Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

update Pro changelog 2.42.0 #11518

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

update Pro changelog 2.42.0 #11518

wants to merge 1 commit into from

Conversation

paulOsinski
Copy link
Contributor

Updating Pro release notes with new features.

@github-actions github-actions bot added the docs label Jan 6, 2025
@dryrunsecurity DryRunSecurity
Copy link

dryrunsecurity bot commented Jan 6, 2025

DryRun Security Summary

The pull request updates the DefectDojo Pro (Cloud Version) changelog, highlighting improvements to API endpoints, Beta UI features, and the Generic Findings Import parser, with a focus on enhancing usability and functionality.

Expand for full summary

Summary:

The changes in this pull request are focused on the changelog for the DefectDojo Pro (Cloud Version) application. The key changes include improvements to the API endpoints, such as the ability to order the results of the /test_reimport endpoint by various fields, and the removal of the requirement for the 'Force To Active / Verified' flag when calling the /import-scan and /reimport-scan endpoints. Additionally, the changelog includes updates to the Beta UI, such as the ability to regenerate or copy the user's API token, and the addition of fields for EPSS score and percentile to the Generic Findings Import parser.

From an application security perspective, these changes are noteworthy as they provide more flexibility and control over the import and reimport of scan results, which can help security teams better analyze and manage the imported findings. The removal of the requirement for the 'Force To Active / Verified' flag is also an improvement, as it allows the tool's default status to be used, reducing the potential for human error in setting the correct status. Overall, these changes appear to be focused on improving the usability and functionality of the DefectDojo Pro (Cloud Version) application, with a few security-relevant updates to the API endpoints.

Files Changed:

  • docs/content/en/changelog/changelog.md: This file contains the changelog for the DefectDojo Pro (Cloud Version) application. The changes in this pull request include updates to the changelog for versions 2.42.0 and 2.41.4, with a focus on improvements to the API endpoints, the Beta UI, and the Generic Findings Import parser.

Code Analysis

We ran 9 analyzers against 1 file and 0 analyzers had findings. 9 analyzers had no findings.

View PR in the DryRun Dashboard.

mtesauro
mtesauro approved these changes Jan 8, 2025
View reviewed changes
Copy link
Contributor

@mtesauro mtesauro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Maffooch Maffooch Maffooch approved these changes

@mtesauro mtesauro mtesauro approved these changes

At least 4 approving reviews are required to merge this pull request.

Assignees
No one assigned
Labels
docs
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@paulOsinski @mtesauro @Maffooch