Version 2.0.10

Enhancements:

• #4647 Remove manual inject expectations for technical injects
• #3917 [SC☂️] OCTI Coverage => Align Scenario Scheduling with Security Coverage Validity

Bug Fixes:

• #4671 Have a safer use of spel library
• #4649 Filter by Vulnerability ID fails if the CVE ID contains leading or trailing spaces
• #4603 Vulnerabilities cannot be searched
• #4582 CREATE CTA does not guide user to remaining mandatory fields
• #4400 OpenAEV scenario take a while to display when created from OpenCTI

Pull Requests:

• [frontend] feat(translations): add support for it, ru, ja, and de locales (#2642) by @savacano28 in #4572
• [frontend] chore(deps): update dependency @mui/x-date-pickers to v8.22.0 by @renovate[bot] in #4586
• [backend] chore: clean code (#1) by @savacano28 in #4569
• [frontend] chore: fix keys in translations (#1) by @savacano28 in #4590
• [frontend] chore: fix keys in italian (#1) by @savacano28 in #4593
• [frontend] chore(deps): update dependency final-form-arrays to v4 by @renovate[bot] in #4566
• [tool] chore(ci): fix validate pr action for forks (#1) by @guillaumejparis in #4601
• [tool] chore(ci): upgrade alpine version in test-feature-branch action by @guillaumejparis in #4611
• [backend] fix: openAEV scenario overview takes a while to display (#4400) by @damgouj in #4584
• [tool] chore(ci): improve gh actions (#4628) by @guillaumejparis in #4626
• [tool] chore(ci): fix auto close & solve issue gh action (#4628) by @guillaumejparis in #4629
• [frontend] chore(deps): update dependency react-intl to v8 by @renovate[bot] in #4607
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.40.12 by @renovate[bot] in #4633
• [tool] chore(deps): update actions/github-script action to v8 by @renovate[bot] in #4599
• [tool] chore(deps): update actions/checkout action to v6 by @renovate[bot] in #4598
• [backend] fix(vulnerability): cvssV31 type bigdecimal is not searchchable (#4603) by @EmilieFo17 in #4645
• [frontend] fix(payload): error recovery when creating a payload (#4582) by @EmilieFo17 in #4643
• [frontend] chore(deps): update dependency html-react-parser to v5.2.11 by @renovate[bot] in #4638
• [backend] chore(deps): update dependency co.elastic.clients:elasticsearch-java to v8.19.9 by @renovate[bot] in #4636
• [frontend] feat(expectations): remove manual inject expectations for technical injects (#4647) by @damgouj in #4648
• [frontend] fix(payload): error recovery when creating a payload (#4582) by @EmilieFo17 in #4653
• [frontend] fix: set the trim generic for all filters and search (#4649) by @EmilieFo17 in #4652
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.40.16 by @renovate[bot] in #4655
• [backend] fix: update stix test api (#4521) by @GaetanSantucci in #4675
• [readme] chore: update contributing info with new commit format (#1) by @savacano28 in #4672
• [backend] fix(api): npe when requesting a non existing scenario by id (#4677) by @antoinemzs in #4662
• [frontend] chore(deps): update dependency @casl/ability to v6.7.5 by @renovate[bot] in #4660
• [backend] chore(deps): update logback monorepo to v1.5.23 by @renovate[bot] in #4656
• [frontend/backend] fix(stix): rework the cron backend to allow for recurrences from STIX periodicity (#3917) by @antoinemzs in #4646
• [frontend] chore(deps): update dependency react-intl to v8.0.10 by @renovate[bot] in #4679
• build(deps): bump qs from 6.14.0 to 6.14.1 in /openaev-front by @dependabot[bot] in #4678
• [backend] fix(security): safer use of spel library (#4671) by @Dimfacion in #4627

Full Changelog: 2.0.9...2.0.10

Version 2.0.9

Bug Fixes:

