misp-website/Changelog

46545 lines
1.9 MiB
Raw Permalink Blame History

This file contains invisible Unicode characters!

This file contains invisible Unicode characters that may be processed differently from what appears below. If your use case is intentional and legitimate, you can safely ignore this warning. Use the Escape button to reveal hidden characters.

This file contains ambiguous Unicode characters that may be confused with others in your current locale. If your use case is intentional and legitimate, you can safely ignore this warning. Use the Escape button to highlight these characters.

Changelog
=========
%%version%% (unreleased)
------------------------
Changes
~~~~~~~
- [misp-stix] Bumped latest version of the library. [chrisr3d]
Fix
~~~
- [stix1 export] Ordering object types to avoid validation issues.
[chrisr3d]
- STIX validator seems to dislike `Observables`
objects coming after `Indicators`, so we put
the object types in the order they are presented
in the documentation
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'develop' of https://github.com/MISP/MISP into develop.
[chrisr3d]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch 'misp-stix' of https://github.com/MISP/MISP into develop.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into develop.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into develop.
[chrisr3d]
v2.4.152 (2021-12-22)
---------------------
New
~~~
- [CLI] user authkey_valid command. [Jakub Onderka]
- [tag] Generate predictable tag color. [Jakub Onderka]
- [server:synchronisation] Type filtering during PULL synchronisation.
[Sami Mokaddem]
- [event-timeline] Support of image attachments. [Sami Mokaddem]
- [CLI] Get authkey info by `cake user authkey` [Jakub Onderka]
- [securityAudit] Check expose_php setting. [Jakub Onderka]
- [test] Exports. [Jakub Onderka]
- [securityAudit] Check if xdebug is enabled. [Jakub Onderka]
- [bg] Support unix socket for supervisord. [Jakub Onderka]
- [internal] Use pubToZmq to check if publish to ZMQ. [Jakub Onderka]
Changes
~~~~~~~
- [PyMISP] Bump version. [Raphaël Vinot]
- [security audit] fixed failures on kernel compilation time. [iglocska]
- currently the check makes a lot of invalid assumptions, made it more lax to fail gracefully
- [version] bump. [iglocska]
- [Python] Use pymisp from pypi. [Raphaël Vinot]
- [internal] Make JSONConverterTool method static. [Jakub Onderka]
- [rephrasing] some warnings. [iglocska]
- [server:edit] Display object name for both sync mechanisms. [Sami
Mokaddem]
Even though I said I won't do it
- [server:edit] Include the object name in addition to the template UUID
for PUSH. [Sami Mokaddem]
The name of the object could be unknown by the instance for PULL so we keep it on the old behavior.
- [server:pull] Do not log empty event entries if it was cause by the
rules. [Sami Mokaddem]
- [servers:index] Improved UI. [Sami Mokaddem]
Only show blocked attribute types/objects if setting is turned on
- [server:synchronisation] Usage of template_uuid instead of the object
name. [Sami Mokaddem]
- [server:synchronisation] Tpye filtering duringg PUSH synchronisation.
[Sami Mokaddem]
Split type on attributes and objects
- [pip] unused and broken Pipfile.lock (old conflict merged) [Alexandre
Dulaunoy]
- [app] Bumped query version. [Sami Mokaddem]
- [event:timeline] Fit timeline after initial load. [Sami Mokaddem]
- [feeds] Support for sharing groups with feeds, fixes #5758.
[Christophe Vandeplas]
- Allow change disable_correlation in mass edit attributes. [Luciano
Righetti]
- [internal] Log when attribute was dropped. [Jakub Onderka]
- [auditLog] Fetch field required for model info. [Jakub Onderka]
- [internal] Add job ID to worker. [Jakub Onderka]
- [internal] Lazy load images. [Jakub Onderka]
- [internal] Avoid calling unnecessary method. [Jakub Onderka]
- [internal] Slightly optimise OrgImgHelper. [Jakub Onderka]
- [internal] Element file cache. [Jakub Onderka]
- [internal] Move some checks to beforeRender method. [Jakub Onderka]
- [internal] Faster sending images. [Jakub Onderka]
- [internal] Slightly optimise CakeResponseTmp. [Jakub Onderka]
- [securityAudit] PHP 7.3 is not supported anymore. [Jakub Onderka]
- [internal] testForBinExec cleanup. [Jakub Onderka]
- [internal] Optimise setting. [Jakub Onderka]
- [upload] Allow to upload SVG files. [Jakub Onderka]
- [internal] Simplify index.php. [Jakub Onderka]
- [CLI] Initialize BackgroundJobsTool just when required. [Jakub
Onderka]
- [internal] New method ProcessTool::whoami. [Jakub Onderka]
- [export] Cleanup code for OpeniocExport and YaraExport. [Jakub
Onderka]
- [stix] Simplified STIX export code. [Jakub Onderka]
- [internal] Use ProcessTool in Sighting. [Jakub Onderka]
- [internal] Use ProcessTool in Exports. [Jakub Onderka]
- [bg] Move logging to one place. [Jakub Onderka]
- [process] No need to close pipes. [Jakub Onderka]
- [diagnostics] Check also MISP.attachments_dir and MISP.tmpdir folders.
[Jakub Onderka]
- [securityAudit] Show warning if encryption key is not set. [Jakub
Onderka]
- [internal] Remove unused variable. [Jakub Onderka]
- [internal] Convert array to const in QueryTool. [Jakub Onderka]
- [internal] Convert array to const in Warninglist. [Jakub Onderka]
- [internal] Convert array to const in RestResponseComponent. [Jakub
Onderka]
- [internal] Convert array to const in ACLComponent. [Jakub Onderka]
- [internal] Fix typo. [Jakub Onderka]
- [internal] Remove unused methods. [Jakub Onderka]
- [internal] Convert array to const. [Jakub Onderka]
- [internal] Convert strings to const. [Jakub Onderka]
- [internal] Convert array to const. [Jakub Onderka]
- [internal] Convert array in log to const. [Jakub Onderka]
- [internal] Convert array to const. [Jakub Onderka]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [misp-galaxy] updated. [Alexandre Dulaunoy]
- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy]
- [backwards] compatibility. [iglocska]
- reverted a strict typed function parameter check to appease the legacy gods
- [installer] Update to latest version. [Steve Clement]
- [doc] Minor error on rhel version. [Steve Clement]
- [misp-galaxy] updates. [Alexandre Dulaunoy]
- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy]
- [warninglists] updated. [Alexandre Dulaunoy]
- [pip] unused and broken Pipfile.lock (old conflict merged) [Alexandre
Dulaunoy]
- [installer] Update to latest version. [Steve Clement]
- [doc] endpoint.com is now enpointdev.com. [Steve Clement]
- [misp-stix] Bumped latest version. [chrisr3d]
- Add dicussions link. [Luciano Righetti]
- Use issue forms templates with required fields. [Luciano Righetti]
- [taxonomies] updated to the latest version. [Alexandre Dulaunoy]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [stix export] Merging all the differents changes at different places
to support every type of collection export as STIX 1 & 2. [chrisr3d]
- [stix1 export] Better parsing with a separation between events and
attributes collections export. [chrisr3d]
- [stix] allow passing the publish flag to the stix upload. [iglocska]
- [stix1 export] Making STIX1 attributes export parser available.
[chrisr3d]
Fix
~~~
- [event:checkDistributionForPush] typos. [Richard van den Berg]
- [event:uploadEventSightingsToServersRouter] use Event model for
Sighting context. [Richard van den Berg]
- [event:uploadEventSightingsToServersRouter] allow sightings to be
pushed upstream. [Richard van den Berg]
- [server:add] Pass the correct variables to the view. [Sami Mokaddem]
- [event:push] Unset attribute before processing it and nesting typo.
[Sami Mokaddem]
- [server:pull] Typo in objectAttribute filtering. [Sami Mokaddem]
- [server:edit] Extra field in group by leading to object duplication.
[Sami Mokaddem]
- [server:edit] Typo synchronisation. [Sami Mokaddem]
- [server:pull] Typo while unsetting attribute blocked by filtering
rule. [Sami Mokaddem]
- [events:synchronisation] debug and typos. [Sami Mokaddem]
- [servers:edit] Capture filtering freetext tags for PUSH. [Sami
Mokaddem]
- [tools:timeline] Usage of correct UUID and disabled polling
extrapolation. [Sami Mokaddem]
This half baked feature was making thing confusing for the users. If we ever need it implemented it should be something more robust and configurable.
- Do not try to autocomplete with users authkey. [Luciano Righetti]
- Publishtimestamp defaults. [Luciano Righetti]
- Array to string notice. [Luciano Righetti]
- Typos, bump js version. [Luciano Righetti]
- Datetime format. [Luciano Righetti]
- Revert change. [Luciano Righetti]
- Use from/until input in UI filters. [Luciano Righetti]
- Notice when filter is array. [Luciano Righetti]
- Show error message instead of fatal error when diagnostics tool fails
to run. [Luciano Righetti]
- [UI] Ajax forms lose persistence. [iglocska]
- generic Form builder now has the persistence baked in
- capture all form fields' data before submiting as expected
- [feeds] i18n some strings. [iglocska]
- [feeds] preview attribute distribution. [iglocska]
- escape sharing group name
- Wrong params. [Luciano Righetti]
- Improve error handling when supervisor is not available or connection
settings are wrong. [Luciano Righetti]
- [internal] Fixes #7961. [Jakub Onderka]
- [UI] Adding attributes to object. [Jakub Onderka]
- [tools:backgroundjob] Support of legacy systems (3) [Sami Mokaddem]
- [tools:backgroundjob] Support of legacy systems (2) [Sami Mokaddem]
- [backgroundjob] Support of legacy system. [Sami Mokaddem]
- [test] Ignore beforeRender function. [Jakub Onderka]
- [internal] Deleting events. [Jakub Onderka]
- [internal] Old style view class. [Jakub Onderka]
- [security] Disable caching of images. [Jakub Onderka]
- [CLI] Show error when calling methods for managing workers when
SimpleBackgroundJobs are enabled. [Jakub Onderka]
- [internal] Fix checking if system is Linux. [Jakub Onderka]
- [internal] User ProcessTool for selfTest. [Jakub Onderka]
- [auditlog] Array converted to const. [Jakub Onderka]
- [auditLog] Warning when deleting event. [Jakub Onderka]
- [internal] Remove UrlCache. [Jakub Onderka]
- ServerShell fails if SimpleBackgroundJobs config does not exists.
[Luciano Righetti]
- Update dep for fixing php74 build. [Luciano Righetti]
- [misp-stix] Bumped latest version with up-to-date dependencies &
requirements. [chrisr3d]
- [stix export] Added parameters to the temporary files deleting
function. [chrisr3d]
- Can delete output files when we get an exception
from the python scirpt
- Can delete a specific list of files that are not
suffixed with a '.out' extension, like it is the
case for attributes collections export as STIX 1
- [stix export] Removed unused variables. [chrisr3d]
- [stix export] Copy paste issue from merge conflict handling.
[chrisr3d]
- [stix1 export] Syntax typo from merge conflict handling. [chrisr3d]
- [API] downloadAttachment API user object fetching fixed. [iglocska]
- user is already in session, just reuse it
- [feeds] pulling freetext feed sets attribute distribution, fixes
#7992. [iglocska]
- should just inherit the event's setting
- when using sharing groups this becomes a serious issue
- [audit] fix user modifications not working with the modern audit log.
[iglocska]
- trying to get the old state of non persistent form fields breaks
- [stix1 export] Removed debugging print. [chrisr3d]
- [stix2 export] Added the required traceback parameter to the
`print_tb` call. [chrisr3d]
- [upload_stix] Going back to the previous way of handling files before
we properly merge `develop` and this branch together. [chrisr3d]
- The publish flag added in `develop` remains here
but we come back to the previous way of handling
the input file, like before we cherry-picked the
commit containing the changes concerning the
publish flag.
- [misp-stix] Bumped latest version. [chrisr3d]
- [stix export] Removing traceback parsing since it is handled in
stderr. [chrisr3d]
- [stix export] Keeping traceback messages for the logs. [chrisr3d]
- [stix export] Making sure the error message is displayed when there is
no input file. [chrisr3d]
- [stix1 export] Indentation issues caused STIX1 result files not to be
written. [chrisr3d]
- [stix export] Displaying errors with their traceback. [chrisr3d]
- [stix2 export] Removed unnecessary loop split. [chrisr3d]
- [stix2 export] Removed separator that should not be set here.
[chrisr3d]
- [stix export] Typo on a class variable. [chrisr3d]
- [stix export] Better galaxies & clusters handling when dealing with
attributes collections. [chrisr3d]
- We skip some fields from galaxies and clusters,
as well as adding the event timestamp that is
going to be used when exporting event galaxies
Other
~~~~~
- Merge pull request #8047 from RichieB2B/ncsc-nl/sightings-dist.
[Alexandre Dulaunoy]
Fix typos
- Merge pull request #8046 from RichieB2B/ncsc-nl/sightings-dist.
[Andras Iklody]
Use Event model for Sighting context
- Merge pull request #8045 from RichieB2B/ncsc-nl/sightings-dist.
[Andras Iklody]
Allow sightings to be pushed upstream
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch '8042' into develop. [iglocska]
- LinOTP: nitpicking and failsafe. [Hendrik Baecker]
Also one CodeFactor fix
- [chg] Ensure 'false' if LinOTP Request fails. [Hendrik Baecker]
- [chg] Establish 'mixedauth' [Hendrik Baecker]
mixedauth=false: Only query LinOTP for OTP (or OTP-Pin+OTP Value)
mixedauth=true: Use MISP Userbase for Passwordchecking AND LinOTP for second factor
mixedauth=true will throw exceptions if OTP doesn't match to not fall back
to FormAuthenticate from MISP - which would get the 2FA useless.
- [chg] Extract otp from request. [Hendrik Baecker]
- [chg] Fix typos. [Hendrik Baecker]
- [chg] Adjust handling LinOTP response. [Hendrik Baecker]
- [chg] Add OTP Form Field if LinOTP active. [Hendrik Baecker]
- [chg] added LinOTP to configs. [Hendrik Baecker]
- [chg] no more php-curl but cake socket. [Hendrik Baecker]
- [chg] Safe LinOTP Config. [Hendrik Baecker]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge branch 'develop' of https://github.com/MISP/MISP into develop.
[chrisr3d]
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #8027 from JakubOnderka/cli_authkey_valid. [Jakub
Onderka]
new: [CLI] user authkey_valid command
- Merge pull request #8025 from JakubOnderka/predicatable-tag-color.
[Jakub Onderka]
new: [tag] Generate predictable tag color
- Merge pull request #8028 from JakubOnderka/json-convertor-static.
[Jakub Onderka]
chg: [internal] Make JSONConverterTool method static
- Merge branch 'sync_filter' into develop. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into feature-sync-type-
filtering. [Sami Mokaddem]
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Alexandre
Dulaunoy]
- Merge branch '2.4' into develop. [Steve Clement]
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #8019 from righel/add_events_time_filter. [Luciano
Righetti]
new: add events index time ui filters
- Add: timestamp and publish_timestamp filters and optional columns to
/events/index. [Luciano Righetti]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge pull request #7997 from righel/avoid-fatals-in-settings-
diagnostics. [Alexandre Dulaunoy]
fix: show error message instead of fatal error when diagnostics tool …
- Merge branch 'sg_feeds' into develop. [iglocska]
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Alexandre
Dulaunoy]
- Merge pull request #7996 from JakubOnderka/cli-authkey. [Jakub
Onderka]
new: [CLI] Get authkey info by `cake user authkey`
- Merge pull request #7967 from
righel/toggle_correlation_mass_edit_attributes. [Luciano Righetti]
chg: allow change disable_correlation in mass edit attributes
- Merge pull request #7994 from righel/fix-issue-7988. [Luciano
Righetti]
fix: improve error handling when supervisor is not available or conne…
- Merge pull request #7993 from JakubOnderka/fix-7961. [Jakub Onderka]
fix: [internal] Fixes #7961
- Merge pull request #7991 from JakubOnderka/fix-7987. [Jakub Onderka]
chg: [internal] Log when attribute was dropped
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7975 from JakubOnderka/process-tool-selftest.
[Jakub Onderka]
Process tool selftest
- Merge pull request #7577 from JakubOnderka/add-event-cleanup. [Jakub
Onderka]
chg: [internal] Convert array to const
- Revert "chg: [logbehaviour] skipfields reverted to an array from a
constant" [Jakub Onderka]
This reverts commit 9d7da3103fb935c3c98c6c3c136e3a8f1a78614f.
- Merge pull request #7984 from JakubOnderka/fix-audit-log. [Jakub
Onderka]
fix: [auditLog] Warning when deleting event
- Merge pull request #7974 from JakubOnderka/url-cache. [Jakub Onderka]
fix: [internal] Remove UrlCache
- Merge pull request #7981 from righel/fix-php-7.4-build. [Luciano
Righetti]
fix: update dep for fixing php74 build
- Merge branch 'develop' into fix-php-7.4-build. [Luciano Righetti]
- Merge branch 'misp-stix' of https://github.com/MISP/MISP into 2.4.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge pull request #8037 from SteveClement/guides. [Steve Clement]
chg: [doc] Minor error on rhel version
- Merge pull request #8035 from SteveClement/guides. [Steve Clement]
- Add: [stix1 export] Supporting specific framing for attributes
collections export. [chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge pull request #8008 from righel/add-issues-form-templates.
