v1.11.0

https://docs.openkat.nl/release_notes/1.11.html

What's Changed

• Fix sorting in KAT-alogus by @Rieven in #1279
• Bump myst-parser from 1.0.0 to 2.0.0 by @dependabot in #1208
• Add 1.10 release notes and document new features by @dekkers in #1283
• Bump setuptools from 67.6.1 to 68.0.0 by @dependabot in #1282
• Update nginx.rst, mising reload, some more explanation by @underdarknl in #1280
• Cache RabbitMQ connections and HTTP Sessions in Octopoes by @Donnype in #1204
• Add boefje env var to release notes and improve documentation by @dekkers in #1291
• Add hyperlinks to boefje detail from task list by @TwistMeister in #1287
• 📝 resize LaTeX table & catch non-human-readable strings by @zcrt in #1278
• add cwe finding types boefje by @noamblitz in #1269
• Improved poetry configuration for keiko and octopoes by @Darwinkel in #1186
• Fix Debian package action error when matrix is empty by @dekkers in #1294
• Re-use RabbitMQ channels in Bytes by @Donnype in #1128
• Remove more then 1 active state on menu items by @Rieven in #1178
• Nmap boefjes: report only open ports by @praseodym in #1284
• updated intro by @ring-ring-ring in #1131
• Fix object page ignoring the filters for JSON and CSV export by @Donnype in #1300
• Handle RabbitMQ channel error in bytes by @dekkers in #1304
• Change port classification bit to ip address by @noamblitz in #1172
• External asset database boefje by @zcrt in #1175
• fix ooi form for netblocks by @noamblitz in #1316
• Align inline buttons when 2 or more buttons are available by @Rieven in #1321
• Add anchor tag to jump to after submitting the "set clearance level bulk form" on OOI list by @TwistMeister in #1315
• change TOC for usermanual by @ring-ring-ring in #1298
• Mute Findings in bulk at Finding list by @Rieven in #1165
• Retrieve and store env and code hashes of a Boefje job by @Darwinkel in #1227
• Fix mermaid diagrams in docs for Bytes and Octopoes by @Donnype in #1311
• Add Poetry configs for bytes, boefjes, rocky, and mula by @Darwinkel in #1295
• Add documentation about Config OOI's by @Darwinkel in #1307
• Rename pyc test files because they are overwritten by @Darwinkel in #1331
• Remove unused method from DNSReport view by @Donnype in #1322
• Fix hanging worker processes on a SIGKILL (e.g. when the container is out of memory) by @Donnype in #1187
• Remove unused max_plugin_runtime configuration variable by @Donnype in #1346
• Modify workflow to run make poetry-dependencies on Dependabot PR's and commit it by @Darwinkel in #1348
• Different commit & push strategy for Dependabot by @Darwinkel in #1350
• Update text on object detail page to talk about the objects clearance level instead of incorrectly use the phrase scan level by @TwistMeister in #1356
• Correctly sign Dependabot workflow commits by @Darwinkel in #1363
• Make sure Boefje containers are removed by @praseodym in #1361
• Add masscan boefje by @noamblitz in #1340
• Bump django from 4.2.2 to 4.2.3 in /rocky by @dependabot in #1347
• Remove redundant pyproject config entries by @Darwinkel in #1369
• Bump semver from 5.7.1 to 5.7.2 in /rocky by @dependabot in #1370
• Do not force that deletion can only be done by superuser by @dekkers in #1359
• Fix 403 on "My organizations" page by @dekkers in #1345
• Reduce RabbitMQ prefetch_count for mula and more AMQP exception handling by @Donnype in #1332
• Fix permission on general view PluginSettings and move in template by @Rieven in #1324
• Implement enabling/disabling schedulers by @jpbruinsslot in #1305
• Use fix multiprocessing bug on macOS where qsize() is not implemented by @Donnype in #1374
• Add buttons to manual rerun tasks, both boefjes or normalizers by @TwistMeister in #1339
• Add Debian build depends for CVE API package by @dekkers in #1384
• Remove hardcoded clearance level in member list for superusers by @TwistMeister in #1390
• Add configurable octpoes request timeout by @jpbruinsslot in #1382
• Fix in the user guide docs by @Darwinkel in #1391
• Add explicit black config to all modules by @Darwinkel in #1395
• Build the Debian build image on the main branch by @dekkers in #1387
• Bump cryptography from 41.0.1 to 41.0.2 in /bytes by @dependabot in #1397
• Bump cryptography from 41.0.0 to 41.0.2 in /boefjes/boefjes/plugins/kat_ssl_certificates by @dependabot in #1396
• Remove member group checks and check for permission instead by @Rieven in #1275
• Add task_id as a query parameter to the GET /origins endpoint by @Donnype in #1414
• Add and use our own CVE API by @dekkers in #1383
• Don't scan hostname nmap in nmap boefje by @dekkers in #1415
• Reschedule tasks when no results in bytes are found after grace period by @jpbruinsslot in #1410
• Fix translation in Debian package by @dekkers in #1432
• Use the correct clearance level variable in organization member list template by @TwistMeister in #1427
• Fix robot test by @Rieven in #1420
• KATalogus API filtering and pagination by @ammar92 in #1405
• make port classification configurable by @noamblitz in #1418
• Add Question ooi model and create the first bit that generates a question by @Donnype in #1407
• Translations for release 1.11 - EN -> NL, PAP by @Rieven in #1439
• Remove unnecessary dependency on ipaddress package by @dekkers in #1448
• Remove some unused config options, and set better defaults for others by @Darwinkel in #1428
• Default scan level filter to 0 by @noamblitz in #1463
• Upgrade certifi by @ammar92 in #1462
• Add Question OOI form rendering on the object detail page by @Donnype in #1408
• Create new filters for findings by @Rieven in #1293
• Fix exception in object report view by @dekkers in #1475
• Fix image references from readme's in developer documentation by @Donnype in #1487
• Remove duplicate diagram of KATalogus View structure in the docs by @Donnype in #1486
• Add boefje worker diagrams and add missing env vars in documentation by @Donnype in #1489
• Fix CVE findings with cvss ...

