Fixes:
- Fix unrelated vulnerabilities being correlated during alias synchronization - apiserver/#2194
- Fix
NullPointerExceptionwhen email alert is configured with just teams as destination - apiserver/#2698 - Fix broken pagination in DefectDojo integration - apiserver/#2707
- Fix search function in policy violation tab not working - apiserver/#2622
- Fix
PATCH /api/v1/projectendpoint not updating external references - apiserver/#2695 - Fix
NullPointerExceptionin DefectDojo integration - apiserver/#2628 - Fix retrieval of OIDC JWK sets not respecting HTTP proxy settings - apiserver/#2696
- Lower log level for repository meta analyzer to
WARNand include exception details - apiserver/#2697 - Add missing config docs for
alpine.oidc.client.id- apiserver/#2743 - Fix not all vulnerability aliases being displayed in the UI - frontend/#477
- Fix broken vulnerability alias links - frontend/#486
- Fix broken project tag links on tabs other than “Overview” - frontend/#483
- Fix broken project version links on tabs other than “Overview” - frontend/#495
For a complete list of changes, refer to the respective GitHub milestones:
We thank all organizations and individuals who contributed to this release, from logging issues to taking part in discussions on GitHub & Slack to testing of fixes.
Special thanks to everyone who contributed code to fix defects:
@heubeck, @jakubrak, @sahibamittal, @valentijnscholten
dependency-track-apiserver.jar #
| Algorithm | Checksum |
|---|---|
| SHA-1 | 553d17a940220d79b686ce6b64d65c0854915f1b |
| SHA-256 | 56db674f5b467eac0a5b3fde99bc6285fd9135ad84e8fa0328ed6ace64fc723c |
dependency-track-bundled.jar #
| Algorithm | Checksum |
|---|---|
| SHA-1 | b2f0e053083ac672a9eaef19f7363ac854bdb91a |
| SHA-256 | e1bd03ea89b312c2125791a0d46ca99aa62365140a4f175d2f45cbb1d59a87a6 |
frontend-dist.zip #
| Algorithm | Checksum |
|---|---|
| SHA-1 | 01bc042e1f510e089b9db937852dbcde69eca603 |
| SHA-256 | f946994c0f66647bd34c9e10997f2b62c08ab17ebbfe42edf149be12a47b2278 |