MISP
/
misp-website
mirror of https://github.com/MISP/misp-website
2
0
Fork 0
Code Issues Releases Wiki Activity

chg: [changelog] updated

pull/104/head
Alexandre Dulaunoy 2024-06-03 20:50:28 +02:00
parent 2733c86395
commit 9d5d205b80
No known key found for this signature in database
GPG Key ID: 09E2CD4944E6CBCD
7 changed files with 2555 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1703
static/Changelog
View File

File diff suppressed because it is too large Load Diff

18
static/Changelog-PyMISP.txt
View File

@ -7,9 +7,27 @@ Changelog
Changes
~~~~~~~
- Bump changelog. [Raphaël Vinot]
v2.4.190 (2024-04-18)
---------------------
Changes
~~~~~~~
- Bump object templates. [Raphaël Vinot]
- Bump changelog. [Raphaël Vinot]
- Bump version, deps. [Raphaël Vinot]
- Bump deps, require python 3.9+ for doc. [Raphaël Vinot]
- Bump deps. [Raphaël Vinot]
- [data] describeTypes file updated. [Alexandre Dulaunoy]
- Bump deps. [Raphaël Vinot]
Fix
~~~
- [internal] Correct way to convert bytes to string if orjson exists.
[Jakub Onderka]
v2.4.188 (2024-03-22)
---------------------

179
static/Changelog-misp-galaxy.txt
View File

@ -1,6 +1,185 @@
# Changelog
## v2.4.192 (2024-04-26)
### New
* [interpol] INTERPOL Dark Web and Virtual Assets Taxonomies. [Christophe Vandeplas]
INTERPOL Dark Web and Virtual Assets Taxonomies
* [interpol] Addition of INTERPOL Darknet- and Cryptoasset Ecosystems taxonomy. [Christophe Vandeplas]
* [UKHSA] Added UK Health Security Agency Culture Collections. [Christophe Vandeplas]
* [UKHSA] Added UK Health Security Agency Culture Collections. [Christophe Vandeplas]
* [tool] Generator for UK Health Security Agency Culture Collections. [Christophe Vandeplas]
### Changes
* [doc] index updated. [Alexandre Dulaunoy]
* [tidal] updated to the latest version. [Alexandre Dulaunoy]
* [sigma] Updated to the latest version. [Alexandre Dulaunoy]
* [mitre-attack] updated to the latest version ATT&CK v15. [Alexandre Dulaunoy]
* [interpol] add Abuses together with Entities. [Christophe Vandeplas]
* [ransomware] Akira added. [Alexandre Dulaunoy]
### Fix
* [interpol] use yaml.safe_load. [Christophe Vandeplas]
* [ukhsa] fix duplicate entry. [Christophe Vandeplas]
### Other
* Merge pull request #968 from Delta-Sierra/main. [Alexandre Dulaunoy]
add Cisco Talos and more producers
* Add Cisco Talos and more producers. [Delta-Sierra]
* Merge pull request #965 from Delta-Sierra/main. [Alexandre Dulaunoy]
Creation new galaxy "entity"
* Fix uuid. [Delta-Sierra]
* Add Arcane Door. [Delta-Sierra]
* Merge https://github.com/MISP/misp-galaxy. [Delta-Sierra]
* Merge remote-tracking branch 'MISP/main' [Christophe Vandeplas]
* Merge pull request #962 from Mathieu4141/threat-actors/c453ff21-ff60-435c-b245-56e293d39bc0. [Alexandre Dulaunoy]
[threat actors] Add 3 actors
* [threat-actors] Add UAC-0149. [Mathieu4141]
* [threat-actors] Add UTA0218. [Mathieu4141]
* [threat-actors] Add GhostR. [Mathieu4141]
* Merge pull request #955 from cvandeplas/main. [Christophe Vandeplas]
Added UK Health Security Agency Culture Collections
* [UKHSA] fix: addressed duplicate issue. [Christophe Vandeplas]
* Merge branch 'main' of https://github.com/cvandeplas/misp-galaxy. [Christophe Vandeplas]
