http://open-source-security-software.net/releases.atom Recent releases 2021-09-25T13:22:40.850432+00:00 python-feedgen svgbob 0.5.5 svgbob 0.5.5 2021-08-16T18:38:18+00:00 2021-08-16T18:38:18+00:00 clair v4.2.1 clair v4.2.1 2021-08-16T19:18:54+00:00 <a name="unreleased"></a> ## [Unreleased] <a name="v4.2.1"></a> ## [v4.2.1] - 2021-08-16 ### Chore - [1882e1e](https://github.com/quay/clair/commit/1882e1eed86bfcd1e9a9667bc1900fdb1da081db): v4.2.1 changelog bump - [b48814b](https://github.com/quay/clair/commit/b48814b6b79fc75fb91dce858490e2d4a8f2db3d): bump claircore version [Unreleased]: https://github.com/quay/clair/compare/v4.2.1...HEAD [v4.2.1]: https://github.com/quay/clair/compare/v4.2.0...v4.2.1 2021-08-16T19:18:54+00:00 clair v4.1.4 clair v4.1.4 2021-08-16T19:19:12+00:00 <a name="unreleased"></a> ## [Unreleased] <a name="v4.1.4"></a> ## [v4.1.4] - 2021-08-16 ### Chore - [92eef18](https://github.com/quay/clair/commit/92eef18de3a6dfc08373598d542e6644beab9d0a): v4.1.4 changelog bump - [bee9c64](https://github.com/quay/clair/commit/bee9c642bba0aad96fcc48c7c2b2c7b0692c6825): bump claircore version [Unreleased]: https://github.com/quay/clair/compare/v4.1.4...HEAD [v4.1.4]: https://github.com/quay/clair/compare/v4.1.3...v4.1.4 2021-08-16T19:19:12+00:00 reko version-0.10.0 reko version-0.10.0 2021-08-16T19:29:25+00:00 In this Release, the Reko source code has been moved onto .NET Core. The Windows Forms GUI and command line interpreter are now hosted on .NET Core 3.1, while the Reko plugins have been ported to .NET Standard 2.1. The Reko C parser was extended to handle more platform specific dialects of C. Special C++-style attributes can be used to specify metadata in C format, rather than in XML format. A Python scripting engine and API were added by @ptomin. Scripts written in Python can be written to analyze a loaded image file. * Support for the Nintendo Gameboy, Altera Nios-II, and C166 architectures. * Support for PowerPC MacOS; improved support for Class M68k MacOS. * Support for Xbe, eCoff, PEF, and XCoff image file formats. * MS-DOS specific improvements were contributed by @blindmatrix. * The `Tools > Hex diassembler` window provides a quick way to disassemble hex-encoded bytes Under the hood, some major refactorings were done to rationalize the sprawling `Reko.Core` namespace. The build system was revamped by @smx-smx, centralizing various ad-hoc tools. Support for C# 8 `nullable` has been introduced in most projects. Thanks to @blindmatrix, @claunia, @gbody, @ptomin, @samB, @smx-smx, @Starword for their time and contributions to Reko. 2021-08-16T19:29:25+00:00 syncthing v1.18.2-rc.2 syncthing v1.18.2-rc.2 2021-08-16T21:12:41+00:00 Bugfixes: - #7827: The error message "given name ... differs from filesystem name ..." does not help users to resolve the issue 2021-08-16T21:12:41+00:00 txtorcon v21.1.0 txtorcon v21.1.0 2021-08-16T21:19:47+00:00 ``` -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 I'm pleased to announce txtorcon 21.1.0. This fixes some incorrectly-skipped tests in 21.0.0 * Fix some incorrect unit-test skipping logic (thanks Jean-Paul Calderone) https://github.com/meejah/txtorcon/issues/354 and https://github.com/meejah/txtorcon/issues/352 * Fix broken tests revealed by previous fixes (thanks Jean-Paul Calderone) https://github.com/meejah/txtorcon/issues/356 You can download the release from PyPI or GitHub (or of course "pip install txtorcon"): https://pypi.python.org/pypi/txtorcon/21.1.0 https://github.com/meejah/txtorcon/releases/tag/v21.1.0 Releases are also available from the hidden service: http://fjblvrw2jrxnhtg67qpbzi45r7ofojaoo3orzykesly2j3c2m3htapid.onion/txtorcon-21.1.0.tar.gz http://fjblvrw2jrxnhtg67qpbzi45r7ofojaoo3orzykesly2j3c2m3htapid.onion/txtorcon-21.1.0.tar.gz.asc You can verify the sha256sum of both by running the following 4 lines in a shell wherever you have the files downloaded: cat <<EOF | sha256sum --check aebf0b9ec6c69a029f6b61fd534e785692e28fdcd2fd003ce3cc132b9393b7d6 dist/txtorcon-21.1.0.tar.gz bcc54299e5119d6a9ace889bbefc1ff93108a204824b738e9c77bdb71f61661f dist/txtorcon-21.1.0-py2.py3-none-any.whl EOF thanks, meejah -----BEGIN PGP SIGNATURE----- iQFFBAEBCgAvFiEEnVor1WiOy4id680/wmAoAxKAaacFAmEa1UoRHG1lZWphaEBt ZWVqYWguY2EACgkQwmAoAxKAaad3/gf/S0mneFfvY0CdqR3DyIOgjX29lIotkDzf 1SeTnLdSU2SYXj89d8TnCUONkQiFZvruGcQufASA+mbIFKC+2KwZ7BVJLlYJ9MGu Cyjt+1jr2xXGmAEVqLcDwCZM7v4BknD/W2jxZqLx3CjDuU3U1abjcJUBlt2Pq/uA B5wWK6PAxIE1rksGtk+ftMf+jMIRwTb5hNj9HynDuGzW3MFbmanyQh2eBfQPlrve 1FqmQUEaOKMM6S34mvExRIjB5/q1SNs8+zX9oAR5wrLh3NVCsiVyXtVOvU949sLy HKVm9nHzgemRrj/nsKetLahM5MYpRYFMhZVYTK+nyotK+I5tRfrXGQ== =e+mc -----END PGP SIGNATURE----- ``` 2021-08-16T21:19:47+00:00 sopel v7.1.3 sopel v7.1.3 2021-08-16T22:26:55+00:00 Changes between 7.1.2 and 7.1.3 =============================== Plugin changes -------------- * announce: fix Python 3 compatibility [[#2166][]] * reddit: fix handling post links with parameters, e.g. sorting [[#2163][]] * reddit: silence PRAW update notices [[#2171][]] * tell: don't strip IRC formatting at message start [[#2162][]] * translate: better error handling in `.mangle` [[#2160][]] * wikipedia: skip messagebox template contents for cleaner snippets [[#2159][]] * wikipedia: improve handling of links to transcluded sections [[#2168][]] Core changes ------------ * Fixed showing plugin information in `sopel-plugins` CLI tool even if loading the plugin fails [[#2135][]] * Stop warning about `parse == bool` configuration settings in 7.x [[#2164][]] * This warning will return in Sopel 8.0, a major release which will be a more natural time for plugin maintainers to release compatibility updates. * Fixed `requests` requirement on Python 3.3 [[#2172][]] [#2135]: https://github.com/sopel-irc/sopel/pull/2135 [#2159]: https://github.com/sopel-irc/sopel/pull/2159 [#2160]: https://github.com/sopel-irc/sopel/pull/2160 [#2162]: https://github.com/sopel-irc/sopel/pull/2162 [#2163]: https://github.com/sopel-irc/sopel/pull/2163 [#2164]: https://github.com/sopel-irc/sopel/pull/2164 [#2166]: https://github.com/sopel-irc/sopel/pull/2166 [#2168]: https://github.com/sopel-irc/sopel/pull/2168 [#2171]: https://github.com/sopel-irc/sopel/pull/2171 [#2172]: https://github.com/sopel-irc/sopel/pull/2172 2021-08-16T22:26:55+00:00 uBlock 1.37.3b10 uBlock 1.37.3b10 2021-08-17T12:34:53+00:00 [Commits to master since this release](https://github.com/gorhill/uBlock/compare/1.37.3b10...master) To install the developer build: - **Firefox**: Click [uBlock0_1.37.3b10.firefox.signed.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b10/uBlock0_1.37.3b10.firefox.signed.xpi). - [uBO works best on Firefox](https://github.com/gorhill/uBlock/wiki/uBlock-Origin-works-best-on-Firefox). - **Chromium**: Install from the Chrome Web Store (CWS): <https://chrome.google.com/webstore/detail/ublock-origin-dev-build/cgbcahbpdhpcegmbfconppldiemgcoii>. - **Thunderbird**: Download [uBlock0_1.37.3b10.thunderbird.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b10/uBlock0_1.37.3b10.thunderbird.xpi), then drag-n-drop it into Thunderbird's _Add-ons Manager_ pane (Thunderbird 78+ required) - **NodeJS**: Download and unzip [uBlock0_1.37.3b10.npm.tgz](https://github.com/gorhill/uBlock/releases/download/1.37.3b10/uBlock0_1.37.3b10.npm.tgz). --- ## New A new NodeJS package will now published with every release. The package allows to import and use uBO's static and dynamic filtering engines into NodeJS. This is currently minimal and a first iteration, and issues regarding the NodeJS package are accepted in order to improve usability of uBO's filtering engines in a NodeJS package. The ability to run code from a NodeJS package also opens the door to have [test coverage](https://en.wikipedia.org/wiki/Code_coverage) in uBO. For now the package can be downloaded and unzipped locally. Once installed, you can execute `node test` in the root of the package to verify that the static network filtering engine works properly. For usage, refer to the [`test.js`](https://github.com/gorhill/uBlock/blob/master/platform/nodejs/test.js), or [`ublock.js`](https://github.com/cliqz-oss/adblocker/blob/master/packages/adblocker-benchmarks/blockers/ublock.js) used in Cliqz's benchmark. Since I have little experience with dealing with NodeJS environment/packages, thanks to @mjethani [for assistance](https://github.com/uBlockOrigin/uBlock-issues/issues/1664). ## Closed as fixed: - [patch by @vtriolet] [TypeError in noscript-spoof scriptlet with invalid meta refresh URL](https://github.com/uBlockOrigin/uBlock-issues/issues/1676) - [TypeError when trying to use element picker on plaintext resource](https://github.com/uBlockOrigin/uBlock-issues/issues/1675) - [Split out core functionality into separate module](https://github.com/uBlockOrigin/uBlock-issues/issues/1664) - This is of course an ongoing work for the foreseeable future, but the concrete goal sought in the issue has been reached, i.e. the static network filtering engine can be used as a nodejs module with no external dependencies. - Since uBO's codebase now uses [JS modules](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Modules), the minimum version of supported browsers has been increased to Chromium 61, Firefox 60, and Opera 48. ## Notable commits without en entry in the issue tracker - [Refactor hntrie to avoid the need for boundary cells](https://github.com/gorhill/uBlock/commit/c6fb70b1f0acb1003b516ceb678df27f6657b4f8) - [Fix bad test in WASM version of HNTrieContainer](https://github.com/gorhill/uBlock/commit/b54bf554a80c8640fb8c8064eeea48576974b0c2) - [Export the rule-based filtering engines to the nodejs package](https://github.com/gorhill/uBlock/commit/89c5653bc60d0a457358d6e862c8574bfc819675) - [Rewrite logical expressions for ESLint](https://github.com/gorhill/uBlock/commit/6ef74fc21ba87717330de12cfade8d1e65c702d5) - [patch by @mjethani] [Add Makefile](https://github.com/gorhill/uBlock/pull/3789) - [patch by @mjethani] [Make uAssets a submodule](https://github.com/gorhill/uBlock/commit/63591ef2aa818bced3dc5d7bd0bbb1c397e44e2f) - [Ensure compiled sections are ordered in ascending id](https://github.com/gorhill/uBlock/commit/c25938f5bcb519ee945c9ccab7d17474474dc825) - [Fix handling of some procedural cosmetic filters with explicit `:scope`](https://github.com/gorhill/uBlock/commit/51d14de44a2b89274836e70daabf305f4f00ac47) 2021-08-17T12:34:53+00:00 traefik v2.5.0 traefik v2.5.0 2021-08-17T16:34:39+00:00 **Enhancements:** - **[consulcatalog]** Add Support for Consul Connect ([#7407](https://github.com/traefik/traefik/pull/7407) by [Gufran](https://github.com/Gufran)) - Update Go version ([#8355](https://github.com/traefik/traefik/pull/8355) by [mpl](https://github.com/mpl)) - **[file]** Update sprig to v3.2.0 ([#7746](https://github.com/traefik/traefik/pull/7746) by [sirlatrom](https://github.com/sirlatrom)) - **[healthcheck]** Healthcheck: add support at the load-balancers of services level ([#8057](https://github.com/traefik/traefik/pull/8057) by [mpl](https://github.com/mpl)) - **[http3]** Upgrade github.com/lucas-clemente/quic-go ([#8076](https://github.com/traefik/traefik/pull/8076) by [sylr](https://github.com/sylr)) - **[http3]** Add HTTP3 support (experimental) ([#7724](https://github.com/traefik/traefik/pull/7724) by [juliens](https://github.com/juliens)) - **[k8s,k8s/gatewayapi]** Add wildcard hostname rule to kubernetes gateway ([#7963](https://github.com/traefik/traefik/pull/7963) by [jberger](https://github.com/jberger)) - **[k8s,k8s/gatewayapi]** Add support for TCPRoute and TLSRoute ([#8054](https://github.com/traefik/traefik/pull/8054) by [tomMoulard](https://github.com/tomMoulard)) - **[k8s,k8s/gatewayapi]** Allow crossprovider service reference ([#7774](https://github.com/traefik/traefik/pull/7774) by [jbdoumenjou](https://github.com/jbdoumenjou)) - **[k8s/crd,k8s]** Add named port support to Kubernetes IngressRoute CRDs ([#7668](https://github.com/traefik/traefik/pull/7668) by [Cirrith](https://github.com/Cirrith)) - **[k8s/crd,k8s]** Improve kubernetes external name service support for UDP ([#7773](https://github.com/traefik/traefik/pull/7773) by [kevinpollet](https://github.com/kevinpollet)) - **[k8s/crd,k8s]** Upgrade the CRD version from apiextensions.k8s.io/v1beta1 to apiextensions.k8s.io/v1 ([#7815](https://github.com/traefik/traefik/pull/7815) by [jbdoumenjou](https://github.com/jbdoumenjou)) - **[k8s/ingress,k8s/crd,k8s]** Ignore empty endpoint changes ([#7646](https://github.com/traefik/traefik/pull/7646) by [hensur](https://github.com/hensur)) - **[k8s/ingress,k8s]** Upgrade Ingress Handling to work with networkingv1/Ingress ([#7549](https://github.com/traefik/traefik/pull/7549) by [SantoDE](https://github.com/SantoDE)) - **[k8s/ingress,k8s]** Filter ingress class resources by name ([#7915](https://github.com/traefik/traefik/pull/7915) by [tomMoulard](https://github.com/tomMoulard)) - **[k8s/ingress,k8s]** Add k8s provider option to create services without endpoints ([#7593](https://github.com/traefik/traefik/pull/7593) by [Lucaber](https://github.com/Lucaber)) - **[k8s/ingress,k8s]** Upgrade IngressClass to use v1 over v1Beta on Kube 1.19+ ([#8089](https://github.com/traefik/traefik/pull/8089) by [SantoDE](https://github.com/SantoDE)) - **[k8s/ingress,k8s]** Add ServersTransport annotation to k8s ingress provider ([#8084](https://github.com/traefik/traefik/pull/8084) by [wdullaer](https://github.com/wdullaer)) - **[logs,middleware]** Add TLS version and cipher to the accessLog ([#7478](https://github.com/traefik/traefik/pull/7478) by [na4ma4](https://github.com/na4ma4)) - **[metrics]** Add TLS certs expiration metric ([#6924](https://github.com/traefik/traefik/pull/6924) by [sylr](https://github.com/sylr)) - **[metrics]** Allow to define datadogs metrics endpoint with env vars ([#7968](https://github.com/traefik/traefik/pull/7968) by [sylr](https://github.com/sylr)) - **[middleware,metrics]** Add router metrics ([#7510](https://github.com/traefik/traefik/pull/7510) by [jorge07](https://github.com/jorge07)) - **[middleware,tcp]** Add TCP Middlewares support ([#7813](https://github.com/traefik/traefik/pull/7813) by [rtribotte](https://github.com/rtribotte)) - **[middleware]** Removes headers middleware options ([#8161](https://github.com/traefik/traefik/pull/8161) by [tomMoulard](https://github.com/tomMoulard)) - **[middleware]** Headers: add `permissionsPolicy` and deprecate `featurePolicy` ([#8200](https://github.com/traefik/traefik/pull/8200) by [WLun001](https://github.com/WLun001)) - **[middleware]** Deprecates ssl redirect headers middleware options ([#8160](https://github.com/traefik/traefik/pull/8160) by [tomMoulard](https://github.com/tomMoulard)) - **[plugins]** Local private plugins. ([#8224](https://github.com/traefik/traefik/pull/8224) by [ldez](https://github.com/ldez)) - **[provider,plugins]** Add plugin&#39;s support for provider ([#7794](https://github.com/traefik/traefik/pull/7794) by [ldez](https://github.com/ldez)) - **[rules]** Support not in rules definition ([#8164](https://github.com/traefik/traefik/pull/8164) by [juliens](https://github.com/juliens)) - **[rules]** Add routing IP rule matcher ([#8169](https://github.com/traefik/traefik/pull/8169) by [tomMoulard](https://github.com/tomMoulard)) - **[server]** Improve host name resolution for TCP proxy ([#7971](https://github.com/traefik/traefik/pull/7971) by [H-M-H](https://github.com/H-M-H)) - **[server]** Add ability to disable HTTP/2 in dynamic config ([#7645](https://github.com/traefik/traefik/pull/7645) by [jcuzzi](https://github.com/jcuzzi)) - **[sticky-session]** Add a mechanism to format the sticky cookie value ([#8103](https://github.com/traefik/traefik/pull/8103) by [tomMoulard](https://github.com/tomMoulard)) - **[tls]** Mutualize TLS version and cipher code ([#7779](https://github.com/traefik/traefik/pull/7779) by [rtribotte](https://github.com/rtribotte)) - **[tls,k8s/crd,k8s]** Improve CA certificate loading from kubernetes secret ([#7789](https://github.com/traefik/traefik/pull/7789) by [rio](https://github.com/rio)) - **[tls]** Do not build a default certificate for ACME challenges store ([#7833](https://github.com/traefik/traefik/pull/7833) by [rkojedzinszky](https://github.com/rkojedzinszky)) - **[tracing]** Use Datadog tracer environment variables to setup default config ([#7721](https://github.com/traefik/traefik/pull/7721) by [GianOrtiz](https://github.com/GianOrtiz)) - **[tracing]** Update Elastic APM from 1.7.0 to 1.11.0 ([#8187](https://github.com/traefik/traefik/pull/8187) by [afitzek](https://github.com/afitzek)) - **[tracing]** Override jaeger configuration with env variables ([#8198](https://github.com/traefik/traefik/pull/8198) by [mmatur](https://github.com/mmatur)) - **[udp]** Add udp timeout configuration ([#6982](https://github.com/traefik/traefik/pull/6982) by [Lindenk](https://github.com/Lindenk)) **Bug fixes:** - **[k8s,k8s/gatewayapi]** Update Gateway API version to v0.3.0 ([#8253](https://github.com/traefik/traefik/pull/8253) by [jbdoumenjou](https://github.com/jbdoumenjou)) - **[k8s]** Kubernetes: detect changes for resources other than endpoints ([#8313](https://github.com/traefik/traefik/pull/8313) by [rtribotte](https://github.com/rtribotte)) - **[middleware]** Library change for compress middleware to increase performance ([#8245](https://github.com/traefik/traefik/pull/8245) by [tomMoulard](https://github.com/tomMoulard)) - **[plugins]** Update yaegi to v0.9.21 ([#8285](https://github.com/traefik/traefik/pull/8285) by [ldez](https://github.com/ldez)) - **[plugins]** Downgrade yaegi to v0.9.19 ([#8282](https://github.com/traefik/traefik/pull/8282) by [ldez](https://github.com/ldez)) - **[webui]** Fix dashboard to display middleware details ([#8284](https://github.com/traefik/traefik/pull/8284) by [tomMoulard](https://github.com/tomMoulard)) - **[webui]** Fix dashboard title for TCP middlewares ([#8339](https://github.com/traefik/traefik/pull/8339) by [mschneider82](https://github.com/mschneider82)) - **[k8s]** Remove logging of changed object with cast ([#8128](https://github.com/traefik/traefik/pull/8128) by [hensur](https://github.com/hensur)) **Documentation:** - Fix KV reference documentation ([#8280](https://github.com/traefik/traefik/pull/8280) by [rtribotte](https://github.com/rtribotte)) - Fix migration guide ([#8269](https://github.com/traefik/traefik/pull/8269) by [jbdoumenjou](https://github.com/jbdoumenjou)) - Update generated and reference doc for plugins ([#8236](https://github.com/traefik/traefik/pull/8236) by [tomMoulard](https://github.com/tomMoulard)) - **[k8s/crd]** Fix: regenerate crd ([#8114](https://github.com/traefik/traefik/pull/8114) by [tomMoulard](https://github.com/tomMoulard)) - **[k8s]** Clarify doc for ingressclass name in k8s 1.18+ ([#7944](https://github.com/traefik/traefik/pull/7944) by [tomMoulard](https://github.com/tomMoulard)) - Update documentation references ([#8202](https://github.com/traefik/traefik/pull/8202) by [rtribotte](https://github.com/rtribotte)) **Misc:** - Merge current v2.4 into v2.5 ([#8333](https://github.com/traefik/traefik/pull/8333) by [jbdoumenjou](https://github.com/jbdoumenjou)) - Merge current v2.4 into v2.5 ([#8325](https://github.com/traefik/traefik/pull/8325) by [jbdoumenjou](https://github.com/jbdoumenjou)) - Merge current v2.4 into v2.5 ([#8314](https://github.com/traefik/traefik/pull/8314) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into v2.5 ([#8296](https://github.com/traefik/traefik/pull/8296) by [tomMoulard](https://github.com/tomMoulard)) - Merge current v2.4 into v2.5 ([#8287](https://github.com/traefik/traefik/pull/8287) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into v2.5 ([#8281](https://github.com/traefik/traefik/pull/8281) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into v2.5 ([#8263](https://github.com/traefik/traefik/pull/8263) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into master ([#8232](https://github.com/traefik/traefik/pull/8232) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into master ([#8210](https://github.com/traefik/traefik/pull/8210) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into master ([#8105](https://github.com/traefik/traefik/pull/8105) by [tomMoulard](https://github.com/tomMoulard)) - Merge current v2.4 into master ([#8087](https://github.com/traefik/traefik/pull/8087) by [tomMoulard](https://github.com/tomMoulard)) - Merge current v2.4 into master ([#8068](https://github.com/traefik/traefik/pull/8068) by [jbdoumenjou](https://github.com/jbdoumenjou)) - Merge current v2.4 into master ([#8058](https://github.com/traefik/traefik/pull/8058) by [jbdoumenjou](https://github.com/jbdoumenjou)) - Merge current v2.4 into master ([#8024](https://github.com/traefik/traefik/pull/8024) by [jbdoumenjou](https://github.com/jbdoumenjou)) - Merge current v2.4 into master ([#7969](https://github.com/traefik/traefik/pull/7969) by [jbdoumenjou](https://github.com/jbdoumenjou)) - Merge current v2.4 into master ([#7921](https://github.com/traefik/traefik/pull/7921) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into master ([#7901](https://github.com/traefik/traefik/pull/7901) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into master ([#7859](https://github.com/traefik/traefik/pull/7859) by [jbdoumenjou](https://github.com/jbdoumenjou)) - Merge current v2.4 into master ([#7795](https://github.com/traefik/traefik/pull/7795) by [kevinpollet](https://github.com/kevinpollet)) - Merge current v2.4 into master ([#8221](https://github.com/traefik/traefik/pull/8221) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into master ([#7781](https://github.com/traefik/traefik/pull/7781) by [kevinpollet](https://github.com/kevinpollet)) - Merge current v2.4 into master ([#7766](https://github.com/traefik/traefik/pull/7766) by [ldez](https://github.com/ldez)) - Merge current v2.4 into master ([#7761](https://github.com/traefik/traefik/pull/7761) by [rtribotte](https://github.com/rtribotte)) - Merge current v2.4 into master ([#7748](https://github.com/traefik/traefik/pull/7748) by [kevinpollet](https://github.com/kevinpollet)) - Merge current v2.4 into master ([#7728](https://github.com/traefik/traefik/pull/7728) by [mmatur](https://github.com/mmatur)) 2021-08-17T16:34:39+00:00 clair v4.2.2 clair v4.2.2 2021-08-17T16:57:32+00:00 <a name="unreleased"></a> ## [Unreleased] <a name="v4.2.2"></a> ## [v4.2.2] - 2021-08-17 ### Chore - [3762d9c](https://github.com/quay/clair/commit/3762d9c3459f5bb1b12fab46453358b79f3952ba): v4.2.2 changelog bump - [90f2909](https://github.com/quay/clair/commit/90f2909ed8d29b90dad205f9ad92bbbf9660f88c): bump claircore version [Unreleased]: https://github.com/quay/clair/compare/v4.2.2...HEAD [v4.2.2]: https://github.com/quay/clair/compare/v4.2.1...v4.2.2 2021-08-17T16:57:32+00:00 clair v4.1.5 clair v4.1.5 2021-08-17T16:57:51+00:00 <a name="unreleased"></a> ## [Unreleased] <a name="v4.1.5"></a> ## [v4.1.5] - 2021-08-17 ### Chore - [7df9b90](https://github.com/quay/clair/commit/7df9b9067c3b7e7a9351bbc73b2dc48d507203af): v4.1.5 changelog bump - [f4d8255](https://github.com/quay/clair/commit/f4d8255c3a7db8b7e59066bc13ff25d39be938ae): bump claircore version [Unreleased]: https://github.com/quay/clair/compare/v4.1.5...HEAD [v4.1.5]: https://github.com/quay/clair/compare/v4.1.4...v4.1.5 2021-08-17T16:57:51+00:00 json v3.10.0 json v3.10.0 2021-08-17T18:41:33+00:00 Release date: 2021-08-17 SHA-256: 230f3a03cefd586661ebab577a347c973d97a770afb89e22c52abc3c2a19d0a7 (json.hpp), b5e3bfad07feba218a26a4f809fbb0d1e33450524bf5d7244cabc92cf8178c69 (include.zip) ### Summary JSON for Modern C++ 3.10.0 is the first release for over a year. It contains some new features and a lot of minor changes and bug fixes. Most notably, it introduces [**extended diagnostics.