9.7.0 Hotfixes
Resolved Issues and Changes
Category | Resolved Issues |
|---|---|
HF1 February 2025 | |
Security Bug Fix: Addressed a critical vulnerability in the access control mechanism, ensuring unauthorized users cannot bypass restrictions and gain access. | |
Fixed a database deadlock when trying to count the number of projects in cases where tens of thousands of projects had been created. | |
Fixed a bug that caused results not to be retrieved via GET results API in cases where a preset used to find those results had been deleted. | |
Fixed database deadlock errors, which happened while many projects were simultaneously created. | |
Resolved an issue in reports where the incorrect branch was displayed. This occurred when the project was edited, and the branch was changed. | |
The data retention process has been improved, and now it cleans orphan scan data. | |
Fixed a bug that caused the loss of a query description. This happened to a customized query with a description while its group was deleted. | |
Fixed a bug that caused results to appear as fixed instead of recurrent, which happened while comparing scans that involved a deleted customized query while its group had been deleted. | |
Fixed a bug that caused the short description to appear incomplete in PHP queries and cases where the scanned code contained <?. | |
Resolved a scan process failure caused by a Policy Management error. This occurred when the policy management key in the database was damaged or removed. | |
Fixed an error where retrieving results via the GET SAST results API received a 500 internal error when the scan had no code change. Now, the results are being retrieved with a 200 success code. | |
Fixed the results retrieval API; it got returned with an error in cases where the results of specific queries had no description. | |
Paged support has been added to the get projects API; now, you can control how many projects are retrieved in each batch, which prevents a failure when the number of projects is large. |
Category | Resolved Issues |
|---|---|
QF1 February 2025 | |
Included in Hotfix 1 Security Bug Fix: Addressed a critical vulnerability in the access control mechanism, ensuring unauthorized users cannot bypass restrictions and gain access. |