Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

update changelog, add changelog link to navbar #11465

Open
wants to merge 1 commit into
base: master
Choose a base branch
from

Conversation

paulOsinski
Copy link
Contributor

Adds Pro release notes for 2.41.3, and adds a 'Changelog' link to the documentation navbar to locate the changelog more easily.

@github-actions github-actions bot added the docs label Dec 23, 2024
Copy link

dryrunsecurity bot commented Dec 23, 2024

DryRun Security Summary

The pull request focuses on documentation and changelog updates for DefectDojo, introducing new features and improvements across the API, Beta UI, and connectors, which should be carefully reviewed for potential security implications.

Expand for full summary

Summary:

The code changes in this pull request are primarily focused on updates to the documentation and changelog for the DefectDojo project. While these changes do not directly introduce any security vulnerabilities, it is important to review them carefully to ensure that they do not expose sensitive information or introduce any unintended security implications.

The notable changes from a security perspective include the addition of a new API endpoint for request/response pairs, improvements to the Findings table in the Beta UI, updates to the deduplication logic in certain tools, the addition of new connector integrations, and the ability to add anonymous questionnaires to an Engagement. These changes should be reviewed to ensure that they are implemented securely and do not introduce any new attack surfaces or vulnerabilities.

Files Changed:

  1. docs/config/_default/menus/menus.en.toml: This file has been updated to add a new menu item for the "Changelog" section of the documentation. This change does not directly introduce any security concerns, as it is related to the documentation structure and navigation.

  2. docs/content/en/changelog/changelog.md: This file contains the changelog for the DefectDojo Pro (Cloud Version) product. The changes include several new features and improvements across the API, Beta UI, Connectors, Dashboards, and various tools. The security-relevant changes include the addition of a new /request_response_pairs API endpoint, improvements to the Findings table, updates to the deduplication logic in certain tools, the addition of new connector integrations, and the ability to add anonymous questionnaires to an Engagement. These changes should be carefully reviewed to ensure that they are implemented securely and do not introduce any new vulnerabilities or attack vectors.

Code Analysis

We ran 9 analyzers against 2 files and 0 analyzers had findings. 9 analyzers had no findings.

View PR in the DryRun Dashboard.

@paulOsinski paulOsinski changed the title update changelog, add changelog menu to header update changelog, add changelog link to navbar Dec 23, 2024
@paulOsinski paulOsinski marked this pull request as draft December 23, 2024 23:18
@paulOsinski paulOsinski marked this pull request as ready for review December 23, 2024 23:32
Copy link
Contributor

@mtesauro mtesauro left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Approved

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
Projects
None yet
Development

Successfully merging this pull request may close these issues.

4 participants