[Alexandre Dulaunoy]
chg: use issue forms templates with required fields
- Merge pull request #7995 from coolacid/WordWrap. [Jakub Onderka]
fix: Autocrypt email header force RFC 5322 - 2.1.1 line length limits
- RFC 5322 - 2.1.1 line length limits. [Jason Kendall]
Use '\r\n' instead of PHP_EOL
Use '\r\n' instead of PHP_EOL
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska]
- Merge branch 'misp-stix' of https://github.com/MISP/MISP into misp-
stix. [chrisr3d]
- Merge branch '2.4' of github.com:MISP/MISP into misp-stix. [chrisr3d]
- Merge branch 'misp-stix' of github.com:MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch 'misp-stix' of github.com:MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Wip: [stix export] Adding stix various formats in the list of valid
formats for attributes restSearch. [chrisr3d]
- Wip: [stix export] First implementation of an attributes restSearch
export as STIX 1 & 2. [chrisr3d]
- More testing, and changes on other parts of the
process to come as well
v2.4.151 (2021-11-23)
---------------------
New
~~~
- [internal] Faster caching. [Jakub Onderka]
- [user] Add sub field for user. [Jakub Onderka]
- [CLI] For redisMemoryUsage show also server cache size. [Jakub
Onderka]
- Support existing worker controls via supervisor api. [Luciano
Righetti]
- Add default config for new background jobs (disabled). [Luciano
Righetti]
- [CLI] Redis memory usage diagnostics. [Jakub Onderka]
- [CLI] admin reencrypt command. [Jakub Onderka]
- [security] Store authkeys for servers encrypted. [Jakub Onderka]
- [UI] Define custom right menu link. [Jakub Onderka]
- [CLI] Allow to set setting value to `null` [Jakub Onderka]
- [internal] Save to config file just what was in file. [Jakub Onderka]
- [internal] encryption_key config. [Jakub Onderka]
- [internal] Fix when authkey is invalid. [Jakub Onderka]
- [internal] BetterSecurity tool. [Jakub Onderka]
- [setting] Allow to encrypt setting. [Jakub Onderka]
- [setting] Add new MISP.system_setting_db setting. [Jakub Onderka]
- Store system settings in database. [Jakub Onderka]
- [MISP fetcher] added to create an offline update package. [iglocska]
- [doc] Initial php8.0 and Ubuntu 22.04. [Steve Clement]
- [test] test_add_duplicate_tags. [Jakub Onderka]
- [test] test_log_new_audit. [Jakub Onderka]
- [test] test_restsearch_event_by_tags. [Jakub Onderka]
- [settings] Allow to use ThreatLevel.name for alert filter. [Jakub
Onderka]
- [API] Return JSON for server index preview. [Jakub Onderka]
- [CLI] New task for removeOrphanedCorrelations and optimiseTables.
[Jakub Onderka]
- [attribute type] ssh-fingerprint - a fingerprint of SSH key material.
[Alexandre Dulaunoy]
- [attribute type] ssh-fingerprint - a fingerprint of SSH key material.
[Alexandre Dulaunoy]
- [test] test_deleted_attributes. [Jakub Onderka]
- [CLI] Assign UserSetting to list output. [Jakub Onderka]
- [oidc] User setting for oidc metadata. [Jakub Onderka]
- [test] test_delete_event_blocklist. [Jakub Onderka]
- [sync] Server sync logging. [Jakub Onderka]
- [test] test_search_index_by_all. [Jakub Onderka]
Changes
~~~~~~~
- [version] bump. [iglocska]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- Bump PyMISP. [Raphaël Vinot]
- [warning-lists] updated. [Alexandre Dulaunoy]
- [taxonomies] updated to the latest version. [Alexandre Dulaunoy]
- [submodule update] added --init --recursive. [iglocska]
- [internal] Add BACKGROUND_JOB_ID to new process. [Jakub Onderka]
- [CLI] Start worker help. [Jakub Onderka]
- [internal] Bg worker cleanup. [Jakub Onderka]
- [internal] Check if update is possible. [Jakub Onderka]
- [internal] Simplify Attribute::fetchAttributes. [Jakub Onderka]
- [taxonomies] updated to the latest version. [Alexandre Dulaunoy]
- [object] break on duplicate, include uuid in addition to ID in failure
message, fixes #7929. [iglocska]
- [internal] Use ProcessTool in Server. [Jakub Onderka]
- [internal] Use ProcessTool in PubSubTool. [Jakub Onderka]
- [internal] Use ProcessTool in SecurityAudit. [Jakub Onderka]
- [internal] Use ProcessTool in StixExport. [Jakub Onderka]
- [internal] upload_stix uses ProcessTool. [Jakub Onderka]
- [internal] Use ProcessTool in AttachmentTool. [Jakub Onderka]
- [internal] Simplify checking if folder is writable. [Jakub Onderka]
- [internal] Try to use array for processes. [Jakub Onderka]
- [internal] Better submodule info fetching. [Jakub Onderka]
- [internal] Check if update is possible. [Jakub Onderka]
- [internal] Current branch and commit checking. [Jakub Onderka]
- [internal] More clear method names. [Jakub Onderka]
- [UI] Use TimeHelper for zmq status. [Jakub Onderka]
- [internal] Small optim. [Jakub Onderka]
- [internal] Move version checking to one function. [Jakub Onderka]
- [internal] Use GitTool for remote version fetching. [Jakub Onderka]
- [internal] Faster way how to get current commit. [Jakub Onderka]
- [internal] Authkey resetting. [Jakub Onderka]
- [internal] Simplified remove version checking. [Jakub Onderka]
- [UI] scheduler doesn't exist for SimpleBackgroundJobs. [Jakub Onderka]
- [CLI] Add help for Admin redisReady command. [Jakub Onderka]
- [internal] Avoid shell_exec. [Jakub Onderka]
- [internal] Code style. [Jakub Onderka]
- [internal] pubsub types. [Jakub Onderka]
- [internal] Simplified Feed:getFreetextFeed method. [Jakub Onderka]
- [internal] Simplified feed caching. [Jakub Onderka]
- [internal] searchCaches code cleanup. [Jakub Onderka]
- [internal] Simplify server caching. [Jakub Onderka]
- Setting msg. [Luciano Righetti]
- Remove track_status setting. [Luciano Righetti]
- Remove MISP.use_simple_background_jobs setting in favor of
SimpleBackgroundJobs.enabled. [Luciano Righetti]
- Remove monitor stuff from docbloc. [Luciano Righetti]
- Remove workers monitor script, rely on Supervisor API for all worker-
related stuff. [Luciano Righetti]
- Try to get user via posix method first. [Luciano Righetti]
- Remove sleep from worker poll. [Luciano Righetti]
- Merge develop, fix conflicts. [Luciano Righetti]
- Add background jobs settings to the ui editor. [Luciano Righetti]
- Add fxmlrpc package as suggested. [Luciano Righetti]
- Minor refactor. [Luciano Righetti]
- Reload conf. [Luciano Righetti]
- Add redis namespace globally, add auto json de/serializer setting to
redis client. [Luciano Righetti]
- Move initTool() logic to constructor. [Luciano Righetti]
- Merge develop, fix conflicts. [Luciano Righetti]
- Merge develop, fix conflicts. [Luciano Righetti]
- Rename settings. [Luciano Righetti]
- Rename conf name. [Luciano Righetti]
- Rename conf name. [Luciano Righetti]
- Call supervisor xml-rpc api, add supervisor app required packages.
[Luciano Righetti]
- Add db update. [Luciano Righetti]
- Remove deprecation msg. [Luciano Righetti]
- Merge develop, fix conflicts. [Luciano Righetti]
- Use new bg jobs tool in user model. [Luciano Righetti]
- Use new bg jobs tool in shadow attribute model. [Luciano Righetti]
- Use new bg job tool in job model (cache cmds) [Luciano Righetti]
- Use new bg job tool in post model, refactor command. [Luciano
Righetti]
- Use new bg job tool in log model. [Luciano Righetti]
- Use new bg job tool for publishing galaxy clusters. [Luciano Righetti]
- Use new bg jobs tool in correlation exclusion model. [Luciano
Righetti]
- Use new bg jobs tool in correlation model. [Luciano Righetti]
- Use new bg jobs tool in AttachmentScan. [Luciano Righetti]
- Use new bg jobs tool in AppModel. [Luciano Righetti]
- Use new bg jobs tool in shadow attributes controller. [Luciano
Righetti]
- Use new bg jobs tool in feeds controller. [Luciano Righetti]
- Use new bg jobs tool in servers controller. [Luciano Righetti]
- Use new bg jobs tool in /attributes/generateCorrelation. [Luciano
Righetti]
- Move metadata parameter to last, refactor Server calls to background
jobs to new tool. [Luciano Righetti]
- Add user to worker class, make /servers/getWorkers compatible with new
bg jobs. [Luciano Righetti]
- Fix issues with servershell pull/push commands. [Luciano Righetti]
- Refactor background jobs tool to receive jobId instead of entity.
[Luciano Righetti]
- Refactor server shell background jobs to use new tool. [Luciano
Righetti]
- Refactor all background job calls from event model and controller to
use new tool. [Luciano Righetti]
- Move contact reporter background job to new tool. [Luciano Righetti]
- Fetch job status from redis in jobs view. [Luciano Righetti]
- Remove hardcode response, map shell/cmd names. [Luciano Righetti]
- Pass sql Job to new job handler. [Luciano Righetti]
- Make enqueue method generic for both engines. [Luciano Righetti]
- [installer] Bump to latest version. [Steve Clement]
- [installer] Bump installer to latest version. [Steve Clement]
- [doc] updated dates in copyright section. [Christophe Vandeplas]
- [internal] Code style. [Jakub Onderka]
- [internal] AppController cleanup. [Jakub Onderka]
- [internal] App model cleanup. [Jakub Onderka]
- [internal] Simplify code for pulling events. [Jakub Onderka]
- [internal] Delete system setting when value is empty. [Jakub Onderka]
- [internal] Make system setting more secure. [Jakub Onderka]
- [internal] Deprecate Org::getUUIDs endpoint. [Jakub Onderka]
- [internal] Do not try to fetch empty clusters. [Jakub Onderka]
- [internal] Optimise loading event info in AuditLog. [Jakub Onderka]
- [internal] Unpublish event timestamp. [Jakub Onderka]
- [internal] Simplified editing field. [Jakub Onderka]
- [internal] Simplified attribute pagination. [Jakub Onderka]
- [internal] Remove SysLogLogable from SystemSetting. [Jakub Onderka]
- [internal] Simplify Server model code. [Jakub Onderka]
- [systemsetting] Better checking if setting is sensitive. [Jakub
Onderka]
- [optimise] Reduce number of SQL queries for login page. [Jakub
Onderka]
- [auditlog] Smarter title. [Jakub Onderka]
- [internal] Hide sensitive setting in AuditLog. [Jakub Onderka]
- [internal] Code style. [Jakub Onderka]
- [internal] Faster attaching tags to events. [Jakub Onderka]
- [internal] Assign galaxies in one query. [Jakub Onderka]
- [internal] Optimise loading attributes when doing search. [Jakub
Onderka]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [doc] Document use of local parameter in API for tags/galaxies. [Loïc
Fortemps]
- [doc] minor changes for 22.04 and ethX update. [Steve Clement]
- [install] Update to latest installer. [Steve Clement]
- [doc] Varios small fixes. [Steve Clement]
- [misp-objects] updated. [Alexandre Dulaunoy]
- [auditlog] Remove non exists insertId. [Jakub Onderka]
- [schema] Set object_references.uuid as unique column. [Jakub Onderka]
- [internal] Optimise saving attributes. [Jakub Onderka]
- [internal] Optimise attaching tags to objects. [Jakub Onderka]
- [internal] Optimise AuditLogBehavior. [Jakub Onderka]
- [auditlog] Remove unused variable. [Jakub Onderka]
- [auditlog] Simplify and optimise code. [Jakub Onderka]
- [internal] Optimise Attribute::fetchAttribute. [Jakub Onderka]
- [internal] Optimise updating templates. [Jakub Onderka]
- [internal] Optimise genericPicker. [Jakub Onderka]
- [internal] Use FileAccessTool in MispObject. [Jakub Onderka]
- [internal] Faster fetching object templates for selectbox. [Jakub
Onderka]
- [internal] Optimise bulkSaveRelations. [Jakub Onderka]
- [internal] Optimise AuditLog. [Jakub Onderka]
- [internal] Try to remove possible unused methods. [Jakub Onderka]
- [internal] Optimise Tag::findTagIdsByTagNames. [Jakub Onderka]
- [internal] Optimise fetching events by tags. [Jakub Onderka]
- [internal] Simplify creating tag. [Jakub Onderka]
- [build] Try to run workers under www-data user. [Jakub Onderka]
- [PyMISP] Bump. [Jakub Onderka]
- [internal] Faster importing galaxy relation tags. [Jakub Onderka]
- [internal] Optimise sightings. [Jakub Onderka]
- [internal] Small optimisations. [Jakub Onderka]
- [internal] Code cleanup. [Jakub Onderka]
- [internal] Do not check event tags conflicts. [Jakub Onderka]
- [UI] Check empty event before filtering. [Jakub Onderka]
- [internal] Simplify code for Server::serverGetRequest. [Jakub Onderka]
- [internal] Better error messages when fetching feeds. [Jakub Onderka]
- [internal] Simplified link and boolean validation. [Jakub Onderka]
- [test] testDomainModify. [Jakub Onderka]
- [internal] Optimise converting hash to lowercase. [Jakub Onderka]
- [internal] Faster IPv6 compression. [Jakub Onderka]
- [misp-objects] updated. [Alexandre Dulaunoy]
- [warning-lists] updated to the latest version. [Alexandre Dulaunoy]
- [PyMISP] updated. [Alexandre Dulaunoy]
- [internal] Optimise afterFind and simplify ISODatetimeToUTC. [Jakub
Onderka]
- [internal] Code style. [Jakub Onderka]
- [internal] Move IPv6 compression to one method. [Jakub Onderka]
- [internal] Simplify validation for `domain|ip` [Jakub Onderka]
- [internal] Move ssdeep validation to specific method. [Jakub Onderka]
- [internal] Add ssh-fingerpint validation. [Jakub Onderka]
- [internal] Change params order for validate method. [Jakub Onderka]
- [internal] Move attribute validation to different tool. [Jakub
Onderka]
- [PyMISP] update version. [Alexandre Dulaunoy]
- [PyMISP] updated to the latest version. [Alexandre Dulaunoy]
- [PyMISP] updated. [Alexandre Dulaunoy]
- [PyMISP] update to the latest version. [Alexandre Dulaunoy]
- [PyMISP] updated to the latest version. [Alexandre Dulaunoy]
- [stix] Bumped laster version of various stix related libraries.
[chrisr3d]
- [opendata] Bumped latest version. [chrisr3d]
- [misp-stix] Bumped latest version. [chrisr3d]
- [server settings] allow empty baseurl to be saved. [iglocska]
- [stix] allow passing the publish flag to the stix upload. [iglocska]
- [internal] Reduce one SQL query for every request. [Jakub Onderka]
- [internal] Fetch less columns for Tag for event index. [Jakub Onderka]
- [internal] Do not fetch EventTag.id for events index. [Jakub Onderka]
- [internal] Log when object reference could not be captured. [Jakub
Onderka]
- [internal] Add validation for ObjectReference. [Jakub Onderka]
- [schema] Add index for object_references.event_id column. [Jakub
Onderka]
- [internal] Faster attaching references. [Jakub Onderka]
- [internal] Move method for fetching tags to one place. [Jakub Onderka]
- [internal] Simplified Event::attachTagsToEvents. [Jakub Onderka]
- [internal] Faster attaching attribute tags. [Jakub Onderka]
- [internal] Simplify Attribute::runValidation. [Jakub Onderka]
- [internal] Disable order for hasAny method. [Jakub Onderka]
- [internal] Simplified notifications loading. [Jakub Onderka]
- [misp-galaxy] updated to the latest version (ATT&CK v10) [Alexandre
Dulaunoy]
- [internal] Faster tag capturing. [Jakub Onderka]
- [internal] Simplify UserSetting code. [Jakub Onderka]
- [misp-stix] Bumped latest version. [chrisr3d]
- [Server:update] Execute git submodule sync before updating. [Sami
Mokaddem]
This is done in order to make sure the submodules' remote URL is inline with the value defined in the .gitmodules
- [install] Regenerated install script to include the latest changes +
update installer checksums. [chrisr3d]
- [doc] Update to OpenBSD 7.0. [Steve Clement]
- [doc] Added 3 more optionals. [Steve Clement]
- [github actions] Enabling tests on the `misp-stix` branch (at least
temporarily) [chrisr3d]
- [stix2 export] Using specific filter `stix-version` instead of
`version` that is too generic and used somewhere else. [chrisr3d]
- [schema] Set sharing group name as unique index. [Jakub Onderka]
- [internal] Simplify code for compareDBIndexes. [Jakub Onderka]
- [internal] Change way how to remove focus from URL. [Jakub Onderka]
- [internal] Convert to const array. [Jakub Onderka]
- [internal] Remove duplicates from acceptedFilteringNamedParams. [Jakub
Onderka]
- [API] Simplify handling deleted attributes. [Jakub Onderka]
- [UI] Simplify performQuery method. [Jakub Onderka]
- [UI] Simplify HTML code. [Jakub Onderka]
- [ajax] Return correct error code when user is not logged. [Jakub
Onderka]
- [Server:update] Execute git submodule sync before updating. [Sami
Mokaddem]
This is done in order to make sure the submodules' remote URL is inline with the value defined in the .gitmodules
- [internal] Faster tag extraction. [Jakub Onderka]
- [auditlog] Optimise fetching old records. [Jakub Onderka]
- [internal] Update correlations just when necessary. [Jakub Onderka]
- [internal] Event::unpublishEvent method. [Jakub Onderka]
- [internal] Simplify validation for Event org_id and orgc_id fields.
