Skip to content
Compare
Choose a tag to compare

Thanks:

Added

For users:

  • New grade (Asqatasun meter) made of A, B, C, D, E, F instead of 0-100% #252, #248
  • I18N: Add german translation #172

For developers and ops:

  • Add Vagrant installation
  • Support for Ubuntu 18.04 #269, #281
  • SQL procedure: Add option to choose the contract duration #213
  • Enhanced pre-requisites to allow database name containing hyphen "-"
  • SQL procedure / CONTRACT_create: increase the default contract duration (3 years instead of 1 years) #215
  • SQL procedure / CONTRACT_create: add option to choose the contract duration in year, month or day #213
  • Install.sh - Added new SQL procedures: list_running_acts + Last_audits #139
  • added code quality tools
    • Unit tests coverage report (Jacocoo) #185
    • OWASP Dependency-Check #155
    • Checkstyle #198
    • Javadoc #156
  • build_and_run-with-docker.sh script:
    • Added --krash-test option #182
    • Added --log-build option #169
    • Added --build-only-* options #145
    • Added option to skip unit tests #144
  • Documentation :
    • Have CONTRIBUTING.md more friendly and explicit for beginners #222
    • Added documentation on how to run a krashtest campaign #147
    • Added "howto configuring Apache frontend with AJP connector and HTTPS Let's Encrypt"
    • Added "Crawler management" with howto increase maxDocuments in site-audit

Breaking changes

For developers and ops:

  • JDK upgraded from Java7 to Java8 #253
  • DB character encoding is now utf8mb4 #255
  • Build - Maven 3.1 is required (needed for org.owasp:dependency-check-maven) #154

Changed

For users:

  • Changed the default to only show "failed" and "pre-qualified" results) #202
  • Default email for login is now admin@asqatasun.org #267
  • Improved krash emails ergonomy #276

For developers and ops:

  • Update version of dependency (DynamicJasper)
  • Adjust release script to manage release branch #315
  • Configure Travis deployment only on tags #317

Fixed

For users:

  • Incorrect string value: '\xF0\x9F\x99\x82" ...' for column 'Source', aka utf8mb4 should default encoding to be able
    to deal with smileys #123
  • Fixed Rgaa 3.2016, 8.9.1: unit tests fail #137
  • Create a contract pointing to an internal URL, even if the domain does not end with a valid gTLD #126
  • Contrast ratio link: fixed ratio parameter #119
  • Site-audit in error: added "check for redirection" as possible explanation #146
  • Site-audit in error: fixed the robots.txt URL in error message #179
  • Don't allow starting an audit if no referential is activated for the current project #203
  • Don't allow starting website audit if URL is not defined for the current project #204
  • I18N: standardize "project" and "contract" naming (en/fr/es) #216
  • Webapp UX - Admin user can quickly add a new project to his account #208
  • Webapp UX - Admin user can quickly update his expired contract #211
  • Contract creation: verify at least one referential is selected #27
  • Contract creation: forbid contract without URL and with website audit enabled #28

For developers and ops:

  • Ubuntu 18.04 ensure MariaDB/Mysql configuration file is included #311
    #313
  • Make release script more reliable #286
  • <form:errors path="scenarioFile">, allowed <abbr> in error message #138
  • Prerequisites: libspring-instrument-java is no more needed #200
  • Unit tests: replaced tgqa.org domain name by asqatasun.ovh #127
  • I18N:
    • webapp + rules: converted i18n files in UTF8 character encoding #170
    • webapp / i18n files: converted all HTML entities to their applicable UTF-8 characters #173
    • webapp / i18n files: removing unnecessary escaped characters #174
Compare
Choose a tag to compare
Pre-release

Thanks:

Added

For users:

  • New grade (Asqatasun meter) made of A, B, C, D, E, F instead of 0-100% #252, #248
  • I18N: Add german translation #172

For developers and ops:

  • Support for Ubuntu 18.04 #269, #281
  • SQL procedure: Add option to choose the contract duration #213
  • Enhanced pre-requisites to allow database name containing hyphen "-"
  • SQL procedure / CONTRACT_create: increase the default contract duration (3 years instead of 1 years) #215
  • SQL procedure / CONTRACT_create: add option to choose the contract duration in year, month or day #213
  • Install.sh - Added new SQL procedures: list_running_acts + Last_audits #139
  • added code quality tools
    • Unit tests coverage report (Jacocoo) #185
    • OWASP Dependency-Check #155
    • Checkstyle #198
    • Javadoc #156
  • build_and_run-with-docker.sh script:
    • Added --krash-test option #182
    • Added --log-build option #169
    • Added --build-only-* options #145
    • Added option to skip unit tests #144
  • Documentation :
    • Have CONTRIBUTING.md more friendly and explicit for beginners #222
    • Added documentation on how to run a krashtest campaign #147
    • Added "howto configuring Apache frontend with AJP connector and HTTPS Let's Encrypt"
    • Added "Crawler management" with howto increase maxDocuments in site-audit

Breaking changes

For developers and ops:

  • JDK upgraded from Java7 to Java8 #253
  • DB character encoding is now utf8mb4 #255
  • Build - Maven 3.1 is required (needed for org.owasp:dependency-check-maven) #154

Changed

For users:

  • Changed the default to only show "failed" and "pre-qualified" results #202
  • Default email for login is now admin@asqatasun.org #267
  • Improved krash emails ergonomy #276

For developers and ops:

  • Update version of dependency (DynamicJasper)
  • Adjust release script to manage release branch #315
  • Configure Travis deployment only on tags #317

Fixed

For users:

  • Incorrect string value: '\xF0\x9F\x99\x82" ...' for column 'Source', aka utf8mb4 should default encoding to be able
    to deal with smileys #123
  • Fixed Rgaa 3.2016, 8.9.1: unit tests fail #137
  • Create a contract pointing to an internal URL, even if the domain does not end with a valid gTLD #126
  • Contrast ratio link: fixed ratio parameter #119
  • Site-audit in error: added "check for redirection" as possible explanation #146
  • Site-audit in error: fixed the robots.txt URL in error message #179
  • Don't allow starting an audit if no referential is activated for the current project #203
  • Don't allow starting website audit if URL is not defined for the current project #204
  • I18N: standardize "project" and "contract" naming (en/fr/es) #216
  • Webapp UX - Admin user can quickly add a new project to his account #208
  • Webapp UX - Admin user can quickly update his expired contract #211
  • Contract creation: verify at least one referential is selected #27
  • Contract creation: forbid contract without URL and with website audit enabled #28

For developers and ops:

  • Ubuntu 18.04 ensure MariaDB/Mysql configuration file is included #311
    #313
  • Make release script more reliable #286
  • <form:errors path="scenarioFile">, allowed <abbr> in error message #138
  • Prerequisites: libspring-instrument-java is no more needed #200
  • Unit tests: replaced tgqa.org domain name by asqatasun.ovh #127
  • I18N:
    • webapp + rules: converted i18n files in UTF8 character encoding #170
    • webapp / i18n files: converted all HTML entities to their applicable UTF-8 characters #173
    • webapp / i18n files: removing unnecessary escaped characters #174

See full Changelog for details.

Compare
Choose a tag to compare

v4.1.0-rc.4

Pre-release
Pre-release

Asqatasun 4.1.0-rc.4, 2019-05-01

Thanks:

Added

For users:

  • New grade (Asqatasun meter) made of A, B, C, D, E, F instead of 0-100% #252, #248
  • SQL procedure: Add option to choose the contract duration #213
  • I18N: Add german translation #172
  • Support for Ubuntu 18.04 #269, #281

For developers and ops:

Changed

Fixed

For users:

For developers and ops:

Upgrade-o-meter

The recommended upgrade path consists in exporting Asqatasun data, installing v4.1.0 as a new intance (along Java8) and re-importing data.