v1.11.0rc1

https://docs.openkat.nl/release_notes/1.11.html

What's Changed

• Fix sorting in KAT-alogus by @Rieven in #1279
• Bump myst-parser from 1.0.0 to 2.0.0 by @dependabot in #1208
• Add 1.10 release notes and document new features by @dekkers in #1283
• Bump setuptools from 67.6.1 to 68.0.0 by @dependabot in #1282
• Update nginx.rst, mising reload, some more explanation by @underdarknl in #1280
• Cache RabbitMQ connections and HTTP Sessions in Octopoes by @Donnype in #1204
• Add boefje env var to release notes and improve documentation by @dekkers in #1291
• Add hyperlinks to boefje detail from task list by @TwistMeister in #1287
• 📝 resize LaTeX table & catch non-human-readable strings by @zcrt in #1278
• add cwe finding types boefje by @noamblitz in #1269
• Improved poetry configuration for keiko and octopoes by @Darwinkel in #1186
• Fix Debian package action error when matrix is empty by @dekkers in #1294
• Re-use RabbitMQ channels in Bytes by @Donnype in #1128
• Remove more then 1 active state on menu items by @Rieven in #1178
• Nmap boefjes: report only open ports by @praseodym in #1284
• updated intro by @ring-ring-ring in #1131
• Fix object page ignoring the filters for JSON and CSV export by @Donnype in #1300
• Handle RabbitMQ channel error in bytes by @dekkers in #1304
• Change port classification bit to ip address by @noamblitz in #1172
• External asset database boefje by @zcrt in #1175
• fix ooi form for netblocks by @noamblitz in #1316
• Align inline buttons when 2 or more buttons are available by @Rieven in #1321
• Add anchor tag to jump to after submitting the "set clearance level bulk form" on OOI list by @TwistMeister in #1315
• change TOC for usermanual by @ring-ring-ring in #1298
• Mute Findings in bulk at Finding list by @Rieven in #1165
• Retrieve and store env and code hashes of a Boefje job by @Darwinkel in #1227
• Fix mermaid diagrams in docs for Bytes and Octopoes by @Donnype in #1311
• Add Poetry configs for bytes, boefjes, rocky, and mula by @Darwinkel in #1295
• Add documentation about Config OOI's by @Darwinkel in #1307
• Rename pyc test files because they are overwritten by @Darwinkel in #1331
• Remove unused method from DNSReport view by @Donnype in #1322
• Fix hanging worker processes on a SIGKILL (e.g. when the container is out of memory) by @Donnype in #1187
• Remove unused max_plugin_runtime configuration variable by @Donnype in #1346
• Modify workflow to run make poetry-dependencies on Dependabot PR's and commit it by @Darwinkel in #1348
• Different commit & push strategy for Dependabot by @Darwinkel in #1350
• Update text on object detail page to talk about the objects clearance level instead of incorrectly use the phrase scan level by @TwistMeister in #1356
• Correctly sign Dependabot workflow commits by @Darwinkel in #1363
• Make sure Boefje containers are removed by @praseodym in #1361
• Add masscan boefje by @noamblitz in #1340
• Bump django from 4.2.2 to 4.2.3 in /rocky by @dependabot in #1347
• Remove redundant pyproject config entries by @Darwinkel in #1369
• Bump semver from 5.7.1 to 5.7.2 in /rocky by @dependabot in #1370