**](https://json.nlohmann.me/home/exceptions/#extended-diagnostic-messages) By defining [`JSON_DIAGNOSTICS`](https://json.nlohmann.me/features/macros/#json_diagnostics) before including the `json.hpp`, a [JSON Pointer](https://datatracker.ietf.org/doc/html/rfc6901) is added to [exceptions](https://json.nlohmann.me/home/exceptions/) which helps to debug issues with object access, array indices, or mismatching types. Another important change behind the curtains is a **fully overworked CI** which performs a lot of checks for every commit which should allow more frequent releases in the future. All changes are backward-compatible. :moneybag: Note you can **support this project** via [GitHub sponsors](https://github.com/sponsors/nlohmann) or [PayPal](http://paypal.me/nlohmann). ### :sparkles: New Features - Add **extended diagnostics information** by adding a [JSON Pointer](https://datatracker.ietf.org/doc/html/rfc6901) to the [exception](https://json.nlohmann.me/home/exceptions/) messages indicating the exact location of a invalid type errors or out-of-bound errors. ``` [json.exception.type_error.302] (/address/housenumber) type must be number, but is string ``` Exceptions in the library are thrown in the local context of the JSON value they are detected. This makes detailed diagnostics messages, and hence debugging, difficult. To create better diagnostics messages, each JSON value needs a pointer to its parent value such that a global context (i.e., a path from the root value to the value that lead to the exception) can be created. That global context is then provided as a JSON Pointer. As this global context comes at the price of storing one additional pointer per JSON value and runtime overhead to maintain the parent relation, extended diagnostics are disabled by default. They can, however, be enabled by defining the preprocessor symbol [`JSON_DIAGNOSTICS`](https://json.nlohmann.me/features/macros/#json_diagnostics) to 1 before including `json.hpp`. See the [`documentation`](https://json.nlohmann.me/home/exceptions/#extended-diagnostic-messages) for more information. #932 #1508 #2562 #2838 #2866 - Add a [**GDB pretty printer**](https://github.com/nlohmann/json/tree/develop/third_party/gdb_pretty_printer) to facilitate reading `basic_json` values in GDB. #1952 #2607 - Add a new value `store` to the [cbor_tag_handler_t](https://json.nlohmann.me/api/basic_json/cbor_tag_handler_t/) which allows to store the tags of CBOR values as binary subtypes. #2863 #2908 - Add support for containers with non-default-constructible types. #2574 #2576 ### :bug: Bug Fixes - Fix a regression bug that failed `ordered_json` to be used when exceptions were switched off. #2347 #2725 #2934 - Added iterator range insertion for `ordered_json`. #2490 #2512 - Change the type of binary subtypes to `std::uint64_t` to support subtypes >255. Furthermore, the return value of the `subtype()` function has been fixed to the documented value `-1` in case no subtype is given. #2863 #2908 - Fix move constructor of internal `json_ref` type which created `null` values when compiled with `-fno-elide-constructors`. #2387 #2405 - Fix the compilation of `input_adapter` for containers in edge cases. #2553 - Allow parsing from `std::byte` containers. #2413 #2546 #2550 #2602 #2869 - Fix memory leak in `to_json` in case a JSON value is reused. #2865 #2872 - Fix compilation error in case symbol `EOF` was not found. #2755 #2756 - Fix Compilation error when using `NLOHMANN_JSON_SERIALIZE_ENUM` with `ordered_json` on libc++. #2491 #2825 #### Warnings A lot of warnings have been fixed in this release. To make sure the library remains warning-free, the CI now breaks in case a warning is found in GCC (261 warning flags), Clang (flag `-Weverything` with 8 exceptions), or MSVC (flag `/W4`). - Fix `-Wimplicit-fallthrough` warnings. #2348 #2349 - Fix `-Wfloat-equal` warnings. #2909 #2911 - Add assertions to suppress C28020 warnings. #2447 - Fix shadow warnings. #1759 #2536 #2444 - Fix compiler warnings in the test suite. #2537 - Fix issues found by Visual Studio Visual Assist #2615 - Fix unused parameter warning. #2646 #2658 #2668 #2706 #2707 - Remove HEDLEY annotation from `exception::what()` to fix C28204 warning. #2673 #2680 - Suppress C4127 warning. #2592 #2875 - Fix truncation warning. #2572 #2874 - Fix useless cast warning. #1777 #2114 #2893 #2902 - Fix unknown pragma warning. #2924 #2925 - Fix `-Wswitch-enum` warnings. #2927 - Fix C4309 and C4100 warnings and treat all MSVC `/W4` warnings as error. #2930 - Suppress fewer warning flags. #2936 ### :zap: Improvements #### Tests and CI The CI chain has been completely overworked and now runs mostly on a dedicated [Docker Image](https://github.com/nlohmann/json-ci) that contains all relevant tools. - Collected all CI calls in a [CMake file](https://github.com/nlohmann/json/blob/develop/cmake/ci.cmake) which can be enabled by setting `JSON_CI`. - Linux now builds with Clang 3.5 to 12 and GCC 4.8 to 11 checking multiple C++ standards. #2540 - Windows builds with MSVC 2015 to 2019, MinGW (GCC 8), Clang 11 and 12, and Clang-CL 11 checking multiple C++ standards. - Mac builds with Xcode 10.2.1 to Xcode 12.4 checking multiple C++ standards. #1798 #2561 #2737 #2790 #2817 - Use static analysis tools Clang-Tidy, Cppcheck, Valgrind, Google Sanitizers, Clang Static Analyzer, Cpplint, and Facebook Infer. - Add internal checks for CMake flags, switched off exceptions, header amalgamation, self-contained headers, and exclusion of certain tests via CTest. - Providers: Move most Travis/AppVeyor builds to GitHub Actions. Use [Drone CI](https://cloud.drone.io/nlohmann/json) for aarch64 build. Remove FOSSA. Properly select "Release" build for Travis CI builds. #2375 #2689 - Remove `#define private public` hack from test files. Instead, macro `JSON_PRIVATE_UNLESS_TESTED` is used in the source code which defaults to `private`, but can be set to `public` to test internals. #43 #913 #1985 #2352 #### CMake - Fixed issue in CMake file that overwrote `CMAKE_CXX_COMPILER` when the test suite was compiled. #2344 #2384 - Only enable CMake options `JSON_BuildTests` and `JSON_Install` by default when the library is the main project. #2513 #2514 - Add CTest label `not_reproducible` to skip non-reproducible tests. #2324 #2560 - Formatted CMake files ##2770 - Add a CMake option `JSON_SystemInclude` to use `SYSTEM` in `target_include_directories`. #2762 - Add CMake option `JSON_FastTests` (`OFF` by default) to which slow test suite. #### Documentation - Fixed typos in the documentation. #2354 #2754 - Extended documentation for discarded values and `is_discarded()` function. #2360 #2363 - Fix Markdown of README. #2582 - Fix example in README file. #2625 #2659 - Fix example in parse exceptions documentation. #2679 - Overworked [documentation of number handling](https://json.nlohmann.me/features/types/number_handling/). #2747 - Add link to Conan Center package to README. #2771 - Added example for CPM.cmake. #2406 - Update README to use HTTPS everywhere. #2789 - Fixed consistency of `using` declarations in README. #2826 - Fix documentation of tests that required a Git checkout. #2845 - Fix code samples in GIF slideshow. #2457 - Update documentation to reference [RFC 8259](https://tools.ietf.org/html/rfc8259.html) as JSON standard. - Add section on how to get support to README file. - Replaced links to Doxygen documentation with new [API documentation](https://json.nlohmann.me/api/basic_json/). - Documented the effect of a [bug](https://github.com/microsoft/STL/issues/2114) in Microsoft's STL that makes `what()` member function of exception objects unusable in case `_HAS_EXCEPTIONS=0` is set. #2824 #### Thirdparty - Updated Hedley to version 15. #2367 - Updated Doctest to version 2.4.6. #2525 #2538 #2686 #2687 ### :hammer: Further Changes - Use C++14 constructs where available. #2533 - Fix `pkg-config.pc` generation. #2690 - Add possibility to set the C++ standard via macros `JSON_HAS_CPP_11`, `JSON_HAS_CPP_14`, `JSON_HAS_CPP_17`, and `JSON_HAS_CPP_20`. By defining any of these symbols, the internal check is overridden and the provided C++ version is unconditionally assumed. This can be helpful for compilers that only implement parts of the standard and would be detected incorrectly. #2730 #2731 #2749 - Add preprocessor symbol `JSON_NO_IO`. When defined, headers `<cstdio>`, `<ios>`, `<iosfwd>`, `<istream>`, and `<ostream>` are not included and parse functions relying on these headers are excluded. This is relevant for environment where these I/O functions are disallowed for security reasons (e.g., Intel Software Guard Extensions (SGX)). #2728 #2729 #2842 #2861 - Benchmarks are handled via `FetchContent` and require CMake version 3.11. Removed Google Benchmark copy. Fix default branch name for Google Benchmarks. #2795 #2796 - Simplify object parser for CBOR. #2879 #2598 - Cleaned up maintainer Makefiles #### Licensing - Clarified license of `is_complete_type` implementation. #2534 - License fix for `integer_sequence` and `index_sequence` implementation. #2683 ### :fire: Deprecated functions Passing iterator pairs or pointer/length pairs to parsing functions (`basic_json::parse`, `basic_json::accept`, `basic_json::sax_parse`, `basic_json::from_cbor`, `basic_json::from_msgpack`, `basic_json::from_ubjson`, `basic_json::from_bson`) via initializer lists is deprecated. Instead, pass two iterators; for instance, call `basic_json::from_cbor(ptr, ptr+len)` instead of `basic_json::from_cbor({ptr, len})`. The following functions have been deprecated in earlier versions and will be removed in the next major version (i.e., 4.0.0): - Function [`iterator_wrapper`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a0a8051760196ac813fd5eb3c8d5a2976.html#a0a8051760196ac813fd5eb3c8d5a2976) are deprecated. Please use the member function [`items()`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a5961446010dfc494e0c247b4e9026977.html#a5961446010dfc494e0c247b4e9026977) instead. - Functions [`friend std::istream& operator<<(basic_json&, std::istream&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a60ca396028b8d9714c6e10efbf475af6.html#a60ca396028b8d9714c6e10efbf475af6) and [`friend std::ostream& operator>>(const basic_json&, std::ostream&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a34d6a60dd99e9f33b8273a1c8db5669b.html#a34d6a60dd99e9f33b8273a1c8db5669b) are deprecated. Please use [`friend std::istream& operator>>(std::istream&, basic_json&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_aaf363408931d76472ded14017e59c9e8.html#aaf363408931d76472ded14017e59c9e8) and [`friend operator<<(std::ostream&, const basic_json&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a5e34c5435e557d0bf666bd7311211405.html#a5e34c5435e557d0bf666bd7311211405) instead. All deprecations are annotated with [`HEDLEY_DEPRECATED_FOR`](https://nemequ.github.io/hedley/api-reference.html#HEDLEY_DEPRECATED_FOR) to report which function to use instead. 2021-08-17T18:41:33+00:00 openlibrary deploy-2021-08-17 openlibrary deploy-2021-08-17 2021-08-17T20:00:06+00:00 General: - @Yashs911 Fix flash message causes content shift (#5127) - @BharatKalluri Add partner JS library for showing OL buttons based on ISBN (#5479) - @jimchamp [beta] Improve Book Notes modal size and style (#5540) - @mekarpeles Remove IA link for noindex unless librarian (#5534) - @mekarpeles Allows librarians to see noindex ocaid on books page (#5545) - @shanamatthews add olid to author page (#5547) - @jimchamp [beta] Redesign review component (#5552) - @jimchamp [beta] Require confirmation before note deletion (#5532) - @cdrini Add helper eg /data/ol_dump_ratings_latest.txt.gz links for ratings/readinglog (#5546) Dev: - ❗ @dhruvmanila build: remove unused dependencies from `requirements.txt` (#5179) - ❗ @cdrini Remove old solr configs (#5494) - @cdrini Tweaks/fixes to readinglog/rating dump scripts (#5529) - @cdrini Update solr builder deploy docs (#5538) - @cdrini + @shanamatthews Fix author/search pages erroring (#5541) - ❗ @cdrini Switch production services to restart: unless-stopped (#5530) - @cdrini Tweaks to solr index schema (#5496) - @jimchamp Update book tags schema (#5524) - @jimchamp Feature/observations vue component (#5505) - @jimchamp Remove notes modals from notes list page (#5481) - @jimchamp Various toast component bug fixes (#5475) - @cdrini Misc Solr perf improvements (#5550) - @jimchamp Remove duplicate value from schema (#5543) - @jimchamp Update notes form styling (#5536) - @jimchamp Indicate if note exists in modal link text (#5533) Stats: - PR Authors: @jimchamp (10), @cdrini (8), @mekarpeles (2), @BharatKalluri (1), @Yashs911 (1), @dhruvmanila (1), @shanamatthews (1) - PR Assignees: @mekarpeles (15), @cdrini (5), @jimchamp (3) Full diff: https://github.com/internetarchive/openlibrary/compare/deploy-2021-08-09...deploy-2021-08-17 PRs: [is:pr is:merged merged:2021-08-09T19:55:51Z..2021-08-17T19:19:53Z sort:updated-asc](https://github.com/internetarchive/openlibrary/pulls?q=is%3Apr%20is%3Amerged%20merged%3A2021-08-09T19%3A55%3A51Z..2021-08-17T19%3A19%3A53Z%20sort%3Aupdated-asc) 2021-08-17T20:00:06+00:00 sandbox-attacksurface-analysis-tools v1.1.32 sandbox-attacksurface-analysis-tools v1.1.32 2021-08-18T04:00:09+00:00 2021-08-18T04:00:09+00:00 mattermost-server v5.38.1 mattermost-server v5.38.1 2021-08-18T16:26:12+00:00 Mattermost Platform Release v5.38.1 2021-08-18T16:26:12+00:00 CyberChef v9.32.0 CyberChef v9.32.0 2021-08-18T16:30:53+00:00 See the [CHANGELOG](https://github.com/gchq/CyberChef/blob/master/CHANGELOG.md) and [commit messages](https://github.com/gchq/CyberChef/commits/master) for details. 2021-08-18T16:30:53+00:00 python_api v2.5.4 python_api v2.5.4 2021-08-19T00:52:21+00:00 ## v2.5.4 #### Enhancements - Removed strict checking on tracker type to permit querying by arbitrary tracker types. Updated list of common trackers. Added searchType param to docs to reflect API's capability of returning either hostnames or addresses. - New methods to search trackers in the `analyzer` module, including `tracker_references` property on `Hostname` and `IPAddress` objects to find other sites referencing the focus host in their tracker values. - New `analyzer.Tracker` top-level entity with `observations_by_ip` and `observations_by_hostname` properties to find other hosts with the same tracker type and value. - New `filter_fn` method on all RecordList objects enables filtering a list by an arbitrary function. Helps reduce code duplication and enables more advanced filtering. - Monitoring API endpoint support in the core library, and new `alerts` property on project artifacts to easily retrieve the list of new alerts for an artifact in a project. Handles pagination automatically and returns results in new analyzer objects to enable standard filtering and data representation (i.e. `as_dict` and `as_df`). - Small change to the `get_object` method to tolerate passing it objects that are already `analyzer.Hostname` or `analyzer.IPAddress` objects. - New `is_ip` and `is_hostname` methods on both `Hostname` and `IPAddress` objects to simplify code that operates against a list of hosts that may include objects of both types. - New methods on Tracker search results and Hostpair results to exclude records with hostnames, domains or tlds in a given list. This helps refine results to focus on "foreign" sites and enables direct application of proven phishing site detection use cases. #### Bug Fixes - Fixed incorrect constant reference in trackers API (by removing strict checking on tracker type). - Fixed broken `age` property on Articles that was also causing `as_df` and `as_dict` to fail. Likely caused by missing time zone info in dates returned from the API. 2021-08-19T00:52:21+00:00 CyberChef v9.32.1 CyberChef v9.32.1 2021-08-19T11:13:54+00:00 See the [CHANGELOG](https://github.com/gchq/CyberChef/blob/master/CHANGELOG.md) and [commit messages](https://github.com/gchq/CyberChef/commits/master) for details. 2021-08-19T11:13:54+00:00 radare2 5.4.0 radare2 5.4.0 2021-08-19T20:48:32+00:00 Release Notes ------------- Version: 5.4.0 Previous: 5.3.1 Commits: 258 Contributors: 20 ## Highlights * Add the vector35 arm64 for analysis, esil and disasm and r2 can be built without capstone * Improved integration to use r2ghidra analysis and disassemble mainly tested for avr, v850 and arm64 * Fix emulation of several x86 and arm64 instructions, including an scripted way to import official arm64 instruction descriptions * Bring back the cmd.pin to instrument the esil emulation when a specific address is hit * Small steps towards Projects with improved management for version control * Improved visual and panels with better interactions and fixed glitches Shell * 500 more commands are now listed in the recursive help command: ?* * Backslash is now completely gone. Please use ':' or the original '=!' instead. * Implement @@== foreach word iterator operator * Add mwf command to write local files into remote targets * wv1,2,4,8 accept many space-separated numbers now Search * New /c subcommands are now available for searching crypto stuff * To find references to the UDS CAN table use /ru * Find PGP and RSA encrypted keys in memory with /cg * Search for common hashing and crypto constant tables in /ck * Add /ab to find backward jumps (mostly loops) and handle ^C * Initial implementation of spp, snp, /bp and /pp to find next/prev preludes Analysis * Improved VAX analysis, disassembly and analysis * Esil function emulation is performed properly spotting many more xrefs and reduces falses positives. * Default aa, aaa and aaaa analysis commands are now faster and produce better results * Analysis plugins can be now used as a replacement for the asm ones only for disassembling. Next release will start removing unnecessary asm plugins, reducing compile times and build size. * The new 'wan' command nops the partial instructions left, making binary patching much simpler * Faster exit times for ^D, making interactions more fluent and reducing CI times * Initial implementatil of ESIL macros and start reducing the instruction set * Better x86.pseudo and varsub for strings Debugger * Signal handling is now displayed in human form and C with better stop reasons * Use DRX APIs to handle breakpoint recoils only on x86-64 Signatures * Support FLIRT v5 file format compression * Fix bug in zaf creating zignspace * Expand r_sign API and major refactor ## New platforms: The build system and CI packaging has been improved quite a lot, simplifying the release process and testing. * serenityOS: unix based OS that looks like w95, with its own kernel, libraries and userland. Debugger support in r2 is not yet available for SerenityOS, but APIs are there, so it's just a matter of getting it * Vinix: Kernel completely written in V, able to run bash, gcc or python, is now able to run r2! * Vax/netbsd: after discovering SIMH, a Vax emulator, took me few minutes to run NetBSD and run r2 in there, no debugger support yet. * WebAssembly is now build and published in the CI * Tic80: For now it's just identifying and parsing the headers and placing the flags Windows * Building on windows is as easy as running: preconfigure, configure and make * That will detect VS, Python, Git and setup the PATH and install Meson and Ninja for you. * Resolve Windows APIs at runtime to fix build with mingw and improve backward compat <details><summary>More details</summary><p> Authors [Alex Bender](mailto:axbndr@gmail.com) [Apkunpacker](mailto:27184655+apkunpacker@users.noreply.github.com) [Azox](mailto:0x8008135@users.noreply.github.com) [Davide Pizzolotto](mailto:davide.pizzolotto@gmail.com) [Dennis Goodlett](mailto:dennis+git_swoops@hurricanelabs.com) [Enshin Andrey](mailto:b10s@users.noreply.github.com) [Ilya Trukhanov](mailto:lahvuun@gmail.com) [L√°szl√≥ Vask√≥](mailto:laszlo.vasko@outlook.com) [Maijin](mailto:maijin@reverseshade.com) [Murphy](mailto:dark.cancerbero@gmail.com) [Paul I](mailto:pelijah@users.noreply.github.com) [RHL120](mailto:60626307+RHL120@users.noreply.github.com) [Royos90](mailto:racerxjpn@gmail.com) [Sylvain Pelissier](mailto:sylvain.pelissier@gmail.com) [aemmitt-ns](mailto:51972960+aemmitt-ns@users.noreply.github.com) [gogo](mailto:gogo246475@gmail.com) [hot3eed](mailto:48328712+hot3eed@users.noreply.github.com) [lasek0](mailto:79937932+lasek0@users.noreply.github.com) [pancake](mailto:pancake@nopcode.org) [pancake](mailto:pancake@nowsecure.com) Changes ------- **anal** * Properly stringify the RAnalOP.type field * Implement aaff command and improve aaf? help message * * Extend afj command to handle all jump table parameter options * Implement 'afs*' command to export function signature info in r2 commands * Fix afsj, taking signature args instead of fcnargs in json * Initial import of the arm64v35 disassembler and analysis plugins * Optimize infinite loop on non-quantum computers * Avoid assert on avr's null cmpreg test * Finish the tolowering of anal.noNULL * Fix aef and aaef to actually find xrefs at least **asm** * Fix #18813 - Cannot assemble cmp w26, 0 in arm64 * Fix #18876 - Check imm bounds for some instructions in the x86.nz assembler * Add pushf/popf instructions to x86.nz * Use RAnalBind in RAsm to reuse RAnalPlugins to disassemble * Update ARM64 arm.sdb.txt opcode descriptions from documentation * Update the VAX disassembler from binutils **assembler** * Fix #18872 - New command 'wan' to write and nop affected instructions **bin** * Fix #18783 - Support ELFs with phnum > 0xFFFF * Allow RBinPlugins to use RBinFile at check() * Initial support for the TIC-80 Fantasy Computer cartridges * Replace SDB with HtPU in RBin.filter_name() * Put archinfo.