v26.02.1

Changes:

• Increase version to v26.02.1 #1056
• Fixed warning: The HMAC key is 11 bytes long #1055
• Fixed: Could not parse version from pyproject.toml #2 #1043
• Fixed: Could not parse version from pyproject.toml #1 #1042
• Unified delete button appearance #1041
• Sources auto formated by ruff #1040
• Product preview / publish #1009
• Added missing updated_at/updated_by to product/report_item #1010
• Better Docker ACME configuration #1030
• Improved product, news item and report item filtering #1011
• Fix save error after product preview action #1029
• Specify Traefik version #1008
• Selection from previous task remained initialized #1007
• Add disable hotkeys to user settings #1006
• Update package.json, Login icons #1005
• Remove "material-design-icons" (not used, we use mdi/font) #1004
• Move AI Provider to Data Providers screen #1003
• Fixed remote_source can't be null in Presenter #1002
• Improved message box #994
• Asses UI improvements #986
• Wrong collector type shown on OSINT source screen on first open #985
• Remap WORKERS_PER_CORE, WEB_CONCURRENCY -> GUNICORN_WORKERS #984
• Minor fixes #982
• Add support for selecting ACL items via a combo box #983
• Fix wrong display of OSINT sources (old version import) #973
• Fix importing old OSINT sources export json #972
• Add "Last Seen" column to Collectors, Bots nodes screen #971
• Unify categories in News item selector #969
• Action buttons selection color + Dark theme fix #962
• Better wordlists descriptions #961
• Fix leaking API key in SSE logs, high CPU load on failed verification #960

---

Thanks for the contributions: @Progress1, @multiflexi

Read more about changes inside CHANGELOG.md

Full Changelog: v25.12.1...v26.02.1

v25.12.1

Changes:

• Increase version to v25.12.1 + new Products API filter #950
• All News Item category, Available Wordlist API #947
• Small fix #949
• Optimise news-items-updated events #948
• Vulnerability report css style cleanup (html, pdf) #946
• Fix attribute sort #945
• Update stop lists #934
• Comment icon in News items #933
• Osint sources screen fixes, Db constraints.. #912
• States #908
• Fix: Request Line is too large (4XXX > 4094) #923
• Fix in message Jinja filters #922
• Fix Jinja for plaintext #916
• Support for ACME #909
• Fixed selection color on dark theme #907
• Remove unused vue sources #897
• Fixed refresh on News items group actions #896
• Crash on new report when you click on some sub aggregate item #895
• Add 'Hide source link' option to News items screen #883
• Additional fix for #784 Data providers #882
• Data providers #784
• Fixed: No module named 'langchain.chains' #881
• Show/hide news items reviews #875
• Fix multiple AI buttons on Analyze form#874
• Tag cloud improvements #873
• Small migration fix #872
• User settings #867
• Additional fix to #854 #855
• Fixed filter bug in 'Select Report Items' in Publish screen #854
• Fix plaintext in collected content #853
• Fix 'NewsItemData' object has no attribute 'content_plaintext' + Add review for title if it's empty #845
• Add HTML display support for WEB-collected news items #844
• Fix not working report items #843
• Exclude html tags from new items indexing and some mastodon fixes #842
• Small fixes #841
• Fixes #839
• Store manually-entered news content as HTML #840
• HTML in news item content #831
• Fix bad <div> tags on OSINT template report #830
• Djlint #828
• MESSAGE Presenter: added support for custom attachment file names #829
• Some corrections of templates (formatting, fixes) #803
• Minor fixes #802
• side-by-side view: adjust news panel behavior and fix ESC handling #801
• Improved templating #800
• Fixing run and conf files #799
• Basic formatting #798
• uv and ruff in GitHub Actions #797
• Use uv, pyproject.toml #783
• Add pyproject.toml and ruff #782
• Jinja template loading secured #759
• Enable HTTP/3 #760
• Bump pre-commit plugins #781
• improve English translations #753
• Fixed TAG CLOUD ignoring stop words #752
• GUI improvements #743
• Add max_cvss to product #748
• Disallow Crawlers #741
• Small AI changes #742
• Small docs changes #740
• Documentation tidy-up #739
• Optimize case-insensitive search performance #733
• Login page is visible for logged user #732
• Translation strings tidy up #731
• Add AI support for creating report items - Part 2 (GUI configuration) #730
• Improve security part 1 #728
• Add AI support for creating report items - Part 1 #727
• Improve news item content display #715
• Update Alpine Linux #714
• Improved collector behaviour #690
• Improve use of objects #670
• minor GUI improvements #681
• Added to Message presenter PDF template attachment #686
• Web Application Manifest #685
• Fixed missing Enter/Assess button #684
• fontTools is ignoring global logging settings #683
• Add WARNING_INTERVAL to non-RSS sources #680
• Add WARNING_INTERVAL to RSS sources #679
• Correct deprecated jwt.decode() in python-keycloak #674
• Fixed error message in Bots (master_id) #673
• Fixed authentification for collectors when exists multiple nodes #672
• Fixed Core logger wrong SSE prefix #671
• Replace deprecated ExpandedPyMISP with PyMISP #669
• Fix error in Bots: ModuleNotFoundError: No module named 'bs4' #668
• Fix error in Presenters: ModuleNotFoundError: No module named 'bs4' #654
• Prefix in Collectors logs (proxy, fetch feed) #653
• Fix Collector Content debug print & Tuple Error, Keycloak Auth #652
• Improve log clarity in Check-if-modified #651
• Fixed errors when starting or restarting the entire Taranis (delayed start, between containers) #643
• Fix Bots schedulling and logger issues #642
• Improved logging #641
• Unified Configuration #636
• Added coloring to OSINT sources records #635
• Preparation for user settings table (Part 1) #627
• Add support for default values when creating new Collectors, Bots … #613
• Improve web collector #612
• Fixed crash by creating external user #607
• Add cascade delete to User, Organization and Word_list #604
• Remove yarm.lock file from doc directory #603
• Better whitespace processing in Title, Review when processing RSS, Web sources #602
• CSP update #600
• Added messages to HTTP response status codes #601
• Hide password in configuration #590
• Improved HTML sanitization, enhanced input validation across collectors (refactored shared functions) #589
• Added posibility manualy regenerate all parameters + Fix issue #572 #587
• Email sender filtering #577
• Added custom labels for Pull requests (visible on github) #586
• Truncate on symbol Jinja filter #576
• Improve Tag Cloud words (handle accented characters, filter short words) #575
• Unify button order in news item screens #574
• Sorting of OSINT sources unintuitive #19 #573
• Restructure custom Jinja filters #571
• Fixed #535 OSINT Source Groups selection #570
• Application settings #568
• Run regeneration for modules only in Upgrade mode and at Latest version #566
• Small fix for #564 (regeneration for modules failed in some cases) #565
• Default bot creation #564
• Fixed and reworked broken hotkeys #554
• Fixed API keys authetification #553
• Mastodon publisher #528
• Fixed error in Presenter: default_value: Field may not be null. #547
• Added posibility "refresh" parameters for Presenter, Collector, Bot, and Publisher and their products #546
• Fixed lost data refresh in Analyze screen #532
• Added baseSeverity attribute to "only CVSS number" compatibility mode #525
• Improved CVSS #522
• Remote node connection errors #524
• fix minor bug in string evaluation #521
• Improve proxy for collectors #520
• Change some datetime format in debug logs #514
• Improve RSS Collector #504
• Small fixes (warnings, table selection, linting, README) #513
• Improve OSINT all file generation #503
• OSINT sources #499
• bump Python version to 3.13 #501
• Added a remove button to products to remove report items #500
• fix send_file #498
• Fixed crash on remote node actions #490
• Fix CRLF #489
• Add Selenium version to logs #488
• Improve CORE logging #487
• Fix migration and bump Python version #484
• Fix and Enhance Logging in CORE #476
• Remove ATOM collector (duplicity functionality) #466
• SQLAlchemy migration 1.4.54 -> 2.0.36 #450
• "Clear" user data (Core migration fix) #447
• Upgrade Core part1 #430
• Fix date time format for web collector #435
• Fixed: Invalid JWT: Not enough segments on Logout #434
• Add license #431
• Fixed logout issues #429
• Fix various problem with SSE #424
• Upgrade Vue to latest V2 + bump other modules #418
• Update requirements.txt in core #423
• Fix import csv (Word lists), Add possibility skip unwanted columns #417
• Fix 2 warnings, Speed up GUI build #416
• Reflect NCSC-NL's Taranis3 current state in Readme #415

