diff --git a/README.md b/README.md index d5517a2..00dcf10 100644 --- a/README.md +++ b/README.md @@ -63,6 +63,7 @@ If you use a new tag, add it here. * *community*: Posts about the community itself * *docs*: Posts about the documentation * *events*: Conferences, webinars,etc +* *guac-visualizer*: Posts about the experimental GUAC Visualizer * *meetings*: Community Meetings and Maintainers Meetings * *releases*: Release announcements diff --git a/content/blog/2024-09-24-guacviz-0.4.5.md b/content/blog/2024-09-24-guacviz-0.4.5.md new file mode 100644 index 0000000..f5af080 --- /dev/null +++ b/content/blog/2024-09-24-guacviz-0.4.5.md @@ -0,0 +1,36 @@ +--- +title: guac-visualizer 0.4.5 released +layout: post +authors: + - GUAC Maintainers +date: 2024-09-24 +tags: + - releases + - guac-visualizer +--- + +Version 0.4.5 of the experimental [GUAC Visualizer](https://github.com/guacsec/guac-visualizer) is now available. +The GUAC Visualizer is an experimental utility that can be used to interact with GUAC services. +It acts as a way to visualize the software supply chain graph and explore the supply chain. + +The main change in version 0.4.5 is the addition of a new window that displays known information about a package. +This package information box, contributed by [Shafee Ahmed](https://github.com/shafeeshafee), gives you quick access to information about a package's vulnerabilities, SBOM source, and [SLSA](https://slsa.dev) attestations. + +![Screenshot of the GUAC Visualizer package information display showing vulnerabilities for a log4j package](/images/blog/2024-guacviz-040.jpg) + +This release also includes an update of the GraphQL schema to work with recent GUAC releases, plus a few other minor fixes and dependency updates. +See the [GitHub release page](https://github.com/guacsec/guac-visualizer/releases/tag/v0.4.5) for a full list of changes. +It includes first-time contributions to the GUAC Visualizer from: +* [Kris Borchers](https://github.com/kborchers) +* [Ben Cotton](https://github.com/funnelfiasco) +* [@haosanzi](https://github.com/haosanzi) +* [Parth Patel](https://github.com/pxp928) + +If you paid close attention to the GUAC Visualizer, you might have noticed that the previous release was version 0.3.1. +What happened between then? +Several changes in the build pipeline were necessary due to changes in the tools we use. +Versions 0.4.0 through 0.4.4 were part of the diagnosis and remediation of build pipeline issues. +As part of this work, we've now created a CI build workflow that runs a build on all pull requests. +This is a common practice and will help us catch some issues earlier. +We'd love your help with GUAC Visualizer. +See the "[help wanted](https://github.com/guacsec/guac-visualizer/issues?q=is%3Aissue+is%3Aopen+label%3A%22help+wanted%22)" or "[good first issue](https://github.com/guacsec/guac-visualizer/issues?q=is%3Aissue+is%3Aopen+label%3A%22good+first+issue%22)" tags in GitHub for suggestions. \ No newline at end of file diff --git a/themes/hugo-fresh/static/images/blog/2024-guacviz-040.jpg b/themes/hugo-fresh/static/images/blog/2024-guacviz-040.jpg new file mode 100644 index 0000000..d24d49f Binary files /dev/null and b/themes/hugo-fresh/static/images/blog/2024-guacviz-040.jpg differ