Releases: deepfence/ThreatMapper
Releases · deepfence/ThreatMapper
threatintel-vuln-v5-2024-06-01_01-44-42
Update listing with threatintel-2024-06-01_00-02-38
threatintel-yara-2024-05-31_18-02-25
Update listing with threatintel-2024-05-31_13-20-21
threatintel-vuln-v5-2024-05-31_13-20-21
Update backup_neo4j.sh (#2175)
threatintel-vuln-v3-2024-06-01_00-02-38
Update listing with threatintel-2024-05-31_13-20-21
threatintel-yara-2024-05-30_18-02-33
Update listing with threatintel-2024-05-30_13-19-20
threatintel-vuln-v3-2024-05-31_00-02-15
Update listing with threatintel-2024-05-30_13-19-20
v2.2.1
What's Changed
- Switch server and worker base image to debian:12-slim
- Update neo4j upgrade instructions in docs by @ramanan-ravi in #2129
- Update docs, console helm chart by @ramanan-ravi in #2130
Full Changelog: v2.2.0...v2.2.1
v2.2.0
Caution
BREAKING CHANGES
- Neo4j updated from version 4.x to 5.x
While upgrading from previous release this requires neo4j database migration.
Steps to follow: https://docs.deepfence.io/threatmapper/docs/console/upgrade-from-v2.1
What's Changed
- Add parallelization for fetching images and pagination while fetching registry repositories by @jatin-baweja in #2016
- Get version dynamically by @milan-deepfence in #2019
- Fix table page not resetting by @milan-deepfence in #2021
- UI add registry testid by @milan-deepfence in #2022
- Add missing suspense by @milan-deepfence in #2023
- fix extra page in empty report by @ibreakthecloud in #2027
- Add License workflow by @ramanan-ravi in #2030
- Add option to upload threat intel rules by @milan-deepfence in #2029
- Fix empty characters in version api by @milan-deepfence in #2031
- UI fix invite link by @milan-deepfence in #2032
- Proxy minor fix by @gnmahanth in #2033
- Fix docker compose by @ramanan-ravi in #2035
- File server url in Global Setting by @ramanan-ravi in #2036
- change Serverless region to be Global by @noboruma in #2037
- Make AWS Account id as mandatory field by @milan-deepfence in #2034
- Update register license spec by @milan-deepfence in #2039
- Register license api by @ramanan-ravi in #2038
- Make AWS Account ID mandatory for ECR registry and S3 integration by @jatin-baweja in #2040
- Added color props for dropdown item by @milan-deepfence in #2042
- fix-registry-casting: Fixing the registry casting and jfrog url by @varunsharma0286 in #2043
- (fix) make vulnerability node_id more unique by @ibreakthecloud in #2045
- Fix incorrect scan status on the node with a failed scan history by @ramanan-ravi in #2047
- Added data test id by @milan-deepfence in #2050
- Deploying Deepfence Agents on Linux by @ramanan-ravi in #2046
- add cleanup for old threat intel databases by @gnmahanth in #2052
- Handle slack integration errors by @ramanan-ravi in #2053
- add api to send test email by @ibreakthecloud in #2051
- (feat.) sendgrid support in email conf by @ibreakthecloud in #2056
- Update api spec by @milan-deepfence in #2058
- fix 5xx error in email test by @ibreakthecloud in #2061
- Send default cloud provider by @milan-deepfence in #2065
- update read-only-user permissions by @gnmahanth in #2068
- add field validation in test smtp/email conf by @ibreakthecloud in #2066
- Added test email feature in email configuration by @milan-deepfence in #2059
- Set date range when generate report by @ramanan-ravi in #2063
- show date range selection instead of fixed duration when creating reports by @manV in #2067
- fix lint issues caused by unused err!=nil check by @gnmahanth in #2069
- Handle read only user by @milan-deepfence in #2070
- UI light theme by @milan-deepfence in #2072
- Separate tables for Gen AI integrations lists by @manV in #2071
- fix: where server container is restarted haproxy shows 503 by @gnmahanth in #2073
- Disallow deletion of generation in progress reports by @manV in #2076
- Support deleting cloud accounts by @gnmahanth in #2060
- cloud account delete api change request method from DELETE to PATCH by @gnmahanth in #2078
- Delete cloud or cloud org account for posture by @milan-deepfence in #2079