{minopsz,maxopsz,align} in the output of i * Implement ELF relocs for VAX **build** * Add portability support for Vinix * Add meson support for the anal.arm.v35 plugin * Add preconfigure/configure/make batch scripts for Windows * Initial import of `./preconfigure` for packaging purposes * Improve the macOS packaging scripts * Import radare2-win-installer files into dist/windows * Fix meson build and proper use of cgen * Fix `system()` on arm64 macOS targets (#18877) * Initial support for capstone-less compilations * Build and publish the ZIP with the WASI bins * Add initial support for building r2 on WASI **ci** * Version the artifacts **cons** * Dont check out of bounds last chars * Honor faster ^D on interactive execution path * Fix arrow handling after fixing mouse clicking glitches **core** * Honor bool in io.va, scr.interactive, scr.prompt and cfg.fortunes * Optimize and improve r_name_filter calls * Add &w command to wait and run for queued commands * Implement &: for queue commands * Implement @@== foreach word iterator operator **debug** * Fix the windows debugger and make it more stable * Add tests for the improved signal handling messages * Change the way wait events are handled in the unix-debug backend * Add 'sigstr' to the 'di' output for verboser stop reasons * Add RSignal.toHuman() and improve RDebugReason.toString() * Use DRX APIs to handle breakpoint recoils only on x86-64 **disasm** * Support arch.* namings for the parse plugins * Better x86.pseudo and varsub for strings * Fix r_str_ansi_len() causing unaligned 'unaligned' words * Improve invalid address and string parameter issues in emu.str and pd comments * Improve x86.parse for asm.pseudo **esil** * Fix emulation for AARCH64 ldr,str,stp,ldp instructions * Fix #18860 - mul and imul for *dx operands and 64 bit widths * Bring back pins to esil land * Fix POPF POPFD POPFQ not increasing stack pointer * Add wide and math instr esil for dalvik, pac esil for arm64 * Initial implementatil of ESIL macros **fs** * Add mwf command to write local files into remote targets **io** * io.plugin.lseek -> .seek for portability (wasi related) (#18840) **panels** * Add xX key descriptions in the help message **print** * Improve the pdc output to allow recompilation * Initial implementation of the pdo esil2c output **projects** * Dont save projects when no project is used * Exclude files of nested rvc repos from repo_files() * Use r_sys_whoami as the author name for r_vc_commit * rvc add r_vc_find_rp * Rework r_vc_checkout and fix some mem leaks * Rework the rvc_commit functions * Take advantage of prj.vc.type and merge rvc & git * Fix r_vc_commit and other functions * Major rvc api refactor to use sdb **rvc** * Fix memory leak and infinite loop in r_vc_find_rp **search** * Implement /ck command to search for crypto constant tables * Rename /cu UDS CAN table search to /ru command * Add PGP search for signature and RSA encrypted private keys (#18961) * Add /cg command to search for GPG artifacts * Update tests and add /a[?]q for quiet-legacy mode * Use pdi in /ad output * Initial implementation of spp, snp, /bp and /pp to find next/prev preludes * Add /ab to find backward jumps (mostly loops) and handle ^C **shell** * Autocomplete :. command * wv1,2,4,8 accept many space-separated numbers now * Remove other useless and incomplete treesitter leftovers and get +400 new commands in the recursive help * Remove colons in "?" number conversion output * Honor < and > comparison operators in RNumMath * Use RNum.math in "?b" to make '?b 1<<1' work * Add scr.hist.filter to toggle the filtered history up/down search * Improved reverse-search in command history * Faster ^D (leave r2 without freeing the core) * Completely eliminate the deprecated backslash command * Add some help and better parsing for the anal hints **signatures** * Add r_sign_metric_search to r_sign.h * Fix bug in zaf creating zignspace * Expand r_sign API * * Use r_sign in rasign2 * Support FLIRT v5 file format compression **tools** * Rename rvc2 to ravc2 to follow the ra*2 pattern * Add rasm2 -LL to list anal plugins loaded **vc** * Integrate rvc in projects and add a default commit message **visual** * Add context in visual xrefs * Fix #18843 - Implement Vx[+-] to add/delete xrefs * Fix glitches when clicking in the hud * Fix asm.hint.imm keystrokes ignored * Fix #18292 - Clarify the use of Vdn/Vdr and rename VdR to VdX * Handle 'o' key for options in panels * Initial implementation of ~.... for hudline prompt * Add Vi+ Vi- keys for visual insert byte inc/dec * Add Vi: keystroke to run commands on insert mode **windows** * Use dynamic api resolution on windows builds for better portability </p></details> 2021-08-19T20:48:32+00:00 traefik v2.5.1 traefik v2.5.1 2021-08-20T16:52:34+00:00 **Bug fixes:** - **[middleware,http3]** Conditional CloseNotify in header middleware ([#8374](https://github.com/traefik/traefik/pull/8374) by [juliens](https://github.com/juliens)) - **[tls,tcp,k8s/crd,k8s]** Makes ALPN protocols configurable ([#8383](https://github.com/traefik/traefik/pull/8383) by [rtribotte](https://github.com/rtribotte)) **Documentation:** - **[k8s]** Adds MiddlewareTCP CRD documentation ([#8369](https://github.com/traefik/traefik/pull/8369) by [perosb](https://github.com/perosb)) - **[middleware]** Adds ContentType to middleware&#39;s overview table ([#8350](https://github.com/traefik/traefik/pull/8350) by [euidong](https://github.com/euidong)) 2021-08-20T16:52:34+00:00 faraday v3.17.1 faraday v3.17.1 2021-08-20T20:49:20+00:00 3.17.1 [Aug 20th, 2021]: --- * FIX bug when starting the server, creates a pool for reporting that breaks. 2021-08-20T20:49:20+00:00 onionshare v2.3.3 onionshare v2.3.3 2021-08-20T22:29:40+00:00 What's new: * New feature: Setting for light or dark theme * Updated Tor to 0.4.6.7 for Linux, 0.4.5.10 for Windows and macOS * Various bug fixes 2021-08-20T22:29:40+00:00 uBlock 1.37.3b13 uBlock 1.37.3b13 2021-08-21T15:52:47+00:00 [Commits to master since this release](https://github.com/gorhill/uBlock/compare/1.37.3b13...master) To install the developer build: - **Firefox**: Click [uBlock0_1.37.3b13.firefox.signed.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b13/uBlock0_1.37.3b13.firefox.signed.xpi). - [uBO works best on Firefox](https://github.com/gorhill/uBlock/wiki/uBlock-Origin-works-best-on-Firefox). - **Chromium**: Install from the Chrome Web Store (CWS): <https://chrome.google.com/webstore/detail/ublock-origin-dev-build/cgbcahbpdhpcegmbfconppldiemgcoii>. - **Thunderbird**: Download [uBlock0_1.37.3b13.thunderbird.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b13/uBlock0_1.37.3b13.thunderbird.xpi), then drag-n-drop it into Thunderbird's _Add-ons Manager_ pane (Thunderbird 78+ required) - **NodeJS**: Download and unzip [uBlock0_1.37.3b13.npm.tgz](https://github.com/gorhill/uBlock/releases/download/1.37.3b13/uBlock0_1.37.3b13.npm.tgz). --- ## New New cosmetic procedural operator, `:matches-path(...)`. See ["Add $path modifier of Adguard or any equivalents of this"](https://github.com/uBlockOrigin/uBlock-issues/issues/1690). --- A new NodeJS package will now published with every release. The package allows to import and use uBO's static and dynamic filtering engines into NodeJS. This is currently minimal and a first iteration, and issues regarding the NodeJS package are accepted in order to improve usability of uBO's filtering engines in a NodeJS package. The ability to run code from a NodeJS package also opens the door to have [test coverage](https://en.wikipedia.org/wiki/Code_coverage) in uBO. For now the package can be downloaded and unzipped locally. Once installed, you can execute `node test` in the root of the package to verify that the static network filtering engine works properly. For usage, refer to the [`test.js`](https://github.com/gorhill/uBlock/blob/master/platform/nodejs/test.js), or [`ublock.js`](https://github.com/cliqz-oss/adblocker/blob/master/packages/adblocker-benchmarks/blockers/ublock.js) used in Cliqz's benchmark. Since I have little experience with dealing with NodeJS environment/packages, thanks to @mjethani [for assistance](https://github.com/uBlockOrigin/uBlock-issues/issues/1664). ## Closed as fixed: - [patch by @vtriolet] [TypeError in noscript-spoof scriptlet with invalid meta refresh URL](https://github.com/uBlockOrigin/uBlock-issues/issues/1676) - [TypeError when trying to use element picker on plaintext resource](https://github.com/uBlockOrigin/uBlock-issues/issues/1675) - [Split out core functionality into separate module](https://github.com/uBlockOrigin/uBlock-issues/issues/1664) - This is of course an ongoing work for the foreseeable future, but the concrete goal sought in the issue has been reached, i.e. the static network filtering engine can be used as a nodejs module with no external dependencies. - Since uBO's codebase now uses [JS modules](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Modules), the minimum version of supported browsers has been increased to Chromium 61, Firefox 60, and Opera 48. ## Notable commits without en entry in the issue tracker - [Refactor hntrie to avoid the need for boundary cells](https://github.com/gorhill/uBlock/commit/c6fb70b1f0acb1003b516ceb678df27f6657b4f8) - [Fix bad test in WASM version of HNTrieContainer](https://github.com/gorhill/uBlock/commit/b54bf554a80c8640fb8c8064eeea48576974b0c2) - [Export the rule-based filtering engines to the nodejs package](https://github.com/gorhill/uBlock/commit/89c5653bc60d0a457358d6e862c8574bfc819675) - [Rewrite logical expressions for ESLint](https://github.com/gorhill/uBlock/commit/6ef74fc21ba87717330de12cfade8d1e65c702d5) - [patch by @mjethani] [Add Makefile](https://github.com/gorhill/uBlock/pull/3789) - [patch by @mjethani] [Make uAssets a submodule](https://github.com/gorhill/uBlock/commit/63591ef2aa818bced3dc5d7bd0bbb1c397e44e2f) - [Ensure compiled sections are ordered in ascending id](https://github.com/gorhill/uBlock/commit/c25938f5bcb519ee945c9ccab7d17474474dc825) - [Fix handling of some procedural cosmetic filters with explicit `:scope`](https://github.com/gorhill/uBlock/commit/51d14de44a2b89274836e70daabf305f4f00ac47) 2021-08-21T15:52:47+00:00 uBlock 1.37.3b14 uBlock 1.37.3b14 2021-08-22T14:53:51+00:00 [Commits to master since this release](https://github.com/gorhill/uBlock/compare/1.37.3b14...master) To install the developer build: - **Firefox**: Click [uBlock0_1.37.3b14.firefox.signed.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b14/uBlock0_1.37.3b14.firefox.signed.xpi). - [uBO works best on Firefox](https://github.com/gorhill/uBlock/wiki/uBlock-Origin-works-best-on-Firefox). - **Chromium**: Install from the Chrome Web Store (CWS): <https://chrome.google.com/webstore/detail/ublock-origin-dev-build/cgbcahbpdhpcegmbfconppldiemgcoii>. - **Thunderbird**: Download [uBlock0_1.37.3b14.thunderbird.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b14/uBlock0_1.37.3b14.thunderbird.xpi), then drag-n-drop it into Thunderbird's _Add-ons Manager_ pane (Thunderbird 78+ required) - **NodeJS**: Download and unzip [uBlock0_1.37.3b14.npm.tgz](https://github.com/gorhill/uBlock/releases/download/1.37.3b14/uBlock0_1.37.3b14.npm.tgz). --- ## New ### :matches-path(...) New cosmetic procedural operator, `:matches-path(...)`. See ["Add $path modifier of Adguard or any equivalents of this"](https://github.com/uBlockOrigin/uBlock-issues/issues/1690). ### Node.js A new NodeJS package will now published with every release. The package allows to import and use uBO's static and dynamic filtering engines into NodeJS. This is currently minimal and a first iteration, and issues regarding the NodeJS package are accepted in order to improve usability of uBO's filtering engines in a NodeJS package. The ability to run code from a NodeJS package also opens the door to have [test coverage](https://en.wikipedia.org/wiki/Code_coverage) in uBO. For now the package can be downloaded and unzipped locally. Once installed, you can execute `node test` in the root of the package to verify that the static network filtering engine works properly. For usage, refer to the [`test.js`](https://github.com/gorhill/uBlock/blob/master/platform/nodejs/test.js), or [`ublock.js`](https://github.com/cliqz-oss/adblocker/blob/master/packages/adblocker-benchmarks/blockers/ublock.js) used in Cliqz's benchmark. Since I have little experience with dealing with NodeJS environment/packages, thanks to @mjethani [for assistance](https://github.com/uBlockOrigin/uBlock-issues/issues/1664). ## Closed as fixed: - [On Android Popup Overlays [or Underlays] On-Screen Navigation Buttons](https://github.com/uBlockOrigin/uBlock-issues/issues/1691) - [Add $path modifier of Adguard or any equivalents of this](https://github.com/uBlockOrigin/uBlock-issues/issues/1690) - [The overview panel will not show everything if the uBO's icon is placed in the Firefox overflow menu](https://github.com/uBlockOrigin/uBlock-issues/issues/1604) - [patch by @vtriolet] [TypeError in noscript-spoof scriptlet with invalid meta refresh URL](https://github.com/uBlockOrigin/uBlock-issues/issues/1676) - [TypeError when trying to use element picker on plaintext resource](https://github.com/uBlockOrigin/uBlock-issues/issues/1675) - [Split out core functionality into separate module](https://github.com/uBlockOrigin/uBlock-issues/issues/1664) - This is of course an ongoing work for the foreseeable future, but the concrete goal sought in the issue has been reached, i.e. the static network filtering engine can be used as a nodejs module with no external dependencies. - Since uBO's codebase now uses [JS modules](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Modules), the minimum version of supported browsers has been increased to Chromium 61, Firefox 60, and Opera 48. ## Notable commits without en entry in the issue tracker - [Refactor hntrie to avoid the need for boundary cells](https://github.com/gorhill/uBlock/commit/c6fb70b1f0acb1003b516ceb678df27f6657b4f8) - [Fix bad test in WASM version of HNTrieContainer](https://github.com/gorhill/uBlock/commit/b54bf554a80c8640fb8c8064eeea48576974b0c2) - [Export the rule-based filtering engines to the nodejs package](https://github.com/gorhill/uBlock/commit/89c5653bc60d0a457358d6e862c8574bfc819675) - [Rewrite logical expressions for ESLint](https://github.com/gorhill/uBlock/commit/6ef74fc21ba87717330de12cfade8d1e65c702d5) - [patch by @mjethani] [Add Makefile](https://github.com/gorhill/uBlock/pull/3789) - [patch by @mjethani] [Make uAssets a submodule](https://github.com/gorhill/uBlock/commit/63591ef2aa818bced3dc5d7bd0bbb1c397e44e2f) - [Ensure compiled sections are ordered in ascending id](https://github.com/gorhill/uBlock/commit/c25938f5bcb519ee945c9ccab7d17474474dc825) - [Fix handling of some procedural cosmetic filters with explicit `:scope`](https://github.com/gorhill/uBlock/commit/51d14de44a2b89274836e70daabf305f4f00ac47) 2021-08-22T14:53:51+00:00 seaweedfs 2.64 seaweedfs 2.64 2021-08-23T07:55:15+00:00 * [Cloud Drive](https://github.com/chrislusf/seaweedfs/wiki/Cloud-Drive-Architecture) cache and sync cloud data to local SeaweedFS cluster * Support Google Cloud Storage, in addition to existing AWS S3. * Build with Go 1.17 * Mount * Increase concurrency with pooled goroutines #2263 * Fix a mounting issue #2275 * Filer, S3, Volume servers * Read write with streaming gzip, #2274 showed 10% overall performance improvement and 90% memory allocation reduced for small compressible files 2021-08-23T07:55:15+00:00 grr v3.4.5.1-release grr v3.4.5.1-release 2021-08-23T09:37:22+00:00 Mid-quarter release for Q3 2021. Download the server deb for Ubuntu 18.04 from [here](https://storage.googleapis.com/releases.grr-response.com/grr-server_3.4.5-1_amd64.deb). Please see the [release notes](https://grr-doc.readthedocs.io/en/latest/release-notes.html#august-19-2021). 2021-08-23T09:37:22+00:00 Loki 0.43.0 Loki 0.43.0 2021-08-23T09:59:47+00:00 - feat: rule author output to comply with [DRL 1.1](https://github.com/Neo23x0/signature-base/blob/master/LICENSE) (new signature-base license) ![Screenshot 2021-08-23 at 11 59 15](https://user-images.githubusercontent.com/2851492/130428710-ace3f73c-cf53-412d-9d19-5254064cb64f.png) 2021-08-23T09:59:47+00:00 yara v4.1.2 yara v4.1.2 2021-08-23T14:11:34+00:00 BUGFIX: `TOO_MANY_MATCHES` warning was causing strings to be globally disabled (#1532). BUGFIX: `fullworld` modifier not working as expected in Mac OS due to locale issue (#1544, https://github.com/VirusTotal/yara-python/issues/184). BUGFIX: Default value for pe.number_of_imported_function not set to 0 (#1546). 2021-08-23T14:11:34+00:00 faker v2.19.0 faker v2.19.0 2021-08-23T15:03:44+00:00 The `2.19.0` version includes: - new Faker generators - bug fixes - update locales 2021-08-23T15:03:44+00:00 netbox v2.11.12 netbox v2.11.12 2021-08-23T19:36:40+00:00 ## Enhancements * [#6748](https://github.com/netbox-community/netbox/issues/6748) - Add site group filter to devices list * [#6790](https://github.com/netbox-community/netbox/issues/6790) - Recognize a /32 IPv4 address as a child of a /32 IPv4 prefix * [#6872](https://github.com/netbox-community/netbox/issues/6872) - Add table configuration button to child prefixes view * [#6929](https://github.com/netbox-community/netbox/issues/6929) - Introduce `LOGIN_PERSISTENCE` configuration parameter to persist user sessions * [#7011](https://github.com/netbox-community/netbox/issues/7011) - Add search field to VM interfaces filter form ## Bug Fixes * [#5968](https://github.com/netbox-community/netbox/issues/5968) - Model forms should save empty custom field values as null * [#6326](https://github.com/netbox-community/netbox/issues/6326) - Enable filtering assigned VLANs by group in interface edit form * [#6686](https://github.com/netbox-community/netbox/issues/6686) - Force assignment of null custom field values to objects * [#6776](https://github.com/netbox-community/netbox/issues/6776) - Fix erroneous webhook dispatch on failure to save objects * [#6974](https://github.com/netbox-community/netbox/issues/6974) - Show contextual label for IP address role * [#7012](https://github.com/netbox-community/netbox/issues/7012) - Fix hidden "add components" dropdown on devices list 2021-08-23T19:36:40+00:00 syncthing v1.18.2-rc.3 syncthing v1.18.2-rc.3 2021-08-24T08:41:50+00:00 Bugfixes: - #7827: The error message "given name ... differs from filesystem name ..." does not help users to resolve the issue - #7893: Updating ignores blocks GUI when IO slots are unavailable 2021-08-24T08:41:50+00:00 uBlock 1.37.3b16 uBlock 1.37.3b16 2021-08-24T16:35:36+00:00 [Commits to master since this release](https://github.com/gorhill/uBlock/compare/1.37.3b16...master) To install the developer build: - **Firefox**: Click [uBlock0_1.37.3b16.firefox.signed.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b16/uBlock0_1.37.3b16.firefox.signed.xpi). - [uBO works best on Firefox](https://github.com/gorhill/uBlock/wiki/uBlock-Origin-works-best-on-Firefox). - **Chromium**: Install from the Chrome Web Store (CWS): <https://chrome.google.com/webstore/detail/ublock-origin-dev-build/cgbcahbpdhpcegmbfconppldiemgcoii>. - **Thunderbird**: Download [uBlock0_1.37.3b16.thunderbird.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b16/uBlock0_1.37.3b16.thunderbird.xpi), then drag-n-drop it into Thunderbird's _Add-ons Manager_ pane (Thunderbird 78+ required) - **NodeJS**: Import from [npm](https://www.npmjs.com/package/@gorhill/ubo-core), or download and unzip [uBlock0_1.37.3b16.npm.tgz](https://github.com/gorhill/uBlock/releases/download/1.37.3b16/uBlock0_1.37.3b16.npm.tgz). --- ## New ### :matches-path(...) New cosmetic procedural operator, `:matches-path(...)