• Do not force that deletion can only be done by superuser by @dekkers in #1359
• Fix 403 on "My organizations" page by @dekkers in #1345
• Reduce RabbitMQ prefetch_count for mula and more AMQP exception handling by @Donnype in #1332
• Fix permission on general view PluginSettings and move in template by @Rieven in #1324
• Implement enabling/disabling schedulers by @jpbruinsslot in #1305
• Use fix multiprocessing bug on macOS where qsize() is not implemented by @Donnype in #1374
• Add buttons to manual rerun tasks, both boefjes or normalizers by @TwistMeister in #1339
• Add Debian build depends for CVE API package by @dekkers in #1384
• Remove hardcoded clearance level in member list for superusers by @TwistMeister in #1390
• Add configurable octpoes request timeout by @jpbruinsslot in #1382
• Fix in the user guide docs by @Darwinkel in #1391
• Add explicit black config to all modules by @Darwinkel in #1395
• Build the Debian build image on the main branch by @dekkers in #1387
• Bump cryptography from 41.0.1 to 41.0.2 in /bytes by @dependabot in #1397
• Bump cryptography from 41.0.0 to 41.0.2 in /boefjes/boefjes/plugins/kat_ssl_certificates by @dependabot in #1396
• Remove member group checks and check for permission instead by @Rieven in #1275
• Add task_id as a query parameter to the GET /origins endpoint by @Donnype in #1414
• Add and use our own CVE API by @dekkers in #1383
• Don't scan hostname nmap in nmap boefje by @dekkers in #1415
• Reschedule tasks when no results in bytes are found after grace period by @jpbruinsslot in #1410
• Fix translation in Debian package by @dekkers in #1432
• Use the correct clearance level variable in organization member list template by @TwistMeister in #1427
• Fix robot test by @Rieven in #1420
• KATalogus API filtering and pagination by @ammar92 in #1405
• make port classification configurable by @noamblitz in #1418
• Add Question ooi model and create the first bit that generates a question by @Donnype in #1407
• Translations for release 1.11 - EN -> NL, PAP by @Rieven in #1439
• Remove unnecessary dependency on ipaddress package by @dekkers in #1448
• Remove some unused config options, and set better defaults for others by @Darwinkel in #1428
• Default scan level filter to 0 by @noamblitz in #1463
• Upgrade certifi by @ammar92 in #1462
• Add Question OOI form rendering on the object detail page by @Donnype in #1408
• Create new filters for findings by @Rieven in #1293
• Fix exception in object report view by @dekkers in #1475
• Fix image references from readme's in developer documentation by @Donnype in #1487
• Remove duplicate diagram of KATalogus View structure in the docs by @Donnype in #1486
• Add boefje worker diagrams and add missing env vars in documentation by @Donnype in #1489
• Fix CVE findings with cvss ...

v1.10.2

What's Changed

• fix manyports open normalizer by @noamblitz in #1591
• Backport #1558 to 1.10 by @praseodym in #1639
• Feature/report generation timeout (1.10) by @dekkers in #1643

Full Changelog: v1.10.1...v1.10.2

v1.10.1

Several bugfixes have been made.

