2.47.1 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.47.0

• Changelog + Minor Docs Maintenance @paulOsinski (#12551)
• Pro Feature - Deduplication tuning documentation update @skywalke34 (#12471)

🖌 Updates in UI

• SAML Login: Respect next parameter @Maffooch (#12560)
• Session Warning: Prevent timeout overflow for large session ages @Maffooch (#12547)

2.47.0 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.46.0

• Fix helm chart for nightly-dev builds @valentijnscholten (#12504)
• remove google sheets leftovers @valentijnscholten (#12509)
• push to jira: check for existing jira issue inside celery task @valentijnscholten (#12508)
• Fixing linter issue @rossops (#12519)
• fix: add CVSSv4 support to auditjs parser and improve error handling @Haralishev77 (#12391)
• Include CVSS score in finding when using OpenVAS csv parser @jostaub (#12472)
• ms defender: do not cache parsed findings @valentijnscholten (#12493)
• legacy reimport: make matching on title case-insensitive @valentijnscholten (#12487)
• Checkmarx one doc update @skywalke34 (#12408)
• Updated Nexpose XML (Rapid7) Parser Documentation @skywalke34 (#12409)
• Add new "evaluations" format support to Anchorectl parser @cosmel-dojo (#12425)
• bugfix cyberwatch parser @AmineHazi (#12480)
• [docs] pro changelog 2.46.0- 2.46.3 @paulOsinski (#12484)
• 🐛 fix missing CWE in HCL Appscan #12468 @manuel-sommer (#12469)
• Update contributors in README.md @Maffooch (#12485)
• docs maintenance @paulOsinski (#12455)
• cvssv3: backport tests @valentijnscholten (#12457)
• excel export: enhance handling of finding groups, better logging @valentijnscholten (#12435)
• docs: Add non-parser Test Types to product hierarchy documentation @skywalke34 (#12419)
• defender: fix no vulnerabilities check @valentijnscholten (#12448)
• [docs] Add FAQ + minor maintenance changes @paulOsinski (#12417)
• [docs] Pro dashboards and metrics @paulOsinski (#12416)
• Managed Files: Sanitized file name before downloading @Maffooch (#12406)
• feat(helm): Drop support for postgresql-ha @kiblik (#12319)
• anchorectl: add format check @valentijnscholten (#12375)
• fix(nighly): Avoid forks @kiblik (#12396)
• Update Burp Enterprise HTML Parser Documentation @skywalke34 (#12407)
• Update Docs For Asynchronous Import Feature Removal @Jino-T (#12410)
• tags: prevent validation from removing tags @valentijnscholten (#12400)
• helm chart publisher: use proper ref for checkout @valentijnscholten (#12392)
• jira push: log inactive/verified message to debug @valentijnscholten (#12376)
• Minor Semgrep connector docs tweaks @cneill (#12373)

🚩 Changes to settings.dist.py / local_settings.py

• Bugfix @rossops (#12541)
• Product Announcements: Add messages to relevant features @Maffooch (#12525)
• ♻️ Remove async import @manuel-sommer (#12042)
• Implement ELA vulnid @manuel-sommer (#12510)
• Implement ALEA vulnid @manuel-sommer (#12500)
• Store fingerprint from bearer in unique_id_from_tool @wolframite (#12346)
• unique_id_from_tool: clarify values and usage @valentijnscholten (#12463)
• Alibaba Cloud Linux 3 Security Advisory @manuel-sommer (#12465)
• feat(helm): allow to use an external serviceAccount @NitriKx (#12441)
• Celery Logging: Respect CELERY_LOG_LEVEL @Maffooch (#12464)
• Session timeout notification 2 @kevin-vuong99 (#12225)

🚩 Database migration

• unique_id_from_tool: clarify values and usage @valentijnscholten (#12463)

🚀 API features and enhancements

• Product Announcements: Add messages to relevant features @Maffooch (#12525)
• Dojo Meta: Migrate to filterset_class + Add case Insensitive filters @Maffooch (#12528)
• Tags: Add support for comma separation for multipart forms (import/reimport) @Maffooch (#12434)
• Ruff: Add and autofix PERF401 @kiblik (#12370)

🖌 Updates in UI

• Bugfix @rossops (#12541)
• Implement ELA vulnid @manuel-sommer (#12510)
• Escape javascript breaking on backlash or special characters in finding title @c-goosen (#12514)
• Bugfix: fix gap between component header and filter body @jostaub (#12503)
• Update Support Messaging @Maffooch (#12495)
• Bugfix: fixed wrong panel-footer margin in detailed metrics @jostaub (#12494)
• Forced-contrast mode adjustments for better accessibility @littlesvensson (#12342)
• Alibaba Cloud Linux 3 Security Advisory @manuel-sommer (#12465)
• feat(helm): allow to use an external serviceAccount @NitriKx (#12441)
• easymde: enable native/browser spell checker @valentijnscholten (#12377)
• UI Pagination: Reduce the options to more reasonable numbers @Maffooch (#12439)
• ui: fix "retrieve my username" typo @jfyuen (#12368)
• Session timeout notification 2 @kevin-vuong99 (#12225)

🗣 Updates in localization

• ui: fix "retrieve my username" typo @jfyuen (#12368)

🔧 Improved code quality with linters

• feat(helm): allow to use an external serviceAccount @NitriKx (#12441)
• Replace Review Bot with Centralized Action @Maffooch (#12451)
• Ruff: Add PLC0206 @manuel-sommer (#12426)
• Ruff: Add and autofix PERF401 @kiblik (#12370)
• Ruff: Add and autofix PERF403 @kiblik (#12371)
• Ruff: Add PLR1730 and PLR2044 @manuel-sommer (#12380)

🧰 Maintenance

• Bump ruff from 0.11.11 to 0.11.12 @dependabot (#12532)
• Bump boto3 from 1.38.24 to 1.38.25 @dependabot (#12527)
• Bump vulners from 2.3.6 to 2.3.7 @dependabot (#12526)
• chore(deps): update docker/build-push-action action from v6.17.0 to v6.18.0 (.github/workflows/release-x-manual-docker-containers.yml) @renovate (#12518)
• Bump boto3 from 1.38.23 to 1.38.24 @dependabot (#12522)
• Bump cryptography from 44.0.3 to 45.0.3 @dependabot (#12505)
• Bump boto3 from 1.38.22 to 1.38.23 @dependabot (#12506)
• Bump boto3 from 1.38.21 to 1.38.22 @dependabot (#12497)
• Bump ruff from 0.11.10 to 0.11.11 @dependabot (#12498)
• chore(deps): update node.js from v22.15.1 to v22.16.0 (docs/package.json) @renovate (#12490)
• Bump boto3 from 1.38.20 to 1.38.21 @dependabot (#12492)
• Bump boto3 from 1.38.19 to 1.38.20 @dependabot (#12489)
• Bump django-polymorphic from 3.1.0 to 4.1.0 @dependabot (#12488)
• Bump boto3 from 1.38.18 to 1.38.19 @dependabot (#12486)
• Bump pyopenssl from 25.0.0 to 25.1.0 @dependabot (#12479)
• Bump boto3 from 1.38.17 to 1.38.18 @dependabot (#12477)
• fix(deps): update dependency @tabler/icons from 3.31.0 to v3.33.0 (docs/package.json) @renovate (#12467)
• Bump boto3 from 1.38.16 to 1.38.17 @dependabot (#12460)
• Bump ruff from 0.11.9 to 0.11.10 @dependabot (#12461)
• chore(deps): update node.js from v22.15.0 to v22.15.1 (docs/package.json) @renovate (#12450)
• Bump sqlalchemy from 2.0.40 to 2.0.41 @dependabot (#12452)
• Bump boto3 from 1.38.15 to 1.38.16 @dependabot (#12453)
• chore(deps): update docker/build-push-action action from v6.16.0 to v6.17.0 (.github/workflows/release-x-manual-docker-containers.yml) @renovate (#12456)
• Bump psycopg[c] from 3.2.8 to 3.2.9 @dependabot (#12444)
• Bump boto3 from 1.38.13 to 1.38.15 @dependabot (#12443)
• chore(deps): update mikefarah/yq action from v4.45.3 to v4.45.4 (.github/workflows/release-x-manual-helm-chart.yml) @renovate (#12424)
• Bump ruff from 0.11.8 to 0.11.9 @dependabot (#12427)
• Bump psycopg[c] from 3.2.7 to 3.2.8 @dependabot (#12428)
• Bump boto3 from 1.38.12 to 1.38.13 @dependabot (#12429)
• Bump django-dbbackup from 4.2.1 to 4.3.0 @dependabot (#12430)
• chore(deps): update mikefarah/yq action from v4.45.2 to v4.45.3 (.github/workflows/release-x-manual-helm-chart.yml) @renovate (#12421)
• chore(deps): update postgres docker tag from 17.4 to v17.5 (docker-compose.yml) @renovate (#12418)
• chore(deps): update helm release postgresql from 16.6.7 to ~16.7.0 (helm/defectdojo/chart.yaml) @renovate (#12414)
• Bump pdfmake from 0.2.19 to 0.2.20 in /components @dependabot (#12422)
• Bump boto3 from 1.38.11 to 1.38.12 @dependabot (#12423)
• Bump boto3 from 1.38.10 to 1.38.11 @dependabot (#12412)
• Bump boto3 from 1.38.9 to 1.38.10 @dependabot (#12395)
• Bump boto3 from 1.38.8 to 1.38.9 @dependabot (#12390)
• chore(deps): update mikefarah/yq action from v4.45.1 to v4.45.2 (.github/workflows/release-x-manual-helm-chart.yml) @renovate (#12374)
• chore(deps): update dependency vite from 6.3.4 to v6.3.5 (docs/package.json) @renovate (#12379)
• Bump cryptography from 44.0.2 to 44.0.3 @dependabot (#12382)
• Bump boto3 from 1.38.7 to 1.38.8 @dependabot (#12383)

2.46.4 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.46.3

• fix: add CVSSv4 support to auditjs parser and improve error handling @Haralishev77 (#12391)
• ms defender: do not cache parsed findings @valentijnscholten (#12493)
• legacy reimport: make matching on title case-insensitive @valentijnscholten (#12487)
• Add new "evaluations" format support to Anchorectl parser @cosmel-dojo (#12425)
• bugfix cyberwatch parser @AmineHazi (#12480)
• [docs] pro changelog 2.46.0- 2.46.3 @paulOsinski (#12484)
• 🐛 fix missing CWE in HCL Appscan #12468 @manuel-sommer (#12469)
• Update contributors in README.md @Maffooch (#12485)

🚩 Changes to settings.dist.py / local_settings.py

• Implement ALEA vulnid @manuel-sommer (#12500)
• unique_id_from_tool: clarify values and usage @valentijnscholten (#12463)
• Alibaba Cloud Linux 3 Security Advisory @manuel-sommer (#12465)
• Celery Logging: Respect CELERY_LOG_LEVEL @Maffooch (#12464)

🚩 Database migration

• unique_id_from_tool: clarify values and usage @valentijnscholten (#12463)

🖌 Updates in UI

• Update Support Messaging @Maffooch (#12495)
• Bugfix: fixed wrong panel-footer margin in detailed metrics @jostaub (#12494)
• Alibaba Cloud Linux 3 Security Advisory @manuel-sommer (#12465)

2.46.3 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.46.2

• docs maintenance @paulOsinski (#12455)
• cvssv3: backport tests @valentijnscholten (#12457)
• excel export: enhance handling of finding groups, better logging @valentijnscholten (#12435)
• defender: fix no vulnerabilities check @valentijnscholten (#12448)

🚀 API features and enhancements

• Tags: Add support for comma separation for multipart forms (import/reimport) @Maffooch (#12434)