`. See ["Add $path modifier of Adguard or any equivalents of this"](https://github.com/uBlockOrigin/uBlock-issues/issues/1690). ### Node.js A new NodeJS package will now published with every release. The package allows to import and use uBO's static and dynamic filtering engines into NodeJS. This is currently minimal and a first iteration, and issues regarding the NodeJS package are accepted in order to improve usability of uBO's filtering engines in a NodeJS package. The ability to run code from a NodeJS package also opens the door to have [test coverage](https://en.wikipedia.org/wiki/Code_coverage) in uBO. For now the package can be downloaded and unzipped locally. Once installed, you can execute `node test` in the root of the package to verify that the static network filtering engine works properly. For usage, refer to the [`test.js`](https://github.com/gorhill/uBlock/blob/master/platform/nodejs/test.js), or [`ublock.js`](https://github.com/cliqz-oss/adblocker/blob/master/packages/adblocker-benchmarks/blockers/ublock.js) used in Cliqz's benchmark. Since I have little experience with dealing with NodeJS environment/packages, thanks to @mjethani [for assistance](https://github.com/uBlockOrigin/uBlock-issues/issues/1664). ## Closed as fixed: - [Prevent uBO from hiding html or body when matched by a generic cosmetic filter](https://github.com/uBlockOrigin/uBlock-issues/issues/1692) - [On Android Popup Overlays [or Underlays] On-Screen Navigation Buttons](https://github.com/uBlockOrigin/uBlock-issues/issues/1691) - [Add $path modifier of Adguard or any equivalents of this](https://github.com/uBlockOrigin/uBlock-issues/issues/1690) - [The overview panel will not show everything if the uBO's icon is placed in the Firefox overflow menu](https://github.com/uBlockOrigin/uBlock-issues/issues/1604) - [patch by @vtriolet] [TypeError in noscript-spoof scriptlet with invalid meta refresh URL](https://github.com/uBlockOrigin/uBlock-issues/issues/1676) - [TypeError when trying to use element picker on plaintext resource](https://github.com/uBlockOrigin/uBlock-issues/issues/1675) - [Split out core functionality into separate module](https://github.com/uBlockOrigin/uBlock-issues/issues/1664) - This is of course an ongoing work for the foreseeable future, but the concrete goal sought in the issue has been reached, i.e. the static network filtering engine can be used as a nodejs module with no external dependencies. - Since uBO's codebase now uses [JS modules](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Modules), the minimum version of supported browsers has been increased to Chromium 61, Firefox 60, and Opera 48. ## Notable commits without en entry in the issue tracker - [Refactor hntrie to avoid the need for boundary cells](https://github.com/gorhill/uBlock/commit/c6fb70b1f0acb1003b516ceb678df27f6657b4f8) - [Fix bad test in WASM version of HNTrieContainer](https://github.com/gorhill/uBlock/commit/b54bf554a80c8640fb8c8064eeea48576974b0c2) - [Export the rule-based filtering engines to the nodejs package](https://github.com/gorhill/uBlock/commit/89c5653bc60d0a457358d6e862c8574bfc819675) - [Rewrite logical expressions for ESLint](https://github.com/gorhill/uBlock/commit/6ef74fc21ba87717330de12cfade8d1e65c702d5) - [patch by @mjethani] [Add Makefile](https://github.com/gorhill/uBlock/pull/3789) - [patch by @mjethani] [Make uAssets a submodule](https://github.com/gorhill/uBlock/commit/63591ef2aa818bced3dc5d7bd0bbb1c397e44e2f) - [Ensure compiled sections are ordered in ascending id](https://github.com/gorhill/uBlock/commit/c25938f5bcb519ee945c9ccab7d17474474dc825) - [Fix handling of some procedural cosmetic filters with explicit `:scope`](https://github.com/gorhill/uBlock/commit/51d14de44a2b89274836e70daabf305f4f00ac47) 2021-08-24T16:35:36+00:00 json v3.10.1 json v3.10.1 2021-08-24T19:09:30+00:00 Release date: 2021-08-24 SHA-256: 0b628af78a2f0f3e2ff41d8dfa18314dd53831ffc2720c2944192d9f53727f4d (json.hpp), 144268f7f85afb0f0fbea7c796723c849724c975f9108ffdadde9ecedaa5f0b1 (include.zip) ### Summary This release fixes a bug introduced in release 3.10.0: the **extended diagnostics triggered an assertion** when used with `ordered_json`. All changes are backward-compatible. :moneybag: Note you can **support this project** via [GitHub sponsors](https://github.com/sponsors/nlohmann) or [PayPal](http://paypal.me/nlohmann). ### :bug: Bug Fixes - Fix an assertion triggered in the extended diagnostics using `ordered_json`. #2962 #2963 - Make GDB pretty-printer robust against unset variable names. #2950 ### :zap: Improvements #### Warnings - Add a missing header to `hash.hpp`. #2948 - Fix some `-Wextra-semi-stmt` warnings. #2957 #### Tests and CI - Avoid duplicate builds in AppVeyor. #2952 - Remove an outdated test binary that is not supported any longer. #2941 #2945 - Skip tests that would fail if CMake option `JSON_Install` is set to `OFF`. #2946 #2947 - Move Travis jobs to travis-ci.com. #2938 #2959 - Set stack size for some unit tests when building with MSVC. #2955 #2961 - Add a regression test. #2960 #### Documentation - Update the Homebrew command as [nlohmann-json](https://formulae.brew.sh/formula/nlohmann-json) is now in homebrew-core. #2943 #2966 - Add example for integration via vcpkg. #2944 #2954 - Fix a typo in the documentation. #2968 ### :fire: Deprecated functions Passing iterator pairs or pointer/length pairs to parsing functions (`basic_json::parse`, `basic_json::accept`, `basic_json::sax_parse`, `basic_json::from_cbor`, `basic_json::from_msgpack`, `basic_json::from_ubjson`, `basic_json::from_bson`) via initializer lists is deprecated. Instead, pass two iterators; for instance, call `basic_json::from_cbor(ptr, ptr+len)` instead of `basic_json::from_cbor({ptr, len})`. The following functions have been deprecated in earlier versions and will be removed in the next major version (i.e., 4.0.0): - Function [`iterator_wrapper`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a0a8051760196ac813fd5eb3c8d5a2976.html#a0a8051760196ac813fd5eb3c8d5a2976) are deprecated. Please use the member function [`items()`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a5961446010dfc494e0c247b4e9026977.html#a5961446010dfc494e0c247b4e9026977) instead. - Functions [`friend std::istream& operator<<(basic_json&, std::istream&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a60ca396028b8d9714c6e10efbf475af6.html#a60ca396028b8d9714c6e10efbf475af6) and [`friend std::ostream& operator>>(const basic_json&, std::ostream&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a34d6a60dd99e9f33b8273a1c8db5669b.html#a34d6a60dd99e9f33b8273a1c8db5669b) are deprecated. Please use [`friend std::istream& operator>>(std::istream&, basic_json&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_aaf363408931d76472ded14017e59c9e8.html#aaf363408931d76472ded14017e59c9e8) and [`friend operator<<(std::ostream&, const basic_json&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a5e34c5435e557d0bf666bd7311211405.html#a5e34c5435e557d0bf666bd7311211405) instead. All deprecations are annotated with [`HEDLEY_DEPRECATED_FOR`](https://nemequ.github.io/hedley/api-reference.html#HEDLEY_DEPRECATED_FOR) to report which function to use instead. 2021-08-24T19:09:30+00:00 whids v1.8.0-beta.2 whids v1.8.0-beta.2 2021-08-24T20:53:40+00:00 Changes: - new way to store events - new way to search for events Fixed issues: - #75 List endpoints by group / status in /endpoints - #74 Implement API endpoint to update endpoints fields - #73 List of ever loaded modules in report - #72 Track list of loaded modules - #71 EdrData section in events - #70 API endpoint /endpoint/artifacts - #69 Implement API endpoint used to stream events - #68 showkey parameter in /endpoints - #64 Change /alerts to /detections - #61 Integrate with ETW - #60 Add score /endpoints - #58 Date last alert in /endpoints - #57 Add group member to manager API endpoint structure - #56 Skip parameter in /logs /alerts - #55 Limit parameter in /logs /alerts - #54 Filter parameter in /rules API endpoint 2021-08-24T20:53:40+00:00 Loki 0.44.0 Loki 0.44.0 2021-08-25T07:54:02+00:00 - new command line flags `--allhds` and `--alldrives` allow scanning all local hard drives or all drives in general including removable drives and network drives - You can use `--force` to force scan a directory that has been excluded by default (e.g. `/dev`, `/media`, `/mnt` etc.) - The usage description in the README has been updated 2021-08-25T07:54:02+00:00 uBlock 1.37.3b18 uBlock 1.37.3b18 2021-08-25T14:57:29+00:00 [Commits to master since this release](https://github.com/gorhill/uBlock/compare/1.37.3b18...master) To install the developer build: - **Firefox**: Click [uBlock0_1.37.3b18.firefox.signed.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b18/uBlock0_1.37.3b18.firefox.signed.xpi). - [uBO works best on Firefox](https://github.com/gorhill/uBlock/wiki/uBlock-Origin-works-best-on-Firefox). - **Chromium**: Install from the Chrome Web Store (CWS): <https://chrome.google.com/webstore/detail/ublock-origin-dev-build/cgbcahbpdhpcegmbfconppldiemgcoii>. - **Thunderbird**: Download [uBlock0_1.37.3b18.thunderbird.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b18/uBlock0_1.37.3b18.thunderbird.xpi), then drag-n-drop it into Thunderbird's _Add-ons Manager_ pane (Thunderbird 78+ required) - **NodeJS**: Import from [npm](https://www.npmjs.com/package/@gorhill/ubo-core), or download and unzip [uBlock0_1.37.3b18.npm.tgz](https://github.com/gorhill/uBlock/releases/download/1.37.3b18/uBlock0_1.37.3b18.npm.tgz). --- ## New ### :matches-path(...) New cosmetic procedural operator, `:matches-path(...)`. See ["Add $path modifier of Adguard or any equivalents of this"](https://github.com/uBlockOrigin/uBlock-issues/issues/1690). ### Node.js A new NodeJS package will now published with every release. The package allows to import and use uBO's static and dynamic filtering engines into NodeJS. This is currently minimal and a first iteration, and issues regarding the NodeJS package are accepted in order to improve usability of uBO's filtering engines in a NodeJS package. The ability to run code from a NodeJS package also opens the door to have [test coverage](https://en.wikipedia.org/wiki/Code_coverage) in uBO. For now the package can be downloaded and unzipped locally. Once installed, you can execute `node test` in the root of the package to verify that the static network filtering engine works properly. For usage, refer to the [`test.js`](https://github.com/gorhill/uBlock/blob/master/platform/nodejs/test.js), or [`ublock.js`](https://github.com/cliqz-oss/adblocker/blob/master/packages/adblocker-benchmarks/blockers/ublock.js) used in Cliqz's benchmark. Since I have little experience with dealing with NodeJS environment/packages, thanks to @mjethani [for assistance](https://github.com/uBlockOrigin/uBlock-issues/issues/1664). ## Closed as fixed: - [Scriptlets don't work randomly in Firefox](https://github.com/uBlockOrigin/uBlock-issues/issues/1694) - [Security: comments can be used to smuggle url() functions into css values](https://github.com/uBlockOrigin/uBlock-issues/issues/1693) - [Prevent uBO from hiding html or body when matched by a generic cosmetic filter](https://github.com/uBlockOrigin/uBlock-issues/issues/1692) - [On Android Popup Overlays [or Underlays] On-Screen Navigation Buttons](https://github.com/uBlockOrigin/uBlock-issues/issues/1691) - [Add $path modifier of Adguard or any equivalents of this](https://github.com/uBlockOrigin/uBlock-issues/issues/1690) - [The overview panel will not show everything if the uBO's icon is placed in the Firefox overflow menu](https://github.com/uBlockOrigin/uBlock-issues/issues/1604) - [patch by @vtriolet] [TypeError in noscript-spoof scriptlet with invalid meta refresh URL](https://github.com/uBlockOrigin/uBlock-issues/issues/1676) - [TypeError when trying to use element picker on plaintext resource](https://github.com/uBlockOrigin/uBlock-issues/issues/1675) - [Split out core functionality into separate module](https://github.com/uBlockOrigin/uBlock-issues/issues/1664) - This is of course an ongoing work for the foreseeable future, but the concrete goal sought in the issue has been reached, i.e. the static network filtering engine can be used as a nodejs module with no external dependencies. - Since uBO's codebase now uses [JS modules](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Modules), the minimum version of supported browsers has been increased to Chromium 61, Firefox 60, and Opera 48. ## Notable commits without en entry in the issue tracker - [Refactor hntrie to avoid the need for boundary cells](https://github.com/gorhill/uBlock/commit/c6fb70b1f0acb1003b516ceb678df27f6657b4f8) - [Fix bad test in WASM version of HNTrieContainer](https://github.com/gorhill/uBlock/commit/b54bf554a80c8640fb8c8064eeea48576974b0c2) - [Export the rule-based filtering engines to the nodejs package](https://github.com/gorhill/uBlock/commit/89c5653bc60d0a457358d6e862c8574bfc819675) - [Rewrite logical expressions for ESLint](https://github.com/gorhill/uBlock/commit/6ef74fc21ba87717330de12cfade8d1e65c702d5) - [patch by @mjethani] [Add Makefile](https://github.com/gorhill/uBlock/pull/3789) - [patch by @mjethani] [Make uAssets a submodule](https://github.com/gorhill/uBlock/commit/63591ef2aa818bced3dc5d7bd0bbb1c397e44e2f) - [Ensure compiled sections are ordered in ascending id](https://github.com/gorhill/uBlock/commit/c25938f5bcb519ee945c9ccab7d17474474dc825) - [Fix handling of some procedural cosmetic filters with explicit `:scope`](https://github.com/gorhill/uBlock/commit/51d14de44a2b89274836e70daabf305f4f00ac47) 2021-08-25T14:57:29+00:00 wazuh v4.2.0 wazuh v4.2.0 2021-08-25T18:14:22+00:00 ### Added - **Core:** - Added support for bookmarks in Logcollector, allowing to follow the log file at the point where the agent stopped. ([#3368](https://github.com/wazuh/wazuh/issues/3368)) - Improved support for multi-line logs with a variable number of lines in Logcollector. ([#5652](https://github.com/wazuh/wazuh/issues/5652)) - Added an option to limit the number of files per second in FIM. ([#6830](https://github.com/wazuh/wazuh/pull/6830)) - Added a statistics file to Logcollector. Such data is also available via API queries. ([#7109](https://github.com/wazuh/wazuh/pull/7109)) - Allow statistical data queries to the agent. ([#7239](https://github.com/wazuh/wazuh/pull/7239)) - Allowed quoting in commands to group arguments in the command wodle and SCA checks. ([#7307](https://github.com/wazuh/wazuh/pull/7307)) - Let agents running on Solaris send their IP to the manager. ([#7408](https://github.com/wazuh/wazuh/pull/7408)) - New option `<ip_update_interval>` to set how often the agent refresh its IP address. ([#7444](https://github.com/wazuh/wazuh/pull/7444)) - Added support for testing location information in Wazuh Logtest. ([#7661](https://github.com/wazuh/wazuh/issues/7661)) - Added Vulnerability Detector reports to Wazuh DB to know which CVE’s affect an agent. ([#7731](https://github.com/wazuh/wazuh/issues/7731)) - Introduced an option to enable or disable listening Authd TLS port. ([#8755](https://github.com/wazuh/wazuh/pull/8755)) - **API:** - Added new endpoint to get agent stats from different components. ([#7200](https://github.com/wazuh/wazuh/pull/7200)) - Added new endpoint to modify users' allow_run_as flag. ([#7588](https://github.com/wazuh/wazuh/pull/7588)) - Added new endpoint to get vulnerabilities that affect an agent. ([#7647](https://github.com/wazuh/wazuh/pull/7647)) - Added API configuration validator. ([#7803](https://github.com/wazuh/wazuh/pull/7803)) - Added the capability to disable the max_request_per_minute API configuration option using 0 as value. ([#8115](https://github.com/wazuh/wazuh/pull/8115)) - **Ruleset:** - Added support for UFW firewall to decoders. ([#7100](https://github.com/wazuh/wazuh/pull/7100)) ### Changed - **Cluster:** - Improved the cluster nodes integrity calculation process. It only calculates the MD5 of the files that have been modified since the last integrity check. ([#8175](https://github.com/wazuh/wazuh/pull/8175)) - Changed the synchronization of agent information between cluster nodes to complete the synchronization in a single task for each worker. ([#8182](https://github.com/wazuh/wazuh/pull/8182)) - Changed cluster logs to show more useful information. ([#8002](https://github.com/wazuh/wazuh/pull/8002)) - **Core:** - Wazuh daemons have been renamed to a unified standard. ([#6912](https://github.com/wazuh/wazuh/pull/6912)) - Wazuh CLIs have been renamed to a unified standard. ([#6903](https://github.com/wazuh/wazuh/pull/6903)) - Wazuh internal directories have been renamed to a unified standard. ([#6920](https://github.com/wazuh/wazuh/pull/6920)) - Prevent a condition in FIM that may lead to a memory error. ([#6759](https://github.com/wazuh/wazuh/pull/6759)) - Let FIM switch to real-time mode for directories where who-data is not available (Audit in immutable mode). ([#6828](https://github.com/wazuh/wazuh/pull/6828)) - Changed the Active Response protocol to receive messages in JSON format that include the full alert. ([#7317](https://github.com/wazuh/wazuh/pull/7317)) - Changed references to the product name in logs. ([#7264](https://github.com/wazuh/wazuh/pull/7264)) - Remoted now supports both TCP and UDP protocols simultaneously. ([#7541](https://github.com/wazuh/wazuh/pull/7541)) - Improved the unit tests for the os_net library. ([#7595](https://github.com/wazuh/wazuh/pull/7595)) - FIM now removes the audit rules when their corresponding symbolic links change their target. ([#6999](https://github.com/wazuh/wazuh/pull/6999)) - Compilation from sources now downloads the external dependencies prebuilt. ([#7797](https://github.com/wazuh/wazuh/pull/7797)) - Added the old implementation of Logtest as `wazuh-logtest-legacy`. ([#7807](https://github.com/wazuh/wazuh/pull/7807)) - Improved the performance of Analysisd when running on multi-core hosts. ([#7974](https://github.com/wazuh/wazuh/pull/7974)) - Agents now report the manager when they stop. That allows the manager to log an alert and immediately set their state to "disconnected". ([#8021](https://github.com/wazuh/wazuh/pull/8021)) - Wazuh building is now independent from the installation directory. ([#7327](https://github.com/wazuh/wazuh/pull/7327)) - The embedded python interpreter is provided in a preinstalled, portable package. ([#7327](https://github.com/wazuh/wazuh/pull/7327)) - Wazuh resources are now accessed by a relative path to the installation directory. ([#7327](https://github.com/wazuh/wazuh/pull/7327)) - The error log that appeared when the agent cannot connect to SCA has been switched to warning. ([#8201](https://github.com/wazuh/wazuh/pull/8201)) - The agent now validates the Audit connection configuration when enabling whodata for FIM on Linux. ([#8921](https://github.com/wazuh/wazuh/pull/8921)) - **API:** - Removed ruleset version from `GET /cluster/{node_id}/info` and `GET /manager/info` as it was deprecated. ([#6904](https://github.com/wazuh/wazuh/issues/6904)) - Changed the `POST /groups` endpoint to specify the group name in a JSON body instead of in a query parameter. ([#6909](https://github.com/wazuh/wazuh/pull/6909)) - Changed the `PUT /active-response` endpoint function to create messages with the new JSON format. ([#7312](https://github.com/wazuh/wazuh/pull/7312)) - New parameters added to `DELETE /agents` endpoint and `older_than` field removed from response. ([#6366](https://github.com/wazuh/wazuh/issues/6366)) - Changed login security controller to avoid errors in Restful API reference links. ([#7909](https://github.com/wazuh/wazuh/pull/7909)) - Changed the PUT /agents/group/{group_id}/restart response format when there are no agents assigned to the group. ([#8123](https://github.com/wazuh/wazuh/pull/8123)) - Agent keys used when adding agents are now obscured in the API log. ([#8149](https://github.com/wazuh/wazuh/pull/8149)) - Improved all agent restart endpoints by removing active-response check. ([#8457](https://github.com/wazuh/wazuh/pull/8457)) - Improved API requests processing time by applying cache to token RBAC permissions extraction. It will be invalidated if any resource related to the token is modified. ([#8615](https://github.com/wazuh/wazuh/pull/8615)) - Increased to 100000 the maximum value accepted for `limit` API parameter, default value remains at 500. ([#8841](https://github.com/wazuh/wazuh/pull/8841)) - **Framework:** - Improved agent insertion algorithm when Authd is not available. ([#8682](https://github.com/wazuh/wazuh/pull/8682)) - **Ruleset:** - The ruleset was normalized according to the Wazuh standard. ([#6867](https://github.com/wazuh/wazuh/pull/6867)) - Added CIS policy "Ensure XD/NX support is enabled" back for SCA. ([#7316](https://github.com/wazuh/wazuh/pull/7316)) - **External dependencies:** - Upgrade boto3, botocore, requests, s3transfer and urllib3 Python dependencies to latest stable versions. ([#8886](https://github.com/wazuh/wazuh/pull/8886)) - Update Python to latest stable version (3.9.6). ([#9389](https://github.com/wazuh/wazuh/pull/9389)) - Upgrade GCP dependencies and pip to latest stable version. - Upgrade python-jose to 3.1.0. - Add tabulate dependency. ### Fixed - **Cluster:** - Fixed memory usage when creating cluster messages. ([#6736](https://github.com/wazuh/wazuh/pull/6736)) - Fixed a bug when unpacking incomplete headers in cluster messages. ([#8142](https://github.com/wazuh/wazuh/pull/8142)) - Changed error message to debug when iterating a file listed that is already deleted. ([#8499](https://github.com/wazuh/wazuh/pull/8499)) - Fixed cluster timeout exceptions. ([#8901](https://github.com/wazuh/wazuh/pull/8901)) - Fixed unhandled KeyError when an error command is received in any cluster node. ([#8872](https://github.com/wazuh/wazuh/pull/8872)) - **Core:** - Fixed a bug in FIM when setting scan_time to "12am" or "12pm". ([#6934](https://github.com/wazuh/wazuh/pull/6934)) - Fixed a bug in FIM that produced wrong alerts when the file limit was reached. ([#6802](https://github.com/wazuh/wazuh/pull/6802)) - Fixed a bug in Analysisd that reserved the static decoder field name "command" but never used it. ([#7105](https://github.com/wazuh/wazuh/pull/7105)) - Fixed evaluation of fields in the tag `<description>` of rules. ([#7073](https://github.com/wazuh/wazuh/pull/7073)) - Fixed bugs in FIM that caused symbolic links to not work correctly. ([#6789](https://github.com/wazuh/wazuh/pull/6789)) - Fixed path validation in FIM configuration. ([#7018](https://github.com/wazuh/wazuh/pull/7018)) - Fixed a bug in the "ignore" option on FIM where relative paths were not resolved. ([#7018](https://github.com/wazuh/wazuh/pull/7018)) - Fixed a bug in FIM that wrongly detected that the file limit had been reached. ([#7268](https://github.com/wazuh/wazuh/pull/7268)) - Fixed a bug in FIM that did not produce alerts when a domain user deleted a file. ([#7265](https://github.com/wazuh/wazuh/pull/7265)) - Fixed Windows agent compilation with GCC 10. ([#7359](https://github.com/wazuh/wazuh/pull/7359)) - Fixed a bug in FIM that caused to wrongly expand environment variables. ([#7332](https://github.com/wazuh/wazuh/pull/7332)) - Fixed the inclusion of the rule description in archives when matched a rule that would not produce an alert. ([#7476](https://github.com/wazuh/wazuh/pull/7476)) - Fixed a bug in the regex parser that did not accept empty strings. ([#7495](https://github.com/wazuh/wazuh/pull/7495)) - Fixed a bug in FIM that did not report deleted files set with real-time in agents on Solaris. ([#7414](https://github.com/wazuh/wazuh/pull/7414)) - Fixed a bug in Remoted that wrongly included the priority header in syslog when using TCP. ([#7633](https://github.com/wazuh/wazuh/pull/7633)) - Fixed a stack overflow in the XML parser by limiting 1024 levels of recursion. ([#7782](https://github.com/wazuh/wazuh/pull/7782)) - Prevented Vulnerability Detector from scanning all the agents in the master node that are connected to another worker. ([#7795](https://github.com/wazuh/wazuh/pull/7795)) - Fixed an issue in the database sync module that left dangling agent group