• #4532 Inject expectations with existing results are overwritten when expiration_time is set

Pull Requests:

• [frontend] chore(deps): update react monorepo to v19.2.3 by @renovate[bot] in #4578
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.40.8 by @renovate[bot] in #4577
• [backend] chore(deps): update logback monorepo to v1.5.22 by @renovate[bot] in #4576
• [backend] chore(deps): update dependency io.hypersistence:hypersistence-utils-hibernate-63 to v3.13.3 by @renovate[bot] in #4575
• [tool] chore(ci): fix validate pr action for forks by @guillaumejparis in #4573
• [backend] fix(inject): inject expectations with existing results are overwritten when expiration_time is set (#4532) by @camrrx in #4581

Full Changelog: 2.0.8...2.0.9

Version 2.0.8

Enhancements:

• #4579 [backend] Add filter on payload for injector contracts

Full Changelog: 2.0.7...2.0.8

Version 2.0.7

Bug Fixes:

• #4538 Dashboards Internal Error when using OpenSearch
• #4521 Lockdown postgres related to Update security coverage and retry
• #4399 Payload list becomes empty when applying a filter

Pull Requests:

• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.40.4 by @renovate[bot] in #4546
• [frontend] chore(deps): update dependency dompurify to v3.3.1 by @renovate[bot] in #4544
• [backend] chore(deps): update dependency org.opensearch.client:opensearch-java to v3.3.0 by @renovate[bot] in #4545
• [frontend] chore(deps): update dependency @xyflow/react to v12.10.0 by @renovate[bot] in #4550
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.40.7 by @renovate[bot] in #4551
• [frontend] chore(deps): update dependency filigran-icon to v0.21.0 by @renovate[bot] in #4552
• [frontend] chore(deps): update dependency react-hook-form to v7.68.0 by @renovate[bot] in #4553
• [frontend] chore(deps): update dependency react-router to v7.10.1 by @renovate[bot] in #4554
• [tool] chore(deps): update alpine Docker tag to v3.23 by @renovate[bot] in #4555
• [tool] chore(deps): update opensearchproject/opensearch Docker tag to v3.3.2 by @renovate[bot] in #4557
• [frontend] fix: pagination (#4399) by @EvaE-Filigran in #4498
• [backend] fix(securitycoverage): lock Stix updates and skip obsolete/retry bundles (#4521) by @savacano28 in #4527
• [backend] fix(opensearch): fix on query builder (#4538) by @Dimfacion in #4570

Full Changelog: 2.0.6...2.0.7

Version 2.0.6

Bug Fixes:

• #4445 Log out issue from the Simulations > Animation tab
• #4441 [XTMH] reset registration data when platform is not found in the hub
• #4427 Can't export/import a payload comming from a collector
• #4406 Most Nuclei External Contracts fail the CREATE API call in OpenAEV
• #4378 Filters are not aligned
• #4353 In some cases the simulation never ends
• #4329 Handle direct start for scenario + schedule creation
• #4327 Creator of the license should not be visible in the platform (as OCTI)

Pull Requests:

