Run the release drafter to populate the release notes.

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.50.0

• Refactor vulnerability ID and endpoint retrieval in Finding model @Maffooch (#13324)
• upgrade notes: explain performance improvements 2.51 @valentijnscholten (#13287)
• twistlock: defend against compliances being null @valentijnscholten (#13318)
• bugfix search results: enable bulk adding of tags and notes @valentijnscholten (#13297)
• ui import: allow providing test title @valentijnscholten (#13299)
• [docs] Pro changelog oct 3 @paulOsinski (#13315)
• Add CVSS details extraction to AWS Inspector2 parser @Maffooch (#13305)
• GitHub chores: Automatically close issues labelled as pending-closure @valentijnscholten (#13298)
• requested review: add data to notification title @valentijnscholten (#13284)
• Reduce and optimize number of product grading calls using a Chord @valentijnscholten (#12914)
• 🐛 Fix tenable CWE #13245 @manuel-sommer (#13252)
• Bug Fix: improve Kiuwan SCA parser to support multi component findings @mwager (#12753)
• Added Line Field for SonarQube Scan and SonarQube Scan Detailed Scan Types @Jino-T (#13256)
• [docs] update changelog 2.50.3 @paulOsinski (#13269)
• Add an Engagement's branch_tag in Jira Epic's description @Jino-T (#13270)
• product grade logging fix @valentijnscholten (#13268)
• Fix duplicated tags (everywhere) @fopina (#13250)
• feat(helm): Add docs for more variables @kiblik (#13224)
• jira webhook: add comment detection test @valentijnscholten (#13232)
• Refactor warning handling for blackduck import @Maffooch (#13229)
• do not build/start unused services in unit test docker compose files @fopina (#13220)
• feat(helm): Make API test more verbose @kiblik (#13208)
• 🎉 Add fix_available information to blackduck binary analysis parser @manuel-sommer (#13236)
• make sonarqube hotspots sync work @dshafranskiy-r7 (#13206)
• debug toolbar: disable by default @valentijnscholten (#13227)
• k8s-tests: bump k8s and minukube @valentijnscholten (#13231)
• fix(helm): apiVersion overrides not needed in tests @kiblik (#13207)
• fix(helm): Update annotations during releasing @kiblik (#13197)
• Tags: Remove duplicates in edit forms @Maffooch (#13228)
• feat(helm): Add ArtifactHub Linter @kiblik (#13199)
• [docs] changelog 2.50.2, minor changes @paulOsinski (#13226)
• bulk edit: update under_review flag @valentijnscholten (#13179)
• ⬆️ Bump ruff from 0.13.0 to 0.13.1 @manuel-sommer (#13223)
• Unit Tests: Ignore deprecation Warning from BlackDuck pypi package @Maffooch (#13225)
• dockerfiles: drop wheels from layers @fopina (#13209)
• 🎉 Add fix_available information to blackduck component risk #12633 @manuel-sommer (#13201)
• fix(helm): Empty string values propagated as strings (not as null) @kiblik (#13200)
• feat(helm): Better explanation for failing GHA @kiblik (#13198)
• feat(helm): Trigger update of Helm docs when version is changed @kiblik (#13191)
• 💄 Update Wazuh v4.8 @manuel-sommer (#13184)
• fix(helm): Set correct icon link @kiblik (#13195)
• debugtoolbar: fix for requirements-dev.txt @valentijnscholten (#13183)
• Fix naive datetime warnings/errors @valentijnscholten (#13170)
• feat(helm): Improve docs, add schema @kiblik (#12984)
• product grade: only update product if grade has changed @valentijnscholten (#13123)
• Github Vulnerability Parser: Update docs to generate correct schema @Maffooch (#13166)
• [docs] Changelog 2.50.1 @paulOsinski (#13167)
• bulk edit: add None check on JIRA sync check @valentijnscholten (#13168)
• Generic parser update @mykhailo-sindieiev (#13139)
• 🎉 Add fix_available information to jfrogondemand #12633 @manuel-sommer (#13124)
• 🎉 Add fix_available information to wpscan #12633 @manuel-sommer (#13153)
• fortify fpr_parser: allow optional fields to be optional @fopina (#13160)
• fix(helm): Drop bitnami repo reference @kiblik (#13125)
• 🎉 Add fix_available information to mend #12633 @manuel-sommer (#13142)
• [docs] add new opensource page @paulOsinski (#13151)
• Update to Django 5.1.12 @valentijnscholten (#13148)
• fix(helm): uwsgi tuning @kiblik (#13146)
• docker: remove dev dependencies from release images @valentijnscholten (#13095)
• fix default order to finding_groups @LeoOMaia (#13127)
• 🐛 Fix finding_group view @manuel-sommer (#13119)
• ruff fixes @valentijnscholten (#13122)
• feat: improve Helm chart @fernandezcuesta (#12691)
• 🎉 Add fix_available information to jfrog xray unified parser #12633 @manuel-sommer (#13105)
• 🎉 Add fix_available information to jfrog @manuel-sommer (#13115)
• 🐛 Implement Wazuh v4.8 @manuel-sommer (#12739)
• semgrep pro parser @valentijnscholten (#12848)
• Update changelog 2.50 @paulOsinski (#13121)
• Update the Qualys Hacker Guardian parser to be compatible with larger CSV files @Jino-T (#13120)
• fix(product): Drop import_scan_results_prod @kiblik (#13041)
• uwsgi: default to 4 processes x 4 threads @valentijnscholten (#13080)
• Import performance: reduce number of finding.save() calls @valentijnscholten (#12900)
• 🎉 Add fix_available information to aqua parser #12633 @manuel-sommer (#13106)
• System settings: correct page title/breadcrumbs @valentijnscholten (#13083)
• fix(docker): Docker Debian upgrade to Trixie @kiblik (#13054)
• 🎉 Add fix_available to KrakenDAudit @manuel-sommer (#13055)

🚩 Changes to settings.dist.py / local_settings.py

• Update default audit log type to django-auditlog @Maffooch (#13321)
• make SOCIAL_AUTH_USERNAME_IS_FULL_EMAIL configurable @valentijnscholten (#13301)
• Auditlog: Add django-pghistory as audit log (optional for now) @valentijnscholten (#13169)
• performance optimization: add tags in bulk @valentijnscholten (#13285)
• Snyk Issue Api Scan "sca" import implementation @dshafranskiy-r7 (#13263)
• Introduce text labels for v3 @dogboat (#13155)
• GitHub Secrets Detection Report Parser @Logicmn (#13286)
• Add AWS security bulletins to vulnid @manuel-sommer (#13272)
• Import history optimize @valentijnscholten (#13182)
• OpenVAS parser improvments @jostaub (#13214)
• Drop django-tagging as dependency @fopina (#13216)
• NN vulnid @manuel-sommer (#13180)
• watson: perform async index updates @valentijnscholten (#13152)
• Ruff: Add PLC1901 @manuel-sommer (#13157)
• feat(social): Add SOCIAL_AUTH_OIDC_LOGIN_BUTTON_TEXT @kiblik (#13150)
• Allow enabling Django Debug Toolbar via env variable @valentijnscholten (#12921)
• 🎉 Add OXAS-ADV- vulnid @manuel-sommer (#13129)
• 🎉 add VAR vulnid @manuel-sommer (#13096)
• Ruff: Preparation for G004 @manuel-sommer (#13076)

🚩 Database migration

• Auditlog: Add django-pghistory as audit log (optional for now) @valentijnscholten (#13169)
• Drop django-tagging as dependency @fopina (#13216)

🚀 API features and enhancements

• finding api: fix hash_code for vulnerability_ids @valentijnscholten (#13304)
• enhance/normalize EDITABLE_MITIGATED_DATA handling @valentijnscholten (#13303)
• Introduce text labels for v3 @dogboat (#13155)
• close finding: sync api and ui behaviour @valentijnscholten (#13230)
• make close_old_findings tooltip clearer when service is not set @fopina (#13211)
• Ruff: Add PLC0415 @manuel-sommer (#13156)
• Ruff: Preparation for G004 @manuel-sommer (#13076)
• Password Reset: Disable for SSO users @Maffooch (#13079)

🖌 Updates in UI

• findings list: support ordering by more fields @valentijnscholten (#13300)
• Auditlog: Add django-pghistory as audit log (optional for now) @valentijnscholten (#13169)
• Similar Findings: Restrict to Product Scope @Maffooch (#13271)
• Introduce text labels for v3 @dogboat (#13155)
• feat(finding list): Add planned_remediation_version @kiblik (#13261)
• Ruff: Add PLC1901 @manuel-sommer (#13157)
• Ruff: Add PLC0415 @manuel-sommer (#13156)
• feat(social): Add SOCIAL_AUTH_OIDC_LOGIN_BUTTON_TEXT @kiblik (#13150)
• Rename duplicate 'Dashboard' to 'Finding Groups' @testaccount90009 (#13140)
• 🎉 Add number of fix_available information to test view @manuel-sommer (#13109)
• msteams: Support Power Automate Workflows via Adaptive Card format @valentijnscholten (#13082)