* Merge branch 'main' of github.com:MISP/misp-galaxy into main. [Alexandre Dulaunoy]
* Merge pull request #961 from Delta-Sierra/main. [Alexandre Dulaunoy]
Feeding with Cutting Edge, Part 4 data
* Creation new galaxy entity. [Delta-Sierra]
* Fix typo tool silver ->Sliver. [Delta-Sierra]
* Fix forgotten meta. [Delta-Sierra]
* Merge. [Delta-Sierra]
* Feeding with Cutting Edge, Part 4 data. [Delta-Sierra]
## v2.4.190 (2024-04-18)
### New
* [target-information] Sahrawi Arab Democratic Republic added. [Alexandre Dulaunoy]
* [NER] Extract Named Entity Recognition source (NER) from all MISP galaxy. [Alexandre Dulaunoy]
This can be used for NLP training and especially to build NER
### Changes
* [threat-actor] APT44 added. [Alexandre Dulaunoy]
* [threat-actors] updated with references. [Rony]
* [sigma-rules] updated to the latest version. [Alexandre Dulaunoy]
* [threat-actors] add `Storm-0558` references. [Rony]
* [threat-actors] updated with references. [Rony]
### Fix
* [threat-actor] remove comma. [Rony]
### Other
* Merge pull request #960 from Mathieu4141/threat-actors/666b2554-9bea-42e8-9e11-299597de70b3. [Alexandre Dulaunoy]
[threat actors] Adding 8 new actors + 4 aliases
* [threat-actors] r0ny123 review. [Mathieu Beligon]
* Merge branch 'main' into threat-actors/666b2554-9bea-42e8-9e11-299597de70b3. [Mathieu Beligon]
* [threat-actors] Add APT41 aliases. [Mathieu4141]
* [threat-actors] Add Starry Addax. [Mathieu4141]
* [threat-actors] Add Volt Typhoon aliases. [Mathieu4141]
* [threat-actors] Add Earth Hundun. [Mathieu4141]
* [threat-actors] Add RUBYCARP. [Mathieu4141]
* [threat-actors] Add CoralRaider. [Mathieu4141]
* [threat-actors] Add Sandworm aliases. [Mathieu4141]
* [threat-actors] Add BlackJack. [Mathieu4141]
* [threat-actors] Add Smishing Triad. [Mathieu4141]
* [threat-actors] Add Bignosa. [Mathieu4141]
* [threat-actors] Add Opal Sleet aliases. [Mathieu4141]
* [threat-actors] Add CyberNiggers. [Mathieu4141]
* Merge pull request #959 from r0ny123/cn. [Alexandre Dulaunoy]
Updated threat actor references
* Merge branch 'MISP:main' into cn. [Rony]
* Merge pull request #958 from MISP/dependabot/pip/tools/mkdocs/idna-3.7. [Alexandre Dulaunoy]
Bump idna from 3.6 to 3.7 in /tools/mkdocs
* Bump idna from 3.6 to 3.7 in /tools/mkdocs. [dependabot[bot]]
Bumps [idna](https://github.com/kjd/idna) from 3.6 to 3.7.
- [Release notes](https://github.com/kjd/idna/releases)
- [Changelog](https://github.com/kjd/idna/blob/master/HISTORY.rst)
- [Commits](https://github.com/kjd/idna/compare/v3.6...v3.7)
---
updated-dependencies:
- dependency-name: idna
dependency-type: direct:production
...
* Merge branch 'MISP:main' into cn. [Rony]
* Merge branch 'MISP:main' into cn. [Rony]
## v2.4.189 (2024-04-05)
### Other

164
static/Changelog-misp-objects.txt
View File

@ -1,6 +1,170 @@
# Changelog
## %%version%% (unreleased)
### Changes
* [cs-beacon-config] encoded-data as file attachment instead of text. [Alexandre Dulaunoy]
As encoded-data might be large and not really useful to be displayed in
the UI of MISP. We moved it to an `attachment` attribute type.
We keep the `attachment` as Base64 to avoid any risk of people
downloading or executing as potential malicious file. So it MUST be
encoded in Base64 as it was before.