🖌 Updates in UI

• UI Pagination: Reduce the options to more reasonable numbers @Maffooch (#12439)

🔧 Improved code quality with linters

• Replace Review Bot with Centralized Action @Maffooch (#12451)

2.46.2 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.46.1

• [docs] Add FAQ + minor maintenance changes @paulOsinski (#12417)
• [docs] Pro dashboards and metrics @paulOsinski (#12416)
• Managed Files: Sanitized file name before downloading @Maffooch (#12406)
• anchorectl: add format check @valentijnscholten (#12375)
• fix(nighly): Avoid forks @kiblik (#12396)

2.46.1 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.46.0

• tags: prevent validation from removing tags @valentijnscholten (#12400)
• helm chart publisher: use proper ref for checkout @valentijnscholten (#12392)
• jira push: log inactive/verified message to debug @valentijnscholten (#12376)
• Minor Semgrep connector docs tweaks @cneill (#12373)
• Release: Merge back 2.46.0 into bugfix from: master-into-bugfix/2.46.0-2.47.0-dev @github-actions[bot] (#12387)

🖌 Updates in UI

• Release: Merge release into master from: release/2.46.1 @github-actions[bot] (#12402)
• ui: fix "retrieve my username" typo @jfyuen (#12368)

🗣 Updates in localization

• Release: Merge release into master from: release/2.46.1 @github-actions[bot] (#12402)
• ui: fix "retrieve my username" typo @jfyuen (#12368)

2.46.0 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.45.0

• [docs] sso maintenance @paulOsinski (#12356)
• update changelog 2.45.3 @paulOsinski (#12364)
• fix(GHA): Avoid some actions in forks @kiblik (#12354)
• Add input validation (branch to release num) for the release gha @rossops (#12302)
• Urllib3 upgrade + Rerecord JIra responses @Maffooch (#12355)
• releases: publish nightly builds of dev @valentijnscholten (#12137)
• Enhance OSV Parser to Include Mitigation Information with Fixed Package Versions @4b75726169736859 (#11681)
• nessus: parse more fields @valentijnscholten (#12247)
• Generic Parser: Support Test Type Meta @Maffooch (#12348)
• False Positive Status: Update docs @Maffooch (#12332)
• [docs] add Tags article @paulOsinski (#12294)
• Jira webhook comment duplicate patch @Maffooch (#12333)
• Release: Merge back 2.45.3 into bugfix from: master-into-bugfix/2.45.3-2.46.0-dev @github-actions (#12326)
• [docs] add Pro Finding Enhancements documentation @paulOsinski (#12310)
• Fortify: Handle suppressed findings as false positives @valentijnscholten (#12293)
• sla: parse finding.date implicitly @valentijnscholten (#12301)
• 2.45.2 pro changelog @paulOsinski (#12292)
• tenable: check mandatory columns before importing @valentijnscholten (#12273)
• saml: provide link to saml-tracer browser add-on @valentijnscholten (#12274)
• Reimport: Special statuses should be respected from reports @Maffooch (#12291)
• Update Wiz parser documentation - Standard & SCA imports @skywalke34 (#12259)
• Parser docstrings @Jino-T (#12253)
• [docs] Add Example Cases to docs @paulOsinski (#12265)
• Update wording about async import removal in 2.46.md @valentijnscholten (#12256)
• Release: Merge back 2.45.2 into bugfix from: master-into-bugfix/2.45.2-2.46.0-dev @github-actions (#12288)
• [docs] Changelog, Jira reorg, Wiz Connector docs, Import reorg @paulOsinski (#12250)
• 🎉 Implement Fortify Webinspect new report format @manuel-sommer (#12155)
• Deprecation notification about async import @manuel-sommer (#12244)
• Update how-to-write-a-parser.md @maarten-boot (#12210)
• Release: Merge back 2.45.1 into bugfix from: master-into-bugfix/2.45.1-2.46.0-dev @github-actions (#12240)
• 🐛 fix ruff bump to 0.11.5 #12217 @manuel-sommer (#12224)
• 💄 🪲 Fix Aqua parser severity justification @manuel-sommer (#12192)
• changelog 2.45.0 @paulOsinski (#12213)
• close old findings: don't overwrite mitigated timestamp @valentijnscholten (#12204)
• Linting: Update how-to-write-a-parser.md to not contain Ruff violations @valentijnscholten (#12214)
• h1: vulnerability disclosure parser improvements @valentijnscholten (#12212)
• sla_config: use mass update for recalculation @valentijnscholten (#12133)
• Updated Documentation on Anchore Enterprise @Sopuru (#12058)
• immuniweb json parser @valentijnscholten (#12179)
• fix(renovate): Add separateMinorPatch @kiblik (#12190)
• wiz scan: handle more fields and unique_id_from_tool @valentijnscholten (#12198)
• 🔨 RustyHog: handle empty reports correctly to fix #10584 @manuel-sommer (#12129)
• README: Point to sample scans for demo @valentijnscholten (#12162)
• Bump Django to 5.1.8 @valentijnscholten (#12191)
• Release: Merge back 2.45.0 into dev from: master-into-dev/2.45.0-2.46.0-dev @github-actions (#12189)