---

Thanks for the contributions: @Progress1, @multiflexi

Read more about changes inside CHANGELOG.md

Full Changelog: v24.11.1...v25.12.1

v24.11.1

Added

• Email collector improvements #402
• Logging improvement #351
• Logging improvement part 2. (Collectors) #399
• Add possibility delete already "used" OSINT Source Group #389
• Improve RSS collector #360
• Improve RSS collector #345
• Display "Report item type" instead of string "Title" in Analyze row details #329
• Check if ldap authentication is used #328
• Added "Last attempt" and "Last collected" columns in OSINT sources #316
• Add cascade delete to NEWS_ITEM releated tables #286
• Use secrets for Docker #211
• Docker secrets - Keycloak #293
• Noto fonts tidy up (presenter) #296
• Delete confirmation window #243
• Add confirmation to Publish button #270
• Replaced ConfirmDelete component to universal MessageBox #271
• Add Czech translation #222
• Added CWE attribute #209
• Attribute description - CWE #312
• Collectors update (Limit for article links, logs, fixes) #221
• Add logging messages to mailer, improved SMTP communication #213
• PDF report update #205
• Remove false translation warnings, correct some tooltips, don't try translate user strings #200
• Allow store CVSS as number (quick need for reporting) #203
• Add support for language setting per user #202
• Cancel the same GET request #204

Fixed

• Fixed: first key is acting as shorcut in empty editor #387
• Fixed keycloak logout #381
• Fix keycloak secrets #378
• Fix double scrollbars in Analyze & Publish screens #375
• Fix error: Property or method "editorData" is not defined #369
• Fix: SAWarning: Coercing Subquery object into a select() #352
• Fix: OSINT sources open first OSINT group screen #350
• Fixed bugs in Product and Report screens (endless status, errors mesages) #348
• Fix sorting report atrributes to respect user order #343
• Fix error for user with no organization #335
• Fix: WARN: FromAsCasing: 'as' and 'FROM' keywords' casing do not match #333
• Fix: Manually creating news item can produce error #330
• Fix LDAP env variables #326
• Fix missing value_description definition #325
• Fix: run collector always in new class #322
• Fix error when adding CWE to report item #324
• Fix error: '': No such file or directory" on mapped folder #287
• Fix: Display the description in the OSINT source groups grid #295
• Fix non working ACL for Product Types #249
• Fix errors: t is null & semicolon #252
• Fix selector for some element types #263
• Fix upgrade db error (caused previous PR) #223
• Fix upgrade db error 2 (caused previous PR) #224
• Fix: disable shorcuts on text/textarea fields (prevents typing text) #207
• Fixed bug in chrome driver: unrecognized proxy type: MANUAL #214
• Dark theme fix (bad colors) #219
• Fix crash when user try create new user with filled password #130
• Fix some small code issues from last PR #198
• Message product preview fix #244
• A lot of various small fixes

Changed

• Remove redundant code #404
• Remove marshmallow-enum #403
• Removed extra step in web driver exiting #400
• Upgrade GitHub actions warnings #386
• Upgrade GitHub action: checkout@v2 -> v4 on lint #385
• Remove duplicate env variables #377
• Remove old Python 3.8 references #374
• Don't try translate news items categories on report items screen selector #370
• Use text format in Content for manually entered news items #361
• Removed .env password support #344
• Opitimalization: tables relationship (join) #334
• Update value desc only if found #327
• Ignore custom settings files and templates #323
• Update/rewrite slackclient to 2.9.4 #318
• Correct date formats #319
• Language update (previous messagebox commit) #274
• Link deduplication in product #210
• A lot of components update (bumping to new versions)

Contributors

Thanks for the contributions: @Progress1, @multiflexi, @Ximelele

Read more about changed inside CHANGELOG.md

Full Changelog: v23.12.1...v24.11.1

v22.12.1

What's Changed

• GUI
  • Analyze: new feature - side by side view
  • Assess: Show number of selected news items
  • possibility to NOT set hotkeys in user profile
  • taranis-logo.svg now has colors
• Collectors
  • fixed crash when processing an empty link in RSS
  • fixed proxy settings parsing ; fixed setting proxy for firefox headless browser
  • fixed chromium driver initialization; added more logging for web driver initialization
• Logging
  • more verbose logging in cve/cpe import
  • removed useless warnings from logs
• Wordlists
  • Added default wordlists for the English and Slovak language
  • added option to download wordlists from URL; added default downloadable wordlists
• Other changes and fixes
  • build: added Github action and pre-commit hook for linting
  • certain packages upgraded for security
  • refactor some code to create "shared" module with data models
  • various other fixes and updates across the code base

