Features
For a full description of features in this release see the v4.17 Product Announcement.
- [DRA-1103] - "Reference component" renamed to "Project component".
- [DRA-1107] - New Context Menu options organization in Diagram.
- [DRA-1023] - Added a new tooltip, with descriptions and risk pattern previews in the diagram.
- [MSR-1045] - Updated Security Classification specification according to the API guidelines.
- [RT-947] - Added "Hide N/A countermeasures" option in the countermeasures section.
- [RT-221] - Added an additional expiry filter for countermeasures.
Bug Fixes
- [DRA-947] - General/Kubernetes sections are updated only if the diagram is reloaded.
- [DRA-1008] - Fixed POST product (creation endpoint) that was returning wrong attribute types.
- [DRA-1173] - The component details on the scratchpad are displayed accordingly.
- [DRA-1178] - Fixed duplicated artifacts UUID on projects created from the version.
- [INR-763] - Fixed an error when trying to open a version of a project with a non-admin user.
- [INR-769] - Lock icon displayed in the project's dashboard.
- [SIN-369] - Fixed an error for invited users losing their API token after accepting the invitation.
New Knowledge-base Content
Cloud components:
-
[CON-1469, CON-1470 & CON-1471]: New SAP components:
-
SAP BOBJ (BusinessObjects Business Intelligence Platform)
-
SAP BODS (Business Object Data Services)
-
SAP MRS (Multi resource Scheduling)
-
SAP HR (Human Resources)
-
SAP Enterprise Portal
-
SAP ALE (Application Link Enabling)
-
SAP Application Server
-
SAP Content Server
-
SAP Gateway
-
SAP SLT (Landscape Transformation Replication Server)
-
Content Updates:
-
[CON-1577]: Countermeasure with ref “
CWE-603
" has changed its name from"Enforce authentication on the server-side"
to"Deploy a robust server-side validation and authentication system"
-
[CON-1580, CON-1581, CON-1587, CON-1611, CON-1612, CON-1613, CON-1615, CON-1616]: Added new set of questions for functional components
-
[CON-1584]: Countermeasure with ref “
C-SAFE-FILE-HANDLER
" has been updated with new name and description -
[CON-1588]: Added new library with content related with legal regulations, starting with the California Consumer Privacy Act (CCPA)
-
[CON-1608]: Removed countermeasure with ref “follow-jwt-standard-generation-token” from the GENERIC-SERVICE:SESSION risk pattern
-
[CON-1617]: Default library names have been updated:
Old name |
New name |
CS-Default |
IR Software Architecture Components |
CS-Default-Security-Policies |
IR Default Rules for Standards |
Docker CIS |
IR Docker |
IoT Security Compliance Framework |
IR Internet of Things |
IR-SAP-Components |
IR SAP Components |
IR-Virtual-Components |
IR Virtual Components |
Kubernetes Library DevOps |
IR Kubernetes |
Microservice Library Developer |
IR Microservices |
OWASP MASVS |
IR Mobile |
UNECE WP.29 CSMS |
IR Automotive |
Comments
0 comments
Article is closed for comments.