SimpleRisk Core
The SimpleRisk 20240927-001 release is to address remaining complications with the incident management extra after the user interface update and addressed the following issues.
The the following update was made to help secure SimpleRisk:
- Removed includes/Component_ZendEscaper as it is no longer in use
This release includes the following bug fixes:
- Fixed an issue where the Risk Assessment and Additional Notes fields were no longer populated when you enter a CVE ID into the External Reference ID field
- Remove the create/drop code related to the table `framework_control_test_results_to_risks` from the assessments extra as that table is used in the core as well
- Fixed an issue only experienced in load balanced and redundantly served SimpleRisk instances where the spreadsheet import functionality would fail to import intermittently when the file would upload to one server and the mapping would be sent to another server and sticky sessions could not be applied. Files now store in the database immediately.
- Fixed an issue where the print view could create errors due to old CSS still being referenced.
The SimpleRisk Extras are the paid for functionality that extend the features of the SimpleRisk Core. This release targets bugs with customization and notification that were reported by users.
Incident Management Extra
- Fixed an issue on the Incident Management / Incidents / Identification page, unexpected text would appear in the Prioritization tab content when clicking the question mark next to the Recovery field.
- Fixed an issue on the Incident Management / Incidents / Identification page, updated the instruction font size and color for the Affected Assets field in the Associations tab content to match those on the Risk Details page.
- On the Incident Details page, update the instruction font size and color for the Affected Assets field to match those on the Risk Details page.