🚩 Changes to settings.dist.py / local_settings.py

• Release: Merge release into master from: release/2.46.0 @github-actions (#12386)
• Release: Merge back 2.45.3 into dev from: master-into-dev/2.45.3-2.46.0-dev @github-actions (#12325)
• Release: Merge release into master from: release/2.45.3 @github-actions (#12324)
• Implement Albibaba Linux vulnids @manuel-sommer (#12304)
• Remove non-working DD_SLA_BUSINESS_DAYS feature to avoid confusion @valentijnscholten (#12131)
• Add Cyberwatch Galeax Parser @AmineHazi (#12105)
• Release: Merge back 2.45.2 into dev from: master-into-dev/2.45.2-2.46.0-dev @github-actions (#12287)
• Release: Merge release into master from: release/2.45.2 @github-actions (#12286)
• 🎉 Add Amazon Linux Security Center advisory to vulnid @manuel-sommer (#12242)
• Release: Merge back 2.45.1 into dev from: master-into-dev/2.45.1-2.46.0-dev @github-actions (#12239)
• Release: Merge release into master from: release/2.45.1 @github-actions (#12236)
• Implement HCL Commerce KB vulnids @manuel-sommer (#12199)
• 🎉 Add cisco security advisory to vulnid @manuel-sommer (#12180)
• Release: Merge back 2.45.0 into bugfix from: master-into-bugfix/2.45.0-2.46.0-dev @github-actions (#12188)

🚩 Database migration

• Release: Merge release into master from: release/2.46.0 @github-actions (#12386)
• Update verbose name + help text for JIRA username and password fields @valentijnscholten (#12261)
• Remove non-working DD_SLA_BUSINESS_DAYS feature to avoid confusion @valentijnscholten (#12131)
• Tag: Update allowed characters for a unified format @Maffooch (#12194)
• Import/Reimport Stats: Change name of left untouched @Maffooch (#12193)
• Release: Merge back 2.45.0 into bugfix from: master-into-bugfix/2.45.0-2.46.0-dev @github-actions (#12188)

🚀 API features and enhancements

• Release: Merge release into master from: release/2.46.0 @github-actions (#12386)
• Release 2.46.0: Merge Bugfix into Dev @rossops (#12385)
• fix(api): Enable to set recommendation and decision in risk_acceptance @kiblik (#12303)
• Tag: Update allowed characters for a unified format @Maffooch (#12194)
• Release: Merge back 2.45.0 into bugfix from: master-into-bugfix/2.45.0-2.46.0-dev @github-actions (#12188)