[Jakub Onderka]
- [internal] Move UUID generation to beforeSave method. [Jakub Onderka]
- [internal] SaveMany for Event::add_original_file. [Jakub Onderka]
- [internal] Simplify Event::__attachReferences. [Jakub Onderka]
- [internal] Optimise fetching correlations. [Jakub Onderka]
- [internal] Simplify Event::beforeValidate. [Jakub Onderka]
- [internal] Simplify Attribute::beforeValidate. [Jakub Onderka]
- [internal] Simplify validation. [Jakub Onderka]
- [internal] Optimise beforeValidate for object. [Jakub Onderka]
- [internal] Optimise datetimeOrNull method. [Jakub Onderka]
- [internal] Optimise JSONConverterTool. [Jakub Onderka]
- [modules] Use JsonTool. [Jakub Onderka]
- [stix-export] Use JsonTool. [Jakub Onderka]
- [pubsub] Optimise. [Jakub Onderka]
- [internal] Optimise validators. [Jakub Onderka]
- [internal] Remove unused validation rule. [Jakub Onderka]
- [internal] Fix validation for UserSetting value. [Jakub Onderka]
- [internal] Remove unused method. [Jakub Onderka]
- [internal] Use reference for event modification. [Jakub Onderka]
- [internal] Optimise code for fetch proposals for events. [Jakub
Onderka]
- [internal] Simplified attaching sharing groups. [Jakub Onderka]
- [internal] Do not specify fields when fetching object. [Jakub Onderka]
- [internal] Optimise fetching event when pulling. [Jakub Onderka]
- [internal] Fix setting cleanDb admin setting. [Jakub Onderka]
- [internal] Do less work when checking if db is updated. [Jakub
Onderka]
- [internal] Code cleanup for Server::pull method. [Jakub Onderka]
- [UI] For first/last seen show timezone in tooltip. [Jakub Onderka]
- [UI] Event tooltips. [Jakub Onderka]
- [sync] Better exception handling. [Jakub Onderka]
- [sync] Use server sync tool for compatibility check. [Jakub Onderka]
- [internal] Create log entry for compatibility check. [Jakub Onderka]
- [internal] Code cleanup for EventsController::__indexRestResponse.
[Jakub Onderka]
- [internal] Small optimisations for index REST response. [Jakub
Onderka]
- [internal] Remove user id from fetched columns. [Jakub Onderka]
- [API] Fetch sharing groups in different query. [Jakub Onderka]
- [API] Optimise fetching event index. [Jakub Onderka]
- [event-index] Faster fetching empty results. [Jakub Onderka]
- [index] Faster event filtering by multiple tags. [Jakub Onderka]
- [internal] Event tags are deleted by quick delete. [Jakub Onderka]
- [event-index] Simplified condition for minimal search. [Jakub Onderka]
- [test] test_search_index_by_attribute. [Jakub Onderka]
- [test] test_search_index_minimal_published. [Jakub Onderka]
- [event index] For non exists email, do not return any event. [Jakub
Onderka]
- [test] Tests for event index search not by info. [Jakub Onderka]
- [test] test_search_index_by_email_admin. [Jakub Onderka]
- [internal] Handle non admin search event by email differently. [Jakub
Onderka]
- [test] Tests for event index search by email. [Jakub Onderka]
- [test] Add more test for event index. [Jakub Onderka]
- [internal] Another bunch of event filter optim. [Jakub Onderka]
- [rest] Do not copy data. [Jakub Onderka]
- [rest] Close session to allow concurrent requests. [Jakub Onderka]
- [test] temp folder is not writable. [Jakub Onderka]
- [test] Better tests for event index. [Jakub Onderka]
- [index] Simplified code for org matching. [Jakub Onderka]
- [test] More tests for event index. [Jakub Onderka]
- [test] Tests for event index. [Jakub Onderka]
- [stix-export] Code cleanup. [Jakub Onderka]
- [export] Check method existence rather than another variable. [Jakub
Onderka]
- [stix-export] Throw exception on error. [Jakub Onderka]
- [stix-export] Store temp file in default folder. [Jakub Onderka]
- [stix-export] Try to directly return TmpFileTool. [Jakub Onderka]
- [stix-export] Use more reliable file processing. [Jakub Onderka]
- [stix-export] Use TmpFileTool. [Jakub Onderka]
- [stix-export] Simplified loading python bin. [Jakub Onderka]
- [internal] Use JsonTool for JSON encoding. [Jakub Onderka]
- [internal] Use tmp folder for stix upload. [Jakub Onderka]
- [internal] Use FileAccessTool for STIX upload. [Jakub Onderka]
- [internal] Use FileAccessTool for Event::__getTagNamesFromSynonyms.
[Jakub Onderka]
- [internal] Use FileAccessTool for Feed::unzipFirstFile. [Jakub
Onderka]
- [internal] Use FileAccessTool for publishing sightings. [Jakub
Onderka]
Fix
~~~
- [tools:backgroundjob] Support of legacy systems (3) [Sami Mokaddem]
- [tools:backgroundjob] Support of legacy systems (2) [Sami Mokaddem]
- [backgroundjob] Support of legacy system. [Sami Mokaddem]
- Update dep for fixing php74 build. [Luciano Righetti]
- ServerShell fails if SimpleBackgroundJobs config does not exists.
[Luciano Righetti]
- [internal] Attaching cluster. [Jakub Onderka]
- [systemSetting] Check if database exists. [Jakub Onderka]
- [internal] Try to create directory if not exist. [Jakub Onderka]
- [user creation] don't show old style API key in the UI if advanced
authkeys are enabled. [iglocska]
- confusing and unusable anyway
- [user creation] Don't create an advanced authkey by default when
creating a new user. [iglocska]
- nobody will see the initial key, users can always create API keys for themselves
- [internal] Remove redundant condition. [Jakub Onderka]
- [internal] Correctly count matched attributes. [Jakub Onderka]
- [internal] Skip empty line. [Jakub Onderka]
- [internal] Update JSON. [Jakub Onderka]
- [internal] Param order. [Jakub Onderka]
- [internal] Private property access. [Jakub Onderka]
- [CLI] redisMemoryUsage. [Jakub Onderka]
- [UI] Correct attaching cache timestamp to server. [Jakub Onderka]
- [internal] Remove unused MISP.cached_attachments setting. [Jakub
Onderka]
- Wrong default. [Luciano Righetti]
- Wrong default. [Luciano Righetti]
- Allow start worker by queue type. [Luciano Righetti]
- Issues when worker is stopped, allow null pid and user in worker
class. [Luciano Righetti]
- Do not fail on process_id=null. [Luciano Righetti]
- Class not found issue. [Luciano Righetti]
- Bad merge. [Luciano Righetti]
- Minor cs issues. [Luciano Righetti]
- Revert bad merge. [Luciano Righetti]
- Fix typo. [Luciano Righetti]
- Replace splat operator, follow cake 2.x private methods naming.
[Luciano Righetti]
- Change expected db version. [Luciano Righetti]
- Wrong update query. [Luciano Righetti]
- Use class registry to get job class. [Luciano Righetti]
- Add missing jobId param to enqueue() calls. [Luciano Righetti]
- Fix get worker status. [Luciano Righetti]
- Handle job status not found. [Luciano Righetti]
- Fix typo. [Luciano Righetti]
- Return correct X-Result-Count value in /attributes/restSearch.
[Luciano Righetti]
- [CLI] fixes to the appshell. [iglocska]
- always load the configload task
- [CLI/background jobs] reverted removal of perform command. [iglocska]
- [email OTP] subject tag fixed. [iglocska]
- [MISP foo] to [foo MISP] to be aligned with other e-mails
- [doc] Added missing misp-stix to the documentation. [Steve Clement]
- [schema] updated. [iglocska]
- [internal] Remove unused helper. [Jakub Onderka]
- [internal] Remove potentially problematic and non functional
searchAlternate. [Jakub Onderka]
- [config] Remove not used Attributes_Values_Filter_In_Event. [Jakub
Onderka]
- [internal] Fetching clusters. [Jakub Onderka]
- [tags] enforce local_only check on backend. [Loïc Fortemps]
- [API] Object reference view. [Jakub Onderka]
- [auditlog] Fetch event_id when necessary. [Jakub Onderka]
- [API] Do not allow same tags for one object (local/global) [Jakub
Onderka]
- [internal] Attaching tags to attachment attribute. [Jakub Onderka]
- [test] Permission for workers. [Jakub Onderka]
- [API] Exception value. [Jakub Onderka]
- [API] UserSetting::getSetting method. [Jakub Onderka]
- [API] Deleting user setting. [Jakub Onderka]
- [UI] Ignore harvest exception. [Jakub Onderka]
- [UI] Correct link to focus. [Jakub Onderka]
- [API] Remove default filters for viewEventAttributes. [Jakub Onderka]
- [UI] Element name. [Jakub Onderka]
- [UI] Filtering attribute when distribution is zero. [Jakub Onderka]
- [UI] Feed hits. [Jakub Onderka]
- [UI] Add link to full attribute. [Jakub Onderka]
- [validation] Correctly validate filename|tlsh attribute. [Jakub
Onderka]
- [internal] removeOrphanedCorrelations. [Jakub Onderka]
- [internal] Filename|xxx could not contain new line char. [Jakub
Onderka]
- [internal] named pipe validation. [Jakub Onderka]
- [internal] Remove unreachable code. [Jakub Onderka]
- [internal] Simplify Attribute code. [Jakub Onderka]
- [API] Simplify some validations. [Jakub Onderka]
- [cti-python-stix2] Correctly bumped latest version... [chrisr3d]
- [cti-python-stix2] Correctly bumped latest version... [chrisr3d]
- [database] upgrade script using mb4 defaulted to 255 key length.
[iglocska]
- default should be 191
- [API] Faster assigning objects and attributes to references. [Jakub
Onderka]
- [internal] Do not duplicate column. [Jakub Onderka]
- [API] Simplify linking proposals to attributes. [Jakub Onderka]
- [API] Simplify fetchEvent code. [Jakub Onderka]
- [internal] Attaching servere/feed correlation to proposals. [Jakub
Onderka]
- [internal] Proposal validation. [Jakub Onderka]
- [schema] Modify User.change_pw column to boolean. [Jakub Onderka]
- [internal] No exception when db logs are disabled. [Jakub Onderka]
- [UI] Correct values for deleted attribute filtering. [Jakub Onderka]
- [github actions] For the tests purpose, installing the stix1 python
library from the submodule. [chrisr3d]
- [gitignore] Removed directories related to python libraries.
[chrisr3d]
- [stix python install] Added STIX python dependencies to the install.
[chrisr3d]
- [validation] TLSH new format validation added. [iglocska]
- ffs
- [internal] Do not allow deleting SG when object or event reprot is
assigned to that SG. [Jakub Onderka]
- [internal] Prevent duplicate org for sharing group. [Jakub Onderka]
- [CLI] Cluster publishing. [Jakub Onderka]
- [UI] Active rules value. [Jakub Onderka]
- [UI] Event filtering. [Jakub Onderka]
- [ui] Do not call checkAndSetPublishedInfo when no need. [Jakub
Onderka]
- [UI] Correctly handle links to related events. [Jakub Onderka]
- [UI] Broken tag attaching. [Jakub Onderka]
- [internal] Deleting events. [Jakub Onderka]
- [internal] Try to prevent deadlocks when updating event attribute
count. [Jakub Onderka]
- [internal] Fetch event index in CSV. [Jakub Onderka]
- [test] Fix event index tests. [Jakub Onderka]
- [UI] Undefined index. [Jakub Onderka]
- [stix-export] Delete tmp files. [Jakub Onderka]
- [index] Org condition. [Jakub Onderka]
- [index] Remove all virtual fields. [Jakub Onderka]
- [API] Fix fetching events by org UUID. [Jakub Onderka]
- [event index] search by org fixed when using string names, fixes
MISP/PyMISP#799. [iglocska]
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge pull request #7971 from JakubOnderka/apcu. [Jakub Onderka]
new: [internal] Faster caching
- Merge pull request #7970 from JakubOnderka/fix-diagnostics. [Jakub
Onderka]
fix: [internal] Try to create directory if not exist
- Merge pull request #7965 from JakubOnderka/bg-worker-simplify. [Jakub
Onderka]
chg: [internal] Bg worker cleanup
- Merge pull request #7956 from JakubOnderka/fix-attr-count. [Jakub
Onderka]
fix: [internal] Correctly count matched attributes
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7959 from JakubOnderka/remote-version-checking.
[Jakub Onderka]
chg: [internal] Simplified remote version checking
- Merge pull request #7958 from JakubOnderka/bg-fix. [Jakub Onderka]
Bg fix
- Merge pull request #7955 from JakubOnderka/code-style-background-jobs.
[Jakub Onderka]
chg: [internal] Code style
- Merge pull request #7954 from JakubOnderka/sub. [Jakub Onderka]
new: [user] Add sub field for user
- Merge pull request #7949 from JakubOnderka/server-caching. [Jakub
Onderka]
Server caching
- Merge pull request #7953 from JakubOnderka/cached_attachments_remove.
[Jakub Onderka]
fix: [internal] Remove unused MISP.cached_attachments setting
- Merge pull request #7939 from righel/add_simple_background_jobs.
[Andras Iklody]
Add simple background jobs
- Merge branch 'develop' into add_simple_background_jobs. [Luciano
Righetti]
- Merge branch 'develop' into add_simple_background_jobs. [Luciano
Righetti]
- Add: add initial new simple background jobs. [Luciano Righetti]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge pull request #7946 from JakubOnderka/redis-memory-usage. [Jakub
Onderka]
new: [CLI] Redis memory usage diagnostics
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [Steve Clement]
- Merge pull request #7944 from SteveClement/guides. [Steve Clement]
fix: [doc] Added missing misp-stix to the documentation
- Merge pull request #7817 from fandigunawan/supports-minio. [Alexandre
Dulaunoy]
new: Supports MinIO as alternative to AWS S3
- Adds default TLS validation to true and supports custom CA path.
[Fandi Gunawan]
- Supports MinIO as alternative to AWS S3. [Fandi Gunawan]
- Merge pull request #7938 from JakubOnderka/authkeys-encrypted-vol2.
[Jakub Onderka]
Authkeys encrypted vol2
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge pull request #7937 from JakubOnderka/app-controller-cleanup-
vol4. [Jakub Onderka]
App controller cleanup vol4
- Merge pull request #7936 from JakubOnderka/app-model-cleanup. [Jakub
Onderka]
chg: [internal] App model cleanup
- Merge pull request #7932 from JakubOnderka/pulling-simplify. [Jakub
Onderka]
chg: [internal] Simplify code for pulling events
- Merge pull request #7935 from JakubOnderka/system-setting-security.
[Jakub Onderka]
chg: [internal] Make system setting more secure
- Merge pull request #7742 from JakubOnderka/get-uuids-deprecate. [Jakub
Onderka]
chg: [internal] Deprecate Org::getUUIDs endpoint
- Merge pull request #7934 from JakubOnderka/attribute-pagination.
[Jakub Onderka]
Attribute pagination
- Merge pull request #7416 from JakubOnderka/menu-custom-right-link.
[Jakub Onderka]
new: [UI] Define custom right menu link
- Merge pull request #7927 from JakubOnderka/system-setting. [Jakub
Onderka]
System setting in database
- Merge pull request #7933 from JakubOnderka/attributes-index. [Jakub
Onderka]
Attributes index
- Merge pull request #7931 from thijskh/shib-doc-fixes. [Alexandre
Dulaunoy]
Fix docblock formatting and add newer settings to README documentation
- Fix docblock formatting and add newer settings to README
documentation. [Thijs Kinkhorst]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Merge branch 'local_only' into develop. [iglocska]
- Bump DB version. [Loïc Fortemps]
- Merge branch 'develop' into local_tags. [Loïc Fortemps]
- Adding a local_only option for Tags and Galaxies. [Loic Fortemps]
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7928 from SteveClement/guides. [Steve Clement]
- Merge pull request #7926 from SteveClement/guides. [Steve Clement]
- Merge pull request #7918 from StefanKelm/2.4. [Luciano Righetti]
Update openapi.yaml
- Update openapi.yaml. [StefanKelm]
tiny typo...
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7904 from StefanKelm/2.4. [Luciano Righetti]
Update openapi.yaml
- Update openapi.yaml. [StefanKelm]
small copy-n-paste error
- Merge pull request #7854 from JakubOnderka/save-optim. [Jakub Onderka]
chg: [internal] Optimise saving attributes
- Merge pull request #7915 from JakubOnderka/fix-saving-attribute.
[Jakub Onderka]
fix: [internal] Attaching tags to attachment attribute
- Merge pull request #7914 from JakubOnderka/audit-log-behaviour-optim.
