Released: September 10, 2023
Highlights
JFrog Catalog
For Enterprise X and Enterprise + subscriptions with Software Package Curation.
Explore OSS packages and discover their versions, vulnerabilities, license data, operational risk, and if they have any dependencies. For more information, see JFrog Catalog
Xray support for Release Bundle V2
Xray now supports scanning Release Bundle V2. You can now create security policy actions on Release Bundle V2. For more information, see Scan Release Bundles (v2) with Xray
Release Bundle V2 is supported in Artifactory versions 7.68.X and above.
Improved User Experience
Improved the user experience to provide you with the following:
New experience for DevOps persona in Artifactory screens
Artifact/Build/Release Bundle version: Overview dashboards that aggregate vulnerabilities, violations and security data in one screen
Build trend: Overview widgets that help you understand the trend of violations, vulnerabilities and Malicious Packages between the different build versions.
Easy way to filter vulnerabilities from the overview widgets
Resolved Issues
Jira | Description |
---|---|
XRAY-19883 | Fixed some issues relating to violation search in the Watch Violations tab. |
XRAY-17506 | Fixed an issue whereby when trying to view an SBOM for an artifact, in some cases, resulted in an error "failed to get next records batch" and "query limits reached”. |
XRAY-22699 | Fixed an issue whereby in some cases the option to set an Ignore rule expiration date wasn't presented in the UI. |
XRAY-22983 | Fixed an issue whereby the progress of an advanced scan is not updated if one or more artifacts fail the scan. |
XRAY-22314 | Fixed an issue whereby Xray failed to index a docker artifact due to a runtime error. |
XRAY-23221 | Fixed an issue whereby, when there were more than 40 Watches, the Xray Watches list only displayed the first 40. |