Releases: rapid7/nexpose-client
Nexpose Client v0.5.5
Adds protection around XML calls, adds db_maintenance method, and opens optional timeout argument for ad hoc report generation.
Release 8 November 2013.
There are no breaking changes in 0.5.5
Version 0.5.5 is backwards compatible with 0.5.0
Bug Fixes
Several calls to the Security Console did not protect against XML entities ("<&>'). Calls using these characters would fail because of invalid XML. The calls are now sent as valid XML.
New Features
Exposes database maintenance tasks through the Connection#db_maintenance command.
Adds timeout argument for ad hoc report generation. Ad hoc reports would timeout if they took more than 60 seconds to generate. When this happens, the gem would initiate a new ad hoc report. Timeout defaults to 5 minutes, but can be manual set longer when it is know that a report will take much longer.
Nexpose Client v0.5.4
A minor change to accept 201 AJAX responses as successful.
Release 27 September 2013.
There are no breaking changes in 0.5.4
Version 0.5.4 is backwards compatible with 0.5.0
Bug Fixes
None.
New Features
Return positive responses on 201 HTTP response code, not just 200.
Nexpose Client v0.5.3
Includes improvements around Scan Templates.
Release 27 September 2013.
There are no expected breaking changes in 0.5.3. The NexposeAPI module has been removed, but all functionality remains in the Connection object. This should improve documentation.
Version 0.5.3 is backwards compatible with 0.5.0
Bug Fixes
None.
New Features
Adds list_vuln_categories and list_vuln_types methods, to aid in Scan Template manipulation.
Adds find_vulns_by_date to search for vulnerability checks based upon when they were available in Nexpose.
Allow for creating, editing, and updating Scan Templates. Not all UI functionality is available, but new methods focus on enabling and disabling vulnerability and scanning features. Vulnerability, policy, and web spidering checks can be toggled. Vulnerability correlation, potential and unsafe checks can be toggled. Vulnerability checks can be enabled, disabled, or removed either individually, or by category or type.
Nexpose client v0.5.2
Release 19 September 2013.
We don't expect the changes in 0.5.2 to be breaking changes. The conversion of report config_id and owner attributes could break scripts that depend upon String behavior over Fixnum, such as using strict equality operators.
Version 0.5.2 is backwards compatible with 0.5.0
Bug Fixes
Report config_id and owner attributes were being parsed as strings when they are always integers.
Report names containing XML entities (like &) can now be saved through the gem.
Fixes IPRange comparison methods. When calling Site#assets and then checking for include? when there are a mix of IPRange and HostName in the assets could fail to compare.
New Features
Add backup functionality to the gem, including listing out existing backups, initiating a backup or restore, and deleting existing backups from the system. Please note that backup and restore require Nexpose to reboot twice, and active connections will be lost once initiated.
Nexpose client v0.5.1
Release 16 September 2013.
There are no breaking changes in 0.5.1
Version 0.5.1 is backwards compatible with 0.5.0
Bug Fixes
Fixes an error in parsing sites when it has credentials. Affects the Site#load method.
New Features
Adds the SharedCredential class, allowing for creating, editing, and deleting shared credentials.
Adds constants to the Credential class. These constants, Type and ElevationType, are common to site credential and shared credential calls.
Adds scan status constants under Scan::Status.
Adds scheduling type constants under Schedule::Type.