files. ([#7858](https://github.com/wazuh/wazuh/pull/7858)) - Fixed memory leaks in the regex parser in Analysisd. ([#7919](https://github.com/wazuh/wazuh/pull/7919)) - Fixed a typo in the initial value for the hotfix scan ID in the agents' database schema. ([#7905](https://github.com/wazuh/wazuh/pull/7905)) - Fixed a segmentation fault in Vulnerability Detector when parsing an unsupported package version format. ([#8003](https://github.com/wazuh/wazuh/pull/8003)) - Fixed false positives in FIM when the inode of multiple files change, due to file inode collisions in the engine database. ([#7990](https://github.com/wazuh/wazuh/pull/7990)) - Fixed the error handling when wildcarded Redhat feeds are not found. ([#6932](https://github.com/wazuh/wazuh/pull/6932)) - Fixed the `equals` comparator for OVAL feeds in Vulnerability Detector. ([#7862](https://github.com/wazuh/wazuh/pull/7862)) - Fixed a bug in FIM that made the Windows agent crash when synchronizing a Windows Registry value that starts with a colon (`:`). ([#8098](https://github.com/wazuh/wazuh/pull/8098) [#8143](https://github.com/wazuh/wazuh/pull/8143)) - Fixed a starving hazard in Wazuh DB that might stall incoming requests during the database commitment. ([#8151](https://github.com/wazuh/wazuh/pull/8151)) - Fixed a race condition in Remoted that might make it crash when closing RID files. ([#8224](https://github.com/wazuh/wazuh/pull/8224)) - Fixed a descriptor leak in the agent when failed to connect to Authd. ([#8789](https://github.com/wazuh/wazuh/pull/8789)) - Fixed a potential error when starting the manager due to a delay in the creation of Analysisd PID file. ([#8828](https://github.com/wazuh/wazuh/pull/8828)) - Fixed an invalid memory access hazard in Vulnerability Detector. ([#8551](https://github.com/wazuh/wazuh/pull/8551)) - Fixed an error in the FIM decoder at the manager when the agent reports a file with an empty ACE list. ([#8571](https://github.com/wazuh/wazuh/pull/8571)) - Prevented the agent on macOS from getting corrupted after an operating system upgrade. ([#8620](https://github.com/wazuh/wazuh/pull/8620)) - Fixed an error in the manager that could not check its configuration after a change by the API when Active response is disabled. ([#8357](https://github.com/wazuh/wazuh/pull/8357)) - Fixed a problem in the manager that left remote counter and agent group files when removing an agent. ([#8630](https://github.com/wazuh/wazuh/pull/8630)) - Fixed an error in the agent on Windows that could corrupt the internal FIM databas due to disabling the disk sync. ([#8905](https://github.com/wazuh/wazuh/pull/8905)) - Fixed a crash in Logcollector on Windows when handling the position of the file. ([#9364](https://github.com/wazuh/wazuh/pull/9364)) - Fixed a buffer underflow hazard in Remoted when handling input messages. ([#9285](https://github.com/wazuh/wazuh/pull/9285)) - Fixed a bug in the agent that tried to verify the WPK CA certificate even when verification was disabled. ([#9547](https://github.com/wazuh/wazuh/pull/9547)) - **API:** - Fixed wrong API messages returned when getting agents' upgrade results. ([#7587](https://github.com/wazuh/wazuh/pull/7587)) - Fixed wrong `user` string in API logs when receiving responses with status codes 308 or 404. ([#7709](https://github.com/wazuh/wazuh/pull/7709)) - Fixed API errors when cluster is disabled and node_type is worker. ([#7867](https://github.com/wazuh/wazuh/pull/7867)) - Fixed redundant paths and duplicated tests in API integration test mapping script. ([#7798](https://github.com/wazuh/wazuh/pull/7798)) - Fixed an API integration test case failing in test_rbac_white_all and added a test case for the enable/disable run_as endpoint.([8014](https://github.com/wazuh/wazuh/pull/8014)) - Fixed a thread race condition when adding or deleting agents without authd ([8148](https://github.com/wazuh/wazuh/pull/8148)) - Fixed CORS in API configuration. ([#8496](https://github.com/wazuh/wazuh/pull/8496)) - Fixed api.log to avoid unhandled exceptions on API timeouts. ([#8887](https://github.com/wazuh/wazuh/pull/8887)) - **Ruleset:** - Fixed usb-storage-attached regex pattern to support blank spaces. ([#7837](https://github.com/wazuh/wazuh/issues/7837)) - Fixed SCA checks for RHEL7 and CentOS 7. Thanks to J. Daniel Medeiros (@jdmedeiros). ([#7645](https://github.com/wazuh/wazuh/pull/7645)) - Fixed the match criteria of the AWS WAF rules. ([#8111](https://github.com/wazuh/wazuh/pull/8111)) ### Removed - **Core:** - File /etc/ossec-init.conf does not exist anymore. ([#7175](https://github.com/wazuh/wazuh/pull/7175)) - Unused files have been removed from the repository, including TAP tests. ([#7398](https://github.com/wazuh/wazuh/issues/7398)) - **API:** - Removed the `allow_run_as` parameter from endpoints `POST /security/users` and `PUT /security/users/{user_id}`. ([#7588](https://github.com/wazuh/wazuh/pull/7588)) - Removed `behind_proxy_server` option from configuration. ([#7006](https://github.com/wazuh/wazuh/issues/7006)) - **Framework:** - Deprecated `update_ruleset` script. ([#6904](https://github.com/wazuh/wazuh/issues/6904)) 2021-08-25T18:14:22+00:00 rita v4.4.0 rita v4.4.0 2021-08-25T20:00:50+00:00 Changes: - Add timestamp to HTML report templates (#662) - Use the past 24 hours of data to analyze proxy beacons rather than just the last hour (#690) - The RITA parser has been updated with a number of performance tweaks (#654, #695) - Gather IPs for FQDN beacon analysis using DNS lookups from the past 24 hours of data rather than just the last hour (#676, #700) - Drop stobe limit down to 86400 (#697) - Add option to configuration file which filters out connections from external hosts to internal hosts (#655) Bug Fixes: - Add unique indexes to `beaconFQDN` and `beaconProxy` collections (#689) - Add additional indexes to `host` collection (#687) - Prevented duplicate threat intel records from being created in the `host` collection (#683) - Fixed a bug where threat intel records in the `host` collection were not being updated when using rolling imports (#683) - Fixed a bug where the max beacon score listed in the `host` collection for a pair of hosts would never decrease when using rolling imports (#683) - Fixed a bug where rare signature entries might not be added to the `host` collection due to a race condition (#683) - Fixed a bug where the connection counts for each host in the `host` collection were under-counted when using rolling imports (#683) - Removed unused/ broken code in max duration analysis (#683) 2021-08-25T20:00:50+00:00 json v3.10.2 json v3.10.2 2021-08-26T07:09:36+00:00 Release date: 2021-08-26 SHA-256: 059743e48b37e41579ee3a92e82e984bfa0d2a9a2b20b175d04db8089f46f047 (json.hpp), 61e605be15e88deeac4582aaf01c09d616f8302edde7adcaba9261ddc3b4ceca (include.zip) ### Summary This release is made days after the 3.10.1 release due to a bug in the release script: The [3.10.1 release](https://github.com/nlohmann/json/releases/tag/v3.10.1) at GitHub contained the correct files, but the associated tag [v3.10.1](https://github.com/nlohmann/json/tree/v3.10.1) points to the wrong commit. This release is made with a fixed build script. All changes are backward-compatible. :moneybag: Note you can **support this project** via [GitHub sponsors](https://github.com/sponsors/nlohmann) or [PayPal](http://paypal.me/nlohmann). ### :zap: Improvements - Fix the release scripts to correctly tag releases. #2973 - Fix some `-Wunused` warnings on `JSON_DIAGNOSTICS` when the library is built without CMake. #2975 #2976 ### :fire: Deprecated functions Passing iterator pairs or pointer/length pairs to parsing functions (`basic_json::parse`, `basic_json::accept`, `basic_json::sax_parse`, `basic_json::from_cbor`, `basic_json::from_msgpack`, `basic_json::from_ubjson`, `basic_json::from_bson`) via initializer lists is deprecated. Instead, pass two iterators; for instance, call `basic_json::from_cbor(ptr, ptr+len)` instead of `basic_json::from_cbor({ptr, len})`. The following functions have been deprecated in earlier versions and will be removed in the next major version (i.e., 4.0.0): - Function [`iterator_wrapper`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a0a8051760196ac813fd5eb3c8d5a2976.html#a0a8051760196ac813fd5eb3c8d5a2976) are deprecated. Please use the member function [`items()`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a5961446010dfc494e0c247b4e9026977.html#a5961446010dfc494e0c247b4e9026977) instead. - Functions [`friend std::istream& operator<<(basic_json&, std::istream&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a60ca396028b8d9714c6e10efbf475af6.html#a60ca396028b8d9714c6e10efbf475af6) and [`friend std::ostream& operator>>(const basic_json&, std::ostream&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a34d6a60dd99e9f33b8273a1c8db5669b.html#a34d6a60dd99e9f33b8273a1c8db5669b) are deprecated. Please use [`friend std::istream& operator>>(std::istream&, basic_json&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_aaf363408931d76472ded14017e59c9e8.html#aaf363408931d76472ded14017e59c9e8) and [`friend operator<<(std::ostream&, const basic_json&)`](https://nlohmann.github.io/json/doxygen/classnlohmann_1_1basic__json_a5e34c5435e557d0bf666bd7311211405.html#a5e34c5435e557d0bf666bd7311211405) instead. All deprecations are annotated with [`HEDLEY_DEPRECATED_FOR`](https://nemequ.github.io/hedley/api-reference.html#HEDLEY_DEPRECATED_FOR) to report which function to use instead. 2021-08-26T07:09:36+00:00 mattermost-server v5.37.2 mattermost-server v5.37.2 2021-08-26T15:33:08+00:00 Mattermost Platform Release v5.37.2 2021-08-26T15:33:08+00:00 CyberChef v9.32.2 CyberChef v9.32.2 2021-08-26T15:59:25+00:00 See the [CHANGELOG](https://github.com/gchq/CyberChef/blob/master/CHANGELOG.md) and [commit messages](https://github.com/gchq/CyberChef/commits/master) for details. 2021-08-26T15:59:25+00:00 mattermost-server v5.38.2 mattermost-server v5.38.2 2021-08-26T16:09:22+00:00 Mattermost Platform Release v5.38.2 2021-08-26T16:09:22+00:00 osquery 5.0.0 osquery 5.0.0 2021-08-26T18:25:13+00:00 Initial draft of the 5.0. This release may be deleted! 2021-08-26T18:25:13+00:00 uBlock 1.37.3b19 uBlock 1.37.3b19 2021-08-26T22:38:38+00:00 2021-08-26T22:38:38+00:00 turbinia 20210826 turbinia 20210826 2021-08-27T04:38:03+00:00 2021-08-27T04:38:03+00:00 ida_ifl v1.4.2.2 ida_ifl v1.4.2.2 2021-08-27T05:04:05+00:00 IFL v1.4.x - for IDA 7.x (SDK version >= 7.4) using Python 3 Small fixes 2021-08-27T05:04:05+00:00 edk2 edk2-stable202108 edk2 edk2-stable202108 2021-08-27T07:03:54+00:00 # Release Date 2021-08-27 ## New Features * [OvmfPkg: remove Xen support from OvmfPkg*.dsc, in favor of OvmfXen.dsc](https://bugzilla.tianocore.org/show_bug.cgi?id=2122) * [Add CLANGDWARF toolchain for generating ELF+DWARF](https://bugzilla.tianocore.org/show_bug.cgi?id=3431) * [NetworkPkg/IScsiDxe: remotely exploitable buffer overflows](https://bugzilla.tianocore.org/show_bug.cgi?id=3356) * [NetworkPkg/IScsiDxe: add sha256 support to CHAP](https://bugzilla.tianocore.org/show_bug.cgi?id=3355) * [Create header files and multiple Hobs for Universal Payload](https://bugzilla.tianocore.org/show_bug.cgi?id=3447) * [Add search feature in config editor](https://bugzilla.tianocore.org/show_bug.cgi?id=3482) * [Add additional build option to treat Dynamic Pcd as DynamicEx Pcd](https://bugzilla.tianocore.org/show_bug.cgi?id=1688) * [Add a new MicrocodeLib for microcode loading](https://bugzilla.tianocore.org/show_bug.cgi?id=3303) * [Implement key enrolment from default key variables](https://bugzilla.tianocore.org/show_bug.cgi?id=3481) * [StandaloneMm support for 32bit Arm machines](https://bugzilla.tianocore.org/show_bug.cgi?id=3381) * [Add firmware support for Cloud Hypervisor on arm64](https://bugzilla.tianocore.org/show_bug.cgi?id=3393) * [Support architecture-specific openssl acceleration](https://bugzilla.tianocore.org/show_bug.cgi?id=2507) * [Support measured AMD SEV boot with kernel/initrd/cmdline](https://bugzilla.tianocore.org/show_bug.cgi?id=3457) * [Add ACPI 6.4 header](https://bugzilla.tianocore.org/show_bug.cgi?id=3516) * [Add new BootDiscoveryPolicyUiLib](https://bugzilla.tianocore.org/show_bug.cgi?id=3551) ## [Bugzilla List](https://bugzilla.tianocore.org/buglist.cgi?bug_status=RESOLVED&chfield=bug_status&chfieldfrom=2021-05-28&chfieldto=2021-08-27&chfieldvalue=RESOLVED&component=Code&component=Security%20Issue&component=Tools&list_id=16128&product=EDK2&product=Tianocore%20Feature%20Requests&product=Tianocore%20Security%20Issues&query_format=advanced&resolution=---&resolution=FIXED&resolution=INVALID&resolution=WONTFIX&resolution=DUPLICATE&resolution=WORKSFORME) 2021-08-27T07:03:54+00:00 TheHive 4.1.10 TheHive 4.1.10 2021-08-27T08:05:02+00:00 ## [4.1.10](https://github.com/TheHive-Project/TheHive/milestone/79) (2021-08-26) **Fixed bugs:** - [Bug] Reload last case number from database periodically [\#2182](https://github.com/TheHive-Project/TheHive/issues/2182) 2021-08-27T08:05:02+00:00 tidb v5.2.0 tidb v5.2.0 2021-08-27T10:32:09+00:00 ## Improvements * Support pushing down the built-in function `json_unquote()` to TiKV [#24415](https://github.com/pingcap/tidb/issues/24415) * Support removing the `union` branch from the dual table [#25614](https://github.com/pingcap/tidb/pull/25614) * Optimize the aggregate operator's cost factor [#25241](https://github.com/pingcap/tidb/pull/25241) * Allow the MPP outer join to choose the build table based on the table row count [#25142](https://github.com/pingcap/tidb/pull/25142) * Support balancing the MPP query workload among different TiFlash nodes based on Regions [#24724](https://github.com/pingcap/tidb/pull/24724) * Support invalidating stale Regions in the cache after the MPP query is executed [#24432](https://github.com/pingcap/tidb/pull/24432) * Improve the MySQL compatibility of the built-in function`str_to_date` for the format specifiers `%b/%M/%r/%T` [#25767](https://github.com/pingcap/tidb/pull/25767) * Fix the issue that inconsistent binding caches might be created in multiple TiDB after recreating different bindings for the same query [#26015](https://github.com/pingcap/tidb/pull/26015) * Fix the issue that the existing bindings cannot be loaded into cache after upgrade [#23295](https://github.com/pingcap/tidb/pull/23295) * Support ordering the result of `SHOW BINDINGS` by (`original_sql`, `update_time`) [#26139](https://github.com/pingcap/tidb/pull/26139) * Improve the logic of query optimization when bindings exist, and reduce optimization times of a query [#26141](https://github.com/pingcap/tidb/pull/26141) * Support completing the garbage collection automatically for the bindings in the "deleted" status [#26206](https://github.com/pingcap/tidb/pull/26206) * Support showing whether a binding is used for query optimization in the result of `EXPLAIN VERBOSE` [#26930](https://github.com/pingcap/tidb/pull/26930) * Add a new status variation `last_plan_binding_update_time` to view the timestamp corresponding to the binding cache in the current TiDB instance [#26340](https://github.com/pingcap/tidb/pull/26340) * Support reporting an error when starting binding evolution or running `admin evolve bindings` to ban the baseline evolution (currently disabled in the on-premises TiDB version because it is an experimental feature) affecting other features [#26333](https://github.com/pingcap/tidb/pull/26333) ## Bug Fixes * Fix the issue that an incorrect result is returned when using merge join on the `SET` type column [#25669](https://github.com/pingcap/tidb/issues/25669) * Fix the data corruption issue in the `IN` expression's arguments [#25591](https://github.com/pingcap/tidb/issues/25591) * Avoid the sessions of GC being affected by global variables [#24976](https://github.com/pingcap/tidb/issues/24976) * Fix the panic issue that occurs when using `limit` in the window function queries [#25344](https://github.com/pingcap/tidb/issues/25344) * Fix the wrong value returned when querying a partitioned table using `Limit` [#24636](https://github.com/pingcap/tidb/issues/24636) * Fix the issue that `IFNULL` does not correctly take effect on the `ENUM` or `SET` type column [#24944](https://github.com/pingcap/tidb/issues/24944) * Fix the wrong results caused by changing the `count` in the join subqueries to `first_row` [#24865](https://github.com/pingcap/tidb/issues/24865) * Fix the query hang issue that occurs when `ParallelApply` is used under the `TopN` operator [#24930](https://github.com/pingcap/tidb/issues/24930) * Fix the issue that more results than expected are returned when executing SQL statements using multi-column prefix indexes [#24356](https://github.com/pingcap/tidb/issues/24356) * Fix the issue that the `<=>` operator cannot correctly take effect [#24477](https://github.com/pingcap/tidb/issues/24477) * Fix the data race issue of the parallel `Apply` operator [#23280](https://github.com/pingcap/tidb/issues/23280) * Fix the issue that the `index out of range` error is reported when sorting the IndexMerge results of the PartitionUnion operator [#23919](https://github.com/pingcap/tidb/issues/23919) * Fix the issue that setting the `tidb_snapshot` variable to an unexpectedly large value might damage the transaction isolation [#25680](https://github.com/pingcap/tidb/issues/25680) * Fix the issue that the ODBC-styled constant (for example, `{d '2020-01-01'}`) cannot be used as the expression [#25531](https://github.com/pingcap/tidb/issues/25531) * Fix the issue that `SELECT DISTINCT` converted to `Batch Get` causes incorrect results [#25320](https://github.com/pingcap/tidb/issues/25320) * Fix the issue that backing off queries from TiFlash to TiKV cannot be triggered [#23665](https://github.com/pingcap/tidb/issues/23665) [#24421](https://github.com/pingcap/tidb/issues/24421) * Fix the `index-out-of-range` error that occurs when checking `only_full_group_by` [#23839](https://github.com/pingcap/tidb/issues/23839)) * Fix the issue that the result of index join in correlated subqueries is wrong [#25799](https://github.com/pingcap/tidb/issues/25799) 2021-08-27T10:32:09+00:00 uBlock 1.37.3b20 uBlock 1.37.3b20 2021-08-27T14:58:02+00:00 [Commits to master since this release](https://github.com/gorhill/uBlock/compare/1.37.3b20...master) To install the developer build: - **Firefox**: Click [uBlock0_1.37.3b20.firefox.signed.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b20/uBlock0_1.37.3b20.firefox.signed.xpi). - [uBO works best on Firefox](https://github.com/gorhill/uBlock/wiki/uBlock-Origin-works-best-on-Firefox). - **Chromium**: Install from the Chrome Web Store (CWS): <https://chrome.google.com/webstore/detail/ublock-origin-dev-build/cgbcahbpdhpcegmbfconppldiemgcoii>. - **Thunderbird**: Download [uBlock0_1.37.3b20.thunderbird.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b20/uBlock0_1.37.3b20.thunderbird.xpi), then drag-n-drop it into Thunderbird's _Add-ons Manager_ pane (Thunderbird 78+ required) - **NodeJS**: Import from [npm](https://www.npmjs.com/package/@gorhill/ubo-core), or download and unzip [uBlock0_1.37.3b20.npm.tgz](https://github.com/gorhill/uBlock/releases/download/1.37.3b20/uBlock0_1.37.3b20.npm.tgz). --- ## New ### :matches-path(...) New cosmetic procedural operator, `:matches-path(...)`. See ["Add $path modifier of Adguard or any equivalents of this"](https://github.com/uBlockOrigin/uBlock-issues/issues/1690). ### Node.js A new NodeJS package will now published with every release. The package allows to import and use uBO's static and dynamic filtering engines into NodeJS. This is currently minimal and a first iteration, and issues regarding the NodeJS package are accepted in order to improve usability of uBO's filtering engines in a NodeJS package. The ability to run code from a NodeJS package also opens the door to have [test coverage](https://en.wikipedia.org/wiki/Code_coverage) in uBO. For now the package can be downloaded and unzipped locally. Once installed, you can execute `node test` in the root of the package to verify that the static network filtering engine works properly. For usage, refer to the [`test.js`](https://github.com/gorhill/uBlock/blob/master/platform/nodejs/test.js), or [`ublock.js`](https://github.com/cliqz-oss/adblocker/blob/master/packages/adblocker-benchmarks/blockers/ublock.js) used in Cliqz's benchmark. Since I have little experience with dealing with NodeJS environment/packages, thanks to @mjethani [for assistance](https://github.com/uBlockOrigin/uBlock-issues/issues/1664). ## Closed as fixed: - [Scriptlets don't work randomly in Firefox](https://github.com/uBlockOrigin/uBlock-issues/issues/1694) - [Security: comments can be used to smuggle url() functions into css values](https://github.com/uBlockOrigin/uBlock-issues/issues/1693) - [Prevent uBO from hiding html or body when matched by a generic cosmetic filter](https://github.com/uBlockOrigin/uBlock-issues/issues/1692) - [On Android Popup Overlays [or Underlays] On-Screen Navigation Buttons](https://github.com/uBlockOrigin/uBlock-issues/issues/1691) - [Add $path modifier of Adguard or any equivalents of this](https://github.com/uBlockOrigin/uBlock-issues/issues/1690) - [The overview panel will not show everything if the uBO's icon is placed in the Firefox overflow menu](https://github.com/uBlockOrigin/uBlock-issues/issues/1604) - [patch by @vtriolet] [TypeError in noscript-spoof scriptlet with invalid meta refresh URL](https://github.com/uBlockOrigin/uBlock-issues/issues/1676) - [TypeError when trying to use element picker on plaintext resource](https://github.com/uBlockOrigin/uBlock-issues/issues/1675) - [Split out core functionality into separate module](https://github.com/uBlockOrigin/uBlock-issues/issues/1664) - This is of course an ongoing work for the foreseeable future, but the concrete goal sought in the issue has been reached, i.e. the static network filtering engine can be used as a nodejs module with no external dependencies. - Since uBO's codebase now uses [JS modules](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Modules), the minimum version of supported browsers has been increased to Chromium 61, Firefox 60, and Opera 48. ## Notable commits without en entry in the issue tracker - [Refactor hntrie to avoid the need for boundary cells](https://github.com/gorhill/uBlock/commit/c6fb70b1f0acb1003b516ceb678df27f6657b4f8) - [Fix bad test in WASM version of HNTrieContainer](https://github.com/gorhill/uBlock/commit/b54bf554a80c8640fb8c8064eeea48576974b0c2) - [Export the rule-based filtering engines to the nodejs package](https://github.com/gorhill/uBlock/commit/89c5653bc60d0a457358d6e862c8574bfc819675) - [Rewrite logical expressions for ESLint](https://github.com/gorhill/uBlock/commit/6ef74fc21ba87717330de12cfade8d1e65c702d5) - [patch by @mjethani] [Add Makefile](https://github.com/gorhill/uBlock/pull/3789) - [patch by @mjethani] [Make uAssets a submodule](https://github.com/gorhill/uBlock/commit/63591ef2aa818bced3dc5d7bd0bbb1c397e44e2f) - [Ensure compiled sections are ordered in ascending id](https://github.com/gorhill/uBlock/commit/c25938f5bcb519ee945c9ccab7d17474474dc825) - [Fix handling of some procedural cosmetic filters with explicit `:scope`](https://github.com/gorhill/uBlock/commit/51d14de44a2b89274836e70daabf305f4f00ac47) 2021-08-27T14:58:02+00:00 chipsec 1.7.1 chipsec 1.7.1 2021-08-27T16:22:33+00:00 __New or Updated Modules/UtilCmds:__ * `common.memlock` - Add usage documentation * `common.remap` - Add usage documentation * `common.smm` - Add usage documentation * `common.uefi.access_uefispec` - Add & update usage documentation * `common.uefi.s3bootscript` - Add & update usage documentation __New or Updated Configurations:__ * `8086/apl` - Add fixed address to PWMRBASE * `8086/ivt` - Fix MMCFG definition * `8086/jkt` - Fix MMCFG definition __Removed Modules:__ * None __Additional Changes:__ * `.github/workflows/tests.yml` - Update to support the move to python3 * `chipset` - Warn about missing debug logs in init function in comment * `debian/control` - Update to support the move to python3 * `hal.uefi_search` - Convert regexp rule to bytes * `helper.oshelper` - Warn and force user to interact if running python2 in an OS * `helper.win.win32helper` - Hide by default handled windows exceptions, Align win32helper.py MMIO reg debug text * Remove exception definitions from individual files and co-located them in `chipsec.exceptions` * Remove `#!