Xray 3.34.1

Xray Release Information

ft:sourceType
Paligo

Released: October 14, 2021

Highlights
New REST API for Scan Status

You can now check the scan status of Packages, Builds, and Release Bundles using the new Scan Status REST API.Scan Status

Resolved Issues

Note

This release contains resolved vulnerabilities. To learn more, click here.Fixed Security Vulnerabilities

JIRA

Description

XRAY-8413

Fixed an issue whereby, vulnerabilities detection was not accurate in SaaS when matching was done according to prefix instead of suffix.

XRAY-8399

Fixed an issue whereby, using special characters in the RabbitMQ password was not supported.

XRAY-7986

Fixed an issue whereby, the Violations and Vulnerabilities Reports were not generating critical violations data for violations with CVSS V3 score.

XRAY-7624

Fixed an issue whereby, creating a Watch failed, when the Watch contained a Policy with multiple rules all with the Block Download action.

XRAY-8260

Fixed an issue whereby, when there are many security violations in the Security tab, and the list spans over 1 page, the list was not ordered correctly sometimes resulting in duplicated or missed security violations in the list.

XRAY-8288

For security reasons, Xray now does not allow authentication with user type anonymous anymore.