1.4.15

What's Changed

• (API) fix: further improved performance for endpoints that call getCollection (#1363)
• (API) fix: ensure updateDefaultRev is called as part of a transaction (#1370)
• (UI) feature: enhanced column filters (#1367 )
• (API) chore: dependency updates

Full Changelog: 1.4.14...1.4.15

1.4.14

What's Changed

• (UI/API) feat: USMC MCCAST formatted POAM export option (#1345, thank you, @whalenda and NIWC/MCBOSS)
• (API) fix: pass collectionId to getCollectionLabels() when known for better performance (#1363)
• (API) fix: metadata query param parsing (#1359)
• (API) fix: getStigById/getUserByUserId return 404 for nonexistent resources (#1358)
• (API) enhancement: updated contribution guide
• (build) enhancement: skips sonarcloud actions when PR form fork (#1351)
• (API) chore: update mysql init scripts
• (API) chore: dependency updates

New Contributors

• @whalenda made their first contribution in #1345

Full Changelog: 1.4.13...1.4.14

1.4.13

What's Changed

• (API) feat: More “Anonymized Deployment Details” report enhancements
• (UI/API) fix: Enforce elevate=true parameter for Reference STIG imports
• (UI) feat: Added load mask to Deployment Details report
• (UI) feat: Sort labels in column filters
• (UI) refactor: Adjust rendering for invalid asset labels
• (UI) refactor: Remove unneeded labels projection from initial Collections request
• (UI) refactor: Suppress unneeded requests for dashboard data when first loaded
• (API) chore: dependency updates

Full Changelog: 1.4.12...1.4.13

1.4.12

What's Changed

• (API) feat: “Anonymized Deployment Details” report enhancements
• (UI/API) feat: Date/time added to filenames for exported/generated files
• (API) fix: Asset updates without collectionId property preserves labels
• (API) fix: default_rev and stats updated when current STIG revision is removed
• (API) fix: Resolved issue preventing new deployments from using alternative DB user
• (build) fix: resolved issue building images with uglify.js
• (UI/API) feat: Default review history records setting for new Collections set to 5
• (UI/API) feat: Max review history records setting limited to 15
• (build) chore: dependency updates

Note: This release includes database migration to update settings for existing Collections to reflect the new Review History cap where appropriate. No history is altered as part of the migration, history entries will be trimmed to new max as Reviews are subsequently updated.

Full Changelog: 1.4.11...1.4.12

1.4.11

What's Changed

• (UI/API) Removing feature from Release 1.4.8 adding resultEngine, user, statusUser columns to Detail metrics exports. The feature was found to cause poor performance in large deployments.

Note: This release includes a database migration, reverting changes made in PR: #1283

Full Changelog: 1.4.10...1.4.11

1.4.10

What's Changed

• (API) bugfix: Resolves issue allowing Collection Owner/Managers to create restricted grant mappings outside of Collection boundary

Full Changelog: 1.4.9...1.4.10

1.4.9

What's Changed

• (UI) bugfix: Resolves issue preventing node expansion in the Export Results interface

Full Changelog: 1.4.8...1.4.9

1.4.8

What's Changed

• (API) feat: Added resultEngine, user, statusUser columns to Detail metrics exports.
• (API) feat: Listen on STIGMAN_API_PORT on startup and respond with status while bootstrap process is running.
• (API) chore: Remove Dockerfile healthcheck
• (API) chore: Refactor controllers to use a set of common functions when checking a collection grant or invoking elevation
• (Docs) chore: Minor updates and clarifications

Note: This release includes a database migration. Initial bootstrap may take some time for deployments with a very large number of Reviews.

Full Changelog: 1.4.7...1.4.8

1.4.7

What's Changed

• (API) dependency: Update mysql2 library in response to CVE-2024-21511
• (UI) bugfix: STIG Management UI now displays system-wide count of Collections using a STIG.

Full Changelog: 1.4.6...1.4.7

1.4.6

What's Changed

• (API) dependency: Update mysql2 library in response to CVE-2024-21508, CVE-2024-21509, CVE-2024-21507
• (API) Refactor API definition for better maintainability
• (API) Refactor db query construction for consistency

Full Changelog: 1.4.5...1.4.6