Skip to content

Releases: Security-Tools-Alliance/rengine-ng

v2.1.0

06 Nov 15:05
@github-actions github-actions
v2.1.0
This tag was signed with the committer’s verified signature.
AnonymousWP Anonymoussaurus
SSH Key Fingerprint: jIkxnGOSS8aTpO3J13jVGT9HaX4LNvM7MOqOPoAlHhE Learn about vigilant mode.
0ec7383
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.1.0 Latest
Latest

What's Changed

Added

  • feat(release): update release/2.1.0 from upstream by @psyray in #86
  • feat(ui): mask API keys in settings view by @yarysp in #80
  • feat(install): arm64 support by @yarysp in #82
  • ops(install): use python venv (pipx/poetry) to fix/prevent conflicting packages by @psyray & @Talanor in #84
  • build(install): migrate to GitHub Container Registry, optimize Docker setup, and update install scripts by @psyray & @Talanor in #139
  • build(ci): build Docker image and upload to GitHub container registry by @AnonymousWP in #138
  • build(docker): add ARM support for Celery Dockerfile by @psyray in #161
  • build(docker): improve makefile, docker verbosity & provide unit tests by @psyray in #155
  • dev(django): install django extensions to have more commands by @psyray in #196
  • feat(ui): disable update button in tool arsenal by @psyray in #200
  • feat(todo): enhance todo functionality and error handling by @psyray in #198
  • project(ui): confine users to projects and standardize slug usage by @psyray in #154
  • feat(ui): bulk remove vulnerabilities by @0b3ud in #168
  • feat: reintroduce Lark notification fields in scanEngine by @psyray in #207
  • feat: enhance IP retrieval with caching by @psyray in #215
  • build(docker): refactor detection of OS and add support for RHEL distros by @AnonymousWP in #211
  • Release/2.1.0 by @AnonymousWP in #1

Fixed

  • fix(docs): change art logo and fix doc link by @psyray in #137
  • fix(cidr): add CIDR import by @pbehnke in #141
  • fix(ui): restore static files path & remove beat entrypoint useless code by @psyray in #145
  • fix(conflicts): fix merge conflicts for branch release/2.1.0 by @psyray in #150
  • fix(scan): subdomain import with suffix more than 4 chars by @yogeshojha in #147
  • build(ci): extract issue number from PR body by @AnonymousWP in #153
  • docs(readme): set badge to latest release automatically by @psyray in #158
  • docs(readme): remove space after url by @psyray in #159
  • fix(ui): permit to link tab URL and history back into it by @yogeshojha in #164
  • fix(celery): wafw00f install by @psyray in #166
  • fix(ui): load default yaml config on add scan engine form by @psyray in #171
  • fix(ui): tools settings page by @psyray in #169
  • fix(oneforall): wrong s3 bucket reported by @Talanor in #176
  • fix(ssl): add SAN extension to the cert by @michschl in #178
  • fix(ui): stored XSS by @yogeshojha in #180
  • fix(install): revert changes of prebuilt chain by @psyray in #183
  • fix(ui): fix 500 error on scan engine add by @psyray in #184
  • build(install): improve root detection and set ownership on files by @psyray in #186
  • fix(scan): fix clocked and scheduled scan not working by @yogeshojha in #182
  • fix(graph): de-duplicate dorks and vulnerabilities by @psyray in #188
  • build(docker): replace staticfiles volume to prevent empty directory by @psyray in #199
  • fix(custom_header): not correctly parsing parameters by @psyray in #172
  • fix: change install_type value in .env-dist and add missing imports by @psyray in #201
  • refactor: replace hardcoded API URLs with dynamic endpoint URLs by @psyray in #206
  • refactor: update modal handling and improve CMS detection by @psyray in #210
  • refactor: update delete functions to use URL endpoints by @psyray in #213
  • refactor: update URL handling by @psyray in #214
  • fix: apply github-advanced-security recommendations by @psyray in #220

Miscellaneous

  • chore(deps): bump requests from 2.31.0 to 2.32.2 in /web by @dependabot in #105
  • chore(deps): bump django from 3.2.4 to 3.2.25 in /web by @dependabot in #104
  • build(ci): add CI for closing issues when PR is merged by @AnonymousWP in #144
  • build(ci): add write permissions by @AnonymousWP in #163
  • docs(readme): remove note by @AnonymousWP in #167
  • docs(readme): redirect install & update section to the wiki pages by @psyray in #185
  • build(ci): build docker images for each tag, release, push by @psyray in #151
  • build(images): restrict image creation, add correct tags and clean non tagged images by @psyray in #193
  • build(ci): improve CodeQL configuration by @AnonymousWP in #194
  • ci(unit-tests): provide unit tests for UI by @psyray in #189
  • refactor: improve robustness of nuclei result parsing by @psyray in #209
  • refactor: update wordlists and configuration defaults by @psyray in #221

New Contributors

Full Changelog: v2.0.7...v2.1.0

Contributors

psyray, Talanor, and 7 other contributors
Assets 2
Loading

v2.0.7

14 Aug 14:08
@github-actions github-actions
v2.0.7
This tag was signed with the committer’s verified signature.
AnonymousWP Anonymoussaurus
SSH Key Fingerprint: jIkxnGOSS8aTpO3J13jVGT9HaX4LNvM7MOqOPoAlHhE Learn about vigilant mode.
ac09aba
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.0.7

What's Changed

Added

  • dev(debug): complete dev environment to debug/code easily by @yarysp in #68
  • build(ci): automate releases based on tags and labels by @AnonymousWP in #111
  • build(install/uninstall/update): improve usability, readability and overall user experience of output by @AnonymousWP in #95
  • feat(version): centralize version management in web/reNgine/version.txt by @psyray in #131
  • feat(docker): add support for old docker-compose command by @psyray in #132

Fixed

  • fix(security): OS Command Injection vulnerability (x2) by @AnonymousWP in #2
  • feat: update to 2.0.6 from upstream by @yarysp in #79
  • ops(install): fix rengine install/uninstall by @yarysp in #81
  • fix(file_fuzz): subdomain_id key error by @psyray in #88
  • refactor(scan): custom headers by @psyray in #90
  • fix(security): rework scan working folder location to prevent leaks by @psyray in #92
  • fix(scan): fix bad base path retrieval for results dir by @psyray in #94
  • fix(scan): rework the alive endpoint and redirection operation by @psyray in #96
  • fix(scan): check value returned for all subs saved by @psyray in #100
  • fix(scan): rework http_crawl to update subdomain datas by @psyray in #102
  • fix(ui): reset osint dork result id before display by @psyray in #103
  • fix(scan): centralize and log subdomains creation by @psyray in #97
  • fix(tools): update git tools at startup by @psyray in #98
  • fix(scan): add some iterable checks to prevent TypeError by @psyray in #113
  • fix(screenshot): get only some columns from csv file by @psyray in #114
  • fix(ui): escape vulnerability request/response in db and display in ui by @psyray in #118
  • fix(fetch_url): fix unwanted subdomain and rework fetch_url task by @psyray in #126
  • build(ci): fix missing write permissions by @AnonymousWP in #135

Miscellaneous

  • chore(issue-templates): refactor issue forms by @AnonymousWP in #61
  • docs(readme): fix links and images by @psyray in #65
  • docs: update expired Discord invitation link with non expiring one by @psyray in #109
  • docs: refactor documentation by @AnonymousWP in #115
  • build(deps): bump Django deps to fix security issues by @psyray in #133

New Contributors

Full Changelog: v2.0.3...v2.0.7

Contributors

psyray, AnonymousWP, and yarysp
Assets 2
Loading