Version 2.3.3

Enhancements:

• #5412 Enhance Inject Result Clarity & Actionability

Bug Fixes:

• #5505 Menus and routes accessible without capabilities, missing permission checks
• #5443 Lessons tab on the single Simulation details page crashes
• #5304 STIX parser throws when hash algorithm string in STIX bundle does not match the correct spelling or casing
• #5250 Imported payloads doesn't create assoeciated injectors_contracts
• #5244 Unable to export payloads containing remediation
• #5081 Linux arm64 implant (and probably openaev agent) don't work
• #4895 Alert Accordion UI issues: incorrect title hierarchy and spacing
• #4829 Deletion of users is very slow
• #3797 In traces, the cleanup command is before the attack command
• #3732 When no expectation are set which can be the case, always displaying "Unknown results"
• #1618 Settings not populating when RabbitMQ is using SSL

Pull Requests

• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.22 by @renovate[bot] in #5284
• [tool] chore(deps): update Node.js to v22.22.2 by @renovate[bot] in #5297
• [frontend] chore(deps): update dependency @xyflow/react to v12.10.2 by @renovate[bot] in #5296
• [backend] chore(deps): update dependency org.opensearch.client:opensearch-java to v3.8.0 by @renovate[bot] in #5298
• [backend] fix(stix): improve hash handling in parser (#5304) by @antoinemzs in #5305
• [tool] chore(deps): update rabbitmq Docker tag to v4.2 by @renovate[bot] in #5287
• [backend] feat(palo-alto): change icon by @RomuDeuxfois in #5292
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.23 by @renovate[bot] in #5311
• [frontend] chore(deps): update dependency axios to v1.14.0 by @renovate[bot] in #5312
• [frontend] chore(deps): update dependency jsdom to v29 by @renovate[bot] in #5314
• [AI] feat(baseline): introduce full baseline to use boost agent code by @RomuDeuxfois in #5322
• [backend] fix(binaries): handle arch alias in download endpoints for agent, implant (#5081) by @antoinemzs in #5321
• [frontend] chore: remove unused files and import by @MarineLeM in #5306
• [tool] chore(deps): update actions/setup-node action to v6 by @renovate[bot] in #5337
• [tool] chore(deps): update actions/create-github-app-token action to v3 by @renovate[bot] in #5336
• [frontend] chore(deps): update dependency @ckeditor/ckeditor5-react to v11 by @renovate[bot] in #4562
• [frontend] fix: improve Alert Accordion UI (#4895) by @tibisabau in #4953
• [backend] chore: remove defunct Caldera injector references (#5340) by @guillaumejparis in #5342
• [frontend] chore(deps): update dependency @uiw/react-md-editor to v4.1.0 by @renovate[bot] in #5335
• [frontend] chore: apply YARN usage guidelines (#5339) by @xfournet in #5341
• [tool] chore(deps): update docker/metadata-action action to v6 by @renovate[bot] in #5352
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.24 by @renovate[bot] in #5354
• [tool] chore(deps): update dependency slack to v6 by @renovate[bot] in #5349
• [tool] chore(deps): update docker/build-push-action action to v7 by @renovate[bot] in #5350