Crisis room error has been fixed when the finding type is missing in the database due to an ealier bug that was fixed in 1.9. If you keep seeing findings with severy "pending" that don't go way this might be the cause. Rerunning all bits from the organization settings should make this error go away.

There is also a new boefje for CVE-2023-35078.

What's Changed

• Fix: Enable/disable boefjes notification, it now uses name instead of ID by @TwistMeister in #1505
• Read .env in rocky settings (1.10) by @dekkers in #1534
• Fix ooi detail observations (1.10) by @dekkers in #1540
• 📝 resize LaTeX table & catch non-human-readable strings (1.10) by @dekkers in #1543
• Pin urllib3 version for webpage analysis boefje by @noamblitz in #1532
• Fix crisis room error when the finding type is not in the database (1.10) by @dekkers in #1568
• CVE-2023-35078 finder v1 (1.10) by @dekkers in #1570

Full Changelog: v1.10.0...v1.10.1

v1.10.0

https://docs.openkat.nl/release_notes/1.10.html

What's Changed

• Update 1.8 release notes by @dekkers in #959
• Upgrade to RabbitMQ 3.11 by @praseodym in #946
• Replace "rc" with "~rc" in Debian package version by @dekkers in #977
• Improve Makefile by @praseodym in #966
• Dependabot PRs by @ammar92 in #979
• Bump sqlalchemy from 1.4.31 to 1.4.48 by @dependabot in #971
• Updated docker-py by @ammar92 in #985
• Latex docs, now signed. by @tobiasBDO in #983
• Change line endings by @Donnype in #989
• Tell the mixed-line-endings check to set everything to lf by @Donnype in #991
• Create boefjes.md by @ring-ring-ring in #828
• Delete plugin_repository package by @ammar92 in #992
• Update debianinstall.rst by @brennodewinter in #822
• update/nuclei path fix, backwards compat by @RiieCco in #962
• Remove job model and generate migrations by @Donnype in #995
• Scheduler tests clean up by @jpbruinsslot in #978
• Fix error on clone settings without organization selected by @Donnype in #997
• Pin typing-extensions to 4.5.0 by @Donnype in #1019
• Removed LXD legacy by @ammar92 in #1016
• Upgrade to requests v2.31.0 by @praseodym in #1020
• Upgrade to Django 4.2 by @praseodym in #1004
• Make two-factor authentication (2fa) optional by @praseodym in #1002
• Upgrade FastAPI and dependencies by @ammar92 in #467
• Upgrade (default) container Dockerfiles from Python 3.8 to 3.11 by @Darwinkel in #1021
• Only sleep when all queues are empty by @dekkers in #952
• Feature/add signing provider for raw file by @Donnype in #994
• Various fixes to Fierce boefje by @praseodym in #1001
• Fix RDO workflow by @dekkers in #1023
• Add new permissions by @Rieven in #950
• feature(octopoes): fields to finding type model by @Lisser in #921
• Bump mmh3 from 3.0.0 to 4.0.0 by @dependabot in #1005
• Fix phony targets in Makefile by @praseodym in #1055
• Fix scheduler ranking by @jpbruinsslot in #988
• Add 1.9 release notes by @dekkers in #1029
• Fix clearance level views by @praseodym in #1035
• Add date, name and status filters by @Haikevt in #572
• Clients can start scans on objects without changing clearance by @Rieven in #945
• Bump sphinx-rtd-theme from 1.2.0 to 1.2.1 by @dependabot in #1062
• add latex docs to index by @tobiasBDO in #1071
• Add "Closes" to the pr template to make sure tickets are linked to the issues by @Donnype in #1078
• Bump tldextract from 3.4.2 to 3.4.4 by @dependabot in #1059
• Add Debian 12 build image and add version to existing image names by @dekkers in #1063
• Bump cachetools from 5.3.0 to 5.3.1 by @dependabot in #1061
• Bump pydantic from 1.10.7 to 1.10.8 by @dependabot in #1060
• 🐛 fix incorrect TLS finding definition by @zcrt in #1082