/usr/bin/python` from the top of python files that were not entry points. * Update `#!` to `#!/usr/bin/env python3` for entry points: * chipsec_main.py, chipsec_util.py, setup.py, __Additional Notes:__ * __For Windows, Linux and MacOS: Python2 support has been deprecated as of June 2020. Please use Python3.__ * Any modules under the `modules.tools` directory have not yet been fully validated to work with Python3. __New Module Details:__ Module Name | Supported Platforms | Flags :---: | :---: | :---: 2021-08-27T16:22:33+00:00 SecLists 2021.3 SecLists 2021.3 2021-08-27T20:26:39+00:00 Third release of 2021! 🎉 This release includes multiple updates from the community 🎉 2021-08-27T20:26:39+00:00 node_redis v4.0.0-rc.0 node_redis v4.0.0-rc.0 2021-08-27T20:48:23+00:00 This version is a major change and refactor, adding modern JavaScript capabilities and multiple breaking changes. See the [migration guide](./docs/v3-to-v4.md) for tips on how to upgrade. ### Breaking Changes - All functions return Promises by default - Dropped support for Node.js 10.x, the minimum supported Node.js version is now 12.x - `createClient` takes new and different arguments - The `prefix`, `rename_commands` configuration options to `createClient` have been removed - Login credentials are no longer saved when using `.auth()` directly ### Features - Added support for Promises - Added built-in TypeScript declaration files enabling code completion - Added support for [clustering](./README.md#cluster) - Added idiomatic arguments and responses to [Redis commands](./README.md#redis-commands) - Added full support for [Lua Scripts](./README.md#lua-scripts) - Added support for [SCAN iterators](./README.md#scan-iterator) - Added the ability to extend Node Redis with Redis Module commands 2021-08-27T20:48:23+00:00 AIL-framework v3.7 AIL-framework v3.7 2021-08-27T21:09:10+00:00 AIL Framework version 3.7 released with many bugs fixed and improvement. The term tracker has been improved including the first_seen and last_seen. Various bugs were fixed and documentation improved. Thanks to all the contributors and especially Tony Jabbour for the new CentOS installation documentation. Thanks to Relega for the improved documentation about the pystemon integration. And a huge thank to @Fbroy for the new feeders: [Discord](https://github.com/ail-project/ail-feeder-discord), [ActivityPub feeder](https://github.com/ail-project/ail-feeder-activity-pub) and [RSS/Atom feeder](https://github.com/ail-project/ail-feeder-atom-rss). There is an ongoing feeder to include AIL2AIL synchronisation and a [first draft of the message format](https://github.com/ail-project/ail-exchange-format/blob/main/ail-stream.md) has been proposed. Feedback is more than welcome. ![ail-bitcoin](https://user-images.githubusercontent.com/3309/131188566-4b345df9-8c93-48fd-9ab9-7e03e0e9e6bb.png) # v3.7 (2021-08-27) ### Changes * [tracker + update] add update v3.7 + add map item_id:tracker_uuid (data retention) + fix tracker first_seen/last_seen. [Terrtia] * [tracker] typo fixed. [Alexandre Dulaunoy] * [Credential + tags] add misp-taxonomies submodule + fix typo. [Terrtia] * [gitchangelog.rc] updated to output Markdown. [Alexandre Dulaunoy] ### Fix * [tracker] global tracker list: fix first/last seen. [Terrtia] * [v3.7] add missing file. [Terrtia] * [trackers] items by daterange. [Terrtia] * [correlation graph] fix legend, remove icon text. [Terrtia] * [Credential] fix moduleStats. [Terrtia] * [Credemtial module] fix stats. [Terrtia] * [Yara + regex trackers] remove tests. [Terrtia] * [Decoder] log level. [Terrtia] * [abstract_modules + Global] log message on error + fix Global exception on invalid gzip. [Terrtia] * [Credential] fix old funct call. [Terrtia] * [UI Item submit] tags input: avoid browser and password managers autocomplete. [Terrtia] * [term tracker] typo. [Terrtia] ### Other * Merge branch 'master' of github.com:ail-project/ail-framework. [Terrtia] * Merge branch 'master' of github.com:ail-project/ail-framework. [Terrtia] * Merge pull request #123 from TonyJabbour/master. [Alexandre Dulaunoy] CentOS 8 installation script Fixed a problem * CentOS 8 installation script Fixed a problem Added centos installation guide in README.md. [Tony Jabbour] * Merge branch 'master' of github.com:ail-project/ail-framework. [Terrtia] * Merge pull request #122 from TonyJabbour/master. [Alexandre Dulaunoy] Added CentOS 8 installation script * Added CentOS 8 installation script. [Tony Jabbour] * Merge branch 'master' of github.com:ail-project/ail-framework. [Terrtia] * Merge pull request #119 from Relega/patch-1. [Alexandre Dulaunoy] Update HOWTO.md * Update HOWTO.md. [Relega] * replaced pystemon url (from circl repository to the original repository) * refined pystemon instructions 2021-08-27T21:09:10+00:00 seaweedfs 2.65 seaweedfs 2.65 2021-08-28T12:28:16+00:00 * [Cloud Drive](https://github.com/chrislusf/seaweedfs/wiki/Cloud-Drive-Architecture) cache and sync cloud data to local SeaweedFS cluster * Supports Azure * Supports BackBlaze * Supports Aliyun * Supports Tencent * Supports Wasabi * Distributed parallel downloading. * Mount * Invalidate mount meta cache #2289 2021-08-28T12:28:16+00:00 gopass v1.12.8 gopass v1.12.8 2021-08-28T14:30:32+00:00 ## 1.12.8 / 2021-08-28 * [BUGFIX] Use same default for partial config files (#1968) * [CLEANUP] Remove GOPASS_NOCOLOR in favor of NO_COLOR (#1937, #1936) * [ENHACNEMENT] Add gopass merge (#1979, #1948) * [ENHANCEMENT] Add --symbols to gopass pwgen (#1966) * [ENHANCEMENT] Warn on untracked files (#1972) 2021-08-28T14:30:32+00:00 SecLists 2021.3.1 SecLists 2021.3.1 2021-08-28T21:35:53+00:00 Third release of 2021! 🎉 This release includes multiple updates from the community 🎉 2021-08-28T21:35:53+00:00 SmallerC v1.0.0+dos.win.2a18041 SmallerC v1.0.0+dos.win.2a18041 2021-08-29T00:56:38+00:00 This release includes: * DOS binaries: regular (under ```bind```) and DPMI (under ```bindp```). * Windows binaries (under ```binw```). They need to be assembled from parts (with the ```copy /b``` command, see ```binw/readme.txt``` for details). The reason being false positives in antivirus software, which may hinder downloading the pre-compiled Windows binaries. * CWSDPMI r5 dependency for the DOS DPMI binaries. * Include and library files (under ```include``` and ```lib``` respectively). * Test programs (under ```tests```). This release doesn't include: * The compiler sources. * NASM (you'll need version 2.03 or later). * Binaries for Linux and MacOS. Installation: * Create a directory as close as possible to the disk root, e.g. ```C:\SMLRC```. * Unpack the contents of the archive there. * Set your ```PATH``` environment variable to point to ```C:\SMLRC\BIND``` or ```C:\SMLRC\BINDP``` or ```C:\SMLRC\BINW```, as appropriate. * Make ```NASM.EXE``` (you'll need version 2.03 or later) available through the ```PATH``` environment variable as well. 2021-08-29T00:56:38+00:00 hashcat v6.2.4 hashcat v6.2.4 2021-08-29T15:27:37+00:00 Welcome to hashcat 6.2.4 release! This release adds performance improvements, a new rule-engine function, several new hash-modes, and bug fixes. This is a minor release. If you are looking for release notes please refer to docs/changes.txt. 2021-08-29T15:27:37+00:00 wire-server v2021-08-27 wire-server v2021-08-27 2021-08-30T07:58:44+00:00 ## Release Notes ## API Changes * Deprecate `DELETE /conversations/:cnv/members/:usr` (#1697) * Add `DELETE /conversations/:cnv/members/:domain/:usr` (#1697) ## Features ## Bug fixes and other updates * Fix case sensitivity in schema parser in hscim library (#1714) * [helm charts] resolve a rate-limiting issue when using certificate-manager alongside wire-server and nginx-ingress-services helm charts (#1715) ## Documentation * Improve Swagger for `DELETE /conversations/:cnv/members/:usr` (#1697) ## Internal changes * Integration test script now displays output interactively (#1700) * Fixed a few issues with error response documentation in Swagger (#1707) * Make mapping between (team) permissions and roles more lenient (#1711) * The `DELETE /conversations/:cnv/members/:usr` endpoint rewritten to Servant (#1697) * Remove leftover auto-connect internal endpoint and code (#1716) * Bump wire-webapp (#1720) * Bump team-settings (#1721) * Bump account-pages (#1666) ## Federation changes * Added client certificate support for server to server authentication (#1682) * Implemented full server-to-server authentication (#1687) * Add an endpoint for removing a qualified user from a local conversation (#1697) 2021-08-30T07:58:44+00:00 Lookyloo v1.8.0 Lookyloo v1.8.0 2021-08-30T13:34:31+00:00 **New Features**: * Integration with [urlscan.io](https://urlscan.io) - [Documentation](https://www.lookyloo.eu/docs/main/lookyloo-integration.html#_urlscan_io) * Trigger a capture from the URL - https://github.com/Lookyloo/lookyloo/issues/248 * Archiving: the captures more than 6 month old ([configurable](https://www.lookyloo.eu/docs/main/lookyloo-configuration.html#_core_config)) are moved to an archive directory so they're not listed on the index anymore, but the captures can still be accessed by UUID (doesn't break permanent URLs) * Index file by directory for each captures (archived or not). Greatly reduces the I/O when initializing the known captures in redis. **Fixes**: * Missing 3rd party web dependencies in docker (thanks to @FafnerKeyZee) **Changes** - This release is implementing a lot of back end changes : * The captures are now stored a by year and month (instead of in a single directory) to avoid having too many entries in the same directory (ext4 dislikes it). All the new captures are following this new architecture, but you need to run `tools/change_captures_dir.py` to move the existing ones to the new format (only useful if you feel restarting the app takes too much time) * Move all the capture-related code from `Lookyloo` to `AsyncCapture` * Move all the services management code to abstractmanager * Use redis pooling to manage connections to the database in `Lookyloo` and `Indexing` * New process to trigger occasional actions, currently: generate the daily user-agent file if Lookyloo is using the UAs of its own users. * Reinitialize the list of captures UUIDs when starting the app instead of the in website itself * Improvements in processes handling (TL;DR: don't stop redis until all the async captures processes are down) * Move some methods from `Lookyloo` to the helpers * Simplify code in `Lookyloo` to make it more readable, remove dead code. * Bump dependencies, add `hiredis` to speed up redis interactions * Return proper HTTP error codes (mostly 4XX), when appropriate 2021-08-30T13:34:31+00:00 netbox v3.0.0 netbox v3.0.0 2021-08-30T18:48:11+00:00 **WARNING:** Upgrading an existing NetBox deployment to version 3.0 **must** be done from version 2.11.0 or later. If attempting to upgrade a deployment of NetBox v2.10 or earlier, first upgrade to a NetBox v2.11 release, and then upgrade from v2.11 to v3.0. This will avoid any problems with the database migration optimizations implemented in version 3.0. (This is not necessary for _new_ installations.) ### Breaking Changes * Python 3.6 is no longer supported. NetBox v3.0 supports Python 3.7, 3.8, and 3.9. * The secrets functionality present in prior releases of NetBox has been removed. The NetBox maintainers strongly recommend the adoption of [Hashicorp Vault](https://github.com/hashicorp/vault) in place of this feature. Development of a NetBox plugin to replace the legacy secrets functionality is also underway. * The default CSV export format for all objects now includes all available data from the object list. Additionally, the CSV headers now use human-friendly titles rather than raw field names. If backward compatibility with the old format is desired, export templates can be written to reproduce it. * The `invalidate` management command (which clears cached database queries) is no longer needed and has been removed (see [#6639](https://github.com/netbox-community/netbox/issues/6639)). * Support for queryset caching configuration (`caching_config`) has been removed from the plugins API (see [#6639](https://github.com/netbox-community/netbox/issues/6639)). * The `cacheops_*` metrics have been removed from the Prometheus exporter (see [#6639](https://github.com/netbox-community/netbox/issues/6639)). * The `display_field` keyword argument has been removed from custom script ObjectVar and MultiObjectVar fields. These widgets will use the `display` value provided by the REST API. * The deprecated `display_name` field has been removed from all REST API serializers. (API clients should reference the `display` field instead.) * The redundant REST API endpoints for console, power, and interface connections have been removed. The same data can be retrieved by querying the respective model endpoints with the `?connected=True` filter applied. ### New Features #### Updated User Interface ([#5893](https://github.com/netbox-community/netbox/issues/5893)) The NetBox user interface has been completely overhauled with a fresh new look! Beyond the cosmetic improvements, this initiative has allowed us to modernize the entire front end, upgrading from Bootstrap 3 to Bootstrap 5, and eliminating dependencies on outdated libraries such as jQuery and jQuery-UI. The new user interface also features a dark mode option. A huge thank you to NetBox maintainer [Matt Love](https://github.com/thatmattlove) for his tremendous work on this! #### GraphQL API ([#2007](https://github.com/netbox-community/netbox/issues/2007)) A new [GraphQL API](https://graphql.org/) has been added to complement NetBox's REST API. GraphQL allows the client to specify which fields of the available data to return in each request. NetBox's implementation, which employs [Graphene](https://graphene-python.org/), also includes a user-friendly query interface known as GraphiQL. Here's an example GraphQL request: ``` { circuit_list { cid provider { name } termination_a { id } termination_z { id } } } ``` And the response: ``` { "data": { "circuit_list": [ { "cid": "1002840283", "provider": { "name": "CenturyLink" }, "termination_a": null, "termination_z": { "id": "23" } }, ... ``` All GraphQL requests are made at the `/graphql` URL (which also serves the GraphiQL UI). The API is currently read-only, however users who wish to disable it until needed can do so by setting the `GRAPHQL_ENABLED` configuration parameter to False. For more detail on NetBox's GraphQL implementation, see [the GraphQL API documentation](https://netbox.readthedocs.io/en/stable/graphql-api/overview/). #### IP Ranges ([#834](https://github.com/netbox-community/netbox/issues/834)) NetBox now supports modeling arbitrary IP ranges, which are defined by specifying a starting and ending IP address (e.g. to denote DHCP pools). Similar to prefixes, each IP range may optionally be assigned to a VRF and/or tenant, and can be assigned a functional role. An IP range must be assigned a status of active, reserved, or deprecated. The REST API implementation for this model also includes an "available IPs" endpoint which functions similarly to the endpoint for prefixes. More information about IP ranges is available [in the documentation](https://netbox.readthedocs.io/en/stable/core-functionality/ipam/#ip-ranges). #### Custom Model Validation ([#5963](https://github.com/netbox-community/netbox/issues/5963)) This release introduces the [`CUSTOM_VALIDATORS`](https://netbox.readthedocs.io/en/stable/configuration/optional-settings/#custom_validators) configuration parameter, which allows administrators to map NetBox models to custom validator classes to enforce custom validation logic. For example, the following configuration requires every site to have a name of at least ten characters and a description: ```python from extras.validators import CustomValidator CUSTOM_VALIDATORS = { 'dcim.site': ( CustomValidator({ 'name': { 'min_length': 10, }, 'description': { 'required': True, } }), ) } ``` CustomValidator can also be subclassed to enforce more complex logic by overriding its `validate()` method. See the [custom validation](https://netbox.readthedocs.io/en/stable/customization/custom-validation/) documentation for more details. #### SVG Cable Traces ([#6000](https://github.com/netbox-community/netbox/issues/6000)) Cable trace diagrams are now rendered as atomic SVG images, similar to rack elevations. These images are embedded in the UI and can be easily downloaded for use outside NetBox. SVG images can also be generated directly through the REST API, by specifying SVG as the render format for the `trace` endpoint on a cable termination: ```no-highlight GET /api/dcim/interfaces/<ID>>/trace/?render=svg ``` The width of the rendered image in pixels may optionally be specified by appending the `&width=<width>` parameter to the request. The default width is 400px. #### New Views for Models Previously Under the Admin UI ([#6466](https://github.com/netbox-community/netbox/issues/6466)) New UI views have been introduced to manage the following models: * Custom fields * Custom links * Export templates * Webhooks These models were previously managed under the admin section of the UI. Moving them to dedicated views ensures a more consistent and convenient user experience. #### REST API Token Provisioning ([#5264](https://github.com/netbox-community/netbox/issues/5264)) The new REST API endpoint `/api/users/tokens/` has been added, which includes a child endpoint for provisioning new REST API tokens using a username and password. This allows a user to gain REST API access without needing to first create a token via the web UI. ``` $ curl -X POST \ -H "Content-Type: application/json" \ -H "Accept: application/json; indent=4" \ https://netbox/api/users/tokens/provision/ \ --data '{ "username": "hankhill", "password: "I<3C3H8", }' ``` If the supplied credentials are valid, NetBox will create and return a new token for the user. #### New Housekeeping Command ([#6590](https://github.com/netbox-community/netbox/issues/6590)) A new management command has been added: `manage.py housekeeping`. This command is intended to be run nightly via a system cron job. It performs the following tasks: * Clear expired authentication sessions from the database * Delete change log records which have surpassed the configured retention period (if configured) * Check for new NetBox releases (if enabled) A convenience script for calling this command via an automated scheduler has been included at `/contrib/netbox-housekeeping.sh`. Please see the [housekeeping documentation](https://netbox.readthedocs.io/en/stable/administration/housekeeping/) for further details. #### Custom Queue Support for Plugins ([#6651](https://github.com/netbox-community/netbox/issues/6651)) NetBox uses Redis and Django-RQ for background task queuing. Whereas previous releases employed only a single default queue, NetBox now provides a high-, medium- (default), and low-priority queue for use by plugins. (These will also likely be used internally as new functionality is added in future releases.) Plugins can also now create their own custom queues by defining a `queues` list within their PluginConfig class: ```python class MyPluginConfig(PluginConfig): name = 'myplugin' ... queues = [ 'queue1', 'queue2', 'queue-whatever-the-name' ] ``` Note that NetBox's `rqworker` process will _not_ service custom queues by default, since it has no way to infer the priority of each queue. Plugin authors should be diligent in including instructions for proper worker configuration in their plugin's documentation. ### Enhancements * [#2434](https://github.com/netbox-community/netbox/issues/2434) - Add option to assign IP address upon creating a new interface * [#3665](https://github.com/netbox-community/netbox/issues/3665) - Enable rendering export templates via REST API * [#3682](https://github.com/netbox-community/netbox/issues/3682) - Add `color` field to front and rear ports * [#4609](https://github.com/netbox-community/netbox/issues/4609) - Allow marking prefixes as fully utilized * [#5203](https://github.com/netbox-community/netbox/issues/5203) - Remember user preference when toggling display of device images in rack elevations * [#5806](https://github.com/netbox-community/netbox/issues/5806) - Add kilometer and mile as choices