Skip to main content

Release 4.18.0 - 20-07-2023

rules
  • Updated

Features

For a full description of features in this release see the v4.18 Product Announcement.

  • [ARCH-798] - Embed UserPilot into the draw.io iframe.
  • [DRA-1130] - [API Refactor] Adjusted template domain endpoints following DDD.
  • [DRA-1141] - Modified the width of Questionnaire columns.
  • [DRA-1180] - [API v2] Created endpoints to return the current artifact.
  • [DRA-1188] - [API v2] Created reset templates diagram endpoint.
  • [DRA-1200] - Fix the Questionnaire space between the table and the paragraph.
  • [DRA-1205] - [API V2] Improved lock information in project endpoints.
  • [DRA-1206] - [API V2] Improved Projects and Template endpoints.
  • [DRA-1229] - [API V2] Refactored project and template tags in requests and responses from endpoints v2.
  • [DRA-1230] - [API V2] Adjusted current artifact endpoints to return 200 instead of 404.
  • [INR-759] - Now the same report has the same UUID across project versions.
  • [MSR-987] - Implemented APIv2 endpoint to delete a Standard.
  • [MSR-1009] - Implemented APIv2 endpoint to read Risk calculation parameters.
  • [MSR-1056] - Implemented APIv2 endpoint to get all the countermeasures associated with a specific .standard.
  • [MSR-1076] - Unified the creation of countermeasures on a single method.
  • [MSR-1090] - Implemented APIv2 endpoint to list Assets.
  • [MSR-1091] - Implemented APIv2 endpoint to create an Asset.
  • [MSR-1093] - Implemented APIv2 endpoint to read an Asset.
  • [MSR-1094] - Implemented APIv2 endpoint to delete an Asset.
  • [OPT-876] - Ensured the core's TF and TFPLAN mapping files are equivalent.
  • [SIN-1028] - When adding settings automatically remove weaknesses without countermeasures identified to general and project settings.
  • [MSR-1075] - Added functionality to let the user decide when empty weaknesses should be removed from the threat model on rules execution.
  • [OPT-786] - Create a new simplified mapping format for tfplan.

Bug Fixes

  • [ARCH-831] - Fixed an error because launching with the parameter spring.liquibase.dropFirst was failing.

Security Fixes

  • [ARCH-723] - Avoid using the last password when resetting it.
  • [ARCH-826] [ARCH-882] [ARCH-900] [ARCH-925] - Upgraded internal dependencies.

New Knowledge-base Content

New components:

  • [CON-1653, CON-1654, CON-1657, CON-1659]: New functional components:

    • Push Notification

    • Checkout

    • File Generator

    • Plugin System

  • [CON-1623]: New GCP components:

    • GCP Endpoints

    • GCP Private Access

    • GCP PSC (Private Service Connect)

    • GCP Serverless VPC Access

Content Updates:

  • [CON-1555]: OWASP MASVS updated to version 2.0.0

  • [CON-1644]: OWASP API Security Top Ten updated to version 2023

Related articles

Comments

0 comments

Article is closed for comments.

Powered by Zendesk