Features:
- Add AWS Cognito configuration example - apiserver/#5172
Fixes:
- Fix too many query parameters when retrieving vuln aliases - apiserver/#5167
- Add apiserver health check to Compose files - apiserver/#5171
- Fix OSV ubuntu advisory containing severity without type - apiserver/#5168
- Handle dangling SPDX expression operators - apiserver/#5173
- Fix BOM export failing for projects of type NONE - apiserver/#5178
- Add whitespace sanitization in fuzzySearch CPE to fix CPE validation errors - apiserver/#5176
- Ensure VulnerableSoftware query is able to leverage indexes - apiserver/#5177
- Bulk load component relationships for BOM export - apiserver/#5179
- Improve Composer meta analyzer’s ability to deal with minified metadata - apiserver/#5175
- Fix failing v4.13.1 migration for H2 deployments that pre-date v4.11.0 - apiserver/#5180
For a complete list of changes, refer to the respective GitHub milestones:
We thank all organizations and individuals who contributed to this release, from logging issues to taking part in discussions on GitHub & Slack to testing of fixes.
Special thanks to everyone who contributed code to implement enhancements and fix defects:
@ch8matt, @jonbally, @vdieieva
dependency-track-apiserver.jar
| Algorithm | Checksum |
|---|---|
| SHA-1 | ba7866fa7b8be30f2058606ee77539b126ab61f1 |
| SHA-256 | 8b6b2f29bdfd6f3e81ed2c9754a3ab2b4e27bbb9c33e52f720700d7e73558adb |
dependency-track-bundled.jar
| Algorithm | Checksum |
|---|---|
| SHA-1 | 70ac64f18c4b219d283df0c056e74f001287159b |
| SHA-256 | 1ae9984304854845cc5741d1dd1288e7b0a748539f448e0d0899ef635bb33c28 |
frontend-dist.zip
| Algorithm | Checksum |
|---|---|
| SHA-1 | 5eeea5e7bd1db7c40f45380580518eea7bdc53d7 |
| SHA-256 | f5bdf91803fb99b966f38be60b937adec96036b80bf7a793d32bb51b67f6fd7b |