[Jakub Onderka]
Audit log behaviour optim
- Merge pull request #7913 from JakubOnderka/fetchAttribute. [Jakub
Onderka]
chg: [internal] Optimise Attribute::fetchAttribute
- Merge pull request #7910 from JakubOnderka/object-templates. [Jakub
Onderka]
Object templates
- Merge pull request #7911 from JakubOnderka/bulkSaveRelations. [Jakub
Onderka]
chg: [internal] Optimise bulkSaveRelations
- Merge pull request #7912 from JakubOnderka/audit-log-optim. [Jakub
Onderka]
chg: [internal] Optimise AuditLog
- Merge pull request #7908 from
JakubOnderka/test_restsearch_event_by_tags. [Jakub Onderka]
new: [test] test_restsearch_event_by_tags
- Merge pull request #7909 from JakubOnderka/galaxy-cluster-relation-
tag. [Jakub Onderka]
chg: [internal] Simplify creating tag
- Merge pull request #7890 from JakubOnderka/thret-level-notification.
[Jakub Onderka]
new: [settings] Allow to use ThreatLevel.name for alert filter
- Merge pull request #7891 from JakubOnderka/faster-galaxy-import.
[Jakub Onderka]
chg: [internal] Faster importing galaxy relation tags
- Merge pull request #7852 from JakubOnderka/optimise-sighting. [Jakub
Onderka]
chg: [internal] Optimise sightings
- Merge pull request #7907 from JakubOnderka/view-event-attriubtes-
ignore. [Jakub Onderka]
View event attriubtes ignore
- Merge pull request #7905 from JakubOnderka/fix-view-event-attributes.
[Jakub Onderka]
Fix view event attributes
- Merge pull request #7903 from JakubOnderka/fix-filter-distribution-
zero. [Jakub Onderka]
fix: [UI] Filtering attribute when distribution is zero
- Merge pull request #7887 from thijskh/patch-1. [Alexandre Dulaunoy]
Clarify some aspects of the Shibboleth config
- Clarify some aspects of the Shibboleth config. [Thijs Kinkhorst]
- Merge pull request #7902 from JakubOnderka/attribute-list-link. [Jakub
Onderka]
fix: [UI] Add link to full attribute
- Merge pull request #7901 from JakubOnderka/tlsh-validation-fix. [Jakub
Onderka]
fix: [validation] Correctly validate filename|tlsh attribute
- Merge pull request #7897 from JakubOnderka/preview-index-api. [Jakub
Onderka]
Preview index api
- Merge pull request #7899 from JakubOnderka/admin-shell. [Jakub
Onderka]
new: [CLI] New task for removeOrphanedCorrelations and optimiseTables
- Merge pull request #7900 from JakubOnderka/fetch-feed. [Jakub Onderka]
chg: [internal] Better error messages when fetching feeds
- Merge pull request #7896 from JakubOnderka/fix-remove-orphaned-
correlation. [Jakub Onderka]
add: [test] test_remove_orphaned_correlations
- Add: [test] test_remove_orphaned_correlations. [Jakub Onderka]
- Merge pull request #7895 from JakubOnderka/attribute-validation-tool-
fix. [Jakub Onderka]
Attribute validation tool fix
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7894 from JakubOnderka/attribute-code-style.
[Jakub Onderka]
fix: [internal] Simplify Attribute code
- Merge pull request #7893 from JakubOnderka/attribute-validation-tool.
[Jakub Onderka]
Attribute validation tool
- Fixup! chg: [internal] Move attribute validation to different tool.
[Jakub Onderka]
- Add: [test] Basic test for AttributeValidationTool. [Jakub Onderka]
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Alexandre
Dulaunoy]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[chrisr3d]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch '2.4' of https://github.com/MISP/MISP into 2.4.
[chrisr3d]
- Merge pull request #7878 from imidoriya/patch-2. [Alexandre Dulaunoy]
Exclude the /venv/* as it causes confusion
- Exclude the /venv/* as it causes confusion. [Deku]
- Merge pull request #7889 from JakubOnderka/reduce-sql. [Jakub Onderka]
chg: [internal] Reduce one SQL query for every request
- Merge pull request #7881 from JakubOnderka/attribute-tags. [Jakub
Onderka]
chg: [internal] Faster attaching attribute tags
- Merge pull request #7886 from JakubOnderka/proposals-correaltions.
[Jakub Onderka]
fix: [internal] Attaching servere/feed correlation to proposals
- Merge pull request #7885 from JakubOnderka/fix-proposal-validation.
[Jakub Onderka]
fix: [internal] Proposal validation
- Merge pull request #7884 from JakubOnderka/faster-notifications.
[Jakub Onderka]
chg: [internal] Simplified notifications loading
- Merge pull request #7882 from JakubOnderka/change-pw-fix. [Jakub
Onderka]
fix: [schema] Modify User.change_pw column to boolean
- Merge pull request #7883 from JakubOnderka/skip-db-logs-fix. [Jakub
Onderka]
fix: [internal] No exception when db logs are disabled
- Merge pull request #7880 from JakubOnderka/deleted-fixes. [Jakub
Onderka]
fix: [UI] Correct values for deleted attribute filtering
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7872 from JakubOnderka/faster-tag-capturing.
[Jakub Onderka]
chg: [internal] Faster tag capturing
- Merge pull request #7873 from JakubOnderka/user-setting-cleanup.
[Jakub Onderka]
chg: [internal] Simplify UserSetting code
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge pull request #7841 from SteveClement/guides. [Steve Clement]
- Merge branch 'MISP:2.4' into guides. [Steve Clement]
- Merge pull request #7840 from amuehlem/2.4. [Alexandre Dulaunoy]
added 'git submodule sync' before 'git submodule update'
- Added 'git submodule sync' before 'git submodule update' [Andreas
Muehlemann]
- Merge remote-tracking branch 'upstream/2.4' into guides. [Steve
Clement]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge pull request #7871 from JakubOnderka/duplicate-sg-org. [Jakub
Onderka]
fix: [internal] Prevent duplicate org for sharing group
- Merge pull request #7870 from JakubOnderka/code-cleanup-vol10. [Jakub
Onderka]
chg: [internal] Simplify code for compareDBIndexes
- Merge pull request #7866 from JakubOnderka/publish-cluster-fix. [Jakub
Onderka]
fix: [CLI] Cluster publishing
- Add: [test] Publishing galaxy cluster. [Jakub Onderka]
- Merge pull request #7864 from JakubOnderka/handle-deleted. [Jakub
Onderka]
chg: [API] Simplify handling deleted attributes
- Merge pull request #7863 from JakubOnderka/advanced-filtering. [Jakub
Onderka]
Advanced filtering cleanup
- Merge pull request #7862 from JakubOnderka/test_deleted_attributes.
[Jakub Onderka]
new: [test] test_deleted_attributes
- Merge pull request #7730 from JakubOnderka/user-setting-oidc. [Jakub
Onderka]
new: [oidc] User setting for oidc metadata
- Merge pull request #7861 from JakubOnderka/ajax-401. [Jakub Onderka]
chg: [ajax] Return correct error code when user is not logged
- Merge pull request #7859 from JakubOnderka/fix-completeley-broken-ui.
[Jakub Onderka]
fix: [UI] Broken tag attaching
- Merge pull request #7857 from JakubOnderka/faster-tag-extraction.
[Jakub Onderka]
chg: [internal] Faster tag extraction
- Merge pull request #7855 from JakubOnderka/delete-event-fix. [Jakub
Onderka]
fix: [internal] Deleting events
- Merge pull request #7851 from JakubOnderka/better-validation. [Jakub
Onderka]
Better validation
- Merge pull request #7850 from JakubOnderka/optimise-event-fetch.
[Jakub Onderka]
chg: [internal] Optimise fetching event when pulling
- Merge pull request #7849 from JakubOnderka/fix-clean-db. [Jakub
Onderka]
chg: [internal] Fix setting cleanDb admin setting
- Merge pull request #7848 from JakubOnderka/update-less-work. [Jakub
Onderka]
chg: [internal] Do less work when checking if db is updated
- Merge pull request #7797 from JakubOnderka/server-pull-cleanup. [Jakub
Onderka]
chg: [internal] Code cleanup for Server::pull method
- Merge pull request #6562 from JakubOnderka/prevent-deadlocks. [Jakub
Onderka]
fix: [internal] Try to prevent deadlocks when updating event attribute count
- Merge pull request #7036 from JakubOnderka/event-tooltips. [Jakub
Onderka]
Event tooltips
- Merge pull request #7658 from JakubOnderka/compatiblity-check-log.
[Jakub Onderka]
chg: [internal] Create log entry for compatibility check
- Merge pull request #7646 from JakubOnderka/server-sync-log. [Jakub
Onderka]
new: [sync] Server sync logging
- Merge pull request #7584 from JakubOnderka/index-fetch-optim. [Jakub
Onderka]
Index fetch optim
- Merge pull request #7748 from JakubOnderka/event-index-optim-vol2.
[Jakub Onderka]
chg: [internal] Another bunch of event filter optim
- Fi: [test] test_search_index_by_email_admin. [Jakub Onderka]
- Merge pull request #7847 from JakubOnderka/rest-search-optim-vol2.
[Jakub Onderka]
Rest search optim vol2
- Merge pull request #7844 from JakubOnderka/build-test-vol2. [Jakub
Onderka]
chg: [test] temp folder is not writable
- Merge pull request #7845 from JakubOnderka/fix-ui-undefined-index.
[Jakub Onderka]
fix: [UI] Undefined index
- Merge pull request #7846 from JakubOnderka/stix-delete-files. [Jakub
Onderka]
fix: [stix-export] Delete tmp files
- Merge pull request #7843 from JakubOnderka/index-test-vol2. [Jakub
Onderka]
Index test vol2
- Merge pull request #7842 from JakubOnderka/index-test. [Jakub Onderka]
chg: [test] Tests for event index
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7835 from JakubOnderka/stix-export. [Jakub
Onderka]
chg: [internal] Simplified loading python bin
- Merge pull request #7832 from JakubOnderka/pulish-sightings-file.
[Jakub Onderka]
chg: [internal] Use FileAccessTool for publishing sightings
v2.4.150 (2021-10-12)
---------------------
New
~~~
- [test] Build test. [Jakub Onderka]
Changes
~~~~~~~
- [version] bump. [iglocska]
- Add missing action buttons. [Luciano Righetti]
- Add tags and galaxies col. [Luciano Righetti]
- Add sightings cols and actions. [Luciano Righetti]
- Add attributes index custom fields. [Luciano Righetti]
- Initial migration of attributes/index view to factory. [Luciano
Righetti]
- Migrate news views to factory. [Luciano Righetti]
- [queryversion] bump. [iglocska]
- [log] Log when saving tags fails for attribute or event. [Jakub
Onderka]
- [internal] Add new submodules to diagnostics page. [Jakub Onderka]
- [UI] Show proper error when uploading event that already exists.
[Jakub Onderka]
- [feed] Move feed cache to proper folder. [Jakub Onderka]
- [feed] Use FileAccessTool. [Jakub Onderka]
- [feed] Simplified code for updating events from MISP feed. [Jakub
Onderka]
- [feed] Support unicode for feed preview search. [Jakub Onderka]
- [feed] Faster saving freetext attributes. [Jakub Onderka]
- [feed] Clean cache after feed modification. [Jakub Onderka]
- [feed] Check ETag when fetching freetext feed. [Jakub Onderka]
- [internal] Use hasAny for Org::canSee method. [Jakub Onderka]
- [internal] Use findColumn for Org::getOrgIdsFromMeta method. [Jakub
Onderka]
- [internal] Use FileAccessTool to read country galaxy cluster. [Jakub
Onderka]
- [internal] Better logging when saving SharingGroup. [Jakub Onderka]
- [internal] Simplify fetching Kafka topic. [Jakub Onderka]
- [internal] Simplify SharingGroup::checkIfAuthorisedToSave. [Jakub
Onderka]
- [internal] Simplify Event::__captureObjects code. [Jakub Onderka]
- [internal] Remove dead code. [Jakub Onderka]
- [internal] No need to initialize Sighting model. [Jakub Onderka]
- [internal] Remove unused attribute from MispObject::captureObject
method. [Jakub Onderka]
- [internal] Remove unused code when saving attributes for event. [Jakub
Onderka]
- [internal] Simplified code for MispObject::captureObject. [Jakub
Onderka]
- [internal] Faster saving attributes. [Jakub Onderka]
- [internal] Save multiple tags in one call. [Jakub Onderka]
- [internal] Simplified SharingGroup::appendOrgsAndServers. [Jakub
Onderka]
- [internal] Remove unused method Tag::findEventTags. [Jakub Onderka]
- [internal] Cache capturing tag results. [Jakub Onderka]
- [internal] Faster validating SG. [Jakub Onderka]
- [internal] Remove unused method. [Jakub Onderka]
- [internal] Simplified SharingGroup::checkIfAuthorised method. [Jakub
Onderka]
- [internal] Use hasAny for SG existence check. [Jakub Onderka]
- [internal] Use ?: operator. [Jakub Onderka]
- [internal] Use hasAny method for checkIfAuthorised methods. [Jakub
Onderka]
- [internal] Simplified Attribute::editAttribute method. [Jakub Onderka]
- [internal] Move Attribute::resizeImage method to AttachmentTool.
[Jakub Onderka]
- [internal] Default distribution method. [Jakub Onderka]
- [internal] Attribute::onDemandEncrypt faster. [Jakub Onderka]
- [internal] Delete unused method Attribute::saveAndEncryptAttribute.
[Jakub Onderka]
- [internal] Faster saving origin file. [Jakub Onderka]
- [internal] Optimise Attribute::valueIsUnique check. [Jakub Onderka]
- [internal] Do not encode/decode base64 for simpleAddMalwareSample.
[Jakub Onderka]
- [internal] Use FileAccessTool in AttachmentTool. [Jakub Onderka]
- [internal] Allow to save raw data. [Jakub Onderka]
- [internal] Background processing refactoring. [Jakub Onderka]
- [PyMISP] Update. [Jakub Onderka]
- [misp-stix] Update. [Jakub Onderka]
- [MISP/cakephp] updated - to get latest CA bundle. [Alexandre Dulaunoy]
Fix
~~~
- [attribute index] fixed attribute tag widget. [iglocska]
- notice errors due to missing variables in the closure
- [attribute index] fix galaxy widget for the attribute index.
[iglocska]
- notice errors when logged in as a user
- [attribute index] action ACL fixed. [iglocska]
- Incorrect sort keys. [Luciano Righetti]
- [internal] withCredentials property was added into $.ajaxSetup() to
get rid of 403 and 302 responses. [MrBoba]
- [internal] Fix saving tags. [Jakub Onderka]
- [log] Undefined index local. [Jakub Onderka]
- [internal] Remove unused SharingGroup::getSGSyncRules method. [Jakub
Onderka]
- [internal] Remove unused Event::checkIfAuthorised method. [Jakub
Onderka]
- [internal] Deleting event propagation to ZMQ and Kafka. [Jakub
Onderka]
- [shell] EventShell::contactemail command. [Jakub Onderka]
- [community-metadata] Fix typos and improve wording. [Jeroen Pinoy]
- [API] Return correct error message if event is blocklisted. [Jakub
Onderka]
- [attribute] Use `filename-pattern` [Jakub Onderka]
- [internal] Server save setting file. [Jakub Onderka]
- [stix1 export] Removed unnecessary write. [chrisr3d]
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'attribute_index' into develop. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge pull request #7633 from righel/migrate-news-views. [Andras
Iklody]
chg: migrate news views to factory.
- Merge branch '2.4' into develop. [iglocska]
- Revert "fix: [internal] withCredentials property was added into
$.ajaxSetup() to get rid of 403 and 302 responses" [iglocska]
This reverts commit b496161f5bf2a7f15ce52cf0dec62a52fc9d713e.
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7818 from MrBoba/fix-unauthorized-ajax. [Andras
Iklody]
fix: [internal] withCredentials property was added into $.ajaxSetup()…
- Merge pull request #7833 from JakubOnderka/fix-local-tags. [Jakub
Onderka]
fix: [internal] Fix saving tags
- Merge pull request #7831 from marjatech/marjatech-local-tag-import.
[Andras Iklody]
fix: keep tag local state when importing from json or sync from internal
- Keep tag local state when importing from json or sync from internal.
[misp-test]
Fixes MISP#7810
When importing an Event via JSON, local tags inside the json should stay local after import too, and not be attached as global ones.
Same applies for Sync-Operations from internal instances (for any other instance local tags get stripped anyway)
- Merge pull request #7830 from JakubOnderka/audit-log-undefined-index.
[Jakub Onderka]
fix: [log] Undefined index local
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge pull request #7826 from JakubOnderka/new-submodules. [Jakub
Onderka]
chg: [internal] Add new submodules to diagnostics page
- Merge pull request #7827 from JakubOnderka/upload-stix-existing-uuid.
[Jakub Onderka]
chg: [UI] Show proper error when uploading event that already exists
- Merge pull request #7798 from JakubOnderka/feed-etag. [Jakub Onderka]
chg: [feed] Check ETag when fetching freetext feed
- Chf: [feed] Cache MISP feed manifest file. [Jakub Onderka]
- Merge pull request #7824 from JakubOnderka/code-cleanup-vol9. [Jakub
Onderka]
Code cleanup vol9
- Merge pull request #7823 from JakubOnderka/faster-attachment. [Jakub
Onderka]
chg: [internal] Allow to save raw data
- Merge pull request #7821 from JakubOnderka/background-processing-chg.