* [organization] add a MISP UUID if present. [Alexandre Dulaunoy]
* [relationships] add initiated-by, summarizes, summarized-by. [Jeroen Pinoy]
### Fix
* [jq] all the things. [iglocska]
### Other
* Organization object. [Andras Iklody]
- Added "private" to the list of sectors as suggested by Monsieur Hamm.
* Merge pull request #431 from Wachizungu/add-summarises-relationship. [Alexandre Dulaunoy]
chg: [relationships] add initiated-by, summarizes, summarized-by
## v2.4.192 (2024-04-26)
### Changes
* [registry-key] jq all the things. [Alexandre Dulaunoy]
* [registry-key] added Artifacts dropped as potential category. [Christophe Vandeplas]
* [relationships] updated. [Alexandre Dulaunoy]
* [ransomware-group-post] severity field sane default added. [Alexandre Dulaunoy]
* [doc] updated. [Alexandre Dulaunoy]
* [cs-beacon-config] major update following shadowserver.org requirements. [Alexandre Dulaunoy]
- Fixed some matching type instead of text (like size-in-bytes or integer)
- Added many fields and replace name with `_` to `-`
- Added some basic description
* [ransomware-group-post] updated with shadowserver object template format. [Alexandre Dulaunoy]
- underscores replaced with hyphen
- descriptions added
- decorrelation added for some fields
* [instant-message] remove newlines. [Alexandre Dulaunoy]
* [relationships] `publishes` added. [Alexandre Dulaunoy]
* [flowintel-cm] notes. [David Cruciani]
### Fix
* [ransomware-group-post] added the missing descriptions for `actor-geo-stats-30d` and `actor-total-stats-30d` [Alexandre Dulaunoy]
* [cs-beacong-config] typo fixed. [Alexandre Dulaunoy]
* [cs-beacon-config] updated the NAICS description. [Alexandre Dulaunoy]
* [relationships] newline story. [Alexandre Dulaunoy]
### Other
* Merge pull request #429 from Delta-Sierra/master. [Alexandre Dulaunoy]
add relationship interviews/is-interviewed-by
* Fix version. [Delta-Sierra]
* Merge https://github.com/MISP/misp-objects. [Delta-Sierra]
* Relationship interview. [Delta-Sierra]
* Merge pull request #428 from menewol/main. [Alexandre Dulaunoy]
Added Mattermost
* Added Mattermost. [menewol]
* Merge pull request #427 from Delta-Sierra/master. [Alexandre Dulaunoy]
Moar relationships
* Moar relationships. [Delta-Sierra]
* Merge. [Delta-Sierra]
* Add deploy relationship. [Delta-Sierra]
* Merge pull request #426 from DavidCruciani/main. [Alexandre Dulaunoy]
flowintel-cm notes change
* Merge branch 'MISP:main' into main. [David Cruciani]
## v2.4.190 (2024-04-18)
### New
* [gpf] Split actors_speaker and settings_competition into more. [Christophe Vandeplas]
* [gpf] Added Generalizing Persuasion Framework. [Christophe Vandeplas]
### Changes
* [readme] updated list of objects. [Christophe Vandeplas]
* [news-media] add governmental communication and also news agency source (including alert type) [Alexandre Dulaunoy]
* [doc] list updated. [Alexandre Dulaunoy]
* [relationships] `shares` relationship added. [Alexandre Dulaunoy]
Thanks to @gregWDumont for the feedback
* [network-traffic] Going for the `protocol` attribute in singular. [Christian Studer]
### Fix
* [relatonships] because mirrors are great. [Alexandre Dulaunoy]
* [relationships] newline. [Alexandre Dulaunoy]
* Changed a few attribute types in different template. [Christian Studer]
* [network-connection] Using the `size-in-bytes` attribute type for information expressed in bytes. [Christian Studer]
### Other
* Merge pull request #425 from Wachizungu/add-sponsors-and-supports-relationship-types. [Alexandre Dulaunoy]
add: [relationships] add a few relationship types and opposites
* Add: [relationships] add a few relationship types and opposites. [Jeroen Pinoy]
* Merge pull request #424 from cvandeplas/main. [Christophe Vandeplas]