• Better JSON schema support for plugin settings in Rocky by @Donnype in #939
• Fix scan profile db event issue by adding an explicit reference field by @Donnype in #1070
• add readmes to table of contents by @ring-ring-ring in #1092
• Update xtdb-http-multinode to v1.0.6 by @dekkers in #1086
• Add external auth support by @dekkers in #1039
• Rocky: Add ALLOWED_HOSTS, CSRF_TRUSTED_ORIGINS env vars by @praseodym in #1084
• Unpin typing-extensions dependency by @praseodym in #1089
• add 'ideas' as a category in project guidelines by @ring-ring-ring in #1105
• Remove unused boefje fields when creating a BoefjeTask object to send to the scheduler by @Donnype in #1103
• Fix failing test-debian-install in CI by @dekkers in #1111
• Bump cryptography from 40.0.2 to 41.0.0 in /bytes by @dependabot in #1100
• Bump cryptography from 40.0.2 to 41.0.1 by @dependabot in #1108
• Bump cryptography from 39.0.1 to 41.0.0 in /boefjes/boefjes/plugins/kat_ssl_certificates by @dependabot in #1099
• Remove containers after docker-compose run by @praseodym in #1112
• add findingtype files by @noamblitz in #1117
• Finding Types Boefjes by @Lisser in #1056
• Fix typos in 'no organizations found' message by @praseodym in #1123
• Add script to automatically backport PR to release branch by @dekkers in #1097
• Handle an empty plugin.consumes field for the plugin detail page by @Donnype in #1104
• Persist impact, recommendation and source fields in FindingType objects in XTDB by @Lisser in #1126
• Remove tasks and items on mutation delete by @jpbruinsslot in #1090
• Add endpoints in Octopoes for bulk operations in the object list page by @Donnype in #1067
• test(boefjes): snyk by @Lisser in #1116
• Fix thread termination in Mula by @jpbruinsslot in #1003
• Add bit to set default values for FindingType risk levels in Octopoes by @Lisser in #1075
• Edit icon and Text were missing at Organization settings page by @Rieven in #1141
• Dependabot PRs by @ammar92 in #1147
• Make user full name required in Django model by @praseodym in #1148
• Set full_name in Debian package test by @praseodym in #1150
• Fix incorrect reference for unhandled exceptions by @jpbruinsslot in #1155
• findingtype files to code instead of github by @noamblitz in #1153
• Create missing can_mute_findings permission by @praseodym in #1163
• Source of FindingType information in XTDB - (Octopoes & Rocky implementation) by @Lisser in #1118
• Bump sphinx-rtd-theme from 1.2.1 to 1.2.2 by @dependabot in #1143
• Upgrade OpenTelemetry SDK to 1.18.0/0.39b0 by @praseodym in #1171
• Delete retirejs.json from rocky by @noamblitz in #1176
• Take MutedFinding into account for FindingType counts by @Lisser in #1174
• added ## for better headers in the TOC by @ring-ring-ring in #1182
• Add external auth users to default organizations by @praseodym in #1122
• fix crisis-room-endpoint in octopoes by @Lisser in #1185
• Upgrade to manon v15.1.3 (Layout) by @HeleenSG in https://github.com/mi...

v1.10.0rc2

https://docs.openkat.nl/release_notes/1.10.html

What's Changed

• Do not force that deletion can only be done by superuser (1.10) by @dekkers in #1398
• Remove more then 1 active state on menu items (1.10) by @dekkers in #1400
• Fix object page ignoring the filters for JSON and CSV export (1.10) by @dekkers in #1401
• Align inline buttons when 2 or more buttons are available (1.10) by @dekkers in #1402
• Add anchor tag to jump to after submitting the "set clearance level bulk form" on OOI list (1.10) by @dekkers in #1403
• Fix 403 on "My organizations" page (1.10) by @dekkers in #1404
• Add and use our own CVE API (1.10) by @dekkers in #1419
• Don't scan hostname nmap in nmap boefje (1.10) by @dekkers in #1422

