...
| Info |
|---|
| Summary: this page describes the new features and bugs that have been fixed in the CAST Security Dashboard 1.8.0. |
Content matrix
| Version | Summary of content |
|---|---|
| 1.8.0 |
|
Resolved issues
| Internal ID | Call ID | Situation |
|---|---|---|
| DASHBOARDS-564 | - | Dashboard truncates "Rational" text in the violation drill-down page. |
New features
SEC-207 - Default security tiles have been renamed and now use different tags
The default tiles CWE and OWASP have been renamed and now use different tags:
| Old Name | Old Tag | New Name | New Tag |
|---|---|---|---|
| CWE | CWE | CWE-Top25 | CWE-2011-Top25 |
| OWASP | OWASP | OWASP-2017 | OWASP-2017 |
These tiles display the number of Violations or Critical Violations in the Application for rules that have the selected tag (i.e CWE-2011-Top25 and OWASP-2017). Clicking on these tiles navigates to the Risk investigation view with the specific tag selected at the top of the table . "All Rules" will be selected in the Technical Criteria table and the list of rules displayed will all be tagged with the selected tag:
...
The Education List has been separated out from the Action Plan and Exclusions tabs and now has its own sidebar menu access title Education and Continuous Improvement. The Action Plan and Exclusions lists remain in their existing locations:
| Education and Continuous Improvement | Monitor Actions and Exclusions |
|
|
In addition, the Active column has now been replaced with the Action column:
...
| Code Block | ||
|---|---|---|
| ||
%CATALINA_HOME%\webapps\CAST-Security\security\resources\ced.json
For v.≥ 1.18: %CATALINA_HOME%\webapps\CAST-Security\security\resources\ed.json |
Add the following line in the "configuration" parentheses, where xx = the number of seconds you want to define before a login is required:
...