new: Generalizing Persuasion (GP) Framework
* Merge branch 'main' of github.com:MISP/misp-objects. [Christian Studer]
* Merge branch 'main' of github.com:MISP/misp-objects into main. [Alexandre Dulaunoy]
* Add: [network-traffic] Generic Network Traffic object. [Christian Studer]
- Following the STIX 2.1 spec
* Merge branch 'main' of github.com:MISP/misp-objects. [Christian Studer]
## v2.4.189 (2024-04-05)
### New

21
static/Changelog-misp-taxonomies.txt
View File

@ -1,6 +1,27 @@
# Changelog
## v2.4.190 (2024-04-18)
### Changes
* [misp:event-type] Add description of the tags. [Jeroen Pinoy]
### Other
* Merge pull request #281 from Wachizungu/add-descriptions-to-misp-event-types. [Alexandre Dulaunoy]
chg: [misp:event-type] Add description of the tags
* Merge pull request #280 from cudeso/main. [Alexandre Dulaunoy]
Update machinetag.json
* Update machinetag.json. [Koen Van Impe]
Add review accuracy and review-quality
## v2.4.189 (2024-04-05)
### Changes

38
static/Changelog-misp-warninglists.txt
View File

@ -1,6 +1,44 @@
# Changelog
## v2.4.192 (2024-04-26)
### Changes
* [warning-lists] updated. [Alexandre Dulaunoy]
* Add ip-src|dst and ip-dst|port as matching attr types to cidr lists. [Jeroen Pinoy]
### Other
* Merge pull request #270 from Wachizungu/add-ip-port-to-cidr. [Alexandre Dulaunoy]
chg: Add ip-src|dst and ip-dst|port as matching attr types to cidr lists
* Merge pull request #269 from karenyousefi/main. [Alexandre Dulaunoy]
Update
* Update url-shortener. [Karen Yousefi]
update to V13
* Update list.json. [Karen Yousefi]
add taplink[.]cc
* Merge branch 'MISP:main' into main. [Karen Yousefi]
* Update README.md. [Karen Yousefi]
## v2.4.190 (2024-04-18)
### Changes
* [lists] updated to the latest version. [Alexandre Dulaunoy]
## v2.4.189 (2024-04-05)
### New

432
static/Changelog.txt
View File

@ -2,6 +2,438 @@ Changelog
=========
%%version%% (unreleased)
------------------------
Fix
~~~
- [server/feed] correlation bug. [iglocska]
- too many correlating events makes MISP barf
Other
~~~~~
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska]
- Merge pull request #9720 from schatzistogias/patch-1. [Alexandre
Dulaunoy]
Add Infoblox feed to defaults.json
- Add Infoblox feed to defaults.json. [schatzistogias]
v2.4.192 (2024-05-03)
---------------------
New
~~~
- [analyst data] missing views added. [iglocska]
- [test] Security test for OTP disabled. [Jakub Onderka]
- [test] Security test for forget password. [Jakub Onderka]
- [security] Make possible to disable (T/H)OTP. [Jakub Onderka]
This is useful if MISP is connected to identity provider that already provides strong authentication
- [fast api auth] added. [iglocska]
- added a new optional functionality to temporarily store hashed API keys in redis
- The duration of the temporary storage is controllable by a setting (defaults to 3 minutes)
- the hashing function used is an hmac sha-512 function, with the key being stored in a generated file on the instance
- this cuts the query times of extremely fast endpoints down drastically on heavy repeated use (such as warninglists/checkValue)
- [fast api auth] added. [iglocska]
- added a new optional functionality to temporarily store hashed API keys in redis
- The duration of the temporary storage is controllable by a setting (defaults to 3 minutes)
- the hashing function used is an hmac sha-512 function, with the key being stored in a generated file on the instance
- this cuts the query times of extremely fast endpoints down drastically on heavy repeated use (such as warninglists/checkValue)
- [internal] Send more logs to sentry as breadcrumbs. [Jakub Onderka]
Changes
~~~~~~~
- [component:CRUD] Added support of afterFind in the delete function.
[Sami Mokaddem]
- [schema] fix. [iglocska]
- [VERSION] bump. [iglocska]
- [analyst-data:view] Removed the redundant UUID popover button from the
UUID field. [Sami Mokaddem]
- [analyst-data:beforeSave] Make sure to set distribution to default
value if not provided. [Sami Mokaddem]
- [analyst-data:UI] Removed dep libraries. [Sami Mokaddem]
- [warning-lists] updated to the latest version. [Alexandre Dulaunoy]
- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [test] Avoid sleep for 6 seconds. [Jakub Onderka]
- [acl] Move site admin check as last check. [Jakub Onderka]
- [security] Disable resetting password when password change is
disabled. [Jakub Onderka]
- [analyst-data] Added support of capturing analyst-data nested in
attributes, events, eventreports and objects. [Sami Mokaddem]
- [ls22shell] Improvement for LS24 adding support of analyst-data &
detection/mitigation rules + some tweaks. [Sami Mokaddem]
- [UI] clicking on your user name should bring up the user profile,
fixes #9708. [iglocska]
- Set BrowscapPHP logging from default DEBUG to INFO. [Bradley Logan]
- [version bump] [iglocska]
- [config] Allow Oidc roles as string. [christianmg99]
- [config] Allow Oidc roles as string. [christianmg99]
- [behavior:analystDataParent] Prevent double nesting analyst data when
bulk fetching. [Sami Mokaddem]
- [CLI] Simplify updating JSON structures. [Jakub Onderka]
- [UI] Make menu little bit nicer. [Jakub Onderka]
- [internal] Remove outdated code from beforeFilter. [Jakub Onderka]
- [internal] Remove old way for putting API key to rest search. [Jakub
Onderka]
Fix
~~~
- [redirect loops] fixed for users that haven't done multiple mandatory
tasks during login yet. [iglocska]
- such as email OTP, change PW, read the news, etc.
- [news UI] fixed notice error. [iglocska]
- [security tests] removed otp_disabled check for email otp endpoint.
[iglocska]
- the two are distinct features
- [OTP] restored. [iglocska]
- [Email OTP] invalid ACL check reverted, allowing the feature to
function again. [iglocska]
- [evnet view] excluding correlations should also exclude
over_correlated attributes, fixes #9366. [iglocska]
- [external auth] fixed auth logging generating notices, fixes #9445.
[iglocska]
- [workflow:workflow-shell] Make sure a user is set when using non-
blocking workflow. [Sami Mokaddem]
- Fix #9722
- Thanks to @microblag for the proposed fix
- [analystdata] don't include the parent via the viewAnalystData
endpoints. [iglocska]
- [UI] added missing views. [iglocska]
- [UI] removed dumb check. [iglocska]
- [analystdata] ui fixes. [iglocska]
- [oidc] Fix issuer if not set. [Jakub Onderka]
- [logs] Fixed bug in paginating logs. [Sami Mokaddem]
- [analyst data] UI changes to make the loading on demand in the event
view. [iglocska]
- [event add] default value of threat level ID correctly injected into
the form, fixes #9714. [iglocska]
- [freetext] ip-src/ip-dst meta-type didn't have a valid category list.
[iglocska]
- [user registration] pgp key not saved from the registration.
[iglocska]
- [logs:index] Fixed UI pagination in application logs. [Sami Mokaddem]
- [galaxy_clusters] Add orgc filter option for index, set it as default
for galaxy view 'My Clusters' [Jeroen Pinoy]
- [sql logs] captured when benchmarking is enabled but debug level is <
2. [iglocska]
- [security] stored XSS in the correlation top list. [iglocska]
- if an attribute with an XSS payload as its value ends up being in the top list of correlations, then an administrator viewing the top correlations would execute the XSS
- as reported by Grzegorz Misiun
- [workflow:ui] Make sure to use full available width. [Sami Mokaddem]
- [benchmarking] speculative fix for using db settings and benchmarking,
fixes #9702. [iglocska]
- causes issues for some users, couldn't reproduce it, but addressed the potential issues
- [events:index] Fixed `tags` index filtering parameter to correctly
support list. [Sami Mokaddem]
- [internal] Normalize extension for image helper. [Jakub Onderka]
Fixes #9692
- [analyst-data:fetchAnalystDataBulk] Make sure to include all analyst-
data type. [Sami Mokaddem]
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami
Mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch 'feature/analyst-data-api' into develop. [Sami Mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into feature/analyst-
data-api. [Sami Mokaddem]
- Merge pull request #9690 from JakubOnderka/opt_disabled. [Jakub
Onderka]
new: [security] Make possible to disable (T/H)OTP
- Merge pull request #9700 from JakubOnderka/oidc-issuer-fix. [Jakub
Onderka]
fix: [oidc] Fix issuer if not set
- Merge branch '2.4' into develop. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge pull request #9697 from Wachizungu/add-orgc-filter-for-galaxy-
clusters-index. [Andras Iklody]
fix: [galaxy_clusters] Add orgc filter option for index, set it as de…
- Merge branch 'browscap_default' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #9695 from christianmg99/allow-oidc-roles-string.
[Jakub Onderka]
chg: [config] Allow Oidc roles as string
- Merge branch '2.4' into develop. [Sami Mokaddem]
- Revert "Revert "new: [event:index] Added support of ANDed tag
filtering in the backend"" [Sami Mokaddem]
This reverts commit 7cf9bcc94c0765e38aa8a4c8a69afaf46258857a.
- Merge remote-tracking branch 'origin/2.4' into develop. [Sami
Mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami
Mokaddem]
- Merge pull request #9696 from JakubOnderka/json-update. [Jakub
Onderka]
chg: [CLI] Simplify updating JSON structures
- Merge pull request #8673 from JakubOnderka/menu-ui. [Jakub Onderka]
chg: [UI] Make menu little bit nicer
- Merge pull request #8464 from JakubOnderka/restsearch-key-fetch.
[Jakub Onderka]
chg: [internal] Remove old way for putting API key to rest search
- Merge pull request #9686 from JakubOnderka/sentry-breadcrumb. [Jakub
Onderka]
new: [internal] Send more logs to sentry as breadcrumbs
- Merge pull request #9693 from JakubOnderka/image-helper-fix-vol2.
[Jakub Onderka]
fix: [internal] Normalize extension for image helper
v2.4.191 (2024-04-22)
---------------------
Changes
~~~~~~~
- [config] Set Oidc issuer. [Christian Morales Guerrero]
Fix
~~~
- [analyst-data:fetchAnalystDataBulk] Make sure to include all analyst-
data type. [Sami Mokaddem]
- [analyst-data:thread] Make sure to link the add_analyst_* buttons to
the correct element. [Sami Mokaddem]
Other
~~~~~
- Revert "new: [event:index] Added support of ANDed tag filtering in the
backend" [Sami Mokaddem]
This reverts commit fc922910929e7bbaf2a89c2e3387c3f743910549.
- Merge pull request #9694 from christianmg99/set-oidc-issuer. [Jakub
Onderka]
chg: [config] Set Oidc issuer
v2.4.190 (2024-04-18)
---------------------
New
~~~
- [feed:pullEvents] Added support of tag collection in feed
configuration. [Sami Mokaddem]
This allow to specify a tag collection for which all the tags will be applied on the pulled Events
- [workflowMouldes:stop-execution] Added message paramter to allow user
to provide a reason why the execution was stopped. [Sami Mokaddem]
- [event:index] Added support of ANDed tag filtering in the backend.
[Sami Mokaddem]
In addition of the OR filtering using searchtag:1|2, /events/index now supports AND filtering with searchtag:1&2.
The UI has not been updated yet.
- [feed] Added unpublish_event setting to ensure pulled events are in
the unpublished state. [Sami Mokaddem]
- [benchmarking suite] added. [iglocska]
- collect metrics about the usage of MISP
- stored in redis
- per endpoint / user / user-agent collection
- collection of execution time, php memory use, sql execution time, sql query count
- the collection happens on a daily basis
- Searchable / filterable interface for the collected data
- Dashboard widget for the collected data
Changes
~~~~~~~
- [PyMISP] Bump. [Raphaël Vinot]
- [warninglists] updated to the latest version. [Alexandre Dulaunoy]
- [taxonomy] updated to the latest version. [Alexandre Dulaunoy]
- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy]
- [misp-objects] updated. [Alexandre Dulaunoy]
- [version] bump. [iglocska]
- Bump PyMISP. [Raphaël Vinot]
- [db_schema] Bumped version. [Sami Mokaddem]
- [feed] Added support of tag_collection_id when dealing with feeds.
[Sami Mokaddem]
- [syslog] output slightly changed. [iglocska]
- always have a consistent number of fields conveyed, include delimited ( -- ) fields even if no data is passed to a field
- Avoid linebreaks in content
- [README] add the CLA FREE logo. [Alexandre Dulaunoy]
- [workflow:editor] Show 100 entry max in picker. [Sami Mokaddem]
- [internal] Log content type when JSON could not be parsed. [Jakub
Onderka]
- [sync] Reduce default timeout for remote HTTP request to 300 seconds
(5 mins) [Jakub Onderka]
- [sync] Change way how event index is cached in Redis to save memory.
[Jakub Onderka]
- [sync] Try to reduce memory usage when fetching event index from
Redis. [Jakub Onderka]
- [sync] Enable garbage collector when pulling events from remote
server. [Jakub Onderka]
- [sync] Try to save memory when fetching sightings. [Jakub Onderka]
- [internal] Ltrim response in HttpSocketHttpException. [Jakub Onderka]
- [CI] Split logs in CI. [Jakub Onderka]
- [internal] Server sync debug messages. [Jakub Onderka]
- [openapi] STIX export is also supported at attribute level. [Alexandre
Dulaunoy]
- [workflowModules:distribution-if] Allow choosing `sharing-group` and
keeping the selected sharing-group list empty. [Sami Mokaddem]
This enables users to simply check that the sharing-group distribution was used
- [ui:galaxy_matrix] Resize matrix header on load. [Sami Mokaddem]
- [analystData:API] Automatically encapsulate request's data into the
analystType. [Sami Mokaddem]
- [eventReports:extractAllFromReport] Expose functionality to API. [Sami
Mokaddem]
- [statistics] (R)etrieval (o)f (m)ember (m)etrics (e)valuation (l)ist
(f)or (s)tatistics changed. [iglocska]
- will include soft deleted attributes too
- [attribute search] by uuid updated. [iglocska]
- pre-checks if the passed UUID is actually an event UUID before going with the slow query against both tables
- [statistics] (R)etrieval (o)f (m)ember (m)etrics (e)valuation (l)ist
(f)or (s)tatistics changed. [iglocska]
- will include soft deleted attributes too
- [comment] added to the previous fix to make it clear what it does.
[iglocska]
- [sync] Move blocklist fetching out of ServerSyncTool and reduce
sightings fetched in one fetch. [Jakub Onderka]
Fix
~~~
- [feed] Added tag_collection_id as column. [Sami Mokaddem]
- [analyst-data:thread] Only render the HTML when opening the popover.
[Sami Mokaddem]
- [eventreport] import from url api fixed. [iglocska]
- [workflow:evaluateConfition] Fixed bug in `in_and` operator to make it
order independant. [Sami Mokaddem]
- [users:statistics] Division by 0 when no events or no orgs. [Sami
Mokaddem]
- [analystData:editableField] Made getEditableFields inheritance aware.
[Sami Mokaddem]
- [eventreports:transformFreeTextIntoSuggestion] Add to_ids fallback
value. [Sami Mokaddem]
- [tagCollection:removeTag] Fixed incorrect permission check. [Sami
Mokaddem]
- [component:restSearch] Restored behavior of searching for org and
cluster metadata. [Sami Mokaddem]
- [dashboard:updating] Prevent sending multiple time the same save
request[1;5D. [Sami Mokaddem]
- [widget:EventEvolutionWidget] Fixed filtering on organisation not
working as expected. [Sami Mokaddem]
- [dashboard:widgetAdd] Improved error handling for invalid JSON config.
[Sami Mokaddem]
- [status widget] ignore index hint for deleted field. [iglocska]
- [index] Don't load analyst data by default. [iglocska]
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #9529 from obert01/fix-hover-enrich-accessibility.
[Andras Iklody]
- Accessibility: Added the possibility to focus the hover enrichment
icon on attributes. [Olivier BERT]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch 'feed_tag_collections' into develop. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop. [Sami
Mokaddem]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #9639 from JakubOnderka/http-json-content-type.
[Jakub Onderka]
chg: [internal] Log content type when JSON could not be parsed
- Merge pull request #9659 from JakubOnderka/curl-timeout-5-mins. [Jakub
Onderka]
chg: [sync] Reduce default timeout for remote HTTP request to 300 sec…
- Merge pull request #9651 from JakubOnderka/server-sync-debug. [Jakub
Onderka]
Server sync debug
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #9678 from TheDr1ver/patch-1. [Andras Iklody]
Define $relationshipsInbound before call
- Define $relationshipsInbound before call. [Nick Driver]
Debug.log was showing the following error otherwise:
```
2024-04-12 14:11:52 Notice: Notice (8): Undefined variable: relationshipsInbound in [/var/www/MISP/app/View/Elements/Events/View/row_object.ctp, line 40]
Trace:
ErrorHandler::handleError() - APP/Lib/cakephp/lib/Cake/Error/ErrorHandler.php, line 230
include - APP/View/Elements/Events/View/row_object.ctp, line 40
View::_evaluate() - APP/Lib/cakephp/lib/Cake/View/View.php, line 971
View::_render() - APP/Lib/cakephp/lib/Cake/View/View.php, line 933
View::_renderElement() - APP/Lib/cakephp/lib/Cake/View/View.php, line 1224
View::element() - APP/Lib/cakephp/lib/Cake/View/View.php, line 418
include - APP/View/Elements/eventattribute.ctp, line 148
View::_evaluate() - APP/Lib/cakephp/lib/Cake/View/View.php, line 971
View::_render() - APP/Lib/cakephp/lib/Cake/View/View.php, line 933
View::_renderElement() - APP/Lib/cakephp/lib/Cake/View/View.php, line 1224
View::element() - APP/Lib/cakephp/lib/Cake/View/View.php, line 418
include - APP/View/Elements/Events/View/event_contents.ctp, line 64
View::_evaluate() - APP/Lib/cakephp/lib/Cake/View/View.php, line 971
View::_render() - APP/Lib/cakephp/lib/Cake/View/View.php, line 933
View::_renderElement() - APP/Lib/cakephp/lib/Cake/View/View.php, line 1224
View::element() - APP/Lib/cakephp/lib/Cake/View/View.php, line 418
include - APP/View/Elements/genericElements/SingleViews/single_view.ctp, line 113
View::_evaluate() - APP/Lib/cakephp/lib/Cake/View/View.php, line 971
View::_render() - APP/Lib/cakephp/lib/Cake/View/View.php, line 933
View::_renderElement() - APP/Lib/cakephp/lib/Cake/View/View.php, line 1224
View::element() - APP/Lib/cakephp/lib/Cake/View/View.php, line 418
include - APP/View/Events/view.ctp, line 296
View::_evaluate() - APP/Lib/cakephp/lib/Cake/View/View.php, line 971
View::_render() - APP/Lib/cakephp/lib/Cake/View/View.php, line 933
View::render() - APP/Lib/cakephp/lib/Cake/View/View.php, line 473
Controller::render() - APP/Lib/cakephp/lib/Cake/Controller/Controller.php, line 968
Dispatcher::_invoke() - APP/Lib/cakephp/lib/Cake/Routing/Dispatcher.php, line 200
Dispatcher::dispatch() - APP/Lib/cakephp/lib/Cake/Routing/Dispatcher.php, line 167
[main] - APP/webroot/index.php, line 101
```
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Fix [event:view] Missing variable definition in row_object. [Sami
Mokaddem]
- Merge branch '2.4' into develop. [Sami Mokaddem]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #9665 from JakubOnderka/sightings-fetching-cleanup.
[Jakub Onderka]
chg: [sync] Move blocklist fetching out of ServerSyncTool
v2.4.189 (2024-04-05)
---------------------