🖌 Updates in UI

• Release: Merge release into master from: release/2.46.0 @github-actions (#12386)
• Release 2.46.0: Merge Bugfix into Dev @rossops (#12385)
• Focus Indicator Disappears While Tabbing - DefectDojo Accessibility issue (Serious) @oussama-taoufiq (#12051)
• view_endpoint: fix error @valentijnscholten (#12343)
• most recent note: show date/author @valentijnscholten (#12329)
• Release: Merge back 2.45.3 into dev from: master-into-dev/2.45.3-2.46.0-dev @github-actions (#12325)
• Release: Merge release into master from: release/2.45.3 @github-actions (#12324)
• Implement Albibaba Linux vulnids @manuel-sommer (#12304)
• fix(webhook): Missing quotation -> broken rendering @kiblik (#12226)
• 🐛 Differentiate between slackware and siemens vulnid @manuel-sommer (#12251)
• Release: Merge back 2.45.2 into dev from: master-into-dev/2.45.2-2.46.0-dev @github-actions (#12287)
• Release: Merge release into master from: release/2.45.2 @github-actions (#12286)
• Update base.html @shipko (#12228)
• SLA Calculations 2/2: Simplify logic @valentijnscholten (#11924)
• Release: Merge back 2.45.1 into dev from: master-into-dev/2.45.1-2.46.0-dev @github-actions (#12239)
• Release: Merge release into master from: release/2.45.1 @github-actions (#12236)
• 🐛 Fix Django template engagement_pdf_report #12201 @manuel-sommer (#12206)
• fix(notif): Product name not rendered correctly @kiblik (#12203)
• feat(perf): Speed-up loading by using smaller resources (js,css) @kiblik (#12178)
• Release: Merge back 2.45.0 into bugfix from: master-into-bugfix/2.45.0-2.46.0-dev @github-actions (#12188)

🔧 Improved code quality with linters

• Ruff: Add S324 rule @manuel-sommer (#12169)
• Ruff: Final fix of PTH123 @kiblik (#12177)

🧰 Maintenance

• Bump boto3 from 1.38.6 to 1.38.7 @dependabot (#12366)
• Bump ruff from 0.11.7 to 0.11.8 @dependabot (#12367)
• Bump drf-spectacular-sidecar from 2025.4.1 to 2025.5.1 @dependabot (#12358)
• Bump boto3 from 1.38.5 to 1.38.6 @dependabot (#12359)
• Bump psycopg[c] from 3.2.6 to 3.2.7 @dependabot (#12360)
• chore(deps): update dependency vite from 6.3.3 to v6.3.4 (docs/package.json) @renovate (#12349)
• Bump boto3 from 1.38.4 to 1.38.5 @dependabot (#12352)
• Bump humanize from 4.12.2 to 4.12.3 @dependabot (#12353)
• Bump django-debug-toolbar from 5.1.0 to 5.2.0 @dependabot (#12339)
• Bump django-auditlog from 3.0.0 to 3.1.2 @dependabot (#12338)
• Bump celery from 5.5.1 to 5.5.2 @dependabot (#12337)
• Bump boto3 from 1.38.2 to 1.38.4 @dependabot (#12336)
• Bump pdfmake from 0.2.18 to 0.2.19 in /components @dependabot (#12335)
• Update manusa/actions-setup-minikube action from v2.13.1 to v2.14.0 (.github/workflows/k8s-tests.yml) @renovate (#12334)
• Bump social-auth-core from 4.6.0 to 4.6.1 @dependabot (#12340)
• Update nginx/nginx-prometheus-exporter Docker tag from 1.4.1 to v1.4.2 (helm/defectdojo/values.yaml) @renovate (#12327)
• Bump nginx from 1.27.4-alpine3.21 to 1.27.5-alpine3.21 @dependabot (#12323)
• Bump openapitools/openapi-generator-cli from v7.12.0 to v7.13.0 @dependabot (#12322)
• Bump social-auth-core from 4.5.6 to 4.6.0 @dependabot (#12316)
• Bump ruff from 0.11.6 to 0.11.7 @dependabot (#12317)
• Bump boto3 from 1.38.1 to 1.38.2 @dependabot (#12318)
• Update redis Docker tag from 7.2.7 to v7.2.8 (docker-compose.yml) @renovate (#12311)
• Update actions/download-artifact action from v4.2.1 to v4.3.0 (.github/workflows/rest-framework-tests.yml) @renovate (#12312)
• Update docker/build-push-action action from v6.15.0 to v6.16.0 (.github/workflows/release-x-manual-docker-containers.yml) @renovate (#12309)
• Bump boto3 from 1.38.0 to 1.38.1 @dependabot (#12308)
• Update actions/setup-python action from v5.5.0 to v5.6.0 (.github/workflows/test-helm-chart.yml) @renovate (#12306)
• Update dependency vite from 6.3.2 to v6.3.3 (docs/package.json) @renovate (#12305)
• Update dependency node from 22.14.0 to v22.15.0 (.github/workflows/validate_docs_build.yml) @renovate (#12300)
• Update redis Docker tag from 7.2.5 to v7.2.7 (docker-compose.yml...