• build(deps): bump mdast-util-to-hast from 13.2.0 to 13.2.1 in /openaev-front by @dependabot[bot] in #4475
• [frontend] chore(deps): update dependency html-react-parser to v5.2.10 by @renovate[bot] in #4455
• [frontend] chore(deps): update dependency form-data to v4.0.5 - autoclosed by @renovate[bot] in #4454
• [frontend] chore(deps): update dependency @xyflow/react to v12.9.3 by @renovate[bot] in #4453
• build(deps): bump tar from 7.5.1 to 7.5.2 in /openaev-front by @dependabot[bot] in #4451
• [frontend] chore(deps): update dependency @dagrejs/dagre to v1.1.8 by @renovate[bot] in #4444
• [backend] chore(deps): update dependency org.springframework.security:spring-security-crypto to v6.5.7 by @renovate[bot] in #4443
• [backend] chore(deps): update logback monorepo to v1.5.21 by @renovate[bot] in #4424
• [backend] chore(deps): update dependency io.swagger.core.v3:swagger-annotations-jakarta to v2.2.41 by @renovate[bot] in #4420
• [frontend] chore(deps): update dependency axios to v1.12.0 [SECURITY] by @renovate[bot] in #4423
• Bump axios from 1.11.0 to 1.12.0 in /openaev-front by @dependabot[bot] in #4436
• [tool] chore: add a pr title validation gh action (#1) by @guillaumejparis in #4469
• [frontend] chore(deps): update dependency @stylistic/eslint-plugin to v5 by @renovate[bot] in #4422
• [backend] feat: reset XTM Hub registration when platform is not found (#4441) by @Kroustille in #4442
• [frontend] fix: align filter, remove x padding (#4387) by @corinnekrych in #4476
• [frontend] chore(deps): update devDependencies (non-major) by @renovate[bot] in #4480
• [frontend] chore(deps): update dependency remark-flexible-markers to v1.3.2 by @renovate[bot] in #4483
• [tool] chore(deps): update dependency kubernetes to v2.0.2 by @renovate[bot] in #4489
• [frontend] chore(deps): update dependency zustand to v5.0.9 by @renovate[bot] in #4488
• [frontend] chore(deps): update dependency filigran-icon to v0.20.0 by @renovate[bot] in #4487
• [backend] chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v3.1.0 by @renovate[bot] in #4486
• [frontend] chore(deps): update dependency axios to v1.13.2 by @renovate[bot] in #4485
• [frontend] chore(deps): update material-ui monorepo by @renovate[bot] in #4484
• [frontend] chore(deps): update dependency react-router to v7.9.6 by @renovate[bot] in #4482
• [backend] chore(deps): update dependency com.rabbitmq:amqp-client to v5.27.1 by @renovate[bot] in #4496
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.39.5 by @renovate[bot] in #4495
• [backend] chore(deps): update apache-poi monorepo to v5.5.1 by @renovate[bot] in #4494
• [tool] chore(deps): update eclipse-temurin Docker tag to v21.0.9_10-jre by @renovate[bot] in #4493
• [frontend] chore(deps): update dependency @uiw/react-md-editor to v4.0.9 by @renovate[bot] in #4501
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.39.6 by @renovate[bot] in #4500
• [backend] fix(logout): fix logout redirect url (#4445) by @Dimfacion in #4478
• [backend] chore(deps): update dependency co.elastic.clients:elasticsearch-java to v8.19.8 by @renovate[bot] in #4503
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.40.2 by @renovate[bot] in #4505
• [frontend] chore(deps): update react monorepo to v19.2.1 by @renovate[bot] in #4512
• [frontend] chore(deps): update dependency @uiw/react-md-editor to v4.0.11 by @renovate[bot] in #4511
• [backend] chore(deps): update dependency io.hypersistence:hypersistence-utils-hibernate-63 to v3.13.2 by @renovate[bot] in #4506
• [frontend] chore(deps): update material-ui monorepo by @renovate[bot] in #4507
• [backend] chore(deps): update dependency commons-io:commons-io to v2.21.0 by @renovate[bot] in #4504
• [backend] chore(deps): update dependency net.javacrumbs.json-unit:json-unit-assertj to v5.1.0 by @renovate[bot] in #4509
• [backend/frontend] fix(importexport): payload comming from collector (#4427) by @EmilieFo17 in #4463
• [backend] chore(deps): update dependency io.opentelemetry:opentelemetry-bom to v1.56.0 by @renovate[bot] in #4508
• [backend] chore(deps): update dependency org.apache.maven.plugins:maven-resources-plugin to v3.4.0 by @renovate[bot] in #4510
• [tool] fix(renovate): disable update of internal maven packages & inc… by @guillaumejparis in #4515
• [backend] chore(deps): update dependency com.rabbitmq:amqp-client to v5.28.0 by @renovate[bot] in #4525
• [backend] chore(deps): update dependency io.opentelemetry:opentelemetry-bom to v1.57.0 by @renovate[bot] in #4526
• [frontend] chore(deps): update dependency tss-react to v4.9.20 by @renovate[bot] in #4524
• [frontend] chore(deps): update dependency react-grid-layout to v1.5.3 by @renovate[bot] in #4523
• [tool] chore(deps): migrate Renovate config by @renovate[bot] in #4533
• build(deps): bump jws from 4.0.0 to 4.0.1 in /openaev-front by @dependabot[bot] in #4513
• [backend] feat(simulations): fix never ending simulations when error on injects (#4353) by @gabriel-peze in #4531
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.40.3 by @renovate[bot] in #4539
• [backend] chore(deps): update dependency org.bouncycastle:bcpg-jdk18on to v1.83 by @renovate[bot] in #4540
• [backend] fix: allow injector contract creation even if vulnerabilities are not yet stored (#4406) by @MarineLeM in #4537
• [backend/frontend] fix(scenario): fix direct start when a scenario is scheduled (#4329) by @damgouj in #4528

New Contributors:

• @corinnekrych made their first contribution in #4476

Full Changelog: 2.0.5...2.0.6

Version 2.0.5

Bug Fixes:

• #4428 STIX input: when Attack pattern has no external ID, no inject or placeholder is created
• #4415 Teams "replaced" can't be added again to a simulation
• #4412 Nmap injector error when the target key is manual
• #4403 My Security Coverage don't integrate all TTPs & Vulnerabilities from OpenCTI
• #4395 opencti tag not always applied on scenario created via security coverage
• #4370 NPE on /api/simulations/:id when id does not exist
• #4359 export of payload list seems off
• #4337 Deleting an endpoint is taking a lot of time and sometimes fail, need to refresh
• #4267 No animation on Expectation Results Traces drawer
• #3959 Incorrect Time Display in Scenario Tab (–2h Shift)
• #3956 Error 500 when relaunching Atomic testing / send individual mails with Attachment
• #3909 Unable to Update Security Platforms
• #3721 When I create a technical inject in a simulation and I remove the expectation, expectations still there
• #3589 Manual inject expectation has not been created correctly

Pull Requests:

• [backend] Update images openaev email by @savacano28 in #4314
• [frontend] Translation user's files from javascript to typescript by @camrrx in #4290
• [frontend] Fix EE license dialog (#3714) by @GaetanSantucci in #4304
• [frontend] Add Spanish language support to the platform by @savacano28 in #4270
• [frontend] Update dependency zustand to v5.0.8 (release/current) by @renovate[bot] in #4237
• [frontend] Update fontsource monorepo to v5.2.8 (release/current) by @renovate[bot] in #4238
• [tool] Update dependency kubernetes to v2.0.1 (release/current) by @renovate[bot] in #4239
• [frontend] Update dependency immutable to v5.1.4 (release/current) by @renovate[bot] in #4230
• [frontend] Update dependency monocart-coverage-reports to v2.12.9 (release/current) by @renovate[bot] in #4231
• [backend] Update dependency org.postgresql:postgresql to v42.7.8 (release/current) by @renovate[bot] in #4218
• [tool] Update eclipse-temurin Docker tag to v21.0.8_9-jre (release/current) by @renovate[bot] in #4240
• [frontend] Update dependency react-intl to v7.1.14 (release/current) by @renovate[bot] in #4233
• [frontend] Update dependency remark-flexible-markers to v1.3.1 (release/current) by @renovate[bot] in #4235
• [backend] Update dependency co.elastic.clients:elasticsearch-java to v8.19.5 (release/current) by @renovate[bot] in #4214
• [backend] Update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.14.1 (release/current) by @renovate[bot] in #4216
• [backend] Update dependency ch.qos.logback:logback-classic to v1.5.20 (release/current) by @renovate[bot] in #4220
• [frontend] Update dependency @testing-library/dom to v10.4.1 (release/current) by @renovate[bot] in #4221
• [frontend] Update dependency esbuild to v0.25.11 (release/current) by @renovate[bot] in #4224
• [frontend] Update dependency eslint-plugin-playwright to v2.2.2 (release/current) by @renovate[bot] in #4225
• [frontend] Update dependency eslint-plugin-react-refresh to v0.4.24 (release/current) by @renovate[bot] in #4226
• [frontend] Update dependency fs-extra to v11.3.2 (release/current) by @renovate[bot] in #4227
• [frontend] Update dependency html-react-parser to v5.2.7 (release/current) by @renovate[bot] in #4228
• [frontend] Update dependency react-syntax-highlighter to v15.6.6 (release/current) by @renovate[bot] in #4234
• [frontend] Update dependency monocart-reporter to v2.9.23 (release/current) by @renovate[bot] in #4232
• [frontend] Update dependency @xyflow/react to v12.9.1 (release/current) by @renovate[bot] in #4223
• [frontend] Update dependency i18n-auto-translation to v2.2.3 (release/current) by @renovate[bot] in #4229
• [backend] Update dependency org.springframework.security:spring-security-crypto to v6.5.6 (release/current) by @renovate[bot] in #4219
• [frontend] Update dependency @vitest/eslint-plugin to v1.3.26 (release/current) by @renovate[bot] in #4222
• [backend] Update dependency io.swagger.core.v3:swagger-annotations-jakarta to v2.2.40 (release/current) by @renovate[bot] in #4215
• [backend] Update dependency org.jacoco:jacoco-maven-plugin to v0.8.14 (release/current) by @renovate[bot] in #4217
• Update github/codeql-action action to v4 (release/current) by @renovate[bot] in #4256
• Update actions/setup-python action to v6 (release/current) by @renovate[bot] in #4255
• Update actions/checkout action to v5 (release/current) by @renovate[bot] in #4253
• [frontend] Update dependency typescript to v5.9.3 (release/current) by @renovate[bot] in #4201
• [tool] Update dependency slack to v5.2.3 (release/current) by @renovate[bot] in #4208
• [frontend] Update react monorepo (release/current) by @renovate[bot] in #4205
• [frontend] Update Yarn to v4.10.3 (release/current) by @renovate[bot] in #4207
• [frontend] Update dependency uuid to v13 (release/current) by @renovate[bot] in #4248
• [frontend] Update dependency jsdom to v27 (release/current) by @renovate[bot] in #4247
• [frontend] Update dependency cross-env to v10 (release/current) by @renovate[bot] in #4246
• [frontend] Update dependency @vitejs/plugin-react to v5 (release/current) by @renovate[bot] in #4244
• [frontend] Update dependency @faker-js/faker to v10 (release/current) by @renovate[bot] in #4243
• [backend] Update dependency net.javacrumbs.json-unit:json-unit-assertj to v5 (release/current) by @renovate[bot] in #4242
• [backend] Add LogExecutionTime to search teams by @RomuDeuxfois in #4340
• [backend] Improv tanium token expiration logs by @RomuDeuxfois in #4325
• [backend] Update dependency com.diffplug.spotless:spotless-maven-plugin to v3 (release/current) by @renovate[bot] in #4241
• [frontend] Update dependency react-hook-form to v7.65.0 (release/current) by @renovate[bot] in #4199
• [frontend] Update dependency react-router to v7.9.5 (release/current) by @renovate[bot] in #4200
• [frontend] Update eslint monorepo to v9.38.0 (release/current) by @renovate[bot] in #4203
• [frontend] Update dependency swagger-typescript-api to v13.2.16 (release/current) by @renovate[bot] in #4236
• [frontend] Update material-ui monorepo (release/current) by @renovate[bot] in #4204
• [tool] Update Node.js to v22.21.1 (release/current) by @renovate[bot] in #4211
• [frontend] Update dependency ramda to v0.32.0 (release/current) by @renovate[bot] in #4198
• [frontend] Update dependency globals to v16.5.0 (release/current) by @renovate[bot] in #4197
• [frontend] Update dependency dompurify to v3.3.0 (release/current) by @renovate[bot] in #4196
• [frontend...

Version 2.0.4

Bug Fixes:

• #4393 Clicking email link from Lessons Learned error: 'No lessons learned categories in this undefined yet'
• #4390 Security Coverage: coverage scores are serialised as fractions; OCTI does not interpret it correctly

Pull Requests:

• [backend] fix(securitycoverage): convert coverage score in fractions to percentage points (#4390) by @antoinemzs in #4391
• [backend] fix(auth): skipping rbac on public api calls (#4393) by @Dimfacion in #4397

Full Changelog: 2.0.3...2.0.4

Version 2.0.3

Bug Fixes:

• #4364 The dashboard isn’t working properly when applied to a simulation
• #4262 Links in emails generated by injects not displaying corretly
• #4021 Inject appears under "No teams" in timeline when targeting "All teams"
• #3907 Error when accessing a lesson objective started by another user

Pull Requests:

• [frontend] force https protocol by default if no one is set on links (#4262) by @gabriel-peze in #4365
• [backend] chore: migrate platform title from 'BAS' to 'AEV' (#4366) by @guillaumejparis in #4367
• [frontend] fix(frontend): fix timeline display when all teams is selected (#4021) by @gabriel-peze in #4373
• [ci] chore(workflow): add pr title validation (#1) by @savacano28 in #4346
• [backend] fix(import): remap IDs in non entity content (#4364) by @antoinemzs in #4376
• [backend] fix(indexation): reindex all data when index on search engine is created by @RomuDeuxfois in #4377
• Bump js-yaml from 4.1.0 to 4.1.1 in /openaev-front by @dependabot[bot] in #4374
• [backend/frontend] fix: errors when managing a lesson objective (#3907) by @damgouj in #4369
• [backend] fix(starterpack): reexport dashboard having lost links (#4364) by @antoinemzs in #4387

Full Changelog: 2.0.2...2.0.3

Version 2.0.2

Bug Fixes:

• #4348 When I create a security coverage from an OCTI instance, I have an error on OAEV instance
• #4342 Permission denied when adding filters with simulation manage granted
• #4338 [bug] email sent to admin on demo everyday (connectivity lost)

Pull Requests:

• [backend] chore(xtm-hub): add configuration to disable connectivity email by @Kroustille in #4339
• [frontend/backend] Rbac filter params #4342 by @camrrx in #4323
• Manage extra vars and wait for end of awx job by @efaure in #4347
• [backend] deal with case when MITRE ID is missing (#4348) by @antoinemzs in #4352

Full Changelog: 2.0.1...2.0.2

Version 2.0.1

Bug Fixes:

• #4326 Execution status of all injects is "maybe prevented" instead of executed

Pull Requests:

• [CI] Add image pull secret to drone build by @efaure in #4319
• [backend] deletebyid assetAgentJob from nativequery by @MarineLeM in #4330
• Bump vite from 7.0.5 to 7.0.8 in /openaev-front by @dependabot[bot] in #4320
• Bump koa from 3.0.1 to 3.1.1 in /openaev-front by @dependabot[bot] in #4318
• Bump nodemailer from 7.0.3 to 7.0.10 in /openaev-front by @dependabot[bot] in #4316
• Bump ch.qos.logback:logback-core from 1.5.18 to 1.5.19 in /openbas-api by @dependabot[bot] in #4296

Full Changelog: 2.0.0...2.0.1