You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This is expected to be the second of three release candidates for v2.3.0. The next–and likely final–release candidate will include the CVSS feature from PR #198.
[2.3.0-rc2] - 3 June 2022
Added
New options to generate and revoke API tokens with a set expiry date
Added Hasura GraphQL engine to production environments
Usernames are now clickable and open the user's profile page for viewing
Added a generateReport mutation to the GraphQL API capable of returning the JSON report data as a base64 string
Added user controls for generating and revoking API tokens from the user profile page
Added checkoutDomain and checkoutServer actions to the GraphQL API that validate checkouts
Added deleteDomainCheckout, deleteServerCheckout, deleteTemplate, and deleteEvidence actions to the GraphQL schema that clean-up the filesystem and database after deletions
Changed
Updated the Nginx configuration to incorporate the Hasura container
Updated style of the finding preview pages for the finding library
Updated style of notes to make them cleaner and easier to manage
Project dashboard's "Objectives" tab will now show the current number of incomplete objectives and update when toggling objectives
Updated keyword reference panel displayed when editing findings
Subtask forms for objectives will now default to the objective's deadline date instead of "today"
Objective deadlines will now be automatically adjusted when the parent objective's deadline changes
Database migrations now set default values for timestamps (current time), timezones ("America/Los_Angeles"), and boolean values (False)
Enables easier creation of new entries via the GraphQL API
Deprecated
None
Removed
Removed unnecessary status badges on tabs in the project dashboard that were confusing and not very helpful
Revoked direct insert permissions for History and ServerHistory tables used for tracking domain and server checkouts
reacted with thumbs up emoji reacted with thumbs down emoji reacted with laugh emoji reacted with hooray emoji reacted with confused emoji reacted with heart emoji reacted with rocket emoji reacted with eyes emoji
-
This is expected to be the second of three release candidates for v2.3.0. The next–and likely final–release candidate will include the CVSS feature from PR #198.
[2.3.0-rc2] - 3 June 2022
Added
generateReport
mutation to the GraphQL API capable of returning the JSON report data as a base64 stringcheckoutDomain
andcheckoutServer
actions to the GraphQL API that validate checkoutsdeleteDomainCheckout
,deleteServerCheckout
,deleteTemplate
, anddeleteEvidence
actions to the GraphQL schema that clean-up the filesystem and database after deletionsChanged
Deprecated
Removed
History
andServerHistory
tables used for tracking domain and server checkoutsFixed
django-bleach
dependency to fix error with latestpython-bleach
(Fixes Template error when viewing clients in v2.2.3 #208)BlockQuote
style in the report template<em>
tags could cause report generation to failSecurity
pyjwt
to v2.4.0 to address CVE-2022-29217This discussion was created from the release Ghostwriter v2.3.0-rc2.
Beta Was this translation helpful? Give feedback.
All reactions