Full Changelog: v1.10.0rc1...v1.10.0rc2

v1.10.0rc1

Release notes: https://docs.openkat.nl/release_notes/1.10.html

What's Changed

• Update 1.8 release notes by @dekkers in #959
• Upgrade to RabbitMQ 3.11 by @praseodym in #946
• Replace "rc" with "~rc" in Debian package version by @dekkers in #977
• Improve Makefile by @praseodym in #966
• Dependabot PRs by @ammar92 in #979
• Bump sqlalchemy from 1.4.31 to 1.4.48 by @dependabot in #971
• Updated docker-py by @ammar92 in #985
• Latex docs, now signed. by @tobiasBDO in #983
• Change line endings by @Donnype in #989
• Tell the mixed-line-endings check to set everything to lf by @Donnype in #991
• Create boefjes.md by @ring-ring-ring in #828
• Delete plugin_repository package by @ammar92 in #992
• Update debianinstall.rst by @brennodewinter in #822
• update/nuclei path fix, backwards compat by @RiieCco in #962
• Remove job model and generate migrations by @Donnype in #995
• Scheduler tests clean up by @jpbruinsslot in #978
• Fix error on clone settings without organization selected by @Donnype in #997
• Pin typing-extensions to 4.5.0 by @Donnype in #1019
• Removed LXD legacy by @ammar92 in #1016
• Upgrade to requests v2.31.0 by @praseodym in #1020
• Upgrade to Django 4.2 by @praseodym in #1004
• Make two-factor authentication (2fa) optional by @praseodym in #1002
• Upgrade FastAPI and dependencies by @ammar92 in #467
• Upgrade (default) container Dockerfiles from Python 3.8 to 3.11 by @Darwinkel in #1021
• Only sleep when all queues are empty by @dekkers in #952
• Feature/add signing provider for raw file by @Donnype in #994
• Various fixes to Fierce boefje by @praseodym in #1001
• Fix RDO workflow by @dekkers in #1023
• Add new permissions by @Rieven in #950
• feature(octopoes): fields to finding type model by @Lisser in #921
• Bump mmh3 from 3.0.0 to 4.0.0 by @dependabot in #1005
• Fix phony targets in Makefile by @praseodym in #1055
• Fix scheduler ranking by @jpbruinsslot in #988
• Add 1.9 release notes by @dekkers in #1029
• Fix clearance level views by @praseodym in #1035
• Add date, name and status filters by @Haikevt in #572
• Clients can start scans on objects without changing clearance by @Rieven in #945
• Bump sphinx-rtd-theme from 1.2.0 to 1.2.1 by @dependabot in #1062
• add latex docs to index by @tobiasBDO in #1071
• Add "Closes" to the pr template to make sure tickets are linked to the issues by @Donnype in #1078
• Bump tldextract from 3.4.2 to 3.4.4 by @dependabot in #1059
• Add Debian 12 build image and add version to existing image names by @dekkers in #1063
• Bump cachetools from 5.3.0 to 5.3.1 by @dependabot in #1061
• Bump pydantic from 1.10.7 to 1.10.8 by @dependabot in #1060
• 🐛 fix incorrect TLS finding definition by @zcrt in #1082
• Better JSON schema support for plugin settings in Rocky by @Donnype in #939