for cable length unit * [#6154](https://github.com/netbox-community/netbox/issues/6154) - Allow decimal values for cable lengths * [#6328](https://github.com/netbox-community/netbox/issues/6328) - Build and serve documentation locally ### Bug Fixes (from v3.2-beta2) * [#6977](https://github.com/netbox-community/netbox/issues/6977) - Truncate global search dropdown on small screens * [#6979](https://github.com/netbox-community/netbox/issues/6979) - Hide "create & add another" button for circuit terminations * [#6982](https://github.com/netbox-community/netbox/issues/6982) - Fix styling of empty dropdown list under dark mode * [#6996](https://github.com/netbox-community/netbox/issues/6996) - Global search bar should be full width on mobile * [#7001](https://github.com/netbox-community/netbox/issues/7001) - Fix page focus on load * [#7034](https://github.com/netbox-community/netbox/issues/7034) - Fix toggling of VLAN group scope selector fields * [#7045](https://github.com/netbox-community/netbox/issues/7045) - Fix navigation menu rendering under Chrome ### Other Changes * [#5223](https://github.com/netbox-community/netbox/issues/5223) - Remove the console/power/interface connections REST API endpoints * [#5278](https://github.com/netbox-community/netbox/issues/5278) - Remove the secrets functionality from NetBox core * [#5532](https://github.com/netbox-community/netbox/issues/5532) - Drop support for Python 3.6 * [#5994](https://github.com/netbox-community/netbox/issues/5994) - Drop support for `display_field` argument on ObjectVar * [#6068](https://github.com/netbox-community/netbox/issues/6068) - Drop support for legacy static CSV export * [#6338](https://github.com/netbox-community/netbox/issues/6338) - Decimal fields are no longer coerced to strings in REST API * [#6471](https://github.com/netbox-community/netbox/issues/6471) - Optimize database migrations * [#6639](https://github.com/netbox-community/netbox/issues/6639) - Drop support for queryset caching (django-cacheops) * [#6713](https://github.com/netbox-community/netbox/issues/6713) - Checking for new releases is now done as part of the housekeeping routine * [#6767](https://github.com/netbox-community/netbox/issues/6767) - Add support for Python 3.9 ### Configuration Changes * The `CACHE_TIMEOUT` configuration parameter has been removed. * The `RELEASE_CHECK_TIMEOUT` configuration parameter has been removed. ### REST API Changes * Removed all endpoints related to the secrets functionality: * `/api/secrets/generate-rsa-key-pair/` * `/api/secrets/get-session-key/` * `/api/secrets/secrets/` * `/api/secrets/secret-roles/` * Removed the following "connections" endpoints: * `/api/dcim/console-connections/` * `/api/dcim/power-connections/` * `/api/dcim/interface-connections/` * Added the `/api/ipam/ip-ranges/` endpoint * Added the `/api/users/tokens/` endpoint * The `provision/` child endpoint can be used to provision new REST API tokens by supplying a valid username and password * dcim.Cable * `length` is now a decimal value * dcim.Device * Removed the `display_name` attribute (use `display` instead) * dcim.DeviceType * Removed the `display_name` attribute (use `display` instead) * dcim.FrontPort * Added `color` field * dcim.FrontPortTemplate * Added `color` field * dcim.Rack * Removed the `display_name` attribute (use `display` instead) * dcim.RearPort * Added `color` field * dcim.RearPortTemplate * Added `color` field * dcim.Site * `latitude` and `longitude` are now decimal fields rather than strings * extras.ContentType * Removed the `display_name` attribute (use `display` instead) * ipam.Prefix * Added the `mark_utilized` boolean field * ipam.VLAN * Removed the `display_name` attribute (use `display` instead) * ipam.VRF * Removed the `display_name` attribute (use `display` instead) * virtualization.VirtualMachine * `vcpus` is now a decimal field rather than a string 2021-08-30T18:48:11+00:00 julia v1.7.0-beta4 julia v1.7.0-beta4 2021-08-30T20:00:24+00:00 This is the fourth beta release for Julia v1.7.0. 2021-08-30T20:00:24+00:00 caddy v2.4.4 caddy v2.4.4 2021-08-30T23:10:42+00:00 This release contains numerous bug fixes, updated dependencies, and QoL improvements. Thanks to all contributors, and a special thanks to @francislavoie and @Mohammed90 for their dedication in helping to maintain the project and help others. ## Changelog 0bdb8aa8 acmeserver: Don't set host for directory links by default 2de7e14e acmeserver: Trim slashes from path prefix c131339c admin: Implement load_interval to pull config on a timer (#4246) a10910f3 admin: Sync server variables (fix #4260) (#4274) 51f125bd caddyfile: Better error message for missing site block braces (#4301) d74913f8 caddyfile: Error on invalid site addresses containing comma (#4302) b6f51254 caddyfile: keep error chain info in Dispenser.Errf (#4233) 1c6c7714 caddyhttp: Fix edgecase with auto HTTP->HTTPS logic (#4243) 42e140b1 caddyhttp: Fix incorrect determination of gRPC protocol (#4236) c1cd192e caddyhttp: Updated the documentation for MatchQuery (#4295) 81e53180 caddytls: Remove "IssuerRaw" field ce5a45db cmd: Fix paths when using an env file (#4296) 68c5c716 cmd: New `add-package` and `remove-package` commands (#4226) 9e333c39 cmd: use net.ErrClosed for matching returned error (#4289) 1b1e625c core: Unix ns and Unix ms time placeholders (#4280) 69c91448 encode: Tweak compression settings (#4215) 4245ceb6 fileserver: Add `disable_canonical_uris` Caddyfile subdirective (#4222) 191dc86f fileserver: Clarify docs about canonicalization 9e16e80f fileserver: Fix browse name_dir_first sorting (#4218) 885a9aaf go.mod: Update dependencies (close #4216) f43fd6f3 go.mod: Upgrade CertMagic to v0.14.4 84b906a2 go.mod: Upgrade some dependencies ab32440b httpcaddyfile: Add shortcut for proxy hostport placeholder (#4263) b3d35a49 httpcaddyfile: Don't put localhost in public APs (fix #4220) 569ecdbd httpcaddyfile: Ensure hosts to skip for logs can always be collected (#4258) bfbc459c httpcaddyfile: Improve unrecognized directive errors 403732c4 httpcaddyfile: Reorder some directives (#4311) 46d99aba logging: Add missing interface guards for replace filter (#4244) 124ba1ba logging: Prep for `common_log` removal (#4149) 8a974a4f logging: Warn for deprecated single_field encoder e6c29ce0 reverseproxy: Incorporate latest proxy changes from stdlib (#4266) d8822110 reverseproxy: Keep path to unix socket as dial address (#4232) f70a7578 reverseproxy: Remove redundant flushing (#4299) 2021-08-30T23:10:42+00:00 turbinia 20210831 turbinia 20210831 2021-09-01T00:58:50+00:00 2021-09-01T00:58:50+00:00 celery v5.2.0b2 celery v5.2.0b2 2021-09-01T16:19:20+00:00 2021-09-01T16:19:20+00:00 logstash v7.14.1 logstash v7.14.1 2021-09-01T16:31:13+00:00 Downloads: https://elastic.co/downloads/logstash Release notes: https://www.elastic.co/guide/en/logstash/7.14/logstash-7-14-1.html 2021-09-01T16:31:13+00:00 netbox v3.0.1 netbox v3.0.1 2021-09-01T19:10:59+00:00 ## Bug Fixes * [#7041](https://github.com/netbox-community/netbox/issues/7041) - Properly format JSON config object returned from a NAPALM device * [#7070](https://github.com/netbox-community/netbox/issues/7070) - Fix exception when filtering by prefix max length in UI * [#7071](https://github.com/netbox-community/netbox/issues/7071) - Fix exception when removing a primary IP from a device/VM * [#7072](https://github.com/netbox-community/netbox/issues/7072) - Fix table configuration under prefix child object views * [#7075](https://github.com/netbox-community/netbox/issues/7075) - Fix UI bug when a custom field has a space in the name * [#7080](https://github.com/netbox-community/netbox/issues/7080) - Fix missing image previews * [#7081](https://github.com/netbox-community/netbox/issues/7081) - Fix UI bug that did not properly request and handle paginated data * [#7082](https://github.com/netbox-community/netbox/issues/7082) - Avoid exception when referencing invalid content type in table * [#7083](https://github.com/netbox-community/netbox/issues/7083) - Correct labeling for VM memory attribute * [#7084](https://github.com/netbox-community/netbox/issues/7084) - Fix KeyError exception when editing access VLAN on an interface * [#7084](https://github.com/netbox-community/netbox/issues/7084) - Fix issue where hidden VLAN form fields were incorrectly included in the form submission * [#7089](https://github.com/netbox-community/netbox/issues/7089) - Fix filtering of change log by content type * [#7090](https://github.com/netbox-community/netbox/issues/7090) - Allow decimal input on length field when bulk editing cables * [#7091](https://github.com/netbox-community/netbox/issues/7091) - Ensure API requests from the UI are aware of `BASE_PATH` * [#7092](https://github.com/netbox-community/netbox/issues/7092) - Fix missing bulk edit buttons on Prefix IP Addresses table * [#7093](https://github.com/netbox-community/netbox/issues/7093) - Multi-select custom field filters should employ exact match * [#7096](https://github.com/netbox-community/netbox/issues/7096) - Home links should honor `BASE_PATH` configuration * [#7101](https://github.com/netbox-community/netbox/issues/7101) - Enforce `MAX_PAGE_SIZE` for table and REST API pagination * [#7106](https://github.com/netbox-community/netbox/issues/7106) - Fix incorrect "Map It" button URL on a site's physical address field * [#7107](https://github.com/netbox-community/netbox/issues/7107) - Fix missing search button and search results in IP address assignment "Assign IP" tab * [#7109](https://github.com/netbox-community/netbox/issues/7109) - Ensure human readability of exceptions raised during REST API requests * [#7113](https://github.com/netbox-community/netbox/issues/7113) - Show bulk edit/delete actions for prefix child objects * [#7123](https://github.com/netbox-community/netbox/issues/7123) - Remove "Global" placeholder for null VRF field * [#7124](https://github.com/netbox-community/netbox/issues/7124) - Fix duplicate static query param values in API Select 2021-09-01T19:10:59+00:00 uBlock 1.37.3b21 uBlock 1.37.3b21 2021-09-01T22:32:17+00:00 [Commits to master since this release](https://github.com/gorhill/uBlock/compare/1.37.3b21...master) To install the developer build: - **Firefox**: Click [uBlock0_1.37.3b21.firefox.signed.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b21/uBlock0_1.37.3b21.firefox.signed.xpi). - [uBO works best on Firefox](https://github.com/gorhill/uBlock/wiki/uBlock-Origin-works-best-on-Firefox). - **Chromium**: Install from the Chrome Web Store (CWS): <https://chrome.google.com/webstore/detail/ublock-origin-dev-build/cgbcahbpdhpcegmbfconppldiemgcoii>. - **Thunderbird**: Download [uBlock0_1.37.3b21.thunderbird.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3b21/uBlock0_1.37.3b21.thunderbird.xpi), then drag-n-drop it into Thunderbird's _Add-ons Manager_ pane (Thunderbird 78+ required) - **Node.js**: Import from [npm](https://www.npmjs.com/package/@gorhill/ubo-core), or download and unzip [uBlock0_1.37.3b21.npm.tgz](https://github.com/gorhill/uBlock/releases/download/1.37.3b21/uBlock0_1.37.3b21.npm.tgz). --- ## New ### :matches-path(...) New cosmetic procedural operator, `:matches-path(...)`. See ["Add $path modifier of Adguard or any equivalents of this"](https://github.com/uBlockOrigin/uBlock-issues/issues/1690). ### Node.js A new Node.js package will now published with every release. The package allows to import and use uBO's static and dynamic filtering engines into Node.js. This is currently minimal and a first iteration, and issues regarding the Node.js package are accepted in order to improve usability of uBO's filtering engines in a Node.js package. The ability to run code from a Node.js package also opens the door to have [test coverage](https://en.wikipedia.org/wiki/Code_coverage) in uBO. For now the package can be downloaded and unzipped locally. Once installed, you can execute `node test` in the root of the package to verify that the static network filtering engine works properly. For usage, refer to the [`test.js`](https://github.com/gorhill/uBlock/blob/master/platform/nodejs/test.js), or [`ublock.js`](https://github.com/cliqz-oss/adblocker/blob/master/packages/adblocker-benchmarks/blockers/ublock.js) used in Cliqz's benchmark. Since I have little experience with dealing with Node.js environment/packages, thanks to @mjethani [for assistance](https://github.com/uBlockOrigin/uBlock-issues/issues/1664). ## Closed as fixed: - [Scriptlets don't work randomly in Firefox](https://github.com/uBlockOrigin/uBlock-issues/issues/1694) - [Security: comments can be used to smuggle url() functions into css values](https://github.com/uBlockOrigin/uBlock-issues/issues/1693) - [Prevent uBO from hiding html or body when matched by a generic cosmetic filter](https://github.com/uBlockOrigin/uBlock-issues/issues/1692) - [On Android Popup Overlays [or Underlays] On-Screen Navigation Buttons](https://github.com/uBlockOrigin/uBlock-issues/issues/1691) - [Add $path modifier of Adguard or any equivalents of this](https://github.com/uBlockOrigin/uBlock-issues/issues/1690) - [The overview panel will not show everything if the uBO's icon is placed in the Firefox overflow menu](https://github.com/uBlockOrigin/uBlock-issues/issues/1604) - [patch by @vtriolet] [TypeError in noscript-spoof scriptlet with invalid meta refresh URL](https://github.com/uBlockOrigin/uBlock-issues/issues/1676) - [TypeError when trying to use element picker on plaintext resource](https://github.com/uBlockOrigin/uBlock-issues/issues/1675) - [Split out core functionality into separate module](https://github.com/uBlockOrigin/uBlock-issues/issues/1664) - This is of course an ongoing work for the foreseeable future, but the concrete goal sought in the issue has been reached, i.e. the static network filtering engine can be used as a nodejs module with no external dependencies. - Since uBO's codebase now uses [JS modules](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Modules), the minimum version of supported browsers has been increased to Chromium 61, Firefox 60, and Opera 48. ## Notable commits without en entry in the issue tracker - [Refactor hntrie to avoid the need for boundary cells](https://github.com/gorhill/uBlock/commit/c6fb70b1f0acb1003b516ceb678df27f6657b4f8) - [Fix bad test in WASM version of HNTrieContainer](https://github.com/gorhill/uBlock/commit/b54bf554a80c8640fb8c8064eeea48576974b0c2) - [Export the rule-based filtering engines to the nodejs package](https://github.com/gorhill/uBlock/commit/89c5653bc60d0a457358d6e862c8574bfc819675) - [Rewrite logical expressions for ESLint](https://github.com/gorhill/uBlock/commit/6ef74fc21ba87717330de12cfade8d1e65c702d5) - [patch by @mjethani] [Add Makefile](https://github.com/gorhill/uBlock/pull/3789) - [patch by @mjethani] [Make uAssets a submodule](https://github.com/gorhill/uBlock/commit/63591ef2aa818bced3dc5d7bd0bbb1c397e44e2f) - [Ensure compiled sections are ordered in ascending id](https://github.com/gorhill/uBlock/commit/c25938f5bcb519ee945c9ccab7d17474474dc825) - [Fix handling of some procedural cosmetic filters with explicit `:scope`](https://github.com/gorhill/uBlock/commit/51d14de44a2b89274836e70daabf305f4f00ac47) 2021-09-01T22:32:17+00:00 pm2 5.1.1 pm2 5.1.1 2021-09-02T06:39:01+00:00 - add back Node 10.x support - make pm2-sysmonit module optional - remove fast-printf and replace with sprintfjs 2021-09-02T06:39:01+00:00 intelmq 3.0.1 intelmq 3.0.1 2021-09-02T08:36:14+00:00 Installation documentation: https://intelmq.readthedocs.io/en/maintenance/user/installation.html Upgrade documentation: https://intelmq.readthedocs.io/en/maintenance/user/upgrade.html ### Core - `intelmq.lib.bot_debugger`: Fix accessing the bot's destination queues (PR#2027 by Mikk Margus Möll). - `intelmq.lib.pipeline`: Fix handling of `load_balance` parameter (PR#2027 by Mikk Margus Möll). - `intelmq.lib.bot`: Fix handling of parameter `destination_queues` if value is an empty dictionary (PR#2051 by Sebastian Wagner, fixes #2034). ### Bots #### Collectors - `intelmq.bots.collectors.shodan.collector_stream`: Fix access to parameters, the bot wrongly used `self.parameters` (PR#2020 by Mikk Margus Möll). - `intelmq.bots.collectors.mail.collector_mail_attach`: Add attachment file name as `extra.file_name` also if the attachment is not compressed (PR#2021 by Alex Kaplan). - `intelmq.bots.collectors.http.collector_http_stream`: Fix access to parameters, the bot wrongly used `self.parameters` (by Sebastian Wagner). #### Parsers - `intelmq.bots.parsers.microsoft.parser_ctip`: Map `Payload.domain` to `destination.fqdn` instead of `extra.payload.domain` as it matches to `destination.ip` from `DestinationIp` (PR#2023 by Sebastian Wagner). - Removed `intelmq.bots.parsers.malwaredomains` because the upstream data source (malwaredomains.com) does not exist anymore (PR#2026 by Birger Schacht, fixes #2024). - `intelmq.bots.parsers.shadowserver.config`: - Add support for feed "Vulnerable SMTP Server" (PR#2037 by Mikk Margus Möll). - Fix differentiation between feeds "Accessible HTTP" and "Vulnerable HTTP" (PR#2037 by Mikk Margus Möll, fixes #1984). - Add support for the new feeds *Microsoft Sinkhole Events Report*, *Microsoft Sinkhole HTTP Events Report* (PR#2036 by Birger Schacht). - Complement feed mappings and documentation for feeds with IPv4 and IPv6 variants (PR#2046 by Mikk Margus Möll and Sebastian Wagner). - Feed names with and without the optional IPv4/IPv6 postfix can be used now consistently. - Add support for feed "Honeypot HTTP Scan" (PR#2047 by Mikk Margus Möll). - Update filename mapping for changed filename of feed "Accessible-MSRDPUDP" (PR#2060 by abr4xc). #### Experts - `intelmq.bots.experts.gethostbyname.expert`: Handle numeric values for the `gaierrors_to_ignore` parameter (PR#2073 by Sebastian Wagner, fixes #2072). - `intelmq.bots.experts.filter.expert`: Fix handling of empty-string parameters `not_after` and `not_before` (PR#2075 by Sebastian Wagner, fixes #2074). #### Outputs - `intelmq.bots.outputs.mcafee.output_esm_ip`: Fix access to parameters, the bot wrongly used `self.parameters` (by Sebastian Wagner). - `intelmq.bots.outputs.misp.output_api`: Fix access to parameters, the bot wrongly used `self.parameters` (by Sebastian Wagner). - `intelmq.bots.outputs.smtp.output`: Add `Content-Disposition`-header to the attachment, fixing the display in Mail Clients as actual attachment (PR#2052 by Sebastian Wagner, fixes #2018). ### Documentation - Various formatting fixes (by Sebastian Wagner). - Removed the malwaredomains feed from the feeds list because the upstream data source (malwaredomains.com) does not exist anymore (PR#2026 by Birger Schacht, fixes #2024). - Update Docker installation instructions (PR#2035 by Sebastian Waldbauer). ### Packaging - intelmq-update-database crontab: Add missing `recordedfuture_iprisk` update call (by Sebastian Wagner). ### Tests - Replace calls to deprecated/undocumented `logging.warn` with `logging.warning` (by Sebastian Wagner, fixes #2013). - `intelmq.tests.bots.experts.rdap.test_expert`: Declare cache use, fixes build failures (by Sebastian Wagner, fixes #2014). - `intelmq.tests.bots.collectors.mail.test_collector_attach`: Test text attachment (by Sebastian Wagner). ### Tools - `intelmqctl`: - Also honour parameters from environment variables (PR#2068 by Sebastian Wagner, fixes #2063). - Fix management actions (start/stop/status/reload/restart) for groups (PR#2086 by Sebastian Wagner, fixes #2085). - Do not use hardcoded logging path in `/opt/intelmq`, use the internal default instead (PR#2092 by Sebastian Wagner, fixes #2091). ### Known issues See [open bug reports](https://github.com/certtools/intelmq/issues?q=is%3Aissue+is%3Aopen+label%3Abug) for a more detailed list. - ParserBot: erroneous raw line recovery in error handling (#1850). 2021-09-02T08:36:14+00:00 MONARC v2.11.0 MONARC v2.11.0 2021-09-02T12:29:58+00:00 ### New - having the possibility to define custom scales for operational risks ([#353](https://github.com/monarc-project/MonarcAppFO/issues/353)); - introduction of the risk context and the risk owner ([#21](https://github.com/monarc-project/MonarcAppFO/issues/21), [#186](https://github.com/monarc-project/MonarcAppFO/issues/186)). ### Fix - update-all.sh: Could not read from remote repository ([#365](https://github.com/monarc-project/MonarcAppFO/issues/365)); - some files in script do not have the correct permissions ([#364](https://github.com/monarc-project/MonarcAppFO/issues/364)). ![Screenshot_20210902_133851](https://user-images.githubusercontent.com/465400/131843376-d9b7420c-0c9f-430e-8269-42ef3478dbf2.png) ![Screenshot_20210902_134102](https://user-images.githubusercontent.com/465400/131843404-3cad5d50-406d-431c-84a7-4e7b80460ad9.png) ![Screenshot_20210902_142720](https://user-images.githubusercontent.com/465400/131843437-4ff5953d-3e5b-42bd-94cb-012baf2e868f.png) 2021-09-02T12:29:58+00:00 intelmq-manager 3.0.1 intelmq-manager 3.0.1 2021-09-02T13:27:55+00:00 Installation instructions: https://intelmq.readthedocs.io/en/maintenance/user/intelmq-manager.html ### Pages - Login: Show error messages as returned from the API instead of a constant string (PR#277 by Sebastian Wagner, fixes intelmq-api#35). #### Configuration - Fix working with edges between bots, by transmitting new edges to the server with the new API (PR#264 by Mikk Margus Möll). - Correctly hide the `destination_queues` parameter in the bot editor (PR#264 by Mikk Margus Möll). - Restore sane default bot IDs (PR#264 by Mikk Margus Möll, fixes #263). - Removed redundant `pipeline.js` file (PR#264 by Mikk Margus Möll). - Fix a race condition trying to call both the `/runtime` and `/positions` API endpoints at the same time, when `/runtime` is updating `runtime.yaml` at the same time that `/positions` is trying to parse it (PR#264 by Mikk Margus Möll). - internal improvements (PR#264 by Mikk Margus Möll): - edge IDs are now `${source_node}|${destination_node}|${edge_name}`. - some loops which previously iterated over every single edge should be a bit faster now. - various tweaks, like reducing the scope of variables and using string templates instead of string concatenation. - Fix saving new bots, led to an JS exception (PR#273 by Sebastian Wagner, fixes #272). - Open bot documentation in a new page (PR#274 by Birger Schacht, fixes #262). - Prohibit the user from creating a bot with an ID collision (PR#276 by Mikk Margus Möll, fixes #152). - Ask the user for confirmation to exit the page in case of unsaved changes (PR#276 by Mikk Margus Möll, fixes #212) #### Monitor - `ALLOWED_PATH` and `CONTROLLER_CMD` are defined in a separate JavaScript file, rather than being templated into the HTML, fixing Content-Security-Policy issues (PR#264 by Mikk Margus Möll, fixes #183). ### Known issues - Graph jumps around on "Add edge" (#148). - Monitor page: Automatic log refresh reset log page to first one (#190). - Load error if a bot has not optional `parameters` field in runtime configuration (#237). - Better error message for missing authentication (#238). - Configuration page: Keyboard shortcuts don't work (#260). - Edit Defaults: Documentation link just reloads (#261). 