hasecon in #5137

Full Changelog: v1.21.0...v1.22.0