Releases: monarc-project/MonarcAppFO
Releases · monarc-project/MonarcAppFO
Release list
Release v2.13.4
Enhancement
- Change from 27002:2013 to :2022 (default deployment)
- Increased the password min length requirement from 9 to 12 characters.
- [FrontOffice] Add Docker environment for the dev env.
- Add the swagger files renderer and describe all the API endpoints.
Fix
- Implementation plan: Same measure reported multiple times.
- SQL syntax error (MySQL ONLY_FULL_GROUP_BY violation).
- Dashboard Operational Risks PNG Export incorrect.
- Updated the proxy-manager to use the LTS version and avoid the php version limitation.
- Fixed the recommendations export to .csv, removed the default limit of 25 records.
- Fixed the import process to replace the global objects' risks Existing controls fields and the threat CIA values.
Release v2.13.3-p6
Fix
- Fixed the issue of the analysis creation based on a model with context fields.
Release v2.13.3-p5
Release v2.13.3-p4
Release v2.13.3-p3
Fix
- Import Asset Library objects from MOSP when selected category is root.
- Snapshots creation when Record of Processing Activities are fully defined.
Release v2.13.3-p2
Fix
- #562 Fixed the final report generation error when the asset's context is set.
- Fixed the scale impact type status validation during the import process. If an instance consequence is not hidden, but a corresponding scale impact type is hidden the consequence value is not used for the risk calculation.
Release v2.13.3-p1
Fix
- Added the validation of the instances hierarchy to prevent a possible parent / child circular reference.
- Fixed batch import validation error for measures, operational risks and operational risks tags.
Release v2.13.3
New features
- Possibility to rest 2FA of users by the admin account along with the password reset. #522
- The Global analyses stats is only available now to the users with CEO (global statistics) role.
Fixes
- Fixed analysis creation based on a specific model when the model has assets that consist of risks with generic threats or vulnerabilities.
- Fixed updating of the assets' metadata.
Release v2.13.2
New features
- An optional Captcha integration, that can appear after certain number, configured, of unsuccessful login attempts.
To enable Captcha a specific configuration has to be added (@see config/autoload/local.php.dist, 'captcha' option). - Configurable export of analyses with evaluations. By default, the option can be yes, so export with evaluations is not forgotten to be enabled.
To enable it a specific configuration has to be added (@see config/autoload/local.php.dist, 'export' option). - Added the risks IDs to all the tables to facilitate the traceability. Based on the discussion.
Fixes
- #552, Fix of Assets Library objects import.
Release v2.13.1-p2
Fixes
- Fixed import of the custom operational risks.
- Fixed the old migration to avoid the error.