• Fix scan profile db event issue by adding an explicit reference field by @Donnype in #1070
• add readmes to table of contents by @ring-ring-ring in #1092
• Update xtdb-http-multinode to v1.0.6 by @dekkers in #1086
• Add external auth support by @dekkers in #1039
• Rocky: Add ALLOWED_HOSTS, CSRF_TRUSTED_ORIGINS env vars by @praseodym in #1084
• Unpin typing-extensions dependency by @praseodym in #1089
• add 'ideas' as a category in project guidelines by @ring-ring-ring in #1105
• Remove unused boefje fields when creating a BoefjeTask object to send to the scheduler by @Donnype in #1103
• Fix failing test-debian-install in CI by @dekkers in #1111
• Bump cryptography from 40.0.2 to 41.0.0 in /bytes by @dependabot in #1100
• Bump cryptography from 40.0.2 to 41.0.1 by @dependabot in #1108
• Bump cryptography from 39.0.1 to 41.0.0 in /boefjes/boefjes/plugins/kat_ssl_certificates by @dependabot in #1099
• Remove containers after docker-compose run by @praseodym in #1112
• add findingtype files by @noamblitz in #1117
• Finding Types Boefjes by @Lisser in #1056
• Fix typos in 'no organizations found' message by @praseodym in #1123
• Add script to automatically backport PR to release branch by @dekkers in #1097
• Handle an empty plugin.consumes field for the plugin detail page by @Donnype in #1104
• Persist impact, recommendation and source fields in FindingType objects in XTDB by @Lisser in #1126
• Remove tasks and items on mutation delete by @jpbruinsslot in #1090
• Add endpoints in Octopoes for bulk operations in the object list page by @Donnype in #1067
• test(boefjes): snyk by @Lisser in #1116
• Fix thread termination in Mula by @jpbruinsslot in #1003
• Add bit to set default values for FindingType risk levels in Octopoes by @Lisser in #1075
• Edit icon and Text were missing at Organization settings page by @Rieven in #1141
• Dependabot PRs by @ammar92 in #1147
• Make user full name required in Django model by @praseodym in #1148
• Set full_name in Debian package test by @praseodym in #1150
• Fix incorrect reference for unhandled exceptions by @jpbruinsslot in #1155
• findingtype files to code instead of github by @noamblitz in #1153
• Create missing can_mute_findings permission by @praseodym in #1163
• Source of FindingType information in XTDB - (Octopoes & Rocky implementation) by @Lisser in #1118
• Bump sphinx-rtd-theme from 1.2.1 to 1.2.2 by @dependabot in #1143
• Upgrade OpenTelemetry SDK to 1.18.0/0.39b0 by @praseodym in #1171
• Delete retirejs.json from rocky by @noamblitz in #1176
• Take MutedFinding into account for FindingType counts by @Lisser in #1174
• added ## for better headers in the TOC by @ring-ring-ring in #1182
• Add external auth users to default organizations by @praseodym in #1122
• fix crisis-room-endpoint in octopoes by @Lisser in #1185
• Upgrade to manon v15.1.3 (Layout) by @HeleenSG in https:...

