Skip to content

misp-stix 2.4.162 released
Compare
Choose a tag to compare
@adulau adulau released this 26 Sep 12:26
· 1183 commits to main since this release
v2.4.162
9a5aedb
This commit was signed with the committer’s verified signature.
chrisr3d Christian Studer
GPG key ID: 6BBED1B63A6D639F
Verified
Learn about vigilant mode.

v2.4.162 (2022-09-19)

Changes

  • [package] Updated to latest version to publish. [Christian Studer]

  • [stix2 export] Returning warning as a dictionary of lists instead of sets. [Christian Studer]

  • [setup, poetry] Aligning with the package features that are actually used on pypi. [Christian Studer]

  • [tests] Ported all STIX 1 export tests to support both JSON & MISP inputs. [Christian Studer]

  • [stix2 export] Made the timestamp values checking common to all export classes and moved the test is the values are datetime to this common function. [Christian Studer]

  • [tests] Duplicated tests for attributes, objects & galaxies export as STIX 2 to support both JSON & MISP input. [Christian Studer]

  • [tests] Tests for interoperability & feeds now support both JSON and MISP inputs. [Christian Studer]

  • [stix2 export] Added correct typing to functions receiving attributes, objects or events. [Christian Studer]

    • When the library is used in a python script, we
      can pass directly MISPEvent, MISPAttribute or
      MISPObject objects instead of their JSON format
      It is already working, here we simply fixed the
      functions header with the correct typing

  • [doc] add PyPI references. [Alexandre Dulaunoy]

Fix

  • [readme] Updated description. [Christian Studer]

  • [stix2 export] Added missing use case making available Attributes parsing in some situations while giving the input as file instead of as loaded dict. [Christian Studer]

    • It avoids for instance issues with the command
      line script when giving a file containing an
      attributes collection

  • [stix2 export] Fixed edge case when the send-date attribute within an email object is not a correctly formatted datetime value. [Christian Studer]

  • [tests] Fixed tests for composite attributes exported as STIX 2 indicator that received a tiny change. [Christian Studer]

  • [stix1 export] Fixed composite attribute values parsing to avoid issues with values not formatted the right way. [Christian Studer]

  • [stix2 export] Fixed parsing of composite attributes which require some attribute type handling. [Christian Studer]

    • The composite attribute type will indeed always
      have the standard | as separator

  • [stix2 export] Handling composite attribute values when they are not formatted as they should be with a | [Christian Studer]

  • [stix2 export] Added the missing interoperability parameter in the Relationship object arguments. [Christian Studer]

  • [stix2 export] Fixed annotation object export as STIX 2.1 when there is no object reference. [Christian Studer]

  • [clean up] Removed debugging print statements. [Christian Studer]

  • [tests] Making the datetime to str utility function common to all STIX testing classes. [Christian Studer]

  • [stix1 export] Handling the data field while creating an Artifact object. [Christian Studer]

  • [stix1 export] Handling some datetime values. [Christian Studer]

  • [documentation] Fixed documentation following changes on the lnk objects export to STIX 2.0. [Christian Studer]

  • [tests] Fixing some tests triggered by a lot of unit tests to make them work with a MISP input. [Christian Studer]

  • [tests] Avoiding issues with the geolocation object & the to_ids value of some asn object attributes. [Christian Studer]

  • [stix2 export] Added missing import. [Christian Studer]

  • [tests] Better handling of timeline value & the data field. [Christian Studer]

  • [stix2 export] Better lnk objects parsing including the timeline attributes export as STIX 2.0 that were missing. [Christian Studer]

  • [stix2 export] Correctly handling the timestamp fields and values. [Christian Studer]

  • [stix2 export] Handling properly data fields in attributes and object attributes. [Christian Studer]

  • [stix2 export] Handling some timestamp values depending whether they are datetime or str. [Christian Studer]

  • [requirements] Regenerated the requirements files. [Christian Studer]

  • [requirements] Fixed requirements regarding the STIX 2 dependency. [Christian Studer]

  • [stix2 export] Fixed timestamp handling when they are already datetime. [Christian Studer]

    • Happens if we give the STIX Parser a MISPEvent
      type input instead of the JSON format that is
      the standard case when used in MISP core

  • [stix2 export] Fixed pattern validation to avoid sanitisation for strings to be executed on non string values. [Christian Studer]

  • [stix2 export] Fixed custom objects parsing for standalone pe-section objects parsing. [Christian Studer]

Other

  • Merge branch 'main' of github.com:MISP/misp-stix. [Christian Studer]
Assets 2
Loading