• [tool] chore(deps): update docker/setup-buildx-action action to v4 by @renovate[bot] in #5353
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.28 by @renovate[bot] in #5369
• build(deps): bump defu from 6.1.4 to 6.1.6 in /openaev-front by @dependabot[bot] in #5374
• [backend] fix(import): import a payload must create injector contract (#5250) by @MarineLeM in #5325
• [frontend] chore(deps): update dependency react-hook-form to v7.72.1 by @renovate[bot] in #5383
• [frontend] chore(deps): update dependency react-router to v7.14.0 by @renovate[bot] in #5400
• [frontend] build(deps): bump immutable from 5.1.4 to 5.1.5 in /openaev-front by @dependabot[bot] in #5405
• [frontend] chore(deps): update dependency @vitejs/plugin-react to v6 by @renovate[bot] in #5259
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.29 by @renovate[bot] in #5419
• build(deps): bump tar from 7.5.10 to 7.5.13 in /openaev-front by @dependabot[bot] in #5422
• [frontend] chore(deps): bump @redux-devtools/extension from 3.3.0 to 4.0.0 by @antoinemzs in #5421
• [frontend] chore(deps): bump lodash and lodash-es from 4.17.15 to 4.18.1 by @antoinemzs in #5428
• build(deps): bump axios from 1.14.0 to 1.15.0 in /openaev-front by @dependabot[bot] in #5430
• [frontend] chore(deps): update picomatch by @antoinemzs in #5435
• [frontend] chore(deps): update minimatch, glob by @antoinemzs in #5434
• [backend] fix(inject-status): compute status even when inject is pending (#3550) by @damgouj in #5408
• [frontend] chore(deps): update koa by @antoinemzs in #5436
• build(deps): bump vite from 8.0.1 to 8.0.7 in /openaev-front by @dependabot[bot] in #5426
• [docker] chore: create UBI9 Docker image (#5303) by @xfournet in #5324
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.33 by @renovate[bot] in #5449
• [backend] chore(deps): update dependency co.elastic.clients:elasticsearch-java to v8.19.14 by @renovate[bot] in #5463
• [backend] fix: fix lesson learned tab (#5443) by @heditar in #5459
• [tool] chore(deps): replace Shibboleth Maven repo with JBoss public mirror for OpenSAML dependencies by @RomuDeuxfois in #5467
• [frontend] chore(deps): update dependency ckeditor5 to v47.6.2 by @renovate[bot] in #5477
• [frontend] chore(deps): upgrade follow-redirects from 1.15.11 to 1.16.0 by @antoinemzs in #5474
• [tool] chore: temp fix for drone by @guillaumejparis in #5506
• [backend] fix(import): import paylaod with remediation (#5244) by @MarineLeM in #5376
• [backend/frontend] feat(injec-status): enhance Inject Result Clarity & Actionability (#5412) by @RomuDeuxfois in #5418
• [backend] chore(deps): update dependency org.bouncycastle:bcpg-jdk18on to v1.84 [SECURITY] by @renovate[bot] in #5519
• [backend] chore: change freemarker resolver by @guillaumejparis in #5499
• [tool] chore: revert temp fix for drone (#5506) by @corinnekrych in #5522
• [frontend] fix(rbac): fix menu accesses (#5505) by @damgouj in #5524
• build(deps): bump protobufjs from 7.5.4 to 7.5.5 in /openaev-front by @dependabot[bot] in #5520

New Contributors

• @tibisabau made their first contribution in #4953
• @xfournet made their first contribution in #5341

Full Changelog: 2.3.2...2.3.3

Version 2.3.2

Enhancements:

• #5163 [Xtmhub] send users count in auto-register
• #5058 Automatically move closed issues to the next minor release milestone

Bug Fixes:

• #5213 Starter Pack: rework starting scenarios to fix bad data
• #5179 Payload import fails when output parser is present
• #5178 [BUG] - Button ' start a trial' does not have the right color
• #5174 Teams disappearing from simulation Definition tab (specific simulation only)
• #5109 Security platform score in stix bundle send to OCTI is incorrect
• #5106 Read only permissions will lead to error in home dashboard
• #4891 XLS import creates empty expectations on injects
• #4336 Reset a simulation takes a lot of time

Pull Requests:

• [tool] chore(github-actions): move issue to minor release milestone (#5058) by @RomuDeuxfois in #5059
• [tool] chore(deps): update dependency python to 3.14 by @renovate[bot] in #4556
• [frontend] chore(deps): update dependency chokidar to v5 by @renovate[bot] in #4563
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.14 by @renovate[bot] in #5186
• [backend] chore(deps): update dependency org.springframework.security:spring-security-crypto to v6.5.9 by @renovate[bot] in #5184
• [frontend] chore(deps): update dependency zustand to v5.0.12 by @renovate[bot] in #5185
• build(deps): bump flatted from 3.3.3 to 3.4.1 in /openaev-front by @dependabot[bot] in #5182
• [frontend] fix(banner): change start trial button color to white (#5178) by @Antoine-Quintin in #5180
• [tools] fix(ci): capture closed bugs from 'Bugs backlog' milestone by @RomuDeuxfois in #5188
• [backend] feat(xtmhub): send users count in autoregister (#5163) by @carinelebas in #5164
• [frontend] chore(deps): update dependency react-router to v7.13.1 by @renovate[bot] in #5203
• [frontend] chore(deps): update dependency react-intl to v8.1.4 by @renovate[bot] in #5202
• [frontend] chore(deps): update dependency pdfmake to v0.3.7 by @renovate[bot] in #5201
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.16 by @renovate[bot] in #5199
• [backend] chore(deps): update dependency co.elastic.clients:elasticsearch-java to v8.19.13 by @renovate[bot] in #5200
• [frontend] chore(deps): update dependency moment-timezone to v0.6.1 by @renovate[bot] in #5216
• [backend] chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v3.4.0 by @renovate[bot] in #5217
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.18 by @renovate[bot] in #5215
• [backend] fix(starterpack): update salt typhoon scenario (#5213) by @gabriel-peze in #5222
• [frontend] chore(deps): update Yarn to v4.13.0 by @renovate[bot] in #5234
• [frontend] chore(deps): update dependency cronstrue to v3.14.0 by @renovate[bot] in #5233
• [tool] chore(deps): update Node.js to v22.22.1 by @renovate[bot] in #5238
• [tool] chore(deps): update opensearchproject/opensearch Docker tag to v3.5.0 by @renovate[bot] in #5239
• [backend] fix(security-coverage): return current simulation security platforms (#5109) by @gabriel-peze in #5211
• build(deps): bump yaml from 1.10.2 to 1.10.3 in /openaev-front by @dependabot[bot] in #5245
• [frontend] chore(deps): update dependency react-final-form-arrays to v4 by @renovate[bot] in #4587
• [backend] fix: fix import for output parsers (#5179) by @savacano28 in #5231
• [backend] chore(deps): update dependency io.swagger.core.v3:swagger-annotations-jakarta to v2.2.44 by @renovate[bot] in #5115
• [frontend] chore(deps): update dependency react-hook-form to v7.72.0 by @renovate[bot] in #5246
• [backend] fix(enable-player): enable player facing 'element already exists' error (#4415) by @RomuDeuxfois in #5253
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.19 by @renovate[bot] in #5257
• [backend/frontend] fix(simulation-reset): status change timeout caused by N+1 queries and in-memory entity deletion on reset (#4336) by @EvaE-Filigran in #5073
• [frontend] chore(deps): update dependency react-router to v7.13.2 by @renovate[bot] in #5258
• [frontend] chore(deps): update dependency globals to v17 by @renovate[bot] in #5260
• [frontend] build(deps): bump nodemailer by @dependabot[bot] in #5261
• [frontend] build(deps): bump flatted by @dependabot[bot] in #5263
• [backend] fix(inject): xls import creates empty expectations causing 24h stuck simulations (#5229) by @RomuDeuxfois in #5236
• [backend] chore(deps): update dependency io.pyroscope:agent to v2.5.2 by @renovate[bot] in #5285
• [frontend] chore(deps): update dependency react-grid-layout to v2.2.3 by @renovate[bot] in #5286
• [frontend] chore(deps): update dependency vitest to v4 by @renovate[bot] in #4596
• [backend/frontend] feat(netexec): add NetExec injector integration with 12 new finding types (#4989) by @Seb-MIGUEL in #5092

New Contributors:

• @Antoine-Quintin made their first contribution in #5180
• @Seb-MIGUEL made their first contribution in #5092

Full Changelog: 2.3.1...2.3.2

Version 2.3.1

Enhancements:

• #5100 Rejected STIX bundles cause HTTP 400 and block OCTI queue
• #4986 [FeatureFlag] - (OpenAEV Trials): remove FF for trial banner OPENAEV_TRIALS_XTMHUB
• #4302 Shodan Injector add asset-creation option

Bug Fixes:

• #5129 Collector state is not properly saved
• #5109 Security platform score in stix bundle send to OCTI is incorrect
• #5107 Findings fail to be persisted when a duplicate is found in structured output
• #5083 [xtmhub] Prevent user from seeing 'register'/'unregister' buttons in the demo instance
• #4415 Teams "replaced" can't be added again to a simulation

Pull Requests:

• [backend] fix(collector): fix collector state not properly saved (#1) by @Dimfacion in #5127
• [frontend] chore(deps): update material-ui monorepo to v7.3.9 by @renovate[bot] in #5124
• [frontend] chore(deps): update dependency cronstrue to v3.13.0 by @renovate[bot] in #5116
• build(deps): bump tar from 7.5.9 to 7.5.10 in /openaev-front by @dependabot[bot] in #5128
• [backend] chore(deps): update dependency io.opentelemetry:opentelemetry-bom to v1.60.1 by @renovate[bot] in #5131
• build(deps): bump dompurify from 3.3.1 to 3.3.2 in /openaev-front by @dependabot[bot] in #5119
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.9 by @renovate[bot] in #5130
• [backend] chore(deps): update dependency org.opensearch.client:opensearch-java to v3.7.0 by @renovate[bot] in #5132
• [tool] chore(env): update .env nd docker-compose files to support macos host by @corinnekrych in #5138
• [tool] chore(deps): update maven Docker tag to v3.9.14 by @renovate[bot] in #5134
• [tool] chore(github-auto-close): enhance issue extraction from PR title and body by @RomuDeuxfois in #5040
• [frontend] feat(trials): remove FF for trial banner OPENAEV_TRIALS_XTMHUB (#4986) by @hervyt in #4993
• [frontend] chore(deps): update dependency pdfmake to v0.3.6 by @renovate[bot] in #5133
• [frontend] fix(xtm-hub): hide register/unregister buttons in demo mode (#5083) by @jbanety in #5084
• [frontend] fix(trials): remove feature flag mention from utils (#1) by @antoinemzs in #5147
• [backend] fix(stix): explictly send HTTP 200 OK when OpenAEV drops a bundle due to validation (#5100) by @antoinemzs in #5113
• [backend] chore(deps): update dependency net.javacrumbs.json-unit:json-unit-assertj to v5.1.1 by @renovate[bot] in #5153
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.13 by @renovate[bot] in #5152
• [tool] chore: update Codecov configuration for coverage targets by @RomuDeuxfois in #5146
• [backend] refactor: refactor processors (#4302) by @savacano28 in #4975
• [backend] chore(deps): update dependency io.pyroscope:agent to v2.5.1 by @renovate[bot] in #5160
• [frontend] chore(deps): update dependency dompurify to v3.3.3 by @renovate[bot] in #5159
• [frontend] fix(security-coverage): manage unique and reusable uuid for relationship (#4514) by @gabriel-peze in #5165
• [backend] fix(teams): fix error while replacing teams in scenario and simulation (#4415) by @camrrx in #5143
• [frontend] chore(deps): update devDependencies (non-major) by @renovate[bot] in #4959
• [frontend] chore(deps): update devDependencies (non-major) by @renovate[bot] in #5169
• [frontend] chore(deps): update dependency react-hook-form to v7.71.2 by @renovate[bot] in #5171
• [frontend] chore(deps): update dependency qs to v6.15.0 by @renovate[bot] in #5170
• [backend] feat (interco octi) : fix security platform send in stix bundle (#5109) by @GaetanSantucci in #5173
• [backend] revert(stix): was "fix security platform send in stix bundle" (#5109) by @GaetanSantucci in #5175

Full Changelog: 2.3.0...2.3.1

Version 2.3.0

🚀 OpenAEV Milestone: 2.3.0

OpenAEV 2.3 is out!

Hello dear community! We're excited to announce the release of OpenAEV 2.3! 🥳

This release delivers a highly‑anticipated integration, improves the integration catalog experience for existing users, and addresses several important stability fixes around simulations and scenario imports.

Let's take a quick look at what's new:

---

🔥 Palo Alto Cortex XDR Executor (EE) & Collector (CE)

Remember the "coming soon" from our previous release? It's here!

OpenAEV can now orchestrate scenario execution directly through your Palo Alto Cortex XDR environment. This executor enables teams to trigger security tests through their Cortex deployment, bringing XDR‑driven exposure validation closer together than ever.

A major step for organizations standardizing on Palo Alto's ecosystem — you can now validate your security controls end‑to‑end without leaving your XDR stack.

• [#4497](#4497) [EE] Executor Palo Alto Cortex XDR
• [#5052](#5052) Add Palo Alto Cortex XDR to manifest

Documentation Link: https://docs.openaev.io/latest/deployment/ecosystem/executors/

---

🔄 Integration Catalog: Legacy Migration (EE)

Upgrading from self‑deployed integrations to the catalog has never been easier. OpenAEV 2.3 introduces a "Migrate" button for orphaned collectors and injectors that were deployed directly in your infrastructure (e.g., via Docker Compose) before the catalog was available.

What's new?

• A new Migrate action appears on collectors and injectors not yet managed by XTM Composer
• Clicking it opens the standard "New Connector Instance" form — no more manual database mangling
• Once migrated, simply shut down the legacy container and start the new one from the catalog UI

This provides a clean, practical upgrade path for teams transitioning to the catalog‑managed deployment model introduced in 2.1.

• [#4871](#4871) Migrate orphaned collectors, injectors to XTM Composer-controlled instances

Documentation Link: https://docs.openaev.io/latest/deployment/ecosystem/integration-manager/overview/

---

🐞 Bug Fixes

This release resolves several important issues affecting simulations, imports, and the starter pack experience:

• [#4831](#4831) Simulation status stuck on "Ongoing" — Simulations now correctly transition to their final status once all expectations are resolved
• [#4947](#4947) Starter pack payloads not operational after fresh install — Payloads created by the starter pack are now properly reassigned to the real openaev_implant injector when it registers for the first time
• [#4983](#4983) Simulation import failures — Fixed a regression where certain simulation exports could not be imported across environments
• [#5011](#5011) Duplicating a simulation results in error — Fixed a 404 error when attempting to duplicate specific simulations
• [#5021](#5021) Scenario import error for "WordLeaks" scenario — Resolved a backend parsing issue preventing the import of certain scenarios from the XTM Hub

---

Full Changelog: 2.2.0...2.3.0

Enhancements:

• #5052 Add Palo Alto Cortex XDR to manifest
• #4871 Migrate orphaned collectors, injectors to XTM Composer-controlled instances
• #4497 [EE] Executor Palo Alto Cortex XDR

Bug Fixes:

• #5021 Scenario import error: "WordLeaks – Document Exfiltration Campaign" fails on OpenAEV CE 2.2.0
• #5011 Duplicating a specific simulation results in error
• #4983 Import Simulation fails
• #4947 Starter pack injector contracts are not reassigned to real injectors after the latter are registered
• #4831 Simulation status remains ongoing even after all expectations are resolved

Pull Requests:

• [backend] feat(palo-alto-cortex-xdr): add collector to manifest (#175) by @mariot in #5047
• [backend] chore(deps): update dependency co.elastic.clients:elasticsearch-java to v8.19.12 by @renovate[bot] in #5054
• [frontend] chore(deps): update dependency axios to v1.13.6 by @renovate[bot] in #5055
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.4 by @renovate[bot] in #5056
• [frontend] chore(deps): update dependency react-syntax-highlighter to v16.1.1 by @renovate[bot] in #5057
• [backend] fix(starterpack): fix missing contracts on atomic list (#4947) by @gabriel-peze in #5023
• [backend] fix(duplicate): hibernate exception due to immutable collection (#5011) by @RomuDeuxfois in #5027
• [backend/frontend] feat(catalog): possibility to migrate orphaned (#4871) by @Dimfacion in #5019
• [backend] fix: simulation status remains ongoing (#4831) by @MarineLeM in #5010
• [backend] fix: manage null values in import simulations and scenarios for payload attributs (#4983) by @savacano28 in #5032
• [backend] chore(deps): update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.15.0 by @renovate[bot] in #5079
• [backend] chore(deps): update dependency io.pyroscope:agent to v2.4.0 by @renovate[bot] in #5078
• [backend] chore(deps): update dependency io.opentelemetry.semconv:opentelemetry-semconv to v1.40.0 by @renovate[bot] in #5077
• [backend] chore(deps): update dependency com.rabbitmq:amqp-client to v5.29.0 by @renovate[bot] in #5076
• [frontend] chore(deps): update dependency @casl/ability to v6.8.0 by @renovate[bot] in #5096
• [backend] chore(deps): update dependency org.opensearch.client:opensearch-java to v3.6.0 by @renovate[bot] in #5094
• [backend/frontend] feat(paloalto): add support for Palo Alto cortex as an executor (#4497) by @impolitepanda in #5097
• [backend] feat(starterpack): add somme tests to cover issue (#4947) by @gabriel-peze in #5099
• [backend] chore(deps): update dependency org.apache.maven.plugins:maven-resources-plugin to v3.5.0 by @renovate[bot] in #5103
• [backend] chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v3.3.0 by @renovate[bot] in #5104
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.7 by @renovate[bot] in #5117

New Contributors:

• @mariot made their first contribution in #5047

Full Changelog: 2.2.1...2.3.0

Version 2.2.1

Bug Fixes:

• #5009 OpenAEV "Security Coverage connector" not backwards compatible with OpenCTI v6

Pull Requests:

• [frontend] chore(deps): update dependency qs to v6.14.2 [SECURITY] by @renovate[bot] in #4946
• [backend] chore(deps): update dependency net.lingala.zip4j:zip4j to v2.11.6 by @renovate[bot] in #5006
• [backend] chore(deps): update dependency io.swagger.core.v3:swagger-annotations-jakarta to v2.2.43 by @renovate[bot] in #5005
• [backend] chore(deps): update logback monorepo to v1.5.32 by @renovate[bot] in #5017
• build(deps): bump rollup from 4.52.5 to 4.59.0 in /openaev-front by @dependabot[bot] in #5018
• [backend] chore(deps): update dependency org.springframework.security:spring-security-crypto to v6.5.8 by @renovate[bot] in #5016
• [backend] chore(deps): update dependency org.postgresql:postgresql to v42.7.10 by @renovate[bot] in #5015
• [backend] refactor(contract-types): extract ContractOutputType business logic into handler classes (#4302) by @savacano28 in #4960
• [frontend] chore(deps): update dependency remark-flexible-markers to v1.3.3 by @renovate[bot] in #5031
• [frontend] chore(deps): update dependency @xyflow/react to v12.10.1 by @renovate[bot] in #5029
• [frontend] chore(deps): update dependency @types/react to v19.2.14 - autoclosed by @renovate[bot] in #5028
• [backend] fix(stix): make connector compatible with OCTI v6 again (#5009) by @antoinemzs in #5013
• [frontend] chore(deps): update dependency react-grid-layout to v2 by @renovate[bot] in #4588
• [backend] chore(deps): update dependency io.opentelemetry:opentelemetry-bom to v1.59.0 by @renovate[bot] in #5038
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.42.3 by @renovate[bot] in #5037
• [tool] chore(deps): update eclipse-temurin Docker tag to v21.0.10_7-jre by @renovate[bot] in #5036
• [frontend] chore(deps): update material-ui monorepo by @renovate[bot] in #5035

