Merge branch 'main' into fediverse

cve-search · Nov 14, 2024 · a09291d · a09291d
2 parents c609a29 + f00c6e9
commit a09291d
Show file tree

Hide file tree

Showing 9 changed files with 265 additions and 1,696 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,6 +1,48 @@
 Vulnerability Lookup Changelog
 ==============================
 
+## 2.1.0 (2024-11-14)
+
+### News
+
+- A new API endpoint allows sightings to be created programmatically.
+  Using dedicated tools, we gather observations from three main sources:
+  - The Fediverse with [FediVuln](https://github.com/CIRCL/FediVuln),
+    a client to collect vulnerability-related information from the Fediverse
+  - MISP with [VulnerabilityLookupSighting](https://github.com/MISP/VulnerabilityLookupSighting),
+    a client that retrieves vulnerability observations from a MISP server and pushes them to a Vulnerability Lookup instance
+  - RSS and Atom [feeds](https://www.newspipe.org/category/140)
+- Combined sightings for bundles:
+  The page displaying bundle details now shows the combined sightings for all vulnerabilities within the bundle
+  ([48610fc](https://github.com/cve-search/vulnerability-lookup/commit/48610fcccd0bbb42bc2ed5c89c00bbfe5ba06184))
+- New RSS/Atom endpoints for sightings have been added, allowing parameters such as the sighting source to be used
+  and the id of a vulnerability. This enables users to subscribe to activity on unpublished vulnerabilities.
+  ([6020294](https://github.com/cve-search/vulnerability-lookup/commit/6020294bec8da413eab0352ba99d89846851e946))
+- Provide the possibility to comment not yet published vulnerabilities
+  ([f88f239](https://github.com/cve-search/vulnerability-lookup/commit/f88f23923354e62c741ed1f988e2132a7c0aaafc))
+
+
+### Changes
+
+- Make drawBarChartHomePage faster
+  ([fa95945](https://github.com/cve-search/vulnerability-lookup/commit/fa95945e0756b118d2321bb74a64a5d59a079ea3))
+- Added a function in order to provide a small description about the vulnerabilities listed in the bundle page
+  ([8f04be1](https://github.com/cve-search/vulnerability-lookup/commit/8f04be1903c87e79e5c693cae6bb688a14032e81))
+- Various enhancements to the home page and the charts based on user sightings
+- Improved the API and the OpenAPI Swagger documentation
+- Various improvements were made to the user interface
+
+
+### Fixes
+
+- Fixed an issue in the Marshalling for the Sightings in the API
+  ([5ccdbe2](https://github.com/cve-search/vulnerability-lookup/commit/5ccdbe240e218a45d881377f9678c523d8af2f8d))
+- Fixed the title of the RSS/Atom feed
+  ([311d2c4](https://github.com/cve-search/vulnerability-lookup/commit/311d2c4b3c2ef570caf4d98e9c7c3b421353538d))
+- Keep non-sensitive case search even if our ids are lowercase.
+  ([9fae6ea](https://github.com/cve-search/vulnerability-lookup/commit/9fae6ead1d9e98b5e65105c8da4ca393ff4e83e1))
+
+
 ## 2.0.0 (2024-10-18)
 
 ### News