Release 2.0.0 #299
Draft
Release 2.0.0 #299
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Restructure directories
Fix pipelines errors
… path field to target ports
…d new API token model
… well as, Telegram bot chats
Add Bandit scans to SAST workflow
… of Flake8 and isort scans for the backend
Check code style
Backend optimization
* Fix code style issues * Remove isort check as imports are handled by black * Ignore false positives detected by Semgrep, Bandit and GitLeaks * Fix MyPy issues * Fix unit tests * Ignore missing imports in MyPy * Fix import issues reported by flake8 * Fix import * Fix unit tests * Fix typing * Fix typing * Fix typing * Try to fix unit tests * Ignore typing issue * Use semgrep 1.52.0 in CI/CD * Fix Defect-Dojo test * Fix unit tests * Fix unit tests
* Download original reports generated by tools * Fix typing * Fix executions serializer
* Custom proxy configuration for executions * Remove unused import
* New endpoint to get RQ status and stats * Fix unit tests
* Pentesting notes feature * Fix code style issues
* Integration with HackTricks to link findings to wiki resources * Update CHANGELOG * Fix integrations unit tests
* Improve code style, and new reporting feature to generate JSON and XML reports * Fix code style and ignore false positives reported by Semgrep and Bandit * Fix mail template * Improve checks before sending notifications * Fix style errors * Fix style errors * Initial PDF report generation * Improve PDF template * Finish PDF template * Unit tests for reporting module * Fix code style * Fix code style * Ignore semgrep false positives in the PDF template * Ignore semgrep false positives in the PDF template * Improve unit tests coverage
* Add Chain-Bench scans to CI/CD * Fix chain-bench hash * Add quotes to echo and remove debugging echo * Upgrade Semgrep version and add Njsscan scans for frontend code * Force frontend change for testing Njsscan * Add Dockle scans to CI/CD * Force Docker change for testing Dockle * Fix syntax in workflow * Add github environment to chain-bench scans * Fix chain-bench results handling * Add continue-on-error to Dockle scans * Remove chain-bench reporting as it's not working
* Limit triaging features to those findings that need it, handle finding fixes and new auto fix findings feature * Fix findings automatically when they are no longer present in the target, or when their parent findings are marked as fixed * Fix findings related to automatically fixed findings too * Fix code style * Fix import * Fix code style * Fix some findings errors * Unit tests for latest changes on findings handling * Fix some errors in unit tests * Replace POST method for dislike by DELETE * Fix custom DELETE endpoints * Fix code style * Update changelog * Fix filtering issue in reporting feature * Fix get_related_findings method
* Update NVD NIST API calls to use the API version 2.0 * Fix unit tests
) * Hide authentication details in execution output, error and reports * Fix code style * Fix code style * Improve unit tests coverage and don't protect authentication name as it will be shown on UI * Fix error in unit tests * Fix code style * Check if report file exists before protecting it * Fix unit tests * Fix error in unit tests
* Customization of HTTP headers * Fix code style * Fix unit tests
* Remove scheduled_in and scheduled_time_unit from tasks * Fix code style * Fix code style * Fix typo * Remove debug input * Fix input validation
* Multi Factor Authentication * Unit tests for MFA * Fix code style * Fix code style * Fix code style * Fix Bandit finding * Remove unused import * Fix error in reset password feature * Fix errors and unit tests
* Initial implementation for the alert system and the CVE Crowd integration * Fix integrations and add notifications for the alerts via Telegram and mail * Unit tests for CVE Crowd integration, fix code style and ignore Semgrep false positives * Fix code style and ignore Bandit false positive * Fix code style * Move monitor job to RQ * Unit tests for alerts * Fix code style * Fix code style * Fix code style * Fix unit test * Fix unit tests * Fix error in PUT operation * Fix unit tests
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.