Releases: RedHatInsights/vulnerability-engine
v2.40.9
v2.40.9 (2024-09-27)
Chore
- chore(deps): update grafana/grafana docker tag to v11.2.1
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com> (a22c03d)
- chore: replace reorder-python-imports by isort
black and reorder-python-imports are incompatibles
asottile/reorder-python-imports#366
asottile/reorder-python-imports#367
-
chore: fix black v24 issues (
e97ad01) -
chore: fix flake8 v7 issues (
83cd073) -
chore(deps): update pre-commit hook pycqa/flake8 to v7
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com> (470c6d9)
- chore(deps): update pre-commit hook psf/black to v24
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com> (4ef3a26)
Fix
- fix(manager): repair error handling when forbidden
RHINENG-12111: 500 HTTP error when requesting api with account without persmissions (2c7c9f9)
v2.40.8
v2.40.8 (2024-09-24)
Chore
- chore(deps): update grafana/grafana docker tag to v11
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com> (efeb90d)
- chore(deps): update pre-commit hook pre-commit/pre-commit-hooks to v4.6.0
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com> (70935e2)
- chore(deps): update pre-commit hook psf/black to v23.12.1
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com> (52ee91e)
- chore(deps): update pre-commit hook asottile/reorder-python-imports to v3.13.0
Signed-off-by: red-hat-konflux <126015336+red-hat-konflux[bot]@users.noreply.github.com> (a88782b)
- chore: use ubi9
RHINENG-12543
RHINENG-12556 (ee5c78f)
- chore: update dependencies
RHINENG-12514 (32aeb37)
Fix
- fix: handle error when inserting empty cve name into db
RHINENG-12773 (bb5813e)
Unknown
- Red Hat Konflux update vulnerability-engine
Signed-off-by: red-hat-konflux <konflux@no-reply.konflux-ci.dev> (5f5e9c1)
v2.40.7
v2.40.7 (2024-09-12)
Chore
- chore(ephemeral): remove --no-remove-resources
RHINENG-11573 (4cc5da1)
Fix
- fix: workaround cve_cache issue with inventory groups
When there are 2 users with different inventory groups in the same account, they can be invalidating cache for each other which will cause that api is slow for both of them.
Cache only access to all inventory hosts. When a user doesn't have any inventory groups, then the query will be used without cache.
Stats from DB:
count of accounts | inventory groups
31581 | [] // access to all hosts
1 | [[]] // access to ungrouped hosts only
6 | access to only 1 inventory group
1 | access to 1 group and to ungrouped hosts
1 | access to multiple groups and ungrouped hosts
RHINENG-12465 (6b529e7)
v2.40.6
v2.40.5
v2.40.4
v2.40.3
v2.40.2
v2.40.1
v2.40.1 (2024-08-15)
Chore
-
chore: split some evaluator graphs to upload and recalc (
f421656) -
chore: drop cves_without_errata_evaluator FF (
e33dd18) -
chore: fix RDS metrics and system count graph (
7823de4) -
chore: measure loading system profile duration (
ee8630c) -
chore: update dependencies
mainly gunicorn and aiohttp (4e1aa2e)
- chore: add new evaluator skipped metrics (
a06b318)
Performance
- perf(evaluator): re-evaluations should handle only CVEs with errata (as they are triggered by errata release)
this makes re-evaluations partial and unfixed CVEs changes will be handled by evaluator_upload only (a6f5cbd)