Full Changelog: 2.2.0...2.2.1

Version 2.2.0

Enhancements:

• #4832 OAEV Trials - ability to to do group mapping for the SSO between Hub & OAEV Trials
• #4676 [SC☂️] Post-Creation Redirection and CTAs for Security Coverage

Bug Fixes:

• #4973 The OCTI worker calls OAEV with a new security system, and OAEV responds with a 401
• #4957 No any inject id into mail received by mail sender injects
• #4639 Sending an email during a simulation via the quick inject crash
• #3795 In inject view, it is indicated CMD does not support base64 obfuscation

Pull Requests:

• [backend] fix(mail): missing inject id on footers (#4957) by @gabriel-peze in #4958
• [frontend] fix: create quick inject (#4639) by @MarineLeM in #4962
• [backend] fix(obfuscator): obfuscator options on cmd and psh (#3795) by @gabriel-peze in #4905
• [backend] fix(obfuscator): review migration (#3795) by @gabriel-peze in #4971
• [tool] chore(tooling): improve and sync renovate & gh actions by @guillaumejparis in #4730
• build(deps): bump tar from 7.5.7 to 7.5.9 in /openaev-front by @dependabot[bot] in #4982
• [backend] perf(stream): update exclusion with connector instance log (#4976) by @guillaumejparis in #4977
• [backend] feat(sso): add group mapping (#4832) by @Dimfacion in #4985
• [backend] fix: decode opencti jwt (#4973) by @MarineLeM in #4981
• [frontend] fix(fr): small fix for collectors translation in fr (#1) by @Dimfacion in #4992
• [backend] chore(deps): update aws-java-sdk-v2 monorepo to v2.41.34 by @renovate[bot] in #4945
• [backend] chore(deps): update dependency com.diffplug.spotless:spotless-maven-plugin to v3.2.1 by @renovate[bot] in #4951
• [backend] fix(group): sync removing from idp group (#4832) by @Dimfacion in #4994
• [backend] feat(sc): post-creation redirection and CTAs for security coverage (#4676) by @antoinemzs in #4997

Full Changelog: 2.1.8...2.2.0

Version 2.1.8

Enhancements:

• #4937 Add support for audience parameter in OpenID authorization request

Bug Fixes:

• #4910 OpenAEV 2.1.X on AWS throw an exception on startup

Pull Requests:

• [backend] feat(audience): add support for audience parameter in OpenID authorization request (#4937) by @RomuDeuxfois in #4939
• [tool] Deploy release/current on dev aws by @efaure in #4966
• [backend] fix(rabbitmq): fix rabbitmq ssl configuration (#4910) by @camrrx in #4913

Full Changelog: 2.1.7...2.1.8

Version 2.1.7

Enhancements:

• #4881 [XTM-HUB] - (OpenAEV Trials): Create banner on demo environment
• #4880 [XTM-HUB] - (OpenAEV Trials): Create banner on trial environment
• #4834 OAEV Trials - Create 2 metrics for the Hubspot nurturing flow

Bug Fixes:

• #4835 Detail catalog connector page briefly shows previous content when navigating between items
• #4827 Link is not displayed correctly

Pull Requests:

• [backend] chore: fix serialization of user session (#4889) by @guillaumejparis in #4784
• [frontend] fix(catalog): fix stale injector content flash when navigating between connectors (#4835) by @camrrx in #4897
• [backend] feat(user-event): add user event logic (#4834) by @RomuDeuxfois in #4860
• [frontend/backend] feat(trials): banner trials with contact us (#4880) by @hervyt in #4893
• build(deps): bump axios from 1.13.4 to 1.13.5 in /openaev-front by @dependabot[bot] in #4935
• [tool] chore(deps): update maven Docker tag to v3.9.12 by @renovate[bot] in #4929
• [tool] chore(deps): update eclipse-temurin Docker tag to v21.0.9_10-jre by @renovate[bot] in #4928
• [frontend] chore(deps): update dependency html-react-parser to v5.2.17 by @renovate[bot] in #4927
• [frontend] fix: reset color for context link (#4827) by @savacano28 in #4911
• [frontend] feat(trials): display banner start trial (#4881) by @hervyt in #4909
• [backend] chore(catalog): manifest for shodan and teams injectors (#1) by @antoinemzs in #4934
• [backend] feat: add asset type for contract element types (#4302) by @savacano28 in #4926
• [backend] chore(deps): update logback monorepo to v1.5.29 by @renovate[bot] in #4942
• [tool] chore(deps): update alpine/openssl Docker tag to v3.5.5 by @renovate[bot] in #4943
• [tool] chore(deps): update maven Docker tag to v3.9.12 by @renovate[bot] in #4944

