1.6.6

What's Changed

• chore: Dependency Updates
• chore(deps): bump picomatch from 2.3.1 to 2.3.2 in /test/state in the npm_and_yarn group across 1 directory by @dependabot[bot] in #1981
• chore(deps): bump requests from 2.32.4 to 2.33.0 in /docs in the pip group across 1 directory by @dependabot[bot] in #1982
• chore(deps): bump the npm_and_yarn group across 3 directories with 1 update by @dependabot[bot] in #1984
• chore(deps): bump the npm_and_yarn group across 1 directory with 1 update by @dependabot[bot] in #1985
• update dependencies by @cd-rite in #2006
• chore(release): update version to 1.6.6 and add release notes for dependency updates by @cd-rite in #2007

Full Changelog: 1.6.5...1.6.6

1.6.5

What's Changed

• chore(deps): update fast-xml-parser to version 5.5.8 and adjust parser settings to accommodate newly enabled and very conservative defaults. by @cd-rite in #1978
• chore: update version to 1.6.5 and add release notes for fast-xml-parser update by @cd-rite in #1979

Full Changelog: 1.6.4...1.6.5

1.6.4

What's Changed

• chore(deps): bump undici from 6.23.0 to 6.24.0 in /api/source in the npm_and_yarn group across 1 directory by @dependabot[bot] in #1971
• chore: update version to 1.6.4 by @cd-rite in #1973

Full Changelog: 1.6.3...1.6.4

1.6.3

What's Changed

• (API) fix: resolve discrepancies in fresh install stored procedures vs migration for Service Jobs feature
• (API) refactor: replace asyncapi-validator with lightweight AsyncApiValidator class to reduce dependency bloat and improve performance
• (Docs) Updated build dependency
• (Client: Dependencies) Update to latest stig-manager-client-modules (1.6.3)
• (API/Client: Dependencies) Various security and maintenance updates

Note: This release includes a database migration to resolve discrepancies in the database stored procedures for the Service Jobs feature that could occur on fresh installs.

Full Changelog: 1.6.2...1.6.3

1.6.2

What's Changed

• (API) Updated launcher templates
• (Docs) Updated build dependency
• (Dependencies) Various security and maintenance updates

• chore(deps): bump fast-xml-parser from 4.5.0 to 5.3.4 in /test/api in the npm_and_yarn group across 1 directory by @dependabot[bot] in #1886
• chore(deps): bump fast-xml-parser from 4.5.3 to 5.3.4 in /api/source in the npm_and_yarn group across 1 directory by @dependabot[bot] in #1888
• chore: updates dependencies, launchers by @cd-rite in #1936
• updated sphinx-contrib-images by @cd-rite in #1938
• chore(deps): bump qs from 6.14.1 to 6.14.2 in /api/source in the npm_and_yarn group across 1 directory by @dependabot[bot] in #1939
• chore: updates for release 1.6.2 by @cd-rite in #1941

Full Changelog: 1.6.1...1.6.2

1.6.1

What's Changed

• chore(deps): bump urllib3 from 2.6.0 to 2.6.3 in /docs by @dependabot[bot] in #1868
• chore(deps): bump undici from 6.22.0 to 6.23.0 in /api/source by @dependabot[bot] in #1874
• chore(deps): bump the npm_and_yarn group across 2 directories with 1 update by @dependabot[bot] in #1876
• chore(deps): bump the npm_and_yarn group across 2 directories with 1 update by @dependabot[bot] in #1877
• chore: update version to 1.6.1 and add release notes for changes by @cd-rite in #1878

Full Changelog: 1.6.0...1.6.1

1.6.0

What's Changed

• chore: update copyright years to 2026 in CONTRIBUTORS.md, LICENSE.md, and conf.py by @cd-rite in #1863
• docs: Updated docs to describe format requirements for values found in token claims.
• chore: update version to 1.6.0 and release notes by @cd-rite in #1864
• dependencies: Updated API dependency

Full Changelog: 1.5.17...1.6.0

1.5.17

What's Changed

• added contact, fixed youtube link by @cd-rite in #1850
• chore(deps-dev): bump validator from 13.15.20 to 13.15.23 in /test/api by @dependabot[bot] in #1848
• chore(deps): bump jws from 3.2.2 to 3.2.3 in /api/source by @dependabot[bot] in #1849
• chore(deps): bump urllib3 from 2.5.0 to 2.6.0 in /docs by @dependabot[bot] in #1851
• chore(deps): bump validator from 13.15.20 to 13.15.23 in /test/state by @dependabot[bot] in #1854
• chore(deps): bump jws from 3.2.2 to 3.2.3 in /test/utils by @dependabot[bot] in #1855
• chore: 1.5.17 updates by @cd-rite in #1856

Full Changelog: 1.5.16...1.5.17

1.5.16

What's Changed

• (API) feature: Native TLS server support with new environment variables STIGMAN_API_TLS_CERT_FILE and STIGMAN_API_TLS_KEY_FILE
• (API) feature: Custom CA certificate support for OIDC provider TLS validation via STIGMAN_OIDC_CA_CERTS environment variable
• (API) enhancement: Database TLS certificate paths now support absolute paths while maintaining backward compatibility with relative paths
• (API) feature: Complete label objects (labelId, name, color) included in API responses alongside existing labelIds arrays
• (API) feature: revisionDate added to STIG metrics summary responses
• (API) fix: Missing control field in ccis projection responses
• (Docs) Updated README.md and screenshots
• (Dependencies) Various security and maintenance updates

Note: This release introduces native TLS server support for the API. TLS is enabled by setting both STIGMAN_API_TLS_CERT_FILE and STIGMAN_API_TLS_KEY_FILE environment variables. If the private key is encrypted, provide the passphrase via STIGMAN_API_TLS_KEY_PASSPHRASE. Additionally, deployments using custom or internal certificate authorities for their OIDC provider can now specify a CA certificate file via STIGMAN_OIDC_CA_CERTS. Database TLS certificate environment variables (STIGMAN_DB_TLS_CA_FILE, STIGMAN_DB_TLS_CERT_FILE, STIGMAN_DB_TLS_KEY_FILE) now support absolute paths; existing deployments using relative paths continue to work without modification.

New Contributors

• @crodriguez6497 made their first contribution in #1828

Full Changelog: 1.5.15...1.5.16

1.5.15

What's Changed

• (API/UI) feature: New Log Stream feature for Application Managers
• (API/UI) feature: Bulk assignment of Collection Grants to User Groups
• (UI) enhancement: Handle cross-origin OIDC with mTLS by pre-fetching openid-config from main thread
• (UI) enhancement: handle state mismatch by auto redirecting to OIDC Provider for smoother reauth UX

Note: This release includes the new Log Stream feature. If STIGMan has been deployed behind a reverse proxy, additional configuration may be required for it to function correctly. Please refer to the STIG Manager documentation for guidance on configuring your reverse proxy to support streaming endpoints and WebSockets. This feature can be disabled by setting the environment variable STIGMAN_EXPERIMENTAL_LOGSTREAM to false if necessary.

Full Changelog: 1.5.14...1.5.15