Releases: CVEProject/cve-services
Sprint-34
What's Changed
- Resolves #803 - Updates Error messaging for null bytes & tests by @david-rocca in #1113
- Resolves #1114 - Fixes bugs with new parameters by @david-rocca in #1115
- Resolves #1050 Created new GET
/cve_cursor
endpoint that implements cursor pagination for getting CVE records by @jdaigneau5 in #1108 - Resolves #1074 - Update openapi.json bindings by @david-rocca in #1095
- Resolves #1097 Prevents datePublic values from being future dates by @jdaigneau5 in #1117
- Bump semver from 5.7.1 to 5.7.2 by @dependabot in #1116
Full Changelog: Sprint-32...Sprint-34
Sprint-32
What's Changed
- Resolves #1092 updated insertADP container response message by @jdaigneau5 in #1098
- Resolves #818 - Better Errors for Bad dates in time_modified by @david-rocca in #1099
- Resolves #1013 Updated onlyOrgWithRole middleware to onlyOrgWithPartnerRole by @jdaigneau5 in #1104
- Resolves #1018 - Character and User limits by @david-rocca in #1107
- Bump word-wrap from 1.2.3 to 1.2.4 by @dependabot in #1106
- Bump semver from 5.7.1 to 5.7.2 by @dependabot in #1109
- Bump mongoose from 5.13.17 to 5.13.20 by @dependabot in #1105
Full Changelog: Sprint-31...Sprint-32
Sprint-31
What's Changed
- Resolves #1075 - Addition of cna_modified boolean by @david-rocca in #1086
- Resolves #1076 - ADP short name parameter by @david-rocca in #1087
- Resolves #1036 - cve-id/:id state parameter checks by @david-rocca in #1088
- Resolves #1014 - Fixes Typo in middleware.js by @david-rocca in #1089
- Resolves #798 - Update to LF line endings. by @david-rocca in #1090
- Resolves #741 Fixes GET
/cve-id
endpoint's out of memory bug by @jdaigneau5 in #1091
Full Changelog: v2.2.0...Sprint-31
v2.1.4
What's Changed
- Fixes #1051, change openapi.yml /schemas refs to ../schemas by @kernelsmith in #1052
- Resolves #1053 Added temporary description validator to check for one non-whitespace character by @jdaigneau5 in #1054
Full Changelog: v2.1.3...v2.1.4
v2.1.4-Test
What's Changed
- Resolves #1051, change openapi.yml /schemas refs to ../schemas by @kernelsmith in #1052
- Resolves #1053 Added temporary description validator to check for one non-whitespace character by @jdaigneau5 in #1054
Full Changelog: v2.1.3...v2.1.4
v2.1.3
What's Changed
Note: Release Hard Deploy Version 2.1.3
- Resolves #766 Updates messaging from dev populate script by @slubar in #1010
- Resolves #1011 Refactored null checks for owningCnaShortName and assignerShortName by @jdaigneau5 in #1026
- Resolves #1019 Updates Swagger doc wording to say rejected rather than reject by @slubar in #1030
- Resolves #792 Improve error messages related to org does not exist by @slubar in #1029
- Resolves #809 Prevents org admins from removing their admin role by @jdaigneau5 in #1027
- Resolves #1022 Added link to request form to overIdQuota error message by @jdaigneau5 in #1032
- Resolves #1016 Clarified unableToStoreCveRecord error message by @jdaigneau5 in #1031
- Resolves #609 Added validators and sanitizers for role creation and update by @brettp in #1033
- Resolves #1017 Updates Swagger docs to reflect that providerMetadata is set by… by @slubar in #1037
- Resolves #743 Updated swagger docs to include parameter formats by @jdaigneau5 in #1038
- Resolves #744 Improves error message to indicate valid values for query parameters by @slubar in #1040
- Resolves #1020 #1021 Corrects information about username length and character … by @slubar in #1041
- Updating version numbers to 2.1.3 by @jdaigneau5 in #1045
- Bump json5 from 2.2.1 to 2.2.3 by @dependabot in #981
- Bump mongoose from 5.13.14 to 5.13.15 by @dependabot in #1002
- Bump cookiejar from 2.1.2 to 2.1.4 by @dependabot in #996
Full Changelog: v2.1.2-sd...v2.1.3
Sprint-26
What's Changed
- Resolves #1017 Updates Swagger docs to reflect that providerMetadata is set by system... by @slubar in #1037
- Resolves #743 Updated swagger docs to include parameter formats by @jdaigneau5 in #1038