🔧 Improved code quality with linters

• ⬆️ Bump ruff from 0.13.1 to 0.13.2 @manuel-sommer (#13267)
• Ruff: Add SIM115 @manuel-sommer (#13219)
• Ruff: Add PLC1901 to dojo/models @manuel-sommer (#13178)
• Ruff: Add PLC0415 to dojo/models @manuel-sommer (#13165)
• Ruff: Add PLC1901 @manuel-sommer (#13157)
• Ruff: Add PLC0415 @manuel-sommer (#13156)
• feat(docker): Use Python 3.12 in docker images @kiblik (#10473)
• Ruff: Add PLW @manuel-sommer (#13104)
• Ruff: Add PLW0603 @manuel-sommer (#13097)

🧰 Maintenance

• Update redis Docker tag from 7.2.10 to v7.2.11 (docker-compose.yml) @renovate (#13320)
• Update actions/stale action from v10.0.0 to v10.1.0 (.github/workflows/close-stale.yml) @renovate (#13317)
• Update softprops/action-gh-release action from v2.3.3 to v2.3.4 (.github/workflows/release-x-manual-helm-chart.yml) @renovate (#13316)
• ⬆️ Bump boto3 from 1.40.43 to 1.40.44 @dependabot (#13308)
• Update dependency vite from 7.1.8 to v7.1.9 (docs/package.json) @renovate (#13306)
• Update postgres:18.0-alpine Docker digest from 18.0 to 18.0-alpine (docker-compose.yml) @renovate (#13302)
• ⬆️ Bump boto3 from 1.40.42 to 1.40.43 @dependabot (#13295)
• Update dependency vite from 7.1.7 to v7.1.8 (docs/package.json) @renovate (#13294)
• Update postgres:18.0-alpine Docker digest from 18.0 to 18.0-alpine (docker-compose.yml) @renovate (#13291)
• ⬆️ Bump boto3 from 1.40.41 to 1.40.42 @dependabot (#13288)
• ⬆️ Bump drf-spectacular-sidecar from 2025.9.1 to 2025.10.1 @dependabot (...

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.50.3

• Added Line Field for SonarQube Scan and SonarQube Scan Detailed Scan Types @Jino-T (#13256)
• [docs] update changelog 2.50.3 @paulOsinski (#13269)
• Add an Engagement's branch_tag in Jira Epic's description @Jino-T (#13270)
• product grade logging fix @valentijnscholten (#13268)
• Fix duplicated tags (everywhere) @fopina (#13250)
• 🎉 Add fix_available information to blackduck binary analysis parser @manuel-sommer (#13236)
• make sonarqube hotspots sync work @dshafranskiy-r7 (#13206)

Run the release drafter to populate the release notes.

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.50.2

• Tags: Remove duplicates in edit forms @Maffooch (#13228)
• [docs] changelog 2.50.2, minor changes @paulOsinski (#13226)
• bulk edit: update under_review flag @valentijnscholten (#13179)
• 🎉 Add fix_available information to blackduck component risk #12633 @manuel-sommer (#13201)
• 💄 Update Wazuh v4.8 @manuel-sommer (#13184)
• Fix naive datetime warnings/errors @valentijnscholten (#13170)
• product grade: only update product if grade has changed @valentijnscholten (#13123)

🚩 Changes to settings.dist.py / local_settings.py

• NN vulnid @manuel-sommer (#13180)

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.50.1

• Github Vulnerability Parser: Update docs to generate correct schema @Maffooch (#13166)
• [docs] Changelog 2.50.1 @paulOsinski (#13167)
• bulk edit: add None check on JIRA sync check @valentijnscholten (#13168)
• Generic parser update @mykhailo-sindieiev (#13139)
• 🎉 Add fix_available information to jfrogondemand #12633 @manuel-sommer (#13124)
• 🎉 Add fix_available information to wpscan #12633 @manuel-sommer (#13153)
• fortify fpr_parser: allow optional fields to be optional @fopina (#13160)
• 🎉 Add fix_available information to mend #12633 @manuel-sommer (#13142)
• [docs] add new opensource page @paulOsinski (#13151)
• Update to Django 5.1.12 @valentijnscholten (#13148)
• fix(helm): uwsgi tuning @kiblik (#13146)

🚩 Changes to settings.dist.py / local_settings.py

• feat(social