v1.9.0

Release notes are available at https://docs.openkat.nl/release_notes/1.9.html

What's Changed

• Bump robotframework-tidy from 3.4.0 to 4.1.0 by @dependabot in #744
• Bump pydantic from 1.10.2 to 1.10.7 by @dependabot in #745
• Bump djlint from 1.19.16 to 1.19.17 by @dependabot in #743
• Bump pytest from 7.2.0 to 7.2.2 by @dependabot in #742
• Remove step to click 2FA button in the CI by @Darwinkel in #767
• update xtdb issue by @ring-ring-ring in #768
• 1.8 release notes by @dekkers in #773
• Fix key check for encrypted settings by @Donnype in #775
• Move the ID of the button to the parent element by @TwistMeister in #765
• Increase PostgreSQL container shm size by @praseodym in #780
• Bump sqlparse from 0.4.3 to 0.4.4 in /rocky by @dependabot in #787
• Fix to allow for CWE's in report by @tobiasBDO in #786
• Retry on db disconnects in mula by @jpbruinsslot in #697
• Restructure mocks on tests by @jpbruinsslot in #740
• Create README.rst by @ring-ring-ring in #766
• nasty typo by @ring-ring-ring in #799
• Feature/member edit ux by @TwistMeister in #698
• Feature/octopoes/filter random endpoint by @jpbruinsslot in #704
• Dependabot PRs merged by @ammar92 in #803
• user update by @ring-ring-ring in #789
• Add PR template code blocks for easier reviewing by @Darwinkel in #736
• Chore/bytes api consistency by @Donnype in #730
• perf(crisis_room): optimize loading of aggregates by @Lisser in #781
• Chore/add exception log in bytes by @Donnype in #806
• Add OpenTelemetry tracing to Rocky and Octopoes by @praseodym in #809
• Feature/bytes openmetrics by @Donnype in #750
• Clean up setup.py across all modules by @praseodym in #807
• Refactor views and update developer documentation by @Donnype in #758
• Updated linter configs by @ammar92 in #817
• Implement pyupgrade in ruff by @Darwinkel in #820
• Add dev target to Dockerfiles by @praseodym in #778
• Gitpod by @ring-ring-ring in #824
• DB schema update scheduler by @jpbruinsslot in #788
• Update PR template with PGP-sign checkbox and absolute URL's by @Darwinkel in #826
• Add rocky_version to footer by @Darwinkel in #821
• Updated linter configs by @ammar92 in #825
• Rdo workflows by @sigio in #816
• Normalizers should be defined as generators by @kshitiz305 in #830
• Add OpenTelemetry tracing to Mula, Bytes, Keiko, and KATalogus by @praseodym in #831
• Fix cancel url at organization edit view by @Rieven in #850
• Updated linter configs by @ammar92 in #834
• Dependabot merges by @ammar92 in #902
• Localize account scoped url's by @TwistMeister in #861
• Use superuser credentials from .env file by @praseodym in #860
• Updated playwright by @ammar92 in #903
• Fix fierce normalizer to create hostnames without a trailing dot by @dekkers in #909
• Fix reset scan profile bug and reduce octopoes calls in view by @Donnype in #910
• Feature/octopoes path queries by @Donnype in #851
• Wrap all import errors in ModuleExceptions while resolving plugins by @Donnype in #818
• Groups and Permissions for Organization member by @Rieven in #606
• Rabbitmq health checks for Bytes integration tests instead of sleep() by @Donnype in #920
• Implement openmetrics endpoint in mula by @jpbruinsslot in #662
• Add delete oois permission by @Rieven in #783
• Keiko: Use XeLaTeX and escape special characters by @praseodym in #900
• Use "on push" instead of "on create" in build-rdo-package workflow by @dekkers in #924
• Clean up Makefile by @praseodym in #901
• Bump django from 3.2.18 to 3.2.19 by @dependabot in #930
• Refactor list task API by @dekkers in #933
• Dependabot prs by @ammar92 in #943
• Feature/octopoes xtdb integration tests by @Donnype in #918
• Fix PluginDetailView by @Rieven in #940
• Add indices for hash fields by @jpbruinsslot in #912
• Better raw output to download in Rocky from Bytes on crashes by @Donnype in #936
• updated texts by @ring-ring-ring in #855
• Optimize scheduler by @jpbruinsslot in #832
• initial setup of config oois by @noamblitz in #761
• Updated linter configs by @ammar92 in #931
• Endpoint rerun bits by @noamblitz in #899
• Change make kat to make reset in QA template. by @Donnype in #956
• Add backported migration by @dekkers in #955
• Add deny list and validator for organization code by @Rieven in #800
• Fix wrong argument name in task list by @dekkers in #961
• Replace "rc" with "~rc" in Debian package version (1.9) by @dekkers in #981
• Fix RDO workflow (1.9) by @dekkers in #1022
• Pin typing-extensions to 4.5.0 (1.9) by @dekkers in #1026
• 🐛 fix incorrect TLS finding definition (1.9) by @dekkers in #1091
• Fix scan profile db event issue by adding an explicit reference field (1.9) by @dekkers in #1093

New Contributors

• @kshitiz305 made their first contribution in #830

Full Changelog: v1.8.1...v1.9.0

v1.9.0rc2

What's Changed

• 🐛 fix incorrect TLS finding definition (1.9) by @dekkers in #1091
• Fix scan profile db event issue by adding an explicit reference field (1.9) by @dekkers in #1093

Full Changelog: v1.9.0rc1...v1.9.0rc2

v1.8.1

What's Changed

• Fix workflow by @sigio in #973
• Pin typing-extensions to 4.5.0 (1.8) by @dekkers in #1027
• try except around rerun by @noamblitz in #1024
• Fix scan profile db event issue by adding an explicit reference field (1.8) by @dekkers in #1094
• 🐛 fix incorrect TLS finding definition (1.8) by @dekkers in #1096

Full Changelog: v1.8.0...v1.8.1