New Contributors

• @dodancs made their first contribution in #85
• @ncsc-fi-kimmo made their first contribution in #87
• @Progress1 made their first contribution in #97
• @evolution536 made their first contribution in #93
• @milankowww made their first contribution in #107

Full Changelog: v22.05.1...v22.12.1

v22.05.1

Added

• gui: keyboard shortcuts: use delete for deleting news items by @sebix in #46
• assess: add noreferrer attribute to source links by @sebix in #44
• readme: add alternative source for stop lists by @sebix in #34
• gitignore: add more rules and make others more generic by @sebix in #25
• Document keyboard shortchuts by @sebix in #31
• doc harware requirements: add cpu cores by @sebix in #75

Changed

• fix bare except clauses by @sebix in #42
• Assess: Do not reload news items when in selection mode by @sebix in #40
• fix gui shortcuts in assess by @sebix in #56
• Security upgrade lxml from 4.5.0 to 4.6.3 by @sebix in #47
• Keyboard fixes and new shortcuts by @sebix in #52
• gui: remove unused vue logo by @sebix in #58
• GUI Keyboard improvements by @sebix in #57
• use log_manager by @b3n4kh in #62
• refactor auth_manager by @b3n4kh in #63
• cleanup ftp publisher code by @b3n4kh in #64
• monkeypatch before init by @b3n4kh in #65
• shortcuts: ignore keypresses in search field except Escape by @sebix in #76

New Contributors

• @b3n4kh made their first contribution in #62

Full Changelog: v21.11.1...v22.05.1

v22.01.1-pre1

Added

• Document keyboard shortchuts by @sebix in #31

Changed

• gui: keyboard shortcuts: use delete for deleting news items by @sebix in #46
• gui: remove unused vue logo by @sebix in #58
• gui: * fix gui shortcuts in assess by @sebix in #56
• gui: GUI Keyboard improvements by @sebix in #57
• gui: Assess: Do not reload news items when in selection mode by @sebix in #40
• gui: Assess: add noreferrer attribute to source links by @sebix in #44
• gui: Keyboard fixes and new shortcuts by @sebix in #52
• fix bare except clauses by @sebix in #42
• readme: add alternative source for stop lists by @sebix in #34
• gitignore: add more rules and make others more generic by @sebix in #25
• Security upgrade lxml from 4.5.0 to 4.6.3 by @sebix in #47

Full Changelog: v21.11.1...v22.01.1-pre1

v21.12.1-pre1

Added

• OSINT Sources: mass export/import feature (allows export of selected entries, or all entries)
• OSINT Sources: introducing a default "Uncategorized" group, which keeps the collected news items for freshly added sources. These are automatically transferred to the assigned groups when the source is assigned to these groups.
• product template arguments redesigned to better access the report item attributes (breaking change if you edited your templates)

Changed

• security upgrades (including upgrade of lxml from 4.5.0 to 4.6.3 by @sebix in #47)
• asset management fix: asset cannot be added without an asset group
• gui: large upgrade to a newer framework; cleanups
• gui: keyboard shortcuts: documentation and multiple changes by @sebix in #46, #56, #52, #31
• assess: add noreferrer attribute to source links by @sebix in #44
• fix bare except clauses by @sebix in #42
• Assess: Do not reload news items when in selection mode by @sebix in #40
• readme: add alternative source for stop lists by @sebix in #34
• gitignore: add more rules and make others more generic by @sebix in #25

Full Changelog: v21.11.1...v21.12.1-pre1

v21.11.1

Added

• Added collector management to manage.py - #18

Changed

• Docker readme: Fix URLs/Ports with switch to HTTPS by @sebix in #21
• Tidied up word lists
• Re-worked proxy handling for the RSS collector
• Fixed issues with collector node and OSINT source status models and schemas - #23

Full Changelog: v21.10.6...v21.11.1

v21.10.6

Added

• added sample word block list for tag cloud

Changed

• more verbose logging in rss collector
• usability fixes in collectors
• fixed asset group updates
• iproved default templates for products

Full Changelog: v21.10.5...v21.10.6

v21.10.5

Added

• authors of Product templates may now use the new Configuration -> Product types help screen, which lists all the fields defined in a chosen Report item type. This simplifies the development of new product templates.

Changed

• GUI and RSS collector fixes

Full Changelog: v21.10.4...v21.10.5