[Jakub Onderka]
chg: [internal] Background processing refactoring
- Merge pull request #7820 from JakubOnderka/build-test. [Jakub Onderka]
new: [test] Build test
- Merge pull request #7819 from Wachizungu/fix-communities-list-
language. [Alexandre Dulaunoy]
fix: [community-metadata] Fix typos and improve wording
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge pull request #7816 from JakubOnderka/update-misp-stix. [Jakub
Onderka]
chg: [misp-stix] Update
- Merge pull request #7638 from JakubOnderka/add-event-error. [Jakub
Onderka]
fix: [API] Return correct error message if event is blocklisted
- Merge pull request #7710 from JakubOnderka/filename-pattern. [Jakub
Onderka]
fix: [attribute] Use `filename-pattern`
- Merge pull request #7814 from JakubOnderka/server-save-setting. [Jakub
Onderka]
fix: [internal] Server save setting file
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Merge branch '2.4' of https://github.com/MISP/MISP into 2.4.
[chrisr3d]
v2.4.149 (2021-10-09)
---------------------
New
~~~
- [internal] Store MISP live status also in Redis. [Jakub Onderka]
- [internal] OrgBlocklist::removeBlockedEvents. [Jakub Onderka]
- [internal] Method Job::createJob. [Jakub Onderka]
- Support for BECH32 (P2WPKH) BTC address. [Jakub Onderka]
- [CLI] UserShell::ip_user command. [Jakub Onderka]
- [CLI] New tasks that will check if Redis is available. [Jakub Onderka]
- Add more /taxonomies/* endpoints api docs. [Luciano Righetti]
- Add openapi docs for /users_settings/* endpoints. [Luciano Righetti]
- [shell] Tag merging. [Jakub Onderka]
- [event:notification] Added email notification ban system based on
users triggering the notification. [mokaddem]
- [cerebrate:pull_sg] Pull sharing groups from a cerebrate instance.
[mokaddem]
- [UI] Allow to filter attributes by specific warninglist. [Jakub
Onderka]
- [CLI] User shell. [Jakub Onderka]
- [oidc] Allow to automatically unblock user after successful login.
[Jakub Onderka]
- [security] Disable browser autocomplete for authkeys field. [Jakub
Onderka]
- [export:host] RestSearch export for blackholing via host file.
[mokaddem]
- [warninglist] Assign warninglist comment. [Jakub Onderka]
- [sighting:add] Ability to provide filtering parameters when adding
sightings for specific values Fix #7669. [mokaddem]
- [API] Allow to delete multiple events by UUID. [Jakub Onderka]
- [test] Test more endpoints in sync test. [Jakub Onderka]
- [API] Allow more granular specification what data to return when
viewing event. [Jakub Onderka]
- [test] Push to remote server. [Jakub Onderka]
- [test] Sync. [Jakub Onderka]
Changes
~~~~~~~
- [stix2 export] Using a specific filter to specify the STIX version.
[chrisr3d]
- `version` being too generic and used from another
end point, we use `stix-version` in order to
avoid confusion between the 2 filters
- [install] Update installer checksums. [Steve Clement]
- [PyMISP] bump to the latest version. [Alexandre Dulaunoy]
- [GitHub action] install the python-cti-stix2 from the local submodule.
[Alexandre Dulaunoy]
- [GitHub action] raging on venv library path. [Alexandre Dulaunoy]
- [GitHubAction] add2virtualenv the STIX stuff. [Alexandre Dulaunoy]
- [modules] typo fixed. [Alexandre Dulaunoy]
- [gitmodules] fix the branch to main. [Alexandre Dulaunoy]
- [gitmodules] TLS is always fine. [Alexandre Dulaunoy]
- [version] bump. [iglocska]
- [misp-object] updated. [Alexandre Dulaunoy]
- [misp-stix] Bumped latest version including recent PR merged.
[chrisr3d]
- [stix] Bumped latest version of `misp-stix` $ `cti-python-stix2`
python libraries. [chrisr3d]
- [INSTALL] Removing the install commands for the STIX libraries.
[chrisr3d]
- [stix2 export] Moved the stix2 python library with its stix1 friends
in the `scripts` dir. [chrisr3d]
- [users:routeafterlogin] Allow forcing the pre-login URL to be HTTPS.
[Sami Mokaddem]
This can be achieved by turning the setting MISP.forceHTTPSforPreLoginRequestedURL to true.
- [misp-stix] Bumped the latest version including some fixes and
updates. [chrisr3d]
- [misp-stix] Bumped latest misp-stix version. [chrisr3d]
- [stix export] Removed mapping files not used anymore. [chrisr3d]
- The STIX1 & STIX2 mapping is now managed with
the misp-stix python library
- [cti-python-stix2] Bumped latest version. [chrisr3d]
- [misp-stix] Bumped latest version. [chrisr3d]
- [stix1 export] Using the misp-stix library to export MISP format into
STIX 1.1.1 or 1.2. [chrisr3d]
- [stix export] Updated Stix export libraries. [chrisr3d]
- Including parameters to define versions in the
restSearch filters
- New parameters to call the python scripts
- [misp-stix] Bumped latest version. [chrisr3d]
- [misp-stix] Updated to the latest version. [chrisr3d]
- [internal] Generate correlations just once. [Jakub Onderka]
- [internal] Faster adding tags to attributes. [Jakub Onderka]
- [users:routeafterlogin] Allow forcing the pre-login URL to be HTTPS.
[Sami Mokaddem]
This can be achieved by turning the setting MISP.forceHTTPSforPreLoginRequestedURL to true.
- [internal] Use hasAny. [Jakub Onderka]
- [internal] Faster event tag attaching. [Jakub Onderka]
- [misp-warninglists] updated. [Alexandre Dulaunoy]
- [misp-galaxy] updated. [Alexandre Dulaunoy]
- [misp-objects] updated. [Alexandre Dulaunoy]
- [warning-list] updated. [Alexandre Dulaunoy]
- [gitmodules] as Branch 2.x was removed from the original repository,
we now use our own repo. [Alexandre Dulaunoy]
- [misp-objects] updated. [Alexandre Dulaunoy]
- [warning-lists] updated to the latest version. [Alexandre Dulaunoy]
- Detail attribute categories in openapi doc. [Luciano Righetti]
- Detail attribute types in openapi doc. [Luciano Righetti]
- Detail attribute types in openapi doc. [Luciano Righetti]
- [taxonomies] updated to the latest version. [Alexandre Dulaunoy]
- [internal] Refactor FileAccessTool. [Jakub Onderka]
- [internal] Simplified EventsController::view code. [Jakub Onderka]
- [sync] Use server sync tool for fetching remote events index. [Jakub
Onderka]
- [warning-lists] updated. [Alexandre Dulaunoy]
- [internal] Use AdminSetting::getSetting method. [Jakub Onderka]
- [internal] Fetch just value for AdminSetting::getSetting method.
[Jakub Onderka]
- [internal] Switch admin setting name column to unique index. [Jakub
Onderka]
- [internal] Faster Attribute search. [Jakub Onderka]
- [gitmodules] as Branch 2.x was removed from the original repository,
we now use our own repo. [Alexandre Dulaunoy]
- [internal] Server::command_line_functions is generated on demand.
[Jakub Onderka]
- [internal] Do not try to save config when config file is not
writeable. [Jakub Onderka]
- [internal] Cleanup AdminShell::{updateJSON,runUpdates} [Jakub Onderka]
- [internal] Optimise saving logs. [Jakub Onderka]
- [internal] Cleanup unnecessary permissions. [Jakub Onderka]
- [internal] Simplify ACLComponent. [Jakub Onderka]
- [internal] AppController code cleanup. [Jakub Onderka]
- [internal] Move methods to specific controllers. [Jakub Onderka]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [warning-lists] updated to the latest version. [Alexandre Dulaunoy]
- Migrate /event_blocklist/add,edit to view factory. [Luciano Righetti]
- Move org blocklists add and edit to new views factories. [Luciano
Righetti]
- Migrate org_blocklists/index view to factory. [Luciano Righetti]
- Detail attribute categories in openapi doc. [Luciano Righetti]
- Detail attribute types in openapi doc. [Luciano Righetti]
- Detail attribute types in openapi doc. [Luciano Righetti]
- [internal] Code cleanup. [Jakub Onderka]
- [UI] Better error messages when uploading MISP file. [Jakub Onderka]
- [taxonomies] updated. [Alexandre Dulaunoy]
- [internal] Try to fix validation when value1 and value2 provided.
[Jakub Onderka]
- [UI] PGP error message. [Jakub Onderka]
- [internal] Do not fetch authkey from db. [Jakub Onderka]
- [internal] Do not fetch password from db. [Jakub Onderka]
- [internal] Do not fetch keys from db for authkey login. [Jakub
Onderka]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [internal] Remove deprecated variables. [Jakub Onderka]
- [internal] Optimise fetching event index by org or by email. [Jakub
Onderka]
- [internal] Check if file exists. [Jakub Onderka]
- [internal] Simplify ServerShell code. [Jakub Onderka]
- [internal] Faster capturing organisation. [Jakub Onderka]
- [internal] Remove AdminSetting from AuditLog. [Jakub Onderka]
- [internal] Use faster algo for checking duplicate objects. [Jakub
Onderka]
- [internal] Faster editing attributes when change is required. [Jakub
Onderka]
- [internal] Faster capturing object attributes. [Jakub Onderka]
- [internal] Faster processing freetext import. [Jakub Onderka]
- [UI] Add link to exact attribute for related attribute. [Jakub
Onderka]
- [internal] Do not fetch tags for related attributes. [Jakub Onderka]
- [misp-wipe] wipe auth_keys tables. [Richard van den Berg]
- Add openapi docs for [POST]/admin/logs. [Luciano Righetti]
- [PyMISP] Bump. [Raphaël Vinot]
- [PyMISP] Bump. [Raphaël Vinot]
- Skip dev dependencies when installing via INSTALL.sh script. [Luciano
Righetti]
- [alert] Deprecate `publish_alerts_summary_only`, this option just
duplicate `event_alert_metadata_only` [Jakub Onderka]
- [user:checkNotificationBanStatus] Typo in comment. [mokaddem]
- [PyMISP] updated. [Alexandre Dulaunoy]
- [internal] Simplify code for editing object. [Jakub Onderka]
- [internal] Simplify code for editing attribute. [Jakub Onderka]
- [internal] Faster calls. [Jakub Onderka]
- [internal] Use correlation object from attribute. [Jakub Onderka]
- [internal] Faster deleting correlation when deleting attribute. [Jakub
Onderka]
- [internal] Optimise ssdeep correlation. [Jakub Onderka]
- [internal] Use object variable and not Configure again and again.
[Jakub Onderka]
- [internal] Do not fetch 'Event.disable_correlation' field. [Jakub
Onderka]
- [internal] Fetch just necessary attributes when editing attribute.
[Jakub Onderka]
- [internal] Fetch less CIDR for correlation. [Jakub Onderka]
- Add openapi docs for [POST]/admin/logs. [Luciano Righetti]
- [sync] Examine less events for sightings pulling. [Jakub Onderka]
- [UI] Sort orgs by name in statistics. [Jakub Onderka]
- [optim] Little optimise sighting statistics. [Jakub Onderka]
- [internal] Throw exception if JSON could not be encoded. [Jakub
Onderka]
- [internal] Simplify capturing object code. [Jakub Onderka]
- [internal] Simplify capturing attribute code. [Jakub Onderka]
- [correlation] Allow to drop Correlation.{date,info} columns. [Jakub
Onderka]
- [PyMISP] updated. [Alexandre Dulaunoy]
- [diagnostic] Bumped updated STIX python libraries versions. [chrisr3d]
- Should fix diagnostic issues with version mentioned in #7054
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [internal] Server controller cleanup. [Jakub Onderka]
- [security] Use const hasher also for login. [Jakub Onderka]
- [sync] Use server sync to get available sync filtering rules. [Jakub
Onderka]
- [sync] Simplify server post test code. [Jakub Onderka]
- [sync] Use server sync tool for connection test. [Jakub Onderka]
- [security] Mitigate timing attacks when comparing advanced auth keys
hashes. [Jakub Onderka]
- [restResponseComponent] Added doc for new sighting/add filters
parameter. [Sami Mokaddem]
- [sync] Filter out events that do not exist locally when pulling
sightings. [Jakub Onderka]
- [sync] Pull just necessary data when pulling sightings. [Jakub
Onderka]
- [sync] Use sync tool for pulling proposals. [Jakub Onderka]
- [validation] UUID unique validation. [Jakub Onderka]
- [schema] Mark more indexes as unique. [Jakub Onderka]
- [attributes] fixed typo in genCategoriesDefinitions function name.
[Christophe Vandeplas]
- Update openapi spec with new parameters in add sightings endpoint.
[Luciano Righetti]
- [i18n] Updated default.pot. [Steve Clement]
- [UI] Show matched value for warninglist search. [Jakub Onderka]
- [taxonomies] updated to the latest version. [Alexandre Dulaunoy]
- [warning-lists] updated to the latest version. [Alexandre Dulaunoy]
- Migrate sharing_views/view/[id] to factory. [Luciano Righetti]
- [sync] Remove `commit` and MISP-version from HTTP header. [Jakub
Onderka]
- Remove previous /tags/edit view. [Luciano Righetti]
- Migrate /tags/add view to factory. [Luciano Righetti]
- [schema] Organisation name should be unique. [Jakub Onderka]
- [internal] Fetch just necessary fields when capturing tag. [Jakub
Onderka]
- [internal] Do not fetch attribute tags when editing attribute. [Jakub
Onderka]
- [schema] Tag name should be unique. [Jakub Onderka]
- [internal] Do not load exclusion list from Redis again and again.
[Jakub Onderka]
- [sync] Pull events with less info. [Jakub Onderka]
- [schema] Sightings UUID column should be unique. [Jakub Onderka]
- [internal] Convert PubSubTool to static. [Jakub Onderka]
- [internal] Simplified code for adding events. [Jakub Onderka]
- [internal] Do not keep original variable to save memory. [Jakub
Onderka]
- [internal] Simplified Event::getRelatedAttributes. [Jakub Onderka]
- [internal] Use hash for removing duplicate attributes. [Jakub Onderka]
- [internal] Use one EventLock instance. [Jakub Onderka]
- [internal] Cleanup code responsible for adding events. [Jakub Onderka]
- [rest] Change User-Agent to `MISP REST Client` [Jakub Onderka]
- [UI] Cleanup REST client template. [Jakub Onderka]
- [internal] Do not convert values to lower, since collation is already
case-insensitive. [Jakub Onderka]
- [internal] Code style for event pulling. [Jakub Onderka]
- [sync] Refactor server overlap events fetching. [Jakub Onderka]
- [sync] Better error handling for pulling. [Jakub Onderka]
- [internal] Better exception handling for server sync. [Jakub Onderka]
- [logbehaviour] skipfields reverted to an array from a constant.
[iglocska]
- keeps ancient PHP versions happy (as happy as anyone can be knowing they run ancient PHP versions)
- [internal] Log exception for remote server POST test. [Jakub Onderka]
- [internal] Optimise updating galaxies. [Jakub Onderka]
- [internal] Remove unused methods. [Jakub Onderka]
- [internal] Galaxy cluster relation UUID must be RFC 4122 valid. [Jakub
Onderka]
- [internal] Faster removing blocked events. [Jakub Onderka]
- [schema] Mark event_blocklist uuid column as unique. [Jakub Onderka]
- [taxonomies] Migrated views to use the UI factories. [mokaddem]
- [ui] Various improvements in factories. [mokaddem]
Fix
~~~
- [misp-stix] updated to the latest version (incorrect submodule)
[Alexandre Dulaunoy]
Fix #7812
- Sharing groups dropdown not showing when adding a feed with
distribution set to sharing group. [Luciano Righetti]
- [misp-stix] Bumped latest version. [chrisr3d]
- [github actions] removed the cti stix installation as it's no longer
there. [iglocska]
- [github actions] removed the cti stix installation as it's no longer
there. [iglocska]
- [stix2 import] Using path to import the stix2 python library.
[chrisr3d]
- [stix1 export] Added the required stix python library path for their
import. [chrisr3d]
- Support of the coming changes to use paths instead
of maintaining the pip updates
- [stix1 import] Quick fix due to some recent changes library changes
and the support of STIX 1.2. [chrisr3d]
- [stix export] Aligning path of the STIX2 python library to following
its recent location change. [chrisr3d]
- [stix export] Added all the needed paths to load the required python
libraries. [chrisr3d]
- [misp-stix] Bumped latest version with a quick fix on email objects
export as STIX 2.0 & 2.1. [chrisr3d]
- [diagnostic] Updated stix2 python library requirements. [chrisr3d]
- [stix1 export] Removed debugging prints. [chrisr3d]
- [stix export] Quick single line php `if else` command clean-up.
[chrisr3d]
- [gitmodules] Added current misp-stix branch. [chrisr3d]
- [misp-stix] Dumped latest MISP-STIX Converter version. [chrisr3d]
- [log] Do not call callbacks when deleting. [Jakub Onderka]
- [users] adding/modifying users fails silently for org admins if domain
restriction checks fail. [iglocska]
- [organisations] correctly handle a list of org domain restrictions.
