v1.8.0
Release notes are available at https://docs.openkat.nl/release_notes/1.8.html
What's Changed
- show id instead of boefje name by @noamblitz in #405
- retrigger bit on update ooi by @noamblitz in #408
- Tags are now made visible by @Rieven in #294
- Change default to xtdb-multinode for the debian packages by @Donnype in #416
- Cleanup rocky requirements by @dekkers in #402
- Add verified status column, toggle and filter to organization members list by @TwistMeister in #297
- 🐛 fix KATalogus confirmation message by @zcrt in #440
- Create volume out of the bytes data dir and change the default by @Donnype in #304
- remove unused env vars by @noamblitz in #449
- fix expiring cert bit by @noamblitz in #433
- allow for relative paths in location headers by @noamblitz in #460
- small fix to add jump to enabled/disabled plugin in enable_disable_plugin.html by @underdarknl in #452
- Typo fix for permisson to permission in frontend. by @Robinzor in #471
- Use 127.0.0.1 instead of localhost in RabbitMQ URI by @dekkers in #466
- Remove outdated setup-xtdb.sh script by @dekkers in #472
- Turn keiko reports directory into a Docker volume by @Donnype in #457
- Add configuration for number of random objects for scheduler by @jpbruinsslot in #480
- Fix Keiko validation errors by @ammar92 in #482
- Update ADR-validator to v0.2.0 by @hugoboos in #479
- Remove the try logic from the random endpoint by @jpbruinsslot in #489
- Basic workflow that tests debian packages installation by @Donnype in #296
- Seed on startup and add missing method by @Donnype in #456
- Update docs about clearance levels by @TwistMeister in #414
- Update index.rst by @ring-ring-ring in #424
- Bump sphinx from 5.3.0 to 6.1.3 by @dependabot in #438
- Fix issues after upgrading sphinx to version 6 by @ammar92 in #495
- Bump cryptography from 39.0.1 to 39.0.2 by @dependabot in #436
- Add codespell pre-commit hook and fix everything it finds by @dekkers in #473
- Check Octopoes and Katalogus health before creating orgs, "rollback" on exceptions by @Donnype in #455
- implement ooi list performance optimization by @Lisser in #488
- Fix/boefjes missing image entrypoint by @Donnype in #511
- Update to latest version by @olafz in #519
- Edit organization and tags by @Rieven in #476
- Bump pre-commit from 2.20.0 to 3.2.0 by @dependabot in #532
- Add end-of-file-fixer pre-commit hook by @dekkers in #474
- Fix double hostname findings with trailing dots in Fierce boefje by @tobiasBDO in #465
- Keiko glossaries url fix by @tobiasBDO in #537
- Chore/docs update Bytes by @Donnype in #535
- Bump python-multipart from 0.0.5 to 0.0.6 by @dependabot in #527
- Bump importlib-metadata from 5.1.0 to 6.1.0 by @dependabot in #525
- Bump python-dotenv from 0.19.0 to 1.0.0 by @dependabot in #439
- check for wildcards by @noamblitz in #468
- fix codeblocks with tab indent Nginx docs by @tobiasBDO in #553
- Include data directory in rocky Debian package by @dekkers in #539
- Feature/member edit view by @Rieven in #318
- Fix organization indemnification permission checks by @praseodym in #560
- Resize and compress plugin cover images by @praseodym in #564
- Fix clearance grant/revoke permission check by @praseodym in #571
- remove example.org and put ooi id instaed by @Rieven in #580
- Fix/testing different users by @Rieven in #536
- Load mermaid.js locally by @Darwinkel in #585
- Feature/organization level reports by @Donnype in #469
- Fix: Plugin detail showing None with none links at scans section by @Rieven in #594
- refactor(organization lists): unify access to organizations by user by @Lisser in #528
- Add indices for Bytes by @Donnype in #600
- Bump iniconfig from 1.1.1 to 2.0.0 by @dependabot in #579
- Bump black from 22.3.0 to 23.1.0 by @dependabot in #578
- Bump urllib3 from 1.26.14 to 1.26.15 by @dependabot in #576
- Remove loop from get random objects by @jpbruinsslot in #558
- add project discovery Nuclei boefje by @RiieCco in #518
- Feature: Add Subfinder Boefje by @joeppeeters in #516
- pass on underscore domains by @noamblitz in #550
- Update mula design documentation by @jpbruinsslot in #478
- Make missing HTTPS redirect warning clear by @ammar92 in #610
- Use PostgreSQL 15 in a single container by @praseodym in #546
- [CRT_SH] 🐛 don't treat invalid certificates from 3rd party as active by @zcrt in #541
- Feature/add organization dashboard by @TwistMeister in #481
- Fix report translation by @Donnype in #609
- Add sudo in Debian install manual by @Lisser in #153
- Feature/mula new boefjes by @jpbruinsslot in #574
- Bump pre-commit from 3.2.0 to 3.2.1 by @dependabot in #575
- changes to allow for custom fonts by @tobiasBDO in #593
- Fixes the redirect to the onboarding flow by @TwistMeister in #621
- Change mula Debian package to always use PostgreSQL by @dekkers in #597