- Fix incorrect button state, missing testid by @milan-deepfence in #2081
- fix missing committing for cloud account deletion by @gnmahanth in #2082
- Enable or disabled action for delete account by @milan-deepfence in #2083
- Dynamically generate signed URL for file server objects by @ramanan-ravi in #2074
- Dynamically generate signed URL for file server objects by @ramanan-ravi in #2087
- fix haproxy resolver fails on kubernets with out full service dns names by @gnmahanth in #2088
- ISSUE-2174: Fixing SBOM file display and report download failure by @varunsharma0286 in #2091
- Added data test id by @milan-deepfence in #2092
- add sbom download type, fix not showing of chart in dark mode by @milan-deepfence in #2095
- add more room for scope reports & optimize memory usage by @noboruma in #2094
- fix cypher query in diff by @ibreakthecloud in #2093
- allow async merge of reports by @noboruma in #2097
- Interchange base and to scan id for scan compare by @milan-deepfence in #2096
- clean up discovery code and build by @noboruma in #2100
- On scan delete, set previous scan id on the nodes by @ramanan-ravi in #2099
- Fix not showing resource detail, add agent running column by @milan-deepfence in #2104
- Add system label for deepfence containers, images and pods by @ramanan-ravi in #2107
- Documentation for postgresql db export and import by @ramanan-ravi in #2112
- Add scan status message if it was marked as error by cleanup job by @ramanan-ravi in #2113
- Apply field filters when fetching severity counts for scans by @ramanan-ravi in #2114
- Scan history deletion enhancements by @milan-deepfence in #2116
- Apply field filters when fetching severity counts for scans by @ramanan-ravi in #2117
- Fix dark mode for scan period selection under setting by @milan-deepfence in #2118
- pod and container completion by @gnmahanth in #2120
- Namespace filter for pods and container table in topology by @milan-deepfence in #2121
- Option to include deepfence system in scan start by @milan-deepfence in #2119
- Update login invalid credentials error message by @ramanan-ravi in #2124
- remove result from threat graph when no scans on node by @gnmahanth in #2122
- Bug fix for missing deepfence system scan and refresh account by @milan-deepfence in #2123
- Option to use external file server by @ramanan-ravi in #2125
- Dynamically generate signed URL for file server objects by @ramanan-ravi in #2126
- update plugins by @gnmahanth in #2127
Full Changelog: v2.1.1...v2.2.0
v2.1.1
What's Changed
- fix report name changing while downloading same scan multiple times by @gnmahanth in #1959
- Filters posture scan result by id by @milan-deepfence in #1958
- fix: reports download from integration should be latest by @gnmahanth in #1962
- ISSUE-2130: Fixing the dockerhub validation and error message by @varunsharma0286 in #1964
- Change made to refer created at field instead of updated at field by @milan-deepfence in #1961
- Add data test id by @milan-deepfence in #1966
- add image_stub_filter to list registry image tags by @gnmahanth in #1968
- fix scan summary counts wrong in per db view by @gnmahanth in #1969
- Add host_node_id in CloudNode Account Info by @jatin-baweja in #1970
- fix registry tags and scan counts by @gnmahanth in #1972
- ISSUE-2136: Handling the case when no nod type filters are specified by @varunsharma0286 in #1974
- Fix image tags empty table by @milan-deepfence in #1973
- Periodically refresh cloud metadata in k8s reporter by @ramanan-ravi in #1971
- Add resource id in k8s cluster posture report by @ramanan-ravi in #1976
- Allow use of created_at for Scan timestamp display on UI by @jatin-baweja in #1980
- Fix modal closes automatically by @milan-deepfence in #1977
- fix: node type for k8 posture report by @milan-deepfence in #1981
- Fix node name issues in applied filters by @manV in #1963
- Handle error after navigating to deleted scan by @manV in #1979
- Fix binaries build with missing static files by @jatin-baweja in #1984
- Gitlab sync issue by @jatin-baweja in #1986
- ISSUE-2080: Adding intermediate "DELETE_PENDING" state by @varunsharma0286 in #1982