2.45.3 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.45.2

• [docs] add Pro Finding Enhancements documentation @paulOsinski (#12310)
• Fortify: Handle suppressed findings as false positives @valentijnscholten (#12293)
• sla: parse finding.date implicitly @valentijnscholten (#12301)
• 2.45.2 pro changelog @paulOsinski (#12292)
• tenable: check mandatory columns before importing @valentijnscholten (#12273)
• saml: provide link to saml-tracer browser add-on @valentijnscholten (#12274)
• Reimport: Special statuses should be respected from reports @Maffooch (#12291)
• [docs] Add Example Cases to docs @paulOsinski (#12265)

🚩 Changes to settings.dist.py / local_settings.py

• Implement Albibaba Linux vulnids @manuel-sommer (#12304)

🖌 Updates in UI

• Implement Albibaba Linux vulnids @manuel-sommer (#12304)
• fix(webhook): Missing quotation -> broken rendering @kiblik (#12226)
• 🐛 Differentiate between slackware and siemens vulnid @manuel-sommer (#12251)

2.45.2 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.45.1

• [docs] Changelog, Jira reorg, Wiz Connector docs, Import reorg @paulOsinski (#12250)
• 🎉 Implement Fortify Webinspect new report format @manuel-sommer (#12155)

🚩 Changes to settings.dist.py / local_settings.py

• 🎉 Add Amazon Linux Security Center advisory to vulnid @manuel-sommer (#12242)

🖌 Updates in UI

• SLA Calculations 2/2: Simplify logic @valentijnscholten (#11924)

2.45.1 🌈

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.45.0

• 💄 🪲 Fix Aqua parser severity justification @manuel-sommer (#12192)
• changelog 2.45.0 @paulOsinski (#12213)
• close old findings: don't overwrite mitigated timestamp @valentijnscholten (#12204)
• Linting: Update how-to-write-a-parser.md to not contain Ruff violations @valentijnscholten (#12214)
• h1: vulnerability disclosure parser improvements @valentijnscholten (#12212)
• Updated Documentation on Anchore Enterprise @Sopuru (#12058)
• immuniweb json parser @valentijnscholten (#12179)
• fix(renovate): Add separateMinorPatch @kiblik (#12190)
• wiz scan: handle more fields and unique_id_from_tool @valentijnscholten (#12198)
• 🔨 RustyHog: handle empty reports correctly to fix #10584 @manuel-sommer (#12129)
• README: Point to sample scans for demo @valentijnscholten (#12162)
• Bump Django to 5.1.8 @valentijnscholten (#12191)

🚩 Changes to settings.dist.py / local_settings.py

• Implement HCL Commerce KB vulnids @manuel-sommer (#12199)
• 🎉 Add cisco security advisory to vulnid @manuel-sommer (#12180)

🚩 Database migration

🚀 API features and enhancements

🖌 Updates in UI

• 🐛 Fix Django template engagement_pdf_report #12201 @manuel-sommer (#12206)
• fix(notif): Product name not rendered correctly @kiblik (#12203)

🔧 Improved code quality with linters