- Resolves #744 improves error message to indicate valid values for query parameters by @slubar in #1040
- Resolves #1020 #1021 corrects information about username length and characters by @slubar in #1041
Full Changelog: Sprint-25...Sprint-26
Sprint-25
What's Changed
- Resolves #766 updates messaging from dev populate script by @slubar in #1010
- Resolves #1011 Refactored null checks for owningCnaShortName and assignerShortName by @jdaigneau5 in #1026
- Resolves #1019 updates Swagger doc wording to say rejected rather than reject by @slubar in #1030
- Resolves #792 improve error messages related to org does not exist by @slubar in #1029
- Resolves #809 Prevents org admins from removing their admin role by @jdaigneau5 in #1027
- Resolves #1022 Added link to request form to overIdQuota error message by @jdaigneau5 in #1032
- Resolves #1016 Clarified unableToStoreCveRecord error message by @jdaigneau5 in #1031
- Resolves #609, Added validators and sanitizers for role creation and update by @brettp in #1033
- Bump json5 from 2.2.1 to 2.2.3 by @dependabot in #981
- Bump mongoose from 5.13.14 to 5.13.15 by @dependabot in #1002
- Bump cookiejar from 2.1.2 to 2.1.4 by @dependabot in #996
Full Changelog: Sprint-24...Sprint-25
v2.1.2-sd
What's Changed
- Resolves #802 Update boolean query parameters to accept 0,1,true,false,yes,no … by @slubar in #952
- Resolves #714 Updated POST /cve/{id}/cna to handle missing org names consistently with POST /cve/{id}/reject by @jdaigneau5 in #954
- Resolves #959 fixes HTML error in Swagger docs by @slubar in #968
- Resolves #965 fix typo in error message about timestamp format by @slubar in #971
- Resolves #885 Output JSON for 429 errors by @brettp in #973
- Resolves #960 remove uuid-apikey package due to CWE-1104 by @slubar in #970
- Resolves #706 Updated rejectCve endpoints to use the same validation as cna endpoints by @jdaigneau5 in #974
- Resolves #980 Fixed validation calls for rejecting new and existing CVEs by @jdaigneau5 in #983
- Resolves #804 provide useful error message for bad timestamps that include whitespaces by @slubar in #986
- Resolves #956 check for valid date when no timestamp is included by @slubar in #988
- Resolves #810 Updated misleading comment by @jdaigneau5 in #989
- Resolves #955 CVE record creation message shows when and where to view it by @jdaigneau5 in #991
- Resolves #591, Clarified wording of error when trying to update user to the same organization by @brettp in #992
- Resolves #907 fixes error in Swagger doc response json for GET /cve by @slubar in #997
- Resolves #838 Updated isValidUsername error message by @jdaigneau5 in #1000
- Resolves #998 adds dateUpdated to cna created CVE records by @jdaigneau5 in #999
- Resolves #608 Improved error message for creating CVE records with $ in X_ values by @jdaigneau5 in #1003
- Resolves #951 implements bulk download org role by @slubar in #1004
- Resolves #749 Updated error messages for creating and updating users and creating CVE records by @jdaigneau5 in #1005
- Resolves #887. Do not create orgs if UUID is passed. Correct error messages. by @brettp in #1007
- Bump qs and express by @dependabot in #939
- Bump minimatch and mocha by @dependabot in #936
- Updated Cve-services version numbers by @jdaigneau5 in #1023
Full Changelog: v2.1.1-sd...v2.1.2-sd
Sprint 24
What's Changed
-
Resolves #998 adds dateUpdated to cna created CVE records by @jdaigneau5 in #999
-
Resolves issue #887. Do not create orgs if UUID is passed. Correct error messages. by @brettp in #1007
-
Resolves #951 Implements foundation for bulk download feature by @slubar in #1004
-
Resolves issue #907 fixes error in Swagger doc response json for GET /cve by @slubar in #997
-
Resolves #838 Updates isValidUsername error message by @jdaigneau5 in #1000
-
Resolves #608 Improves error message for creating CVE records with $ in X_ values by @jdaigneau5 in #1003
-
Resolves #749 Updates error messages for creating and updating users and creating CVE records by @jdaigneau5 in #1005
Full Changelog: Sprint-22-23...Sprint-24