- Support loadBalancerSourceRanges in router helm chart by @ramanan-ravi in #1987
- Disable action for scan status with delete pending by @milan-deepfence in #1983
- ARM64 binary build by @ramanan-ravi in #1988
- Add data-testid by @milan-deepfence in #1990
- Fix registry name on registry pages breadcrumbs by @manV in #1989
- Сorrection of spelling errors by @patsevanton in #1992
- Add connection IPs information to the-internet by @noboruma in #1993
- Fix issue in console helm chart by @ramanan-ravi in #1995
- ISSUE-2139: Fixing few issues and code workflow by @varunsharma0286 in #1996
- Added more filters in integration report by @milan-deepfence in #1997
- Show inbound and outbound ips individually on connections table by @manV in #1998
- add metrics to collect counts of all neo4j node labels by @gnmahanth in #1999
- Corrected queries for scan pages by @milan-deepfence in #2000
- Add base64 encoded property support for metadata panel by @manV in #2001
- update neo4j health check to consider database backup by @gnmahanth in #2003
- (feat.) add matomo for analytics support by @ibreakthecloud in #1919
- fix undefined error by @milan-deepfence in #2004
- Fix steampipe installation in cluster agent by @ramanan-ravi in #2005
- add metrics to track notifications sent by @gnmahanth in #2006
- ISSUE-2142: Changes to fix registry by @varunsharma0286 in #2008
- Change registry terminology by @milan-deepfence in #2002
- Select channel for sending notification of scan results by @milan-deepfence in #2010
- Remove duplicate code by @milan-deepfence in #2012
- (feat:backend) add support to select integration while 'Notify' by @ibreakthecloud in #2009
- ISSUE-2147: Using updated time in Seconds instead of milliseconds by @varunsharma0286 in #2015
- Added splunk Doc by @akumars1 in #2013
- Set product version in documentation from environment variable by @akumars1 in #2007
New Contributors
- @patsevanton made their first contribution in #1992
Full Changelog: v2.1.0...v2.1.1
v2.1.0
What's Changed
- ISSUE-1700: Fixing vulnerability scans for registry without credential by @varunsharma0286 in #1701
- Show details of resources from posture scan result by @milan-deepfence in #1698
- #1694 Adding Most Exploitable Vuln xlsx pdf report by @saurabh2253 in #1699
- Download most exploitable vulnerabilities by @milan-deepfence in #1702
- Fix static check lints on server & bootstrapper by @noboruma in #1704
- Fix static check lints on worker by @noboruma in #1705
- Adjust column width by @milan-deepfence in #1707
- send root benchmark instead of multiple parent benchmarks by @gnmahanth in #1703
- fix: non messaging integration not sending full report by @ibreakthecloud in #1706
- Cloud resource table sort by posture scan status by @milan-deepfence in #1715
- tweak worker concurrency, option to configure concurrency from env by @gnmahanth in #1716
- ISSUE-1913-2: Changes to support custom scheduled jobs by @varunsharma0286 in #1714
- add asynq cli to worker container by @gnmahanth in #1718
- Show expand collapse state on graph nodes tooltip by @manV in #1708
- UI: Attack path graph resizes on dashboard page & link to posture from dashboard by @milan-deepfence in #1710
- backoff for 15 mins for integration failures by @ibreakthecloud in #1717
- feat: Option to specify queues processed by worker by @gnmahanth in #1719
- file upload function handle existing file overwrite by @gnmahanth in #1720
- Remove column from AWS security hub table by @milan-deepfence in #1721
- UI: Support to add and delete schedule jobs by @milan-deepfence in #1709
- fix: convert unix time to utc time string in xlsx reports by @gnmahanth in #1722
- Fix missing padding in posture tables by @milan-deepfence in #1724
- ISSUE-1592: Adding support for priority scans by @varunsharma0286 in #1723
- fix: make kafka broker metadataloader less verbose by @gnmahanth in #1728
- Fix issue when docker image id is shorter than 12 characters by @ramanan-ravi in #1729
- Added priority scan option by @milan-deepfence in #1725
