Version 1.13.0

Hello dear community! The OpenBAS 1.13.0 is out ! Hope you will enjoy it! 🎉

♻️ Ability to import/export injects

Reuse your content everywhere you want ! In addition to the import/export of scenario or simulation, you can now select any type of injects from a simulation to import it in another scenario/simulation, making any injects more flexible!

🎯 Filter injects by target

Having trouble remembering your setup ? Filter your inject by teams, asset or asset group and get a clear understanding on what inject will impact what target.

🔎 Nmap scan injector

Do you want to learn more about potential vulnerabilities of your assets ? Try our Nmap injector and get an overview of your open ports in our brand-new findings section of your inject results.

Enhancements:

• #2566 Differenciate internal and external IP addresses in endpoints
• #2425 Integrate Output contract and findings logic
• #2291 Ability to import/export injects
• #2233 Need to standardize our way of gathering our endpoints depending on the executors
• #1958 Be able to filter inject tab by teams, asset and asset groups

Bug Fixes:

• #2587 Dashboard page too large when the mitre matrix is large itself
• #2567 CrowdStrike executor is not getting the right IP address
• #2558 Inject upload button should be 8px away from display mode buttons
• #2548 Regression export pdf report in Firefox
• #2545 When using an external injector that targets assets, execution crashes
• #2529 Inject creation form field is based on key rather than on type
• #2514 Inconsistent compute of results from collectors
• #2513 Inject bulk export: select all mode not functional
• #2473 Exporting Scenario/Simulation/Inject does not export Payload files (documents)
• #2445 Fix usage of geologica
• #2221 RBAC controls do not permit users to access inject outputs
• #2167 Inconsistency in the way we display the name and icon of an inject
• #2151 Tanium seems to not deduplicate assets when it collects
• #1942 Prerequisites commands ( check + command ) are counted as one command instead of two in Tracking total count
• #1937 Execution date are not align in inject execution

Pull Requests:

• When I create a technical inject in a simulation and I remove the expectation, expectations still there by @RomuDeuxfois in #2387
• Improvment spacing on scenario and simulation by @RomuDeuxfois in #2422
• remove duplicate code on inject form by @MarineLeM in #2442
• [backend] Clean ExerciseDetails model & query by @RomuDeuxfois in #2443
• [frontend/backend] Filter injects on teams, assets and asset groups by @impolitepanda in #2388
• [frontend] Update react monorepo to v19 (major) - abandoned by @renovate in #2013
• [frontend] remove legacy inject export button (#2291) by @antoinemzs in #2355
• [frontend] Update material-ui monorepo (release/current) by @renovate in #2458
• [frontend] Update dependency eslint to v9.20.1 (release/current) by @renovate in #2457
• [backend] fix: Filters issue on not contains, empty and not empty by @impolitepanda in #2471
• [tool] Update Node.js to v22.14.0 (release/current) by @renovate in #2456
• [frontend] fix usage of geologica by @Dimfacion in #2446
• [backend] Export injects endpoint (JSON) (#2291) by @antoinemzs in #2359
• Adding pyroscope to ease debugging by @Dimfacion in #2368
• [backend/frontend] Adapt code base to manage the installation of multiples agents - chunk 2 by @savacano28 in #2208
• [frontend] Update remark (release/current) by @renovate in #2410
• [backend] Add migration traces status by @savacano28 in #2474
• [frontend] Update dependency pdfmake to v0.2.18 (release/current) by @renovate in #2407
• [backend] Fix migration asset tags by @savacano28 in #2478
• [frontend] Update dependency vite to v6.1.1 (release/current) by @renovate in #2494
• [frontend] Update dependency zod to v3.24.2 (release/current) by @renovate in #2495
• [frontend] Update dependency @xyflow/react to v12.4.3 (release/current) by @renovate in #2491
• [frontend] Update dependency html-to-image to v1.11.13 (release/current) by @renovate in #2492
• [frontend] Update dependency @vitest/eslint-plugin to v1.1.31 (release/current) by @renovate in #2490
• [backend] Update dependency io.hypersistence:hypersistence-utils-hibernate-63 to v3.9.2 (release/current) by @renovate in #2489
• [frontend] Update dependency react-router to v7.2.0 (release/current) by @renovate in #2487
• [frontend] Update dependency globals to v15.15.0 (release/current) by @renovate in #2486
• [frontend] Update dependency eslint-import-resolver-oxc to v0.12.0 (release/current) by @renovate in #2485
• [backend] Update dependency io.pyroscope:agent to v0.18.0 (release/current) by @renovate in #2480
• [frontend] Update dependency @faker-js/faker to v9.5.0 (release/current) by @renovate in #2482
• [frontend] Update dependency @ckeditor/ckeditor5-react to v9.5.0 (release/current) by @renovate in #2481
• [frontend] Update dependency uuid to v11.1.0 (release/current) by @renovate in #2488
• [tool] Update eclipse-temurin Docker tag to v21.0.6_7-jre (release/current) by @renovate in #2500
• [frontend] Update react monorepo (release/current) by @renovate in #2499
• [frontend] Update material-ui monorepo (release/current) by @renovate in #2498
• [frontend] Update dependency monocart-reporter to v2.9.15 (release/current) by @renovate in #2493
• [backend/frontend] Add agents results expectations in the atomic testing overview by @savacano28 in #2462
• [frontend] Update dependency jsdom to v26 (release/current) by @renovate in #2503
• [frontend] Update fontsource monorepo to v5.1.1 (release/current) by @renovate in #2497
• [frontend] Update dependency apexcharts to v4.5.0 (release/current) by @renovate in #2483
• [frontend|backend] Align create and update injects card headers (#2167) by @johanah29 in #2454
• [frontend] Fix UI atomic undefined injector contract by @savacano28 in #2512
• Bugfix list by @RomuDeuxfois in #2465
• [backend] Update dependency io.opentelemetry.semconv:opentelemetry-semconv to v1.30.0 (release/current) by @renovate in #2479
• [frontend] Update dependency @stylistic/eslint-plugin to v4 (release/current) by @renovate in #2502
• [backend] Add feature flag for UI agent expectations by @savacano28 in #2518
• [backend] Import injects endpoint (#2291) by @antoinemzs in #2447
• [backend/frontend] Fix update result expectation from collectors by @savacano28 in #2511
• [backend/frontend] Implement output contracts and findings (#2425) by @SamuelHassine in #2517
• [frontend] Update dependency ckeditor5 to v44.2.1 (release/current) by @renovate in #2484
• Improve right menu style by @RomuDeuxfois in #2467
• [tool] Update dependency kubernetes to v2 (release/current) by @renovate in #2505
• [backend / frontend] "Select all" inject bulk export mode (#2513) by @antoinemzs in #2519
• [frontend] Update typescript-eslint monorepo to v8.25.0 (release/current) by @renovate in #2541
• [frontend] Update eslint monorepo to v9.21.0 (release/current) - autoclosed by @renovate in #2540
• [frontend] Update dependency react-markdown to v9.1.0 (release/current) by @renovate in #2538
• [backend] Update dependency com.diffplug.spotless:spotless-maven-plugin to v2.44.3 (release/current) by @renovate in #2542
• [frontend] Update dependency cronstrue to v2.55.0 (release/current) by @renovate in #2537
• [backend] Update dependency org.apache.maven.plugins:maven-compiler-plugin to v3.14.0 (release/current) by @renovate in #2536
• [frontend] Fix "caldera executor not responding" translation by @antoinemzs in #2544
• [frontend] Update dependency vite to v6.2.0 (release/current) by @renovate in #2539
• [backend] change permission on some APIs to allow planner to view inject results #issue/2221 by @heditar in #2535
• [frontend] fix font in toPng function by @MarineLeM in #2549
• [backend/frontend] New agent endpoint id register by @damgouj in #2520
• [backend] Fix migration for release current by @damgouj in #2551
• [tool] Update openbas/caldera-server Docker tag to v5.1.0 (release/current) by @renovate in #2555
• [frontend] spacing for inject upload button by @antoinemzs in #2557
• [frontend] add spacing by @MarineLeM in #2560
• [frontend] translate injector type name in inject form by @MarineLeM in #2561
• [frontend] add TTP code on create inject form by @MarineLeM in #2563
• [frontend] fix inject header title form by @MarineLeM in #2565
• [frontend] Fix padding for inject icons in timeline by @savacano28 in #2564
• When I remove all the expectations manually, they are still there by @Dimfacion in #2562
• [frontend/backend] fix contract based features using key instead of type by @guillaumejparis in #2556
• [backend] Update migration by @savacano28 in #2580
• [frontend] fix main style of admin index by @guillaumejparis in #2589

Full Changelog: 1.12.2...1.13.0