We are aware that this may be difficult to some installations, but contributions are welcomed and we are always happy to bring in new contibutors :)

Compare
Choose a tag to compare

v4.1.0-rc.1

Pre-release
Pre-release

Asqatasun 4.1.0-rc.1, 2019-03-29

Thanks:

Added

For users:

  • New grade (Asqatasun meter) made of A, B, C, D, E, F instead of 0-100% #252, #248
  • SQL procedure: Add option to choose the contract duration #213
  • I18N: Add german translation #172

For developers and ops:

Changed

Fixed

For users:

For developers and ops:

Upgrade-o-meter

The recommended upgrade path consists in exporting Asqatasun data, installing v4.1.0 as a new intance (along Java8) and re-importing data.

We are aware that this may be difficult to some installations, but contributions are welcomed and we are always happy to bring in new contibutors :)

Compare
Choose a tag to compare

Features:

  • Docker/single-container: reduced weight from 450 MB to 290 MB
  • Asqatasun-Runner: RGAA 3.0 by default, enabled SEO and disabled RGAA 2
  • Referential RGAA 3.0: english translation added (source : https://github.com/DISIC/rgaa_referentiel_en)

Security:
None

Bugs:

Configuration:
None

Documentation:

  • Updated runner doc (WIP)
  • Added "the referential creation" + "Create-a-rule" (WIP)

Upgrade-o-meter (borrowed from folks at Gitlab):

  • no database change, just replace the .war file
Compare
Choose a tag to compare

Features:

  • Enhanced script docker/compile_and_build_docker_image.sh

Security:

  • Upgrade Apache Commons FileUpload to v1.3.1
  • Upgrade Apache httpclient to v4.3.6

Bugs:

  • #25: localhost URLs should not be blocked
  • #104: Rgaa 3 - rule 8.9.1 : Changed actual result of rule when fieldset is used without form
  • #105: MySQL - Enable innodb_file_per_table
  • release/bump_asqatasun.sh : use --push option for pushing new tag

Configuration:

  • max-documents for site-audits lowered from 10'000 to 1'000
  • disabled Rgaa-2 rules

Documentation:

  • #88: DOC Docker - Add tip for Mac OS X and Windows users

Upgrade-o-meter (borrowed from folks at Gitlab):

  • no database change, just replace .war
Compare
Choose a tag to compare

Security:

  • #83: Upgrade Apache Commons Collections to v3.2.2

Bugs:

  • #85: Audit full-site : accept the new gTLDs (eg .jobs, .paris)
Compare
Choose a tag to compare

Features:

  • devops:
    • Docker images (+ Docker automated builds)
    • Ansible role + Vagrantfile
  • Implementation of SEO rules
  • RGAA 3 translated in English
  • Documentation: huge refactor
  • New translation system on Transifex https://www.transifex.com/asqatasun/asqatasun/
  • New logo integrated in the app
  • Fork from Tanaguru

Bugs:

  • #43: Mysql config: add UTF-8
    to support any type of charset including cyrillic + enhance way to modify Mysql conf
  • #58: PDF - clicking on it returns to an error page
Compare
Choose a tag to compare

v4.0.0-rc.1

Pre-release
Pre-release

New from v4.0.0-beta2:

Bugs:

  • #43 : Mysql config: add UTF-8
    to support any type of charset including cyrillic + enhance way to modify Mysql conf

Features:

  • devops: Ansible role + Vagrantfile
  • Documentation: huge refactor; Sections done: Install, Contrib > Docker build, Contrib > Release
  • New logo integrated in the app
Compare
Choose a tag to compare

v4.0.0-beta2

Pre-release
Pre-release

New from v4.0.0-beta1:

  • prepared for Docker automated builds