Skip to content

Releases: oasis-open/openc2-oif-device

v2.1.0

17 Apr 19:29
@ScreamBun ScreamBun
v2.1.0
3b5e584
Compare
Choose a tag to compare
v2.1.0 Latest
Latest
  • Revamped MQTT connection logic
  • Updated HTTP logic
  • Introduced Feature Flags, to allow extra features to be easily enabled or disabled from the config.toml file
  • Kestrel logic is included but Feature Flagged Off
  • Improved device client id generation
  • Improved OpenC2 command validation
  • Introduced the Threat Hunt Schema
  • Bumped express from 4.18.2 to 4.19.2 in /node_utils
  • Bumped fastapi from 0.100.0 to 0.110.0
  • Bumped jinja2 from 3.1.2 to 3.1.3
Assets 2
Loading

v2.0.0

01 Aug 17:50
@ScreamBun ScreamBun
v2.0.0
c1df22b
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.0.0
  • major improvements to the http and mqtt transports
  • includes the beta threat hunting actuator profile for message validation
  • streamlined startup
  • introduction of configurable features via the config.toml
  • basic kestrel integration examples
  • updated readme documentation with clearer instructions, examples and OpenC2 goals
Assets 2
Loading

v1.1.2

13 Jul 19:36
@ScreamBun ScreamBun
v.1.1.2
4c65645
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.1.2

Vulnerability update.
Bump Flask from 2.0.2 to 2.3.2.
Bumped cryptography from 38.0.3 to 41.0.0.

Assets 2
Loading

v1.1.1

07 Apr 18:49
@ScreamBun ScreamBun
v1.1.1
4202ee2
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v1.1.1

Vulnerability fixes applied.

Critical: CVE-2022-42915
Critical: CVE-2022-32221
Critical: CVE-2022-42915
Critical: CVE-2023-23914
Critical: CVE-2022-23521
Critical: CVE-2022-41903
Critical: CVE-2023-23914
High: CVE-2022-39260
High: CVE-2022-43680
High: CVE-2022-42916
High: CVE-2022-43551
High: CVE-2023-23916
High: CVE-2023-23946
High: CVE-2022-4450
High: CVE-2023-0215
High: CVE-2023-0286
Medium: CVE-2022-39253
Medium: CVE-2022-43552
Medium: CVE-2023-23915
Medium: CVE-2023-22490
Medium: CVE-2022-4304
Medium: CVE-2023-0464

Assets 2
Loading

OIF Device 1.1.0

27 Oct 17:54
@ScreamBun ScreamBun
v1.1.0
4673a72
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
OIF Device 1.1.0
  • Refreshed Readme documentation with updated startup instructions, links, images, and maintainer info
  • Updated 3rd Party Dependencies
    • Moment 2.29.3 to 2.29.4
  • Replaced 3rd Party Dependencies
    • djangorestframework-jwt 1.11.1. to djangorestframework-simplejwt 5.2.0
  • Resolved the following vulnerabilities
  • Introduced Repo Versioning coupled with corresponding Git Tags and Docker Images
  • TypeScripting cleanup
  • CodeLint cleanup
  • Moved Docker Images to Docker Hub to help improve startup speed and simplify the startup process
  • Improved CICD logic
  • Various Development Library updates

What's Changed

New Contributors

Full Changelog: https://github.com/oasis-open/openc2-oif-device/commits/v1.1.0

Contributors

czack425, dmg2, and ScreamBun
Assets 2
Loading