2021-09-02T13:27:55+00:00 tachyon 3.4.1 tachyon 3.4.1 2021-09-02T14:43:34+00:00 2021-09-02T14:43:34+00:00 traefik v2.5.2 traefik v2.5.2 2021-09-02T15:28:49+00:00 **Bug fixes:** - **[http3]** Upgrade github.com/lucas-clemente/quic-go to v0.23.0 ([#8413](https://github.com/traefik/traefik/pull/8413) by [sylr](https://github.com/sylr)) - **[middleware]** Fix empty body error for mirroring middleware ([#8381](https://github.com/traefik/traefik/pull/8381) by [antgubarev](https://github.com/antgubarev)) - **[tracing]** Bump go.elastic.co/apm version to v1.13.1 ([#8399](https://github.com/traefik/traefik/pull/8399) by [rtribotte](https://github.com/rtribotte)) - Update x/sys to support go 1.17 ([#8368](https://github.com/traefik/traefik/pull/8368) by [roopakv](https://github.com/roopakv)) - Bump Alpine docker image version from 3.11 to 3.14 for official Traefik images **Documentation:** - **[k8s/ingress,k8s]** Adds pathType for v1 ingresses examples ([#8392](https://github.com/traefik/traefik/pull/8392) by [rtribotte](https://github.com/rtribotte)) - Fix http scheme urls in documentation ([#8395](https://github.com/traefik/traefik/pull/8395) by [rtribotte](https://github.com/rtribotte)) 2021-09-02T15:28:49+00:00 PacketFence v11.0.0 PacketFence v11.0.0 2021-09-02T17:19:12+00:00 ![v11](https://www.packetfence.org/campaigns/img/v11/pf.png) The Inverse team is pleased to announce the immediate availability of PacketFence v11 - a breakthrough release in network security! ## RHEL v8 and Debian 11 Support PacketFence v11 now fully supports Red Hat Enterprise Linux 8 (RHEL v8) and Debian 11. Both operating systems bring major performance, stability, and security improvements to PacketFence for many years to come. RHEL v8 alternatives such as AlmaLinux, Oracle Linux, and Rocky Linux can be used. ## Google Workspace Integration PacketFence v11 now natively integrates with Google Workspace for LDAP-based authentication. Moreover, PacketFence now provides a Google Workspace Chromebook provisioner to automatically onboard organization-owned Chromebook devices and assign them a role. PacketFence can now also raise a security event when a Chromebook becomes inactive and provides a way to import all activated Chromebooks part of an organization. ## Microsoft Azure Integration PacketFence now integrates with Microsoft Azure Active Directory for authenticating users on the captive portal, the admin interface, and performing 802.1X user authentication using EAP-TTLS PAP. Greatly enhances the integration possibilities of PacketFence in Azure-based Cloud environments. ## Automation of Upgrades Starting from PacketFence v11, upgrades are fully automated. No more scripts to run, database schema changes to apply, and more. This release also provides a way to export your v10.3 installation and migrate to v11 in a snap! ## Logs Forwarding PacketFence now supports forwarding of all database-stored logs. That means that the RADIUS audit log, DHCP audit log, DNS audit log, and admin access audit log can be fully exported to a remote syslog server - ensuring compliance with more security regulations. ## ... and more! PacketFence v11 provides additional important features such as SCEP support for Microsoft Intune and AirWatch, Venom tests for Inline L3, massive performance improvements to the admin interface, multi-tenancy improvements, and much more. --- Here's the complete list of changes included in this release: #### New Features * Red Hat Enterprise Linux 8 and Debian 11 support * Microsoft Azure AD authentication and authorization support (#6380) * Google Workspace integration for LDAP and Chromebooks * Automation of upgrades from 10.3 and above (#6438) * Forwarding support for audit logs stored in database #### Enhancements * Microsoft Intune SCEP support (#6360) * Venom inline L3 (PR #6266) * Massively improved web admin performance * LDAP source now supports client certificates * AirWatch SCEP documentation * Rewrite the username of the request from RADIUS `preProcess` filter (#6293) * Upgrade to golang 1.16.3 (#6343) * pfpki: configure OCSP to listen on specific interfaces (#5825) * Get maintenance patches through package manager (#6378) * Adjust Intune integration to support pagination of the managed devices (#6135) * Add an option to force the vip as the default gateway on layer2 registration network (#6406) * Firewall SSO is tenant aware (#6384) * Added conditions on owner information in the RADIUS filters (#6324) * CLI access support for Avaya Switches (#6398) * Authorize a MAC address on all APs of the switch group when using the Unifi module (#6134) * Macro documentation for filter engine (#6392) * Expose the source directory of documentation from Caddy (#6315) * Audit successful admin login in the admin audit log. (#6345) * Allow users to resend the SMS pin * Improve the speed of retrieving switches (#6321) #### Bug Fixes * Configurator sets valid_from field to current time in place of 1970-01-01 00:00:00 * Support switch_group in advanced filters (#6379) * Authentication rule condition basedn matching does not work (Authentication rule condition basedn matching does not work #6402) * Filter netdata incoming connection (#6303) * CLI switch access for Avaya ERS Switches (#6399) * Avoid duplicate log entries "User <username> has authenticated on the portal" * Backup DB using MariaDB-backup does not work on standalone installations (#6424) * Normalize connection_sub_type to use the numeric value (#6326) * Expired switches for all tenants (#6024) 2021-09-02T17:19:12+00:00 DevSkim v0.4.250 DevSkim v0.4.250 2021-09-02T19:21:57+00:00 ## Changes: * 423c423edf0b824a8bfabdcfe93c67326469a929 Output the column and line information for findings. (#315) * a9c65ecf802dacff319b3a3bd32a3e546d592e83 Gfs/fix blazor (#314) * 9b6c40f0052819c422420774e6934c638f9a10db Update Index.razor (#313) * 38eb8b430c4a88d553bd4a916d15abcff67688ba Bump path-parse from 1.0.6 to 1.0.7 in /DevSkim-VSCode-Plugin (#312) * 82277de8cbb9b19daf8e00dd5a80a9c24021adf6 Bump path-parse from 1.0.6 to 1.0.7 in /DevSkim-VSCode-Plugin/client (#311) * 1a15e7a55f76c2de9b1c64fb3ce9bb7ded15f385 Bump tar from 4.4.13 to 4.4.15 in /DevSkim-VSCode-Plugin (#310) This list of changes was [auto generated](https://twcsecurityassurance.visualstudio.com/SecurityEngineering/_build/results?buildId=10175&view=logs). 2021-09-02T19:21:57+00:00 maltrail 0.37 maltrail 0.37 2021-09-02T19:35:17+00:00 Start-of-month release 2021-09-02T19:35:17+00:00 turbinia 20210902 turbinia 20210902 2021-09-02T22:07:03+00:00 2021-09-02T22:07:03+00:00 osquery 5.0.1 osquery 5.0.1 2021-09-03T03:39:13+00:00 Next 5.0 beta! Moving along 2021-09-03T03:39:13+00:00 CyberChef v9.32.3 CyberChef v9.32.3 2021-09-03T14:06:08+00:00 See the [CHANGELOG](https://github.com/gchq/CyberChef/blob/master/CHANGELOG.md) and [commit messages](https://github.com/gchq/CyberChef/commits/master) for details. 2021-09-03T14:06:08+00:00 cfssl v1.6.1 cfssl v1.6.1 2021-09-03T15:28:11+00:00 ## Changelog 87f86f1 Add loglevel flag for multiroot-ca 29ae05f Merge pull request #1189 from cloudflare/nicky/fix-coreos-mod-rename 1f29b04 Merge pull request #1191 from Rutori/loglevel-multiroot-ca f4208c6 Merge pull request #1195 from BowonY/bowon/avoid-select-all b2552ca fix upgrading transitive coreos dependency breakage 19c09ff pick columns to get revoked/unexpired certs e582ed4 remove -u flag from readme, link to releases bea2d3d remove old go versions from travis 2021-09-03T15:28:11+00:00 caddy v2.4.5 caddy v2.4.5 2021-09-03T18:54:23+00:00 A hotfix for a regression introduced in v2.4.4 related to combining the `encode` and `reverse_proxy` directives. ## Changelog 9f6393c6 cmd: export CaddyVersion(), Commands() (#4316) 4ebf100f encode: ignore flushing until after first write (#4318) 46ab93be go.mod: Update CertMagic 2021-09-03T18:54:23+00:00 DevSkim v0.4.251 DevSkim v0.4.251 2021-09-03T19:53:55+00:00 ## Changes: * 4daf5f442a05302cb3ac351b583baa6fe09e129f Map the devskim levels to sarif levels (#317) This list of changes was [auto generated](https://twcsecurityassurance.visualstudio.com/SecurityEngineering/_build/results?buildId=10185&view=logs). 2021-09-03T19:53:55+00:00 beef v5.0.1.0 beef v5.0.1.0 2021-09-04T04:57:22+00:00 ## Fixes Added libcurl4-openssl-dev to apt command #1807 Added JSDoc to backend JS API #1813 Fixed Active Record tables #1814, #1816 Removed LiveCD directory and reference in Metasploit config.yaml #1815 Replaced yaml.load with yaml.safe_load #1816 Use SecureRandom for API token generation #1817 Updated copyright for 2021 #1821 Fixed broken admin ui access #1845 Fixed test to run in random order #1848 Improvements for AssetHandler #1853 Requester extension fixes #1858 Updated Ruby to 2.7.x for Travis Use OID-style key/value data for BrowserDetails network details #1861 Fixed build_recursive_tree() #1866 Added error handling when loading extensions #1873 Auto get geoipdb changed access #1870 Upates to Network Serivce model #1885 Fixed bug in ARE execution #1886 Changed how websocket hooked browsers time out #1888 Updating portscanner for modern browsers Made travis.ci only run on master #1893 Create SW Port Scanner Remove arerule from enabled by default #1895 Updated command js for more functionality #1896 Added a new rvm language for the docker container #1897 Updated command.js for sw_network_proxy #1898 General spelling mistake fixes #1912 Replace autocomplete_theft with get_autocomplete_creds #1874 BrowserStack Integration #1920 Bump jsdoc-to-markdown from 5.0.3 to 6.0.1 #1933 Sudo for gem install for Kali #1940 Ruby package manager check #1940 Fixed array unique function in browser.js #1966 Fixed Pretty Theft Missing Credentials JS Error #1956 Fixed ARE New Zombie Execution Error #1957 Update dependencies Sinatra, rack, Rack Protections, Ugifier, Nokogiri, Rake and OTR Active Record #1961 Fix country_code is null #1975 Update contextis url in config.yml #1982 Fix XSSRays error when using ActiveRecord #1984 Excluded hooking subnet improvements #1973 Click Jack Attack CSS fixes #2046 Include URI query string in proxied requests #1971 Bump nokogiri version due to CVE #2048 Fix could not find table webcloners #2010 AdminUI: Use correct hook file path for bookmarlet hook URL #2099 Fix No connection pool for 'ActiveRecord::Base' found #2134   Thanks to   @klezVirus, @bcoles, @jcrew, @wheatley, @sopsmattw, @1124219777, @P-arag, @justinsteven, @raskoln1kov, @jackdwalker,  @JessWil, @P-arag, @grantrburgess, @sopsmattw, @H4xl0r, @superuserx, @aburro, @DeezyE 2021-09-04T04:57:22+00:00 celery v5.2.0b3 celery v5.2.0b3 2021-09-04T15:58:18+00:00 2021-09-04T15:58:18+00:00 uBlock 1.37.3rc0 uBlock 1.37.3rc0 2021-09-04T15:59:23+00:00 [Commits to master since this release](https://github.com/gorhill/uBlock/compare/1.37.3rc0...master) To install the developer build: - **Firefox**: Click [uBlock0_1.37.3rc0.firefox.signed.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3rc0/uBlock0_1.37.3rc0.firefox.signed.xpi). - [uBO works best on Firefox](https://github.com/gorhill/uBlock/wiki/uBlock-Origin-works-best-on-Firefox). - **Chromium**: Install from the Chrome Web Store (CWS): <https://chrome.google.com/webstore/detail/ublock-origin-dev-build/cgbcahbpdhpcegmbfconppldiemgcoii>. - **Thunderbird**: Download [uBlock0_1.37.3rc0.thunderbird.xpi](https://github.com/gorhill/uBlock/releases/download/1.37.3rc0/uBlock0_1.37.3rc0.thunderbird.xpi), then drag-n-drop it into Thunderbird's _Add-ons Manager_ pane (Thunderbird 78+ required) - **Node.js**: Import from [npm](https://www.npmjs.com/package/@gorhill/ubo-core), or download and unzip [uBlock0_1.37.3rc0.npm.tgz](https://github.com/gorhill/uBlock/releases/download/1.37.3rc0/uBlock0_1.37.3rc0.npm.tgz). --- ## New ### :matches-path(...) New cosmetic procedural operator, `:matches-path(...)`. See ["Add $path modifier of Adguard or any equivalents of this"](https://github.com/uBlockOrigin/uBlock-issues/issues/1690). ### Node.js A new Node.js package will now published with every release. The package allows to import and use uBO's static and dynamic filtering engines into Node.js. This is currently minimal and a first iteration, and issues regarding the Node.js package are accepted in order to improve usability of uBO's filtering engines in a Node.js package. The ability to run code from a Node.js package also opens the door to have [test coverage](https://en.wikipedia.org/wiki/Code_coverage) in uBO. For now the package can be downloaded and unzipped locally. Once installed, you can execute `node test` in the root of the package to verify that the static network filtering engine works properly. For usage, refer to the [`test.js`](https://github.com/gorhill/uBlock/blob/master/platform/nodejs/test.js), or [`ublock.js`](https://github.com/cliqz-oss/adblocker/blob/master/packages/adblocker-benchmarks/blockers/ublock.js) used in Cliqz's benchmark. Since I have little experience with dealing with Node.js environment/packages, thanks to @mjethani [for assistance](https://github.com/uBlockOrigin/uBlock-issues/issues/1664). ## Closed as fixed: - [Scriptlets don't work randomly in Firefox](https://github.com/uBlockOrigin/uBlock-issues/issues/1694) - [Security: comments can be used to smuggle url() functions into css values](https://github.com/uBlockOrigin/uBlock-issues/issues/1693) - [Prevent uBO from hiding html or body when matched by a generic cosmetic filter](https://github.com/uBlockOrigin/uBlock-issues/issues/1692) - [On Android Popup Overlays [or Underlays] On-Screen Navigation Buttons](https://github.com/uBlockOrigin/uBlock-issues/issues/1691) - [Add $path modifier of Adguard or any equivalents of this](https://github.com/uBlockOrigin/uBlock-issues/issues/1690) - [The overview panel will not show everything if the uBO's icon is placed in the Firefox overflow menu](https://github.com/uBlockOrigin/uBlock-issues/issues/1604) - [patch by @vtriolet] [TypeError in noscript-spoof scriptlet with invalid meta refresh URL](https://github.com/uBlockOrigin/uBlock-issues/issues/1676) - [TypeError when trying to use element picker on plaintext resource](https://github.com/uBlockOrigin/uBlock-issues/issues/1675) - [Split out core functionality into separate module](https://github.com/uBlockOrigin/uBlock-issues/issues/1664) - This is of course an ongoing work for the foreseeable future, but the concrete goal sought in the issue has been reached, i.e. the static network filtering engine can be used as a nodejs module with no external dependencies. - Since uBO's codebase now uses [JS modules](https://developer.mozilla.org/en-US/docs/Web/JavaScript/Guide/Modules), the minimum version of supported browsers has been increased to Chromium 61, Firefox 60, and Opera 48. ## Notable commits without en entry in the issue tracker - [Refactor hntrie to avoid the need for boundary cells](https://github.com/gorhill/uBlock/commit/c6fb70b1f0acb1003b516ceb678df27f6657b4f8) - [Fix bad test in WASM version of HNTrieContainer](https://github.com/gorhill/uBlock/commit/b54bf554a80c8640fb8c8064eeea48576974b0c2) - [Export the rule-based filtering engines to the nodejs package](https://github.com/gorhill/uBlock/commit/89c5653bc60d0a457358d6e862c8574bfc819675) - [Rewrite logical expressions for ESLint](https://github.com/gorhill/uBlock/commit/6ef74fc21ba87717330de12cfade8d1e65c702d5) - [patch by @mjethani] [Add Makefile](https://github.com/gorhill/uBlock/pull/3789) - [patch by @mjethani] [Make uAssets a submodule](https://github.com/gorhill/uBlock/commit/63591ef2aa818bced3dc5d7bd0bbb1c397e44e2f) - [Ensure compiled sections are ordered in ascending id](https://github.com/gorhill/uBlock/commit/c25938f5bcb519ee945c9ccab7d17474474dc825) - [Fix handling of some procedural cosmetic filters with explicit `:scope`](https://github.com/gorhill/uBlock/commit/51d14de44a2b89274836e70daabf305f4f00ac47) 2021-09-04T15:59:23+00:00 asciidoctor-pdf v1.6.1 asciidoctor-pdf v1.6.1 2021-09-05T07:12:34+00:00 ## Summary This is a bug fix release for the v1.6.x line to fix a regression introduced into Prawn by a change in Ruby 3. It also includes a backport of the footnotes alignment from the v2.0.x line. ## Distribution - [RubyGem (asciidoctor-pdf)](https://rubygems.org/gems/asciidoctor-pdf) ## Changelog ### Enhancements * align footnotes block to the bottom of the page it is placed on (#1833) ### Bug Fixes * don't strip leading null character from fragment text when arranging lines when running on Ruby 3 (#1963) ## Release meta Released on: 2021-05-10 Released by: @mojavelinux Release beer: Dragon's Milk Reserve by New Holland Brewing Logs: [full diff](https://github.com/asciidoctor/asciidoctor-pdf/compare/v1.6.0...v1.6.1) ## Credits A very special thanks to all the **awesome** [supporters of the Asciidoctor OpenCollective campaign](https://opencollective.com/asciidoctor) who provided critical funding for the development of this release as well as ongoing development of the project. 2021-09-05T07:12:34+00:00 seaweedfs 2.66 seaweedfs 2.66 2021-09-05T23:22:54+00:00 * [Cloud Drive](https://github.com/chrislusf/seaweedfs/wiki/Cloud-Drive-Architecture) cache and sync cloud data to local SeaweedFS cluster * Adds [Gateway to Remote Object Storage](https://github.com/chrislusf/seaweedfs/wiki/Gateway-to-Remote-Object-Storage) to automatically create or delete buckets on remote object storage. * Adds support for Storj. * Adds support for Filebase * Adds support for HDFS (WIP) * Volume Server * Moving files also copies modification time, to ensure TTL volumes can work as expected. * Filer Store * Supports TiKV * S3 API * CopyObject return http Status 400 Bad Request for non-existing source #2306 Improvements * Detect IPv6 adddresses #2310 * Grafana page improves on S3 cost analysis #2290 2021-09-05T23:22:54+00:00 wazuh v4.2.1 wazuh v4.2.1 2021-09-06T07:19:50+00:00 ## Fixed - **Installer:** - Fixed a bug in the upgrade to 4.2.0 that disabled Eventchannel support on Windows agent. ([#9973](https://github.com/wazuh/wazuh/issues/9973)) - **Modules:** - Fixed a bug with Python-based integration modules causing the integrations to stop working in agents for Wazuh v4.2.0. ([#9975](https://github.com/wazuh/wazuh/issues/9975)) 2021-09-06T07:19:50+00:00 BGPalerter v1.28.3 BGPalerter v1.28.3 2021-09-06T09:57:25+00:00 2021-09-06T09:57:25+00:00 MONARC v2.11.0-p1 MONARC v2.11.0-p1 2021-09-06T11:03:55+00:00 [small fix](https://github.com/monarc-project/zm-client/commit/57368ae4a234f923ed339d2d4795b7e862323851) in the zm-client dependency for the import of risks. 2021-09-06T11:03:55+00:00 Loki v0.44.1 Loki v0.44.1 2021-09-06T12:03:25+00:00 - workaround for "owner" field supported in THOR only 2021-09-06T12:03:25+00:00 httpie 2.5.0 httpie 2.5.0 2021-09-06T18:29:23+00:00 - Added `--raw` to allow specifying the raw request body without extra processing as an alternative to `stdin`. ([#534](https://github.com/httpie/httpie/issues/534)) - Added support for XML formatting. ([#1129](https://github.com/httpie/httpie/issues/1129)) - Added internal support for file-like object responses to improve adapter plugin support. ([#1094](https://github.com/httpie/httpie/issues/1094)) - Fixed `--continue --download` with a single byte to be downloaded left. ([#1032](https://github.com/httpie/httpie/issues/1032)) - Fixed `--verbose` HTTP 307 redirects with streamed request body. ([#1088](https://github.com/httpie/httpie/issues/1088)) - Fixed handling of session files with `Cookie:` followed by other headers. ([#1126](https://github.com/httpie/httpie/issues/1126)) Join our Discord community: https://httpie.io/chat Install HTTPie: https://httpie.io/docs#installation Learn more: https://httpie.io 2021-09-06T18:29:23+00:00 seaweedfs 2.67 seaweedfs 2.67 2021-09-07T09:40:55+00:00 * S3 * Fix wrong checking during object copy. * `filer.remote.sync` * Automatically detect the primary remote storage * Randomize bucket name in remote storage to avoid bucket name conflicts. 2021-09-07T09:40:55+00:00 syncthing v1.18.2 syncthing v1.18.2 2021-09-07T11:52:20+00:00 Bugfixes: - #7827: The error message "given name ... differs from filesystem name ..." does not help users to resolve the issue - #7893: Updating ignores blocks GUI when IO slots are unavailable 2021-09-07T11:52:20+00:00 osv v0.0.5 osv v0.0.5 2021-09-08T03:15:43+00:00 First PyPI release. 2021-09-08T03:15:43+00:00 syncthing v1.18.3-rc.1 syncthing v1.18.3-rc.1 2021-09-15T05:50:23+00:00 Bugfixes: - #7935: Panic after POST /rest/system/reset Enhancements: - #7940: "Currently Shared With Devices" list in the folder Sharing tab should be sorted alphabetically 2021-09-15T05:50:23+00:00 MOSP v0.16.0 MOSP v0.16.0 2021-09-15T09:05:12+00:00 This release introduces the locking of objects: #40 See the changelog for more details. ![Screenshot_20210915_110414](https://user-images.githubusercontent.com/465400/133404598-5b298b95-4d8f-4b9a-98ad-710ac36a6de1.png) 2021-09-15T09:05:12+00:00 reko version-0.10.1 reko version-0.10.1 2021-09-21T22:48:38+00:00 This maintenance release moves Reko from .NET Core 3.1 to .NET 5.0, resulting in some performance gains. It also fixes the MSI installers for Windows, which had several issues (including #1066 and #1067). Special thanks to @smx-smx for his work on his CI integration work. * The Reko build system now assumes C# 9.0 * Crude support for `#define` directives in the Reko C parser * Overhaul of PA-RISC and HP SOM loader * The command line driver `--version` switch displays the git hash used to build the binary. * Improvements in AArch64 disassembler and rewriter (with @rfalke as a driving force) 2021-09-21T22:48:38+00:00