- Add 1.6 and 1.7 release notes by @dekkers in #630
- Replaced
psycopg2-binarywithpsycopg2by @ammar92 in #638 - Fix test Debian packages workflow and WorkingDirectory by @dekkers in #646
- Remove logging statement by @jpbruinsslot in #649
- Bump psycopg2 from 2.9.5 to 2.9.6 by @dependabot in #644
- Bump setuptools from 65.6.3 to 67.6.1 by @dependabot in #642
- Also mount octopoes in rocky and boefjes containers by @dekkers in #650
- verification description by @ring-ring-ring in #651
- Fix Keiko report downloads on uWSGI by @praseodym in #657
- Add djLint for Rocky templates by @praseodym in #626
- Log pdflatex output on error by @praseodym in #667
- Keiko output context data by @ammar92 in #671
- Fix djLint T001, T002, T003, T032 by @praseodym in #672
- Add MutedFinding OOI and filter them in report by @dekkers in #670
- the latest version of nuclei updated the json-lines param by @RiieCco in #664
- Remove unused SCHEDULER_DSP_INTERVAL and SCHEDULER_DSP_BROKER_URL env vars by @dekkers in #633
- Update to xtdb-http-multinode v1.0.4 by @praseodym in #681
- Use
unless-stoppedDocker restart policy by @praseodym in #683 - Add missing migration and unit test for missing migrations by @dekkers in #677
- Feature/no bits without clearence by @noamblitz in #645
- Don't set KAT_VERSION by default in .env-dist by @dekkers in #629
- Translate Dutch images in docs to English by @ring-ring-ring in #128
- Handle errors from Octopoes connector by @praseodym in #647
- Appropriate min_scan_level for bits by @Lisser in #684
- fix crisis room when no description by @noamblitz in #686
- Fix pdflatex crash when there are underscores by @dekkers in #690
- Add new xtdb-http-multinode version to 1.7 release notes by @dekkers in #692
- Bump pre-commit from 3.2.1 to 3.2.2 by @dependabot in #693
- Final djLint fixes by @praseodym in #701
- add new nuclei scanners and re-name old one by @RiieCco in #699
- Accept "No changes detected" as well in migrations unit test by @Donnype in #710
- Move indemnification warnings to templates by @praseodym in #705
- Bump charset-normalizer from 2.0.12 to 3.1.0 by @dependabot in #640
- Add reset() to expiring dict by @jpbruinsslot in #700
- Bump cryptography from 39.0.2 to 40.0.1 by @dependabot in #696
- Create and delete MuteFinding OOIs in Rocky by @Rieven in #674
- Add debugging and troubleshooting page to the documentation by @Darwinkel in #637
- Refactor normalizer scheduler by @jpbruinsslot in #496
- Handle service exceptions when creating organizations by @Donnype in #709
- Fix crisis room padding by @Rieven in #717
- Only have hostnames without a dot by @dekkers in #713
- Fix indemnification warning by @praseodym in #718
- Update templates and add QA flow docs page by @Darwinkel in #517
- fix translation block bug by @noamblitz in #706
- [Shodan] Prevent normalizer failure for empty returns by @zcrt in #714
- added indexes for findings by @Haikevt in #568
- chore/refactor katalogus settings setup by @Donnype in #542
- Fix: Unnecessary white space within links by @HeleenSG in #728
- Do not propagate scan level from DNSSPFMechanismHostname by @dekkers in #721
- Octopoes origin param endpoint by @noamblitz in #731
- Scan level inheritance chain by @Lisser in #722
- Enable and disable bits by @dekkers in #732
- Use setuptools-scm to write correct version to version.py by @dekkers in #737
- Add port-common bit and KAT-OPEN-COMMON-PORT FindingType by @dekkers in #734
- Add (I) to ruff and fix imports by @Darwinkel in #723
- Cleanup Rocky requirements by @praseodym in #729
- Update
pre-commitdependencies and enable Ruff autofix by @Darwinkel in #739 - Bump beautifulsoup4 from 4.11.1 to 4.11.2 by @dependabot in #746
- Differentiate between TCP and UDP in port bits by @dekkers in #756
- Add repr to Task for scheduler by @jpbruinsslot in #751
- Add middleware for requiring authentication by @dekkers in #760
- Remove step from onboarding flow (release-1.8) by @Darwinkel in #769
- Hotfix1.8/ecrypted settings key check by @Donnype in #776
- Rdo workflows (1.8) by @dekkers in #827
- Fix fierce normalizer to create hostnames without a trailing dot (1.8) by @dekkers in #923
- Use "on push" instead of "on create" in build-rdo-package workflow (1.8) by @dekkers in #934
- Bump django from 3.2.18 to 3.2.19 (1.8) by @dekkers in #935
- Backport scheduler indices to v1.8 by @praseodym in #949
- Backport rerun bits to 1.8 by @dekkers in #953
New Contributors
- @Robinzor made their first contribution in #471
- @RiieCco made their first contribution in #518
- @joeppeeters made their first contribution in #516
- @Haikevt made their first contribution in #568
- @HeleenSG made their first contribution in #728
Full Changelog: v1.7.1...v1.8.0
Contributors
praseodym, olafz, and 20 other contributors