Releases: GhostManager/Ghostwriter
Ghostwriter v2.3.0-rc2
This is expected to be the second of three release candidates for v2.3.0. The next–and likely final–release candidate will include the CVSS feature from PR #198.
The change log includes all changes since v2.3.0-rc1.
[2.3.0-rc2] - 3 June 2022
Added
- New options to generate and revoke API tokens with a set expiry date
- Added Hasura GraphQL engine to production environments
- Usernames are now clickable and open the user's profile page for viewing
- Added a
generateReport
mutation to the GraphQL API capable of returning the JSON report data as a base64 string - Added user controls for generating and revoking API tokens from the user profile page
- Added
checkoutDomain
andcheckoutServer
actions to the GraphQL API that validate checkouts - Added
deleteDomainCheckout
,deleteServerCheckout
,deleteTemplate
, anddeleteEvidence
actions to the GraphQL schema that clean-up the filesystem and database after deletions
Changed
- Updated the Nginx configuration to incorporate the Hasura container
- Updated style of the finding preview pages for the finding library
- Updated style of notes to make them cleaner and easier to manage
- Project dashboard's "Objectives" tab will now show the current number of incomplete objectives and update when toggling objectives
- Updated keyword reference panel displayed when editing findings
- Subtask forms for objectives will now default to the objective's deadline date instead of "today"
- Objective deadlines will now be automatically adjusted when the parent objective's deadline changes
- Database migrations now set default values for timestamps (current time), timezones ("America/Los_Angeles"), and boolean values (False)
- Enables easier creation of new entries via the GraphQL API
Deprecated
- None
Removed
- Removed unnecessary status badges on tabs in the project dashboard that were confusing and not very helpful
- Revoked direct insert permissions for
History
andServerHistory
tables used for tracking domain and server checkouts
Fixed
- Upgraded
django-bleach
dependency to fix error with latestpython-bleach
(Fixes #208) - Fixed error that blocked creation of default
BlockQuote
style in the report template - Fixed domain age column not sorting correctly in domain library table
- Checkbox in server form will no longer appear way bigger than intended
- Fixed issue where
<em>
tags could cause report generation to fail
Security
- Upgraded
pyjwt
to v2.4.0 to address CVE-2022-29217
Ghostwriter v2.3.0-rc1
This is the first release candidate for v2.3.0 which features the GraphQL API for testing and feedback. The full changelog is here:
https://www.ghostwriter.wiki/change-logs/4-april-2022-v2.3.0-rc1
Please note the deprecation section. Some filters have had to change to address issues with parsing some date formats.
Ghostwriter v2.2.3
This release includes all changes from the v2.2.3-rc2 with minor adjustments following feedback and testing. The full changelog is here:
https://www.ghostwriter.wiki/change-logs/16-february-2022-v2.2.3
Ghostwriter v2.2.3-rc2
This is the second release candidate (RC) for v2.2.3. It has all the changes from v2.2.3-rc1 and additional updates. Read more here:
https://www.ghostwriter.wiki/change-logs/28-january-2022-v2.2.3-rc2
Ghostwriter v2.2.3-rc1
This is a release candidate (RC) for v2.2.3. Read more here:
https://www.ghostwriter.wiki/change-logs/28-january-2022-v2.2.3-rc1
Ghostwriter v2.2.2
This release includes all changes from the v2.2.2-rc2 with minor bug fixes and adjustments following feedback and testing. The full changelog is here:
https://www.ghostwriter.wiki/change-logs/22-october-2021-v2.2.2
Ghostwriter v2.2.2-rc2
This is a release candidate (RC) for v2.2.2. Read more here:
https://www.ghostwriter.wiki/change-logs/27-september-2021-v2.2.2-rc2
Ghostwriter v2.2.2-rc1
This is a release candidate (RC) for v2.2.2. Read more here:
https://www.ghostwriter.wiki/change-logs/15-september-2021-v2.2.2-rc1
Ghostwriter v2.2.1
This is a minor release with several small adjustments and a bug fix. See the changelog here: https://ghostwriter.wiki/change-logs/28-may-2021-v2.2.1
Ghostwriter v2.2.0
This release includes all changes from the v2.2-rc1 with minor bug fixes and adjustments following feedback and testing. The full changelog is here: