vulcan v2.1.8

What's Changed

👒 Dependencies

• Bump ws from 6.2.2 to 6.2.3 in the npm_and_yarn group across 1 directory by @dependabot in #628

Other Changes

• updated cci mappings to latest rev5 by @rlakey in #627

Full Changelog: v2.1.7...v2.1.8

vulcan v2.1.7

What's Changed

👒 Dependencies

• Bump axios from 0.21.4 to 1.6.0 by @dependabot in #617
• Bump the npm_and_yarn group across 1 directories with 1 update by @dependabot in #619
• Bump the npm_and_yarn group across 1 directories with 1 update by @dependabot in #620
• Bump the npm_and_yarn group across 1 directory with 3 updates by @dependabot in #623

Other Changes

• Upgrade to New Heroku Plan by @DMedina6 in #624

New Contributors

• @DMedina6 made their first contribution in #624

Full Changelog: v2.1.6...v2.1.7

Vulcan v2.1.6

What's Changed

👒 Dependencies

• Bump @babel/traverse from 7.15.4 to 7.23.2 by @dependabot in #613
• Bump browserify-sign from 4.2.1 to 4.2.2 by @dependabot in #614

Other Changes

• updating container to run as a non root user by @rlakey in #612

Full Changelog: v2.1.5...v2.1.6

Vulcan v2.1.5

What's Changed

Exciting New Features 🎉

• Enabled viewing of related rules in read-only mode, but hiding the copy button by @vanessuniq in #605
• Enable user to select which component to excel export by @vanessuniq in #610

Bug Fixes

• Added fixref attribute to fixtext XML tag for compatibility with stig-viewer-3x by @smarlaku820 in #608
• Ensure a rule's inspec code is updated after establishing rule satisfaction or reverting change on a rule by @vanessuniq in #609

Other Changes

• Removed Changelog from the landing page and have the app version on the top menu as a link directing to the changelog page by @vanessuniq in #606

Full Changelog: v2.1.4...v2.1.5

Vulcan v2.1.4

What's Changed

Exciting New Features 🎉

• New Feature: Enable setting up Project visibility and Requesting access to a project by @vanessuniq in #595
• STIG & Related Rules workflow by @vanessuniq in #599

Feature Enhancements

• Constrain the selectable list to allow only Apllicable - Configurable controls to be satisfied by other by @vanessuniq in #586
• Constrain requirement for locking Applicable -Does Not Meet and Applicable - Inherently Meets controls by @vanessuniq in #587
• Notifications: Slack notification and SMTP Enhancement by @vanessuniq in #594
• VULCAN-528: Fix component admin on component cards by @vanessuniq in #588

Bug Fixes

• If null data just return for related info by @freddyfeelgood in #602
• Fix: Capture STIG Name on Upload by @vanessuniq in #603
• Fix Related Rules Grouping by @vanessuniq in #604

👒 Dependencies

• Bump semver from 5.7.1 to 5.7.2 by @dependabot in #596
• Bump word-wrap from 1.2.3 to 1.2.4 by @dependabot in #597
• Bump puma from 4.3.12 to 5.6.7 by @dependabot in #601
• Bump audited from 5.0.2 to 5.3.3 by @dependabot in #568

Full Changelog: v2.1.3...v2.1.4

Vulcan v2.1.3

What's Changed

Exciting New Features 🎉

• VULCAN-551: Enabling SMTP feature to send emails via ActionMailer by @smarlaku820 in #584
• VULCAN-570: Control View Only and Edit Mode UX refactor by @vanessuniq in #583

Other Changes

• VULCAN-579: Fix project update logic for detecting name changes correctly by @smarlaku820 in #580
• VULCAN-581: Enhance Import from Spreadsheet workflow by @vanessuniq in #582

Full Changelog: v2.1.2...v2.1.3

Vulcan v2.1.2

What's Changed

Exciting New Features 🎉

• VULCAN-563: Export/Import inspec control body by @vanessuniq in #564
• Enabled editing component STIG ID prefix by @vanessuniq in #558

Other Changes

• Group histories with the same name, created_at, and comment; add tooltip for rule status by @vanessuniq in #562
• Adding the option to group/sort controls by SrG ID by @vanessuniq in #566
• VULCAN- 565: Add latest release version tag to Navbar component by @vanessuniq in #567
• VULCAN-559: Support for Multiple CCIs by @vanessuniq in #569

Full Changelog: v2.1.1...v2.1.2

vulcan v2.1.1

What's Changed

👒 Dependencies

• Bump rack from 2.2.6.3 to 2.2.6.4 by @dependabot in #548
• Bump nokogiri from 1.14.2 to 1.14.3 by @dependabot in #554

Other Changes

• VULCAN-348: Aternative testing by @vanessuniq in #546
• Customized parser to not interpret character/html entity by @vanessuniq in #550
• VULCAN-372: Add additional component question of url type by @freddyfeelgood in #553
• Up to deep linking by @vanessuniq in #552
• Use title for description if description blank by @rlakey in #557

Full Changelog: v2.1.0...v2.1.1

Vulcan v2.1.0

What's Changed

Exciting New Features 🎉

• Enable XCCDF export of a single component by @vanessuniq in #511
• VULCAN-496: Completed #496 by @vanessuniq in #523
• Added Filtering capability to SRG dropdown by @freddyfeelgood in #526:
• Feature DISA Export Excel complete with tests by @smarlaku820 in #529
• Disallow new project creation if not admin by default by @smarlaku820 in #539
• Created an ENV variable for controlling USER registrations on Vulcan app (Enabled by Default) by @smarlaku820 in #535
• Added OIDC Integration capability for Vulcan by @smarlaku820 in #540
• VULCAN-389: Integrate Slack With Vulcan by @smarlaku820 in #549

👒 Dependencies

• Bump nokogiri from 1.13.4 to 1.13.5 by @dependabot in #435
• Bump nokogiri from 1.13.5 to 1.13.6 by @dependabot in #437
• Bump rack from 2.2.3 to 2.2.3.1 by @dependabot in #439
• Bump eventsource from 1.1.0 to 1.1.1 by @dependabot in #440
• Bump rails-html-sanitizer from 1.4.2 to 1.4.3 by @dependabot in #446
• Bump terser from 4.8.0 to 4.8.1 by @dependabot in #450
• Bump moment from 2.29.2 to 2.29.4 by @dependabot in #451
• Bump omniauth from 1.9.1 to 1.9.2 by @dependabot in #466
• Bump express from 4.17.1 to 4.18.2 by @dependabot in #506
• Bump nokogiri from 1.13.6 to 1.13.10 by @dependabot in #508
• Bump minimatch from 3.0.4 to 3.1.2 by @dependabot in #507
• Bump loader-utils from 1.4.0 to 1.4.2 by @dependabot in #500
• Bump loofah from 2.18.0 to 2.19.1 by @dependabot in #509
• Bump decode-uri-component from 0.2.0 to 0.2.2 by @dependabot in #502
• Bump rails-html-sanitizer from 1.4.3 to 1.4.4 by @dependabot in #510
• Bump globalid from 1.0.0 to 1.0.1 by @dependabot in #521
• Bump json5 from 1.0.1 to 1.0.2 by @dependabot in #513
• Bump rack from 2.2.4 to 2.2.6.2 by @dependabot in #520
• Bump omniauth and gitlab_omniauth-ldap by @dependabot in #541
• Bump omniauth-rails_csrf_protection Gem by @smarlaku820 in #543
• Bump rack from 2.2.6.2 to 2.2.6.3 by @dependabot in #545

Other Changes

• VULCAN-429: Fix deleting a control prevents the deleting of the component by @timwongj in #430
• VULCAN-433: Modify rules_count to exclude deleted rules by @timwongj in #436
• VULCAN-414: Sort displayed components by @timwongj in #434
• VULCAN-301: Display loading... when uploading SRG by @timwongj in #431
• VULCAN-298: SRG page enhancements by @timwongj in #428
• VULCAN-362: Account for controls marked as duplicate on existing SRG content import by @timwongj in #427
• VULCAN-419: Sort Inspec tags by @timwongj in #432
• fix add new control by @timwongj in #443
• VULCAN-454: Implement find and replace by @timwongj in #455
• VULCAN-410: Swap diff view comparison by @sgober in #441
• VULCAN-415: Show version and release for overlaid components suggestions by @timwongj in #438
• VULCAN-445: Title box visibility by @timwongj in #456
• VULCAN-449: Fix mark as duplicate for proj/comp admin/authors by @timwongj in #460
• VULCAN-457: Add tooltip for mark as duplicate by @timwongj in #459
• VULCAN-447: Enable context-aware popover help icons, depending on Status field by @timwongj in #461
• VULCAN-448: Add concept of compensating controls and POA&M statuses to Applicable - Does Not Meet status by @timwongj in #462
• VULCAN-452: Review workflow improvements by @timwongj in #464
• VULCAN-448: mitigations are always shown by @timwongj in #465
• VULCAN-470: change the color of the mark as duplicate button by @vanessuniq in #482
• VULCAN-475: fixes #475 by @wdower in #477
• Add GitHub logo to README by @ChrisHinchey in #481
• Fix GitHub logo in README by @ChrisHinchey in #485
• Update push-to-docker.yml by @vanessuniq in #489
• Debugged: added the missing currentUserId prop to RuleEditorHeader co… by @vanessuniq in #486
• VULCAN-501: copy component fails when selecting a newer srg version and a control has been previously deleted in the source component by @vanessuniq in #503
• VULCAN-495: export to excel does not work if components have the same name by @vanessuniq in #505
• VULCAN-517: update SRG info on control view by @rlakey in #519
• VULCAN-315: added toggle for stig id to srg id by @rlakey in #516
• Properly using #dup method for expected behavior: by @vanessuniq in #522
• VULCAN-524: fix answer cloning issue by @rlakey in #525
• VULCAN-530: populate gid and rid in inspec body data by @rlakey in #533
• VULCAN-531: fix for copy comp w new srg for vuln disc by @rlakey in #532
• Sorted excel output and misc bug fixes by @rlakey in #537

New Contributors

• @sgober made their first contribution in #441
• @wdower made their first contribution in #477
• @ChrisHinchey made their first contribution in #481
• @smarlaku820 made their first contribution in #529

Full Changelog: v2.0.0...v2.1.0

v2.0.0

remove heroku gh action