- [arm64] architecture aware agent build by @tomaszjonak in #1727
- Error message retrieve from api response by @milan-deepfence in #1731
- Improvement on upgrade mechanism by @noboruma in #1732
- Compile fluent-bit plugins with go1.20 by @noboruma in #1735
- Add auto update on patch & add version memo by @noboruma in #1736
- Add manual agent tarball upload by @noboruma in #1738
- Use self hosted runner & add get agent version API by @noboruma in #1739
- Integration with ChatGPT by @ramanan-ravi in #1734
- Generative AI Integration UI by @manV in #1737
- ISSUE-1847: Adding scripts and documenting the steps for neo4j backup/restore by @varunsharma0286 in #1740
- Fix empty metadata struct in api docs by @noboruma in #1741
- Compress s3 data by @saurabh2253 in #1660
- Easy understandable for existence of compare scan results by @milan-deepfence in #1742
- ISSUE-2015-1: Fixing the timestamp for notifications, panic in server and compilation by @varunsharma0286 in #1748
- Bring back api doc fix by @noboruma in #1751
- [CI] golang linter configuration + bootstrapper fixes by @tomaszjonak in #1743
- [deps] update compliance version by @tomaszjonak in #1758
- ISSUE-2023: Sending notifications to specific integrations by @varunsharma0286 in #1764
- Fix registry sync status when it was just added by @ramanan-ravi in #1763
- LLM integration UI improvements, Bedrock integration by @manV in #1756
- Add integration with Amazon Bedrock by @ramanan-ravi in #1760
- fix missing results in linux compliance scan by @gnmahanth in #1767
- Add async job to bulk delete scan instead of http sync delete by @gnmahanth in #1768
- Corrected advanced filters integration for compliance by @milan-deepfence in #1765
- Remove never scanned from scans by @milan-deepfence in #1766
- Fix inappropriate filters in create report by @milan-deepfence in #1762
- Change delete scan history message by @manV in #1769
- ISSUE-2035: Allowing same integration with different filters by @varunsharma0286 in #1772
- cloud posture masking not working by @gnmahanth in #1773
- [lint] deepfence_utils: CI def + fixes + worker/server adjustments by @tomaszjonak in #1771
- ISSUE-1744: Fixing Cloud compliance report generation by @varunsharma0286 in #1775
- Added missing node type column for custom schedule jobs by @milan-deepfence in #1774
- Added public registry checkbox by @milan-deepfence in #1770
- ISSUE-2034: Removing token_auth log from user audit logs by @varunsharma0286 in #1780
- Handle 403 error by @milan-deepfence in #1779
- Registry image listing for report creation and disabled dropdown item by @milan-deepfence in #1783
- Fix scan status by @noboruma in #1782
- ISSUE-1999: Fixing Registry Repo Filters by @varunsharma0286 in #1784
- Fix UI consistancy issues by @manV in #1781
- fix: scan diff query, update CloudCompliance node_id by @gnmahanth in #1786
- Api to delete multiple registry accounts by @ramanan-ravi in #1787
- [lint] deepfence_server: fix all warnings by @tomaszjonak in #1788
- Add fluentbit wait on server availability by @noboruma in #1791
- Base64 encode the api token by @ramanan-ravi in #1792
- For new installation show message in UI by @ibreakthecloud in #1785
- add cve_node_id to runtime sbom by @gnmahanth in #1794
- Use cve_node_id when navigating to CVE from SBOM list by @manV in #1795
- ISSUE-1744-2: Backend changes for fixing reports from integration by @varunsharma0286 in #1796
- Change account_id to node_id by @milan-deepfence in #1793
- Fix style on clear of combobox single option by @milan-deepfence in #1797
- ISSUE-1789: Adding filename and removing unused fields by @varunsharma0286 in #1798
- ISSUE-2052: Fixing diagnostic logs for fresh setup by @varunsharma0286 in #1799
- prioritize issue fields in the details side panel by @manV in #1802
- Multiple toast message in download of scan results by @milan-deepfence in #1800
- Fix item hidden when side navigation is scrollable by @manV in #1803
- Change agent upgrade server to allow multi ids by @noboruma in #1806
- Fix registry id deduplication logic by @ramanan-ravi in https://github.com/deepfence/ThreatMapper/...