Full Changelog: 2.1.6...2.1.7

Version 2.1.6

Bug Fixes:

• #4907 Unable to import scenario from Xtm hub
• #4890 [RBAC] Manager role cannot assign targeted team in injects
• #4727 Error when sending an email from an atomic testing

Pull Requests:

• [backend] chore(deps): update dependency io.pyroscope:agent to v2.1.4 by @renovate[bot] in #4839
• [backend] chore(deps): update logback monorepo to v1.5.27 by @renovate[bot] in #4888
• [backend] chore(deps): update dependency org.postgresql:postgresql to v42.7.9 by @renovate[bot] in #4856
• build(deps): bump tar from 7.5.4 to 7.5.7 in /openaev-front by @dependabot[bot] in #4852
• [backend] chore(deps): update dependency io.swagger.core.v3:swagger-annotations-jakarta to v2.2.42 by @renovate[bot] in #4840
• [backend] chore(deps): update dependency co.elastic.clients:elasticsearch-java to v8.19.10 by @renovate[bot] in #4838
• [frontend] fix(dashboard): should scroll in widget list and mitre section (#4883) by @camrrx in #4896
• [frontend] chore(deps): update dependency @casl/react to v5.0.1 by @renovate[bot] in #4900
• [backend] chore(deps): update dependency co.elastic.clients:elasticsearch-java to v8.19.11 by @renovate[bot] in #4899
• [frontend] chore(deps): update dependency html-react-parser to v5.2.16 by @renovate[bot] in #4902
• [frontend] chore(deps): update dependency axios to v1.13.4 by @renovate[bot] in #4901
• [frontend] fix(rbac): access teams and player capability does not exists (#4890) by @camrrx in #4898
• [backend] fix: do not get exercise.getId on atomic testing (#4727) by @MarineLeM in #4908
• [backend] chore(deps): update logback monorepo to v1.5.28 by @renovate[bot] in #4915
• [frontend] chore(deps): update dependency zustand to v5.0.11 by @renovate[bot] in #4916
• [frontend] chore(deps): update material-ui monorepo by @renovate[bot] in #4917
• [frontend] chore(deps): update react monorepo by @renovate[bot] in #4918
• [backend] fix(import): fix import to allow import of payload without domain (#4907) by @heditar in #4914

Full Changelog: 2.1.5...2.1.6

Version 2.1.5

Warning

When upgrading from a 2.1.x release, instance administrators having depliyed the Tanium collector via the Catalog will need to reenter the TANIUM_TOKEN configuration.
To do so, navigate to Integrations > Collectors > Tanium Collector and update the deployment configuration ("three-dot" menu on the top right corner, then "Update").

Enhancements:

• #4869 OAEV Trials - autoregister trials on the hub

Bug Fixes:

• #4879 InjectorContract API: calling updateInjectorContract may result in error 500

Pull Requests:

• [backend] feat(freetrials): new auto-register endpoint (#4869) by @carinelebas in #4870
• [backend/frontend] fix(injectorcontracts): don't use entity as DTO (#4879) by @antoinemzs in #4882
• [backend] fix(manifest): regenerate manifest (#1) by @antoinemzs in #4885
• [frontend] fix(connectors): fix collector undefined icon request by @guillaumejparis in #4886

Full Changelog: 2.1.4...2.1.5