[iglocska]
- [internal] Bad merge. [Jakub Onderka]
- Incorrect check for alertemail and publishSightings event commands.
[Luciano Righetti]
- Incorrect check for publish event command. [Luciano Righetti]
- [shells] Sync improved cmd line help to 9d7da310. [Matjaz Rihtar]
- [shells] Additional command line help. [Matjaz Rihtar]
- [refanging] Fix test for commit b7733615. [Matjaz Rihtar]
- [shells] Fixed/improved command line help. [Matjaz Rihtar]
- [eventReport:contextExtraction] Make sure the cluster's value has
enough characters before trying to perform the replacement. [mokaddem]
- [stix1 import] Fixed STIX header call that made the classification of
the STIX file always being external. [chrisr3d]
- `from_misp` variable was always False since the
try / catch to get the title always raised an
exception with `event.header` being an invalid
attribute. The valid one is `event.stix_header`
- [internal] Better error handling when uploading STIX file. [Jakub
Onderka]
- [internal] Undefined offset in AppController. [Jakub Onderka]
- Wrong input name. [Luciano Righetti]
- Add missing translation function. [Luciano Righetti]
- Remove CRUDComponent usage. [Luciano Righetti]
- Add missing new line. [Luciano Righetti]
- Remove CRUDComponent usage to mantain same api response. [Luciano
Righetti]
- [eventReport:contextExtraction] Make sure the cluster's value has
enough characters before trying to perform the replacement. [mokaddem]
- [internal] Modifying domain|ip attribute. [Jakub Onderka]
- [misp-retention] use update_tag. [Richard van den Berg]
- Bug correlation exclusion comment overriding value. [Luciano Righetti]
- [internal] Sending external e-mail. [Jakub Onderka]
- [UI] Fix link to user profile. [Jakub Onderka]
- [taxonomies] disabling tags via API call failed. [iglocska]
- [taxonomies] enabling breaks on POST request if named parameters
aren't used. [iglocska]
- [Taxonomy] search for taxonomy by namespace when accessing
/taxonomies/view. [iglocska]
- [internal] Argument parsing for testEventNotificationEmail command.
[Jakub Onderka]
- [object] validation and modification fixes. [iglocska]
- require certain metafields to be set (such as template uuid, template version, etc)
- allow editing for unknown templates / no templates via the API (was previously incorrectly blocked / generated notices due to some UI related functionalities being triggered)
- [acl] Added routes in ACL. [mokaddem]
- [internal] Remove ssdeep data when deleting attribute. [Jakub Onderka]
- [internal] Filtering warninglist in objects. [Jakub Onderka]
- [UI] Warninglist order. [Jakub Onderka]
- [internal] Typo. [Jakub Onderka]
- Add missing requestBodies to servers endpoint. [Luciano Righetti]
- [internal] Fetching filter rules. [Jakub Onderka]
- [sync] Fix pulling sightings. [Jakub Onderka]
- [sync] Pushing sightings. [Jakub Onderka]
- [ACL] queryAvailableSyncFilteringRules is required just for site
admins. [Jakub Onderka]
- [security] Check permission when viewing shadow attribute picture.
[Jakub Onderka]
- [internal] Code cleanup. [Jakub Onderka]
- [API] Deprecation header. [Jakub Onderka]
- Fix query to make it work on all supported db engines. [Luciano
Righetti]
- [tools] fixed gen_misp_types_categories script. [Christophe Vandeplas]
- Fix broken queries on postgres. [Luciano Righetti]
- [eventReport:reprotFromEvent] Make sure filtering condition are not
empty. [mokaddem]
- [UI] Warninglist form. [Jakub Onderka]
- [event:filter_value] Allow searching for multiple values. [mokaddem]
- [db_schema] Fixed column default value for audit_log table - Fix
#7662. [mokaddem]
- [event:view] Attribute filtering widget `deleted` parameter
inconsistency. [mokaddem]
- Potentially fix #7594
- [log] Array to string conversion. [Jakub Onderka]
- [API] Boolean options in index filter conditions. [Jakub Onderka]
- [internal] Shadow attributes don't have tags. [Jakub Onderka]
- [acl] Bumped ACL. [mokaddem]
Other
~~~~~
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge branch 'develop' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'misp-stix' into develop. [iglocska]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Add: [stix export] Submoduled all the required python libraries.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Wip: [misp-stix] Bumped latest version. [chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Wip: [stix2 export] Args parsing to better handle parameters & Support
for STIX 2.1. [chrisr3d]
- Wip: [stix export, framing] Reworked misp_framing. [chrisr3d]
- Made it cleaner
- Made it support the STIX framing provided by
misp-stix converter library
- Merge branch '2.4' of https://github.com/MISP/MISP into misp-stix.
[chrisr3d]
- Wip: [stix2 export] Testing MISP-STIX python library with the included
changes on the Export Lib and on the misp2stix2.py script. [chrisr3d]
- Add: [submodules, stix] Added MISP-STIX converter library as
submodule. [chrisr3d]
- Merge pull request #7808 from JakubOnderka/tag-add. [Jakub Onderka]
chg: [internal] Faster adding tags to attributes
- Merge pull request #7809 from JakubOnderka/audit-log-fix. [Jakub
Onderka]
fix: [log] Do not call callbacks when deleting
- Merge branch 'feature-force-https-for-pre-login-request' into develop.
[Sami Mokaddem]
- Merge pull request #7805 from JakubOnderka/event-tag-attach. [Jakub
Onderka]
chg: [internal] Faster event tag attaching
- Merge pull request #7806 from JakubOnderka/bad-merge-fix. [Jakub
Onderka]
fix: [internal] Bad merge
- Merge remote-tracking branch 'origin/2.4' into develop. [Sami
Mokaddem]
- Merge pull request #7224 from mrihtar/cmdLineHelp. [Andras Iklody]
fix: [shells] Fixed/improved command line help
- Merge branch '2.4' into cmdLineHelp. [Matjaz Rihtar]
# Conflicts:
# app/Console/Command/AdminShell.php
# app/Console/Command/EventShell.php
# app/Model/Server.php
- Merge branch 'MISP:2.4' into 2.4. [Matjaz Rihtar]
- Merge branch 'MISP:2.4' into 2.4. [Matjaz Rihtar]
- Merge pull request #1 from MISP/2.4. [Matjaz Rihtar]
Sync fork with original MISP/MISP
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Merge pull request #7792 from JakubOnderka/misp-live-redis-v2. [Jakub
Onderka]
new: [internal] Store MISP live status also in Redis
- Merge pull request #7800 from JakubOnderka/file-accesss-tool. [Jakub
Onderka]
chg: [internal] Refactor FileAccessTool
- Merge pull request #7796 from JakubOnderka/org-blocklist. [Jakub
Onderka]
new: [internal] OrgBlocklist::removeBlockedEvents
- Merge pull request #7795 from JakubOnderka/event-view-controller.
[Jakub Onderka]
chg: [internal] Simplified EventsController::view code
- Merge pull request #7688 from JakubOnderka/server-sync-get-ids. [Jakub
Onderka]
chg: [sync] Use server sync tool for fetching remote events index
- Merge pull request #7779 from JakubOnderka/create-job. [Jakub Onderka]
new: [internal] Method Job::createJob
- Merge pull request #7791 from JakubOnderka/admin-settings. [Jakub
Onderka]
Admin settings
- Merge pull request #7789 from JakubOnderka/stix-upload-error. [Jakub
Onderka]
Stix upload error
- Merge pull request #7788 from JakubOnderka/search-attr-faster. [Jakub
Onderka]
chg: [internal] Faster Attribute search
- Merge pull request #7778 from JakubOnderka/server-command-line. [Jakub
Onderka]
chg: [internal] Server::command_line_functions is generated on demand
- Merge pull request #7780 from JakubOnderka/btc-bech32. [Jakub Onderka]
new: Support for BECH32 (P2WPKH) BTC address
- Merge pull request #7776 from JakubOnderka/user_shell_ip_user. [Jakub
Onderka]
new: [CLI] UserShell::ip_user command
- Merge pull request #7775 from JakubOnderka/set-setting-not-writeable.
[Jakub Onderka]
chg: [internal] Do not try to save config when config file is not writeable
- Merge pull request #7772 from JakubOnderka/update-cleanup. [Jakub
Onderka]
chg: [internal] Cleanup AdminShell::{updateJSON,runUpdates}
- Merge pull request #7774 from JakubOnderka/log-save-optim. [Jakub
Onderka]
chg: [internal] Optimise saving logs
- Merge pull request #7771 from JakubOnderka/cli-redis-available. [Jakub
Onderka]
new: [CLI] New tasks that will check if Redis is available
- Merge pull request #7769 from JakubOnderka/app-controller-cleanup-
vol3. [Jakub Onderka]
chg: [internal] AppController code cleanup
- Merge pull request #7768 from JakubOnderka/app-controller-cleanup-
vol2. [Jakub Onderka]
chg: [internal] Move methods to specific controllers
- Merge pull request #7767 from JakubOnderka/undefined-offset-fix.
[Jakub Onderka]
fix: [internal] Undefined offset in AppController
- Merge pull request #7571 from righel/migrate-org_blocklists-index-
view. [Andras Iklody]
Migrate org blocklists index view
- Revert "chg: migrate /event_blocklist/add,edit to view factory."
[Luciano Righetti]
This reverts commit 51f226fd8c79d5b7e514d459968e89c211535025.
- Merge pull request #7761 from JakubOnderka/code-cleanup-vol8. [Jakub
Onderka]
chg: [internal] Code cleanup
- Merge pull request #7762 from JakubOnderka/upload-mistp-file. [Jakub
Onderka]
chg: [UI] Better error messages when uploading MISP file
- Merge pull request #7722 from JakubOnderka/attribute-validation-fix.
[Jakub Onderka]
chg: [internal] Try to fix validation when value1 and value2 provided
- Merge pull request #7759 from JakubOnderka/pgp-view-pgp. [Jakub
Onderka]
chg: [UI] PGP error message
- Add: add initial api docs fo /taxonomies endpoints. [Luciano Righetti]
- Merge pull request #7754 from JakubOnderka/do-not-fetch-keys. [Jakub
Onderka]
chg: [internal] Do not fetch keys from db for authkey login
- Merge pull request #7758 from JakubOnderka/modify-domain|ip. [Jakub
Onderka]
fix: [internal] Modifying domain|ip attribute
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7744 from RichieB2B/ncsc-nl/retention. [Sami
Mokaddem]
fix: [misp-retention] use update_tag
- Merge pull request #7752 from JakubOnderka/fix-sending-external.
[Jakub Onderka]
fix: [internal] Sending external e-mail
- Merge pull request #7753 from JakubOnderka/deprecated-variables.
[Jakub Onderka]
cchg: [internal] Remove deprecated variables
- Merge pull request #7590 from JakubOnderka/event-index-optim. [Jakub
Onderka]
chg: [internal] Optimise fetching event index by org or by email
- Doc: add /auth_keys/* endpoints to openapi spec. [Luciano Righetti]
- Merge pull request #7746 from JakubOnderka/security-audit-file. [Jakub
Onderka]
chg: [internal] Check if file exists
- Merge pull request #7725 from JakubOnderka/server-shell. [Jakub
Onderka]
chg: [internal] Simplify ServerShell code
- Merge pull request #7740 from JakubOnderka/capture-org-faster. [Jakub
Onderka]
chg: [internal] Faster capturing organisation
- Merge pull request #7739 from JakubOnderka/audit-log-admin-setting.
[Jakub Onderka]
chg: [internal] Remove AdminSetting from AuditLog
- Merge pull request #7733 from JakubOnderka/capture-object-attributes.
[Jakub Onderka]
chg: [internal] Faster capturing object attributes
- Merge pull request #7738 from JakubOnderka/related-faster. [Jakub
Onderka]
chg: [internal] Faster processing freetext import
- Merge pull request #7737 from JakubOnderka/related-faster. [Jakub
Onderka]
chg: [internal] Do not fetch tags for related attributes
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7720 from RichieB2B/ncsc-nl/wipe-auth. [Alexandre
Dulaunoy]
chg: [misp-wipe] wipe auth_keys tables
- Merge pull request #7734 from righel/add-composer-no-dev-flag. [Steve
Clement]
chg: skip dev dependencies when installing via INSTALL.sh script.
- Merge pull request #7579 from
JakubOnderka/publish_alerts_summary_only_deprecate. [Jakub Onderka]
chg: [alert] Deprecate `MISP.publish_alerts_summary_only`
- Merge pull request #7732 from JakubOnderka/tag-merging. [Jakub
Onderka]
new: [shell] Tag merging
- Merge branch 'migration-taxonomy' into develop. [mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into migration-
taxonomy. [mokaddem]
- Merge branch 'feature-cerebrate-sg-pull' into develop. [mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into feature-cerebrate-
sg-pull. [mokaddem]
- Merge branch 'feature-email-notification-bans' into develop.
[mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into feature-email-
notification-bans. [mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch '2.4' of github.com:MISP/MISP into feature-email-
notification-bans. [mokaddem]
- Merge pull request #7728 from JakubOnderka/edit-attr-simplify. [Jakub
Onderka]
chg: [internal] Simplify code for editing attribute
- Merge pull request #7727 from JakubOnderka/correlation-optim. [Jakub
Onderka]
Correlation optim
- Merge pull request #7724 from JakubOnderka/attr-edit-speedup. [Jakub
Onderka]
chg: [internal] Fetch just necessary attributes when editing attribute
- Merge pull request #7723 from JakubOnderka/less-cidr. [Jakub Onderka]
chg: [internal] Fetch less CIDR for correlation
- Merge pull request #7721 from JakubOnderka/fix-typo. [Jakub Onderka]
fix: [internal] Typo
- Merge pull request #7719 from JakubOnderka/warninglist-filtering.
[Jakub Onderka]
new: [UI] Allow to filter attributes by specific warninglist
- Merge pull request #7713 from JakubOnderka/sync-pull-sightings. [Jakub
Onderka]
chg: [sync] Examine less events for sightings pulling
- Merge pull request #7712 from JakubOnderka/sight-stats-optim. [Jakub
Onderka]
chg: [optim] Little optimise sighting statistics
- Merge pull request #7708 from JakubOnderka/json-throw-exception.
[Jakub Onderka]
chg: [internal] Throw exception if JSON could not be encoded
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[mokaddem]
- Merge pull request #7704 from JakubOnderka/capture-attr-refactor.
[Jakub Onderka]
chg: [internal] Simplify capturing attribute code
- Merge pull request #7706 from JakubOnderka/fix-filter-rules. [Jakub
Onderka]
fix: [internal] Fetching filter rules
- Merge pull request #6021 from JakubOnderka/correlations-dummy-values.
[Jakub Onderka]
chg: [correlation] Allow to drop Correlation.{date,info} columns
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7691 from JakubOnderka/user-shell. [Jakub Onderka]
new: [CLI] User shell
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Alexandre
Dulaunoy]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge pull request #7696 from JakubOnderka/server-controller-cleanup.
[Jakub Onderka]
chg: [internal] Server controller cleanup
- Merge pull request #7692 from JakubOnderka/const-hasher-password.
[Jakub Onderka]
chg: [security] Use const hasher also for login
- Merge pull request #7693 from JakubOnderka/oidc_auth_unblock. [Jakub
Onderka]
new: [oidc] Allow to automatically unblock user after successful login
- Merge pull request #7683 from JakubOnderka/pull-sightings-optimise.
[Jakub Onderka]
fix: [sync] Fix pulling sightings
- Merge pull request #7634 from JakubOnderka/fix-sighting-push-vol2.
[Jakub Onderka]
fix: [sync] Pushing sightings
- Merge pull request #7672 from JakubOnderka/acl-fix. [Jakub Onderka]
fix: [ACL] queryAvailableSyncFilteringRules is required just for site admins
- Merge pull request #7673 from JakubOnderka/sync-filter-ref. [Jakub
Onderka]
chg: [sync] Use server sync to get available sync filtering rules
- Merge pull request #7686 from JakubOnderka/code-fixes. [Jakub Onderka]
Code fixes
- Merge pull request #7685 from JakubOnderka/fix-deprecation-warning.
[Jakub Onderka]
fix: [API] Deprecation header
- Merge pull request #7678 from JakubOnderka/post-test-simplify. [Jakub
Onderka]
chg: [sync] Simplify server post test code
- Merge pull request #7676 from JakubOnderka/connection-test-server-
sync. [Jakub Onderka]
chg: [sync] Use server sync tool for connection test
- Merge pull request #7677 from JakubOnderka/mitigate-timing-attacks.
[Jakub Onderka]
chg: [security] Mitigate timing attacks
- Merge pull request #7675 from JakubOnderka/authkeys-autocompelte-off.
[Jakub Onderka]
new: [security] Disable browser autocomplete for authkeys field
- Merge branch 'develop' of github.com:MISP/MISP into develop. [Luciano
Righetti]
- Merge pull request #7649 from JakubOnderka/pull-sightings. [Jakub
Onderka]
chg: [sync] Pull just necessary data when pulling sightings
- Merge pull request #7650 from JakubOnderka/pull-proposals-vol2. [Jakub
Onderka]
chg: [sync] Use sync tool for pulling proposals
- Merge pull request #7659 from JakubOnderka/unique-indexes. [Jakub
Onderka]
chg: [schema] Mark more indexes as unique
- Security: fix unescaped parameter leading to sqli. [Luciano Righetti]
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Alexandre
Dulaunoy]
- Merge pull request #7694 from SteveClement/i18n. [Steve Clement]
chg: [i18n] Updated default.pot
- Security: fix unescaped parameter leading to sqli. [Luciano Righetti]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[mokaddem]
- Merge pull request #7666 from JakubOnderka/assign-comment. [Jakub
Onderka]
new: [warninglist] Assign warninglist comment
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7665 from JakubOnderka/fix-7663. [Jakub Onderka]
fix: [log] Array to string conversion
- Merge pull request #7641 from righel/migrate-sharing-groups-views.
[Andras Iklody]
chg: migrate sharing_views/view/[id] to factory
- Merge pull request #7648 from JakubOnderka/remove-http-commit. [Andras
Iklody]
chg: [sync] Remove commit and MISP-version from HTTP header
- Merge pull request #7656 from righel/migrate-tags-views. [Andras
Iklody]
Migrate tags views
- Merge pull request #7657 from JakubOnderka/org-name-unique. [Jakub
Onderka]
Org name unique
- Merge pull request #7653 from JakubOnderka/edit-event-optim. [Jakub
Onderka]
chg: [internal] Do not fetch attribute tags when editing attribute
- Merge pull request #7654 from JakubOnderka/tag-name-unique. [Jakub
Onderka]
chg: [schema] Tag name should be unique
- Merge pull request #7655 from JakubOnderka/do-not-load-exclusion-
again. [Jakub Onderka]
chg: [internal] Do not load exclusion list from Redis again and again
- Merge pull request #7651 from JakubOnderka/event-index-filter. [Jakub
Onderka]
fix: [API] Boolean options in index filter conditions
- Merge pull request #7644 from JakubOnderka/pull-less-info. [Jakub
Onderka]
chg: [sync] Pull events with less info
- Merge pull request #7645 from JakubOnderka/sightins-uuid-unique.
[Jakub Onderka]
chg: [schema] Sightings UUID column should be unique
- Merge pull request #7643 from JakubOnderka/pubsub-static. [Jakub
Onderka]
chg: [internal] Convert PubSubTool to static
- Merge pull request #7541 from JakubOnderka/delete-event-refactor.
[Jakub Onderka]
new: [API] Allow to delete multiple events by UUID
- Merge pull request #7640 from JakubOnderka/add-event-cleanup-part.
[Jakub Onderka]
Add event cleanup
- Merge pull request #7587 from JakubOnderka/rest-client-user-agent.
[Jakub Onderka]
Change User-Agent to MISP REST Client
- Merge pull request #7617 from JakubOnderka/attribute-search. [Jakub
Onderka]
chg: [internal] Do not convert values to lower, since collation is al…
- Merge pull request #7639 from JakubOnderka/pull-codestyle. [Jakub
Onderka]
chg: [internal] Code style for event pulling
- Merge pull request #7637 from JakubOnderka/test-syncc. [Jakub Onderka]
new: [test] Test more endpoints in sync test
- Merge pull request #7636 from JakubOnderka/event-view-spec. [Jakub
Onderka]
new: [API] Allow more granular specification what data to return when viewing event
- Merge pull request #7635 from JakubOnderka/server-overlap-method.
[Jakub Onderka]
chg: [sync] Refactor server overlap events fetching
- Merge pull request #7625 from JakubOnderka/pull-error-handling. [Jakub
Onderka]
chg: [sync] Better error handling for pulling
- Merge pull request #7632 from JakubOnderka/server-sync-exception.
[Jakub Onderka]
chg: [internal] Better exception handling for server sync
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7627 from JakubOnderka/post-test-error-log. [Jakub
Onderka]
chg: [internal] Log exception for remote server POST test
- Merge pull request #7610 from JakubOnderka/galaxy-update-vol2. [Jakub
Onderka]
Galaxy update vol2
- Merge pull request #7615 from JakubOnderka/event_blocklist_unique.
[Jakub Onderka]
Event blocklist unique
- Merge pull request #7628 from JakubOnderka/fix-invalid-foreach. [Jakub
Onderka]
fix: [internal] Shadow attributes don't have tags
- Merge branch 'develop' of github.com:MISP/MISP into migration-
taxonomy. [mokaddem]
v2.4.148 (2021-08-05)
---------------------
New
~~~
- [test] Check schema diagnostics in CI. [Jakub Onderka]
- [citation-cff] added. [Alexandre Dulaunoy]
- [citation-cff] added. [Alexandre Dulaunoy]
- [test] Security test for publishing events. [Jakub Onderka]
Changes
~~~~~~~
- [VERSION] bump. [iglocska]
- [PyMISP] Bump recommended version. [Raphaël Vinot]
- [PyMISP] Bump. [Raphaël Vinot]
- [internal] Use ServerSyncTool for fetching remote user info. [Jakub
Onderka]
- [internal] org_blocklists.org_uuid should be unique index. [Jakub
Onderka]
- [internal] Organisation and object UUID should be unique. [Jakub
Onderka]
- [zmq] Convert array to JSON at one place. [Jakub Onderka]
- [internal] Optimise loading attribute histogram. [Jakub Onderka]
- [warning-lists] updated to the latest version. [Alexandre Dulaunoy]
- [opendata] updated and changed parameter handling. [iglocska]
- [shibbauth] added option to block organisation changes at login - New
ApacheShibbAuth.BlockOrgModifications setting added, defaults to
false, boolean. If set to true, will block updates to the organisation
of existing users on authentication. This preserves any modifications
made by a site admin in MISP and is similar to
ApacheShibbauth.BlockRoleModifications (same logic applied to role
modifications). [Liviu Valsan]
- [API] Refactor event publishing. [Jakub Onderka]
- [internal] Convert array to const. [Jakub Onderka]
- [internal] Convert array to const. [Jakub Onderka]
- [internal] Simplified Attribute::deleteAttribute method. [Jakub
Onderka]
- [internal] Removed unused variables. [Jakub Onderka]
- [internal] Remove unused variable. [Jakub Onderka]
- [internal] Convert array to const. [Jakub Onderka]
- [shibbauth] added option to block organisation changes at login - New
ApacheShibbAuth.BlockOrgModifications setting added, defaults to
false, boolean. If set to true, will block updates to the organisation
of existing users on authentication. This preserves any modifications
made by a site admin in MISP and is similar to
ApacheShibbauth.BlockRoleModifications (same logic applied to role
modifications). [Liviu Valsan]
- [compatibility] scoped constant changed to unscoped to allow for 7.0
compatibility. [iglocska]
- update your PHP version though
Fix
~~~
- [js] Show correct error message for get remote version. [Jakub
Onderka]
- [UI] Show correct error message for get remote user. [Jakub Onderka]
- [sync] Fetching remote server version. [Jakub Onderka]
- [schema] audit_logs.authkey_id columns should be nullable. [Jakub
Onderka]
- [zmq] Add missing `misp_json_warninglist` topic to Python script.
[Jakub Onderka]
- [API] Undefined index when just last_seen is set. [Jakub Onderka]
- [afterHook] for setting changes wasn't returning true, fixes 7477.
[iglocska]
- this caused the CLI setting change to error out
- [stix2misp] Use describeTypes from PyMISP. [Jakub Onderka]
- [security] Stored XSS when viewing galaxy cluster relationships - As
reported by Dawid Czarnecki. [mokaddem]
- [security] Stored XSS when viewing galaxy cluster elements in JSON
format. [mokaddem]
- [compatibility] several scoped constants reverted. [iglocska]
- [proposal alert email] function call fixed. [iglocska]
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge pull request #7624 from JakubOnderka/get-remote-user-fixes.
[Jakub Onderka]
fix: [UI] Show correct error message for get remote user
- Merge pull request #7622 from JakubOnderka/fix-fetching-version.
[Jakub Onderka]
fix: [sync] Fetching remote server version
- Merge pull request #7619 from JakubOnderka/get-remote-update. [Jakub
Onderka]
chg: [internal] Use ServerSyncTool for fetching remote user info
- Merge pull request #7620 from JakubOnderka/database-indexes. [Jakub
Onderka]
Database indexes
- Merge pull request #7568 from JakubOnderka/zmq. [Jakub Onderka]
Add missing misp_json_warninglist topic to Python script
- Merge pull request #7606 from JakubOnderka/undefined-index-fix. [Jakub
Onderka]
fix: [API] Undefined index when just last_seen is set
- Merge pull request #7614 from JakubOnderka/optimise-statistics. [Jakub
Onderka]
chg: [internal] Optimise loading attribute histogram
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7613 from lk-dll/patch-1. [Alexandre Dulaunoy]
quick fix sticky buffers
- Quick fix sticky buffers. [lk-dll]
According to documention (https://suricata.readthedocs.io/en/suricata-6.0.3/rules/http-keywords.html#http-keywords) sticky buffers should be before content, http.header and http.uri isn't marked as sticky buffers, but rules are wrongly generated and reported to logs. Tested on stable Suricata v6.0.1+
- Quick fix sticky buffers. [lk-dll]
According to documention (https://suricata.readthedocs.io/en/suricata-6.0.3/rules/http-keywords.html#http-keywords) sticky buffers should be before content, http.header and http.uri isn't marked as sticky buffers, but rules are wrongly generated and reported to logs. Tested on stable Suricata v6.0.1+
- Merge pull request #7500 from JakubOnderka/stix-to-misp-types-path.
[Jakub Onderka]
Stix to misp types path
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Alexandre
Dulaunoy]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska]
- Merge remote-tracking branch 'origin/2.4' into develop. [mokaddem]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska]
- Merge pull request #7602 from liviuvalsan/shib_user_org. [Alexandre
Dulaunoy]
chg: [shibbauth] added option to block organisation changes at login
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'develop' into 2.4. [iglocska]
- Merge pull request #7539 from JakubOnderka/publishing-refactoring.
[Jakub Onderka]
Refactor publishing event
- Merge pull request #7609 from JakubOnderka/code-cleanup-vol6. [Jakub
Onderka]
Code cleanup vol6
- Merge pull request #7607 from JakubOnderka/non-correlationg-types-
const. [Jakub Onderka]
chg: [internal] Convert array to const
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
v2.4.147 (2021-07-27)
---------------------
New
~~~
- [sync] When saving sightings, push just new sightings. [Jakub Onderka]
- [sync] When pushing event, upload sightings by another call. [Jakub
Onderka]
- [sync] Filter out existing sightings if remote sever supports that
method. [Jakub Onderka]
- [sync] Method for filtering out existing sightings. [Jakub Onderka]
- [API] Taxonomy export. [Jakub Onderka]
- [misp2stix2] Return traceback for error. [Jakub Onderka]
Changes
~~~~~~~
- [version] bump. [iglocska]
- [PyMISP] bump. [iglocska]
- [security audit] Check config.php.bk file permission. [Jakub Onderka]
- [internal] Create config backup just when it is necessary. [Jakub
Onderka]
- [internal] Reset PHP cache after config file is successfully changed.
[Jakub Onderka]
- [test] Move PHP tests to different task. [Jakub Onderka]
- [PyMISP] bump. [iglocska]
- [PyMISP] bump. [iglocska]
- [UI] Use time element for event published timestamp. [Jakub Onderka]
- [UI] Raise font size of local org description. [Jakub Onderka]
- [UI] After creating new org, redirect to org details. [Jakub Onderka]
- [UI] Add link to add new organisation. [Jakub Onderka]
- [republish ban] enabled by default on new installs. [iglocska]
- [config] Added missing options Fix #7549. [mokaddem]
- [CLI] better error messages when a setting change fails. [iglocska]
- explain why it failed
- explain how a user can override it
- [misp-objects] fix #7599. [Alexandre Dulaunoy]
- [misp-warninglists] updated to the latest version. [Alexandre
Dulaunoy]
- Migrate threads/index to factory view. [Luciano Righetti]
- Migrate /event_blocklist/add,edit to view factory. [Luciano Righetti]
- Migrate /event_blocklists/index to view factory. [Luciano Righetti]
- Migrate /templates/view/:id to view factory. [Luciano Righetti]
- Reuse add view for /templates/edit. [Luciano Righetti]
- Migrate /templates/add view to factory. [Luciano Righetti]
- Migrate /templates/index view, use CRUD compoenent in
TemplatesController::delete() [Luciano Righetti]
- [internal] Use const arrays. [Jakub Onderka]
- [internal] Use strict comparison. [Jakub Onderka]
- [internal] Use constants that should be faster. [Jakub Onderka]
- [UI] Simplified generating categories that can be malware sample.
[Jakub Onderka]
- [internal] Remove unused method. [Jakub Onderka]
- [internal] Remove unnecessary method calls. [Jakub Onderka]
- [internal] Move variable from AppModel to Server model. [Jakub
Onderka]
- [internal] Convert variable to const. [Jakub Onderka]
- [internal] Remove JS helper from controllers. [Jakub Onderka]
- [user:updateToAdvancedAuthKeys] Functionality accessible via the CLI.
[mokaddem]
- [logs] Add link to SG and Taxonomy in AuditLog. [Jakub Onderka]
- Initial port genericForm changes from cerebrate. [Luciano Righetti]
- Migrate FeedsController to use CRUD component. [Luciano Righetti]
- [warning-lists] updated to the latest version. [Alexandre Dulaunoy]
- [galaxies:view_relations] Both inbound and outbound relations can be
viewed. [mokaddem]
- [galaxyClusters:view] Both inbound and outbound relations can be
viewed. [mokaddem]
- [genericElement:topbar] Support of raw html. [mokaddem]
- [sync] Faster capturing sighting when pushing whole event. [Jakub
Onderka]
- [sync] Optimise event filtering. [Jakub Onderka]
- [sync] Check if event exists before pushing. [Jakub Onderka]
- [sync] Remove old method for uploading sightings. [Jakub Onderka]
- [sync] Check event existence before pushing sightings. [Jakub Onderka]
- [sync] New separate method for uploading sightings to remote server.
[Jakub Onderka]
- [internal] Disable unicode escaping for JSON. [Jakub Onderka]
- [diagnostic] STIX diagnostics. [Jakub Onderka]
- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy]
- [internal] Use standardized response output. [Jakub Onderka]
- [internal] Remove redundant checks. [Jakub Onderka]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [internal] Regenerate warninglist cache just when save was successful.
[Jakub Onderka]
- [internal] Use less memory when inserting warninglist to db. [Jakub
Onderka]
- [API] Deprecate getPyMISPVersion and returns required info in
getVersion. [Jakub Onderka]
- [mispObject:breakOnDuplicate] Provide more feedback. [mokaddem]
- [installer] Update to latest version. [Steve Clement]
- [installer] Update to latest version. [Steve Clement]
- [doc] Guides now compatible with Fedora WS/Server 34. [Steve Clement]
- [warning-list] updated. [Alexandre Dulaunoy]
Fix
~~~
- [test] Set expected config for security tests. [Jakub Onderka]
- [test] Check if user is logged. [Jakub Onderka]
- [config defaults] unset the default python bin path. [iglocska]
- [config defaults] changed default attachment storage. [iglocska]
- [Userinit] create advanced auth key when needed. [iglocska]
- [config] Fixed indentation. [mokaddem]
- [test] Redis password can be empty. [Jakub Onderka]
- [test] After CLI setSetting change. [Jakub Onderka]
- [security] Stored XSS when forking a galaxy cluster As reported by
Giuseppe Diego Gianni. [mokaddem]
- [posts] add org field to email job. [iglocska]
- Add missing newline. [Luciano Righetti]
- Rename container div. [Luciano Righetti]
- Add mass selector for deleting event blocklists. [Luciano Righetti]
- Remove old copy. [Luciano Righetti]
- Add view action to index templates. [Luciano Righetti]
- [internal] Remove unused variable. [Jakub Onderka]
- [API] Remove duplicate objects from warninglist. [Jakub Onderka]
- [internal] Remove unused variable. [Jakub Onderka]
- Add missing search parameters for [POST]/events/index. [Luciano
Righetti]
- [UI] Do not use inline JS. [Jakub Onderka]
- [API] Always return bool for perm fields in getVersion response.
[Jakub Onderka]
- Nest noticelist entries inside Noticelist property. [Luciano Righetti]
- Add noticelist entries in view response. [Luciano Righetti]
- Undefined index notice when enable/disable noticelist. [Luciano
Righetti]
- Remove unsused field. [Luciano Righetti]
- Merge develop branch. [Luciano Righetti]
- Fix ui issues on multiple views. [Luciano Righetti]
- Add missing input descriptions. [Luciano Righetti]
- Fix pr comments: add warning notice for local feeds disabled on
feeds/add, fix various ui elements. [Luciano Righetti]
- Add missing refresh to feed pull rules. [Luciano Righetti]
- Fix issue when adding attribute, add optionalField class to inputs.
[Luciano Righetti]
- Fix pr comments: replace whitelist->allowlist, checkbox label inline,
add missing feed fields for csv and freetext. add missing button for
adding basic auth headers. [Luciano Righetti]
- Remove required attr from hidden inputs in add attribute form.
[Luciano Righetti]
- Remove required attr from hidden inputs in add event form. [Luciano
Righetti]
- Escape js variable. [Luciano Righetti]
- Fix error when decoding array feed settings, maintain same response
schema as before. [Luciano Righetti]
- Add type dropdown in all generic forms. [Luciano Righetti]
- Fix pull rules legend not showing on feeds/edit load. [Luciano
Righetti]
- Handle feed rules. [Luciano Righetti]
- Fix genericForm builder issues. [Luciano Righetti]
- Only override values that were set in the input. [Luciano Righetti]
- Allow 0 or '0' to be a possible field value, for example 'selected'
property. [Luciano Righetti]
- [sync] Better error handling when fetching IDs for push/pull. [Jakub
Onderka]
- [tags:attachTagToObject] No longer return a failure message is
relation already exists Fix #6569. [mokaddem]
- [organisations:view] Restored org logo Fix #7491. [mokaddem]
- [event:contact] User object passed in contact reporter Fix #7471.
[mokaddem]
- [sync] Do not append 'metadata:1' when pushing event. [Jakub Onderka]
- [attribute:edit] Make sure event_id cannot be changed. [mokaddem]
- [tags:detachFromObject] Make travis test passes. [mokaddem]
- [internal] Update object relationships when updating JSONs. [Jakub
Onderka]
- [API] Check if user can view object that contains reference. [Jakub
Onderka]
- [UI] Trim object UUID when adding reference. [Jakub Onderka]
- [internal] Change exception type. [Jakub Onderka]
- [internal] Relationship import. [Jakub Onderka]
- [tag] Update object's timestamp and unpublish only if in global
context Fix #5806. [mokaddem]
- [internal] Faster deleting warninglist. [Jakub Onderka]
- [galaxies:add] Missing entry in sidebar Fix #7499. [mokaddem]
- [install:MySQL] Removed org_blacklists table creation Fix #7476.
[mokaddem]
- Wrong attribute value hash computed inside checkForDuplicateObjects
function. [Sebastiano Mariani]
- [doc] Fix conditonal error. [Steve Clement]
- [tools] Catch openssl not being installed. [Steve Clement]
- [galaxies:add] Missing entry in sidebar Fix #7499. [mokaddem]
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge branch 'develop' into 2.4. [iglocska]
- Merge pull request #7603 from JakubOnderka/fix-tests-vol2. [Jakub
Onderka]
Fix tests vol2
- Merge pull request #7596 from JakubOnderka/publishd-time. [Jakub
Onderka]
chg: [UI] Use time element for event published timestamp
- Merge pull request #7589 from JakubOnderka/org-ui. [Jakub Onderka]
Org UI
- Merge branch 'config_defaults' into develop. [iglocska]
- Merge pull request #7600 from JakubOnderka/fix-tests. [Jakub Onderka]
fix: [test] After CLI setSetting change
- Merge remote-tracking branch 'origin/2.4' into develop. [mokaddem]
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Alexandre
Dulaunoy]
- Merge pull request #7578 from Cooper-Dale/patch-1. [Alexandre
Dulaunoy]
updated suricata legacy modifiers
- Updated suricata legacy modifiers. [Cooper Dale]
based on https://suricata.readthedocs.io/en/suricata-6.0.3/rules/tls-keywords.html?highlight=tls_sni#tls-sni
https://suricata.readthedocs.io/en/suricata-6.0.3/rules/http-keywords.html#http-keywords
https://suricata.readthedocs.io/en/suricata-6.0.3/rules/dns-keywords.html
- Merge branch 'threads_refactor' into develop. [iglocska]
- Merge branch 'blocklist_refactor' into develop. [iglocska]
- Merge branch 'template_refactor' into develop. [iglocska]
- Merge pull request #7595 from JakubOnderka/code-cleanup-vol4. [Jakub
Onderka]
Code cleanup vol4
- Merge pull request #7581 from JakubOnderka/simplified-template. [Jakub
Onderka]
chg: [UI] Simplified generating categories that can be malware sample
- Merge pull request #7562 from JakubOnderka/warninglist-output. [Jakub
Onderka]
fix: [API] Remove duplicate objects from warninglist
- Merge pull request #7583 from JakubOnderka/code-cleanup-vol2. [Jakub
Onderka]
Code cleanup
- Merge pull request #7538 from JakubOnderka/js-helper. [Jakub Onderka]
chg: [internal] Remove JS helper from controllers
- Merge branch 'develop' of github.com:MISP/MISP into develop. [Luciano
Righetti]
- Updated suricata legacy modifiers. [Cooper Dale]
based on https://suricata.readthedocs.io/en/suricata-6.0.3/rules/tls-keywords.html?highlight=tls_sni#tls-sni
https://suricata.readthedocs.io/en/suricata-6.0.3/rules/http-keywords.html#http-keywords
https://suricata.readthedocs.io/en/suricata-6.0.3/rules/dns-keywords.html
- Merge remote-tracking branch 'origin/2.4' into develop. [mokaddem]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [mokaddem]
- Merge branch 'shibb' into develop. [iglocska]
- Block org modiufication option for shibb auth. [mzp]
- Merge pull request #7560 from JakubOnderka/audit-sg. [Jakub Onderka]
Add link to SG and Taxonomy in AuditLog
- Merge pull request #7566 from JakubOnderka/getversion-bool. [Jakub
Onderka]
fix: [API] Always return bool for perm fields in getVersion response
- Merge pull request #7357 from righel/refactor-noticelists-controller-
to-use-crud-component. [Luciano Righetti]
chg: refactor noticelists controller to use crud component
- Merge develop. [Luciano Righetti]
- Merge pull request #7520 from righel/migrate-feeds-controller-to-crud-
component. [Luciano Righetti]
chg: migrate feeds controller to crud component
- Merge branch 'develop' into migrate-feeds-controller-to-crud-
component. [Luciano Righetti]
- Merge branch 'pr-7551' into develop. [mokaddem]
- Merge remote-tracking branch 'origin/develop' into pr-7551. [mokaddem]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[mokaddem]
- Merge pull request #7433 from JakubOnderka/sync-clusters-error-
handling. [Jakub Onderka]
fix: [sync] Better error handling when fetching IDs for push/pull
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[mokaddem]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #6817 from JakubOnderka/upload-sightings. [Jakub
Onderka]
chg: [sync] New separate method for uploading sightings to remote server
- Merge pull request #7157 from JakubOnderka/sighting-push-filtering.
[Jakub Onderka]
new: [sync] Method for filtering out existing sightings
- Merge pull request #7558 from JakubOnderka/taxonomy_export. [Jakub
Onderka]
new: [API] Taxonomy export
- Merge pull request #7553 from JakubOnderka/stix-diagnostics. [Jakub
Onderka]
chg: [diagnostic] STIX diagnostics
- Merge branch '2.4' of github.com:MISP/MISP into develop. [Alexandre
Dulaunoy]
- Merge remote-tracking branch 'origin/2.4' into develop. [mokaddem]
- Merge branch 'fix-5806' into develop. [mokaddem]
- Merge remote-tracking branch 'origin/develop' into fix-5806.
[mokaddem]
- Merge pull request #7530 from JakubOnderka/fix-relationship-import.
[Jakub Onderka]
fix: [internal] Relationship import
- Merge pull request #7555 from JakubOnderka/misp2stix_traceback. [Jakub
Onderka]
new: [misp2stix2] Return traceback for error
- Merge remote-tracking branch 'origin' into develop. [Alexandre
Dulaunoy]
- Merge pull request #7540 from MISP/2.4. [Jakub Onderka]
Merge 2.4 to develop to fix build
- Merge pull request #7532 from JakubOnderka/warninglist-quick-delete.
[Jakub Onderka]
fix: [internal] Faster deleting warninglist
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[mokaddem]
- Merge pull request #7525 from JakubOnderka/deprecate-getpymisp-
version. [Jakub Onderka]
chg: [API] Deprecate getPyMISPVersion
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7537 from SteveClement/guides. [Steve Clement]
fix: [doc] Fix conditonal error
- Merge pull request #7536 from SteveClement/tools. [Steve Clement]
fix: [tools] Catch openssl not being installed
- Merge pull request #7535 from SteveClement/guides. [Steve Clement]
chg: [doc] Guides now compatible with Fedora WS/Server 34
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Add search bar, fix col widths, show ref field as links. [Luciano
Righetti]
- Deserialize ref and geographical_area fields in index and view
endpoints. [Luciano Righetti]
- Resolve pr comments. [Luciano Righetti]
- Support toggle noticelist enable checkbox. [Luciano Righetti]
- Fix noticelist message not showing. [Luciano Righetti]
- Refactor noticelists index and view to use crud component. [Luciano
Righetti]
- Add crud component noticelists index. [Luciano Righetti]
v2.4.146 (2021-06-30)
---------------------
New
~~~
- [API] Read only authkeys. [Jakub Onderka]
Changes
~~~~~~~
- [VERSION] bump. [iglocska]
- [log] Remove ObjectRelationship from audit log. [Jakub Onderka]
- [internal] Simplify generating some JSON responses. [Jakub Onderka]
- [warning-lists] updated to the latest version. [Alexandre Dulaunoy]
Fix
~~~
- [UI] Loading non exists library in Audit log index. [Jakub Onderka]
- [event:add] Typo in accessing sharing group roaming information.
[mokaddem]
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge pull request #7533 from JakubOnderka/audit-log-ui-fix. [Jakub
Onderka]
fix: [UI] Loading non exists library in Audit log index
- Merge remote-tracking branch 'origin/2.4' into develop. [mokaddem]
- Merge pull request #7482 from JakubOnderka/authkey-read-only. [Jakub
Onderka]
new: [API] Read only authkeys
- Merge pull request #7527 from JakubOnderka/response-simplify. [Jakub
Onderka]
chg: [internal] Simplify generating some JSON responses
- Merge pull request #7526 from MISP/2.4. [Jakub Onderka]
Merge 2.4 into develop
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [mokaddem]
- Security: fix stored xss in sharing groups view as reported by Nicolas
Vidal from TEHTRIS. [Luciano Righetti]
v2.4.145 (2021-06-28)
---------------------
New
~~~
- [API] Import warninglist. [Jakub Onderka]
- [internal] Support Cake installation by composer. [Jakub Onderka]
- [ZMQ] Send warninglist changes to ZMQ. [Jakub Onderka]
- [API] Export warninglists to CSV. [Jakub Onderka]
- [API] Export warninglists. [Jakub Onderka]
- Custom warninglist. [Jakub Onderka]
- [emailing] added event summaries only as a setting. [iglocska]
- publish the normal alert report to eligible users
- exclude attributes/objects, so the e-mail will only include a summary
Changes
~~~~~~~
- [version] bump. [iglocska]
- [doc:authentication_diagrams] Included session and cookie handling.
[mokaddem]
- [servers:add] Fallback to correct json structure if synchronisation
rules are empty. [mokaddem]
- [server] Relaxed url validation rule. [mokaddem]
- [user] Relaxed email validation rule. [mokaddem]
- [warning-list] updated to the latest version. [Alexandre Dulaunoy]
- [composer] Crypt_GPG updated to 1.6.5. [Alexandre Dulaunoy]
- [internal] Remove unused 'full' arg when fetching taxonomies. [Jakub
Onderka]
- [API] Add description to predicates and values. [Jakub Onderka]
- Log remote IP for authkey use attempt if remote IP not allowed by key.
[Jeroen Pinoy]
- [misp-objects] updated to the latest version. [Alexandre Dulaunoy]
- [installer] Added Rocky Linux 8.4 tweaks. [Steve Clement]
- [doc] Added Rocky Linux 8.4. [Steve Clement]
- [doc] Updated to OpenBSD 6.9. [Steve Clement]
- [misp-warninglists] updated to the latest version. [Alexandre
Dulaunoy]
- [taxonomies] updated to the latest version. [Alexandre Dulaunoy]
- [misp-galaxy] updated to the latest version. [Alexandre Dulaunoy]
- [warning-lists] updated. [Alexandre Dulaunoy]
- [composer] Crypt_GPG updated to 1.6.5. [Alexandre Dulaunoy]
Fix
~~~
- [rest client] Handle state when body is too big to save into rest
client history. [Jakub Onderka]
- [server caching] only push data to redis / logs if there's something
to push. [iglocska]
- avoids the count() notice if no data was returned by the remote
- Add mising return formats for rest search endpoints. [Luciano
Righetti]
- Add missing returnFormat to restSearch endpoints, move the parameter
as requestBody property. [Luciano Righetti]
- [getSettings] include the options. [iglocska]
- [API] Taxonomy namespace is case insensitive. [Jakub Onderka]
- Copy/pasta, rename galaxy clusters tag, move restSearch endpoints to
resource 1st. [Luciano Righetti]
- [server:edit] Typo in index. [Sami Mokaddem]
- [user edit] lost the set password checkbox. [iglocska]
- [server caching] only push data to redis / logs if there's something
to push. [iglocska]
- avoids the count() notice if no data was returned by the remote
- Add mising return formats for rest search endpoints. [Luciano
Righetti]
- [user add/edit] added missing JS change to restore the external auth
field. [iglocska]
- [external auth key / password] fields changed, fixes #7488. [iglocska]
- show what's relevant based on the customauth settings and hide that which is not
- [emailing] added missing if branch for the publish alert summary mode
to trigger. [iglocska]
- [validation] account for the edge-case where a composite attribute
does not yet have a second value. [iglocska]
- [attribute validation] - also check for composite values containing
control characters, fixes #7391. [iglocska]
- [validation] fixed issue introduced in last commit. [iglocska]
- [attribute] validation tightened for empty strings. [iglocska]
- a value containing only control characters will now be blocked from entry
- [CRUD] accept contain as a parameter for edit, fixes an issue with
auth key edits. [iglocska]
- Typo. [Bart]
😅
Other
~~~~~
- Merge branch 'develop' into 2.4. [iglocska]
- Merge remote-tracking branch 'origin/2.4' into develop. [mokaddem]
- Merge remote-tracking branch 'origin/2.4' into develop. [mokaddem]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7495 from JakubOnderka/warninglist-import. [Jakub
Onderka]
Warninglist import
- Merge pull request #7494 from JakubOnderka/cake-composer-support.
[Jakub Onderka]
new: [internal] Support Cake installation by composer
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7504 from mokaddem/fix-server-url-validation.
[Andras Iklody]
Fix server url validation
- Merge branch 'develop' of github.com:MISP/MISP into fix-server-url-
validation. [mokaddem]
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge pull request #7502 from mokaddem/fix-user-email-validation.
[Andras Iklody]
chg: [user] Relaxed email validation rule
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch '2.4' into develop. [iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[iglocska]
- Merge branch 'develop' of github.com:MISP/MISP into develop.
[Alexandre Dulaunoy]
- Merge branch '2.4' into develop. [iglocska]
- Merge pull request #7464 from JakubOnderka/warninglist. [Jakub
Onderka]
Custom warninglists
- Merge pull request #7444 from JakubOnderka/taxonomy-add-description.
[Jakub Onderka]
chg: [API] Add description to predicates and values
- Merge branch '2.4' into develop. [Alexandre Dulaunoy]
- Merge pull request #7479 from Wachizungu/log-IP-if-not-allowed-for-
authkey. [Andras Iklody]
chg: log remote IP for authkey use attempt if remote IP not allowed b…
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Merge pull request #7524 from SteveClement/tools. [Steve Clement]
- Merge pull request #7523 from SteveClement/guides. [Steve Clement]
- Merge branch 'guides' of github.com:SteveClement/MISP into guides.
[Steve Clement]
- Security: [generic-template:index] Fixed unsanitized input. [mokaddem]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska]
- Merge pull request #7506 from adliwahid/patch-1. [Alexandre Dulaunoy]
Added 3 feeds sources from APNIC
- Added 3 feeds sources from APNIC. [Adli Wahid]
Added 3 daily feeds (ssh bruteforce, telnet bruteforce, URLs seen) from the APNIC Community Honeynet Project
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Luciano
Righetti]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Luciano
Righetti]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Luciano
Righetti]
- Merge branch 'develop' of github.com:MISP/MISP into 2.4. [Luciano
Righetti]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [Alexandre
Dulaunoy]
- Merge branch '2.4' of github.com:MISP/MISP into 2.4. [iglocska]
- Update README.md. [Alexandre Dulaunoy]
- Merge pull request #7483 from bartblaze/2.4. [Alexandre Dulaunoy]
fix: typo
- Merge pull request #1 from bartblaze/bartblaze-patch-1. [Bart]
fix: typo
v2.4.144 (2021-06-07)
---------------------
New
~~~
- Add initial version of openapi spec, add ReDoc js files. [Luciano
Righetti]
- [doc:sync] Added notes and diagrams about synchornisation logics.
[mokaddem]
- [galaxy] Support of enabled/disabled state at galaxy level. [mokaddem]
Fix #7019
- [CyCat integration] v1. [iglocska]
- lookup on relationshis for a given galaxy cluster
- [UI] Add link to event report history. [Jakub Onderka]
- [doc:auth-diagram] Added authentication diagram. [mokaddem]
Changes
~~~~~~~
- [version] bump. [iglocska]
- [PyMISP] Bump. [Raphaël Vinot]
- [logo] reverted to the non-birthday version. [iglocska]
- [PyMISP] Bump deps. [Raphaël Vinot]
- [galaxyCluster:CyCat relations] Added icon and reference of the
project. [mokaddem]
- [genericElements:accordion] Added possiblity to pass html title.
[mokaddem]
- [cluster:cycat_relations] Added missing view. [mokaddem]
- [galaxyCluster:view] oved CyCat relationships in their own child
elements - Significantly speed up view loading time. [mokaddem]
- [sharinggroup] Allow pushing SG if remote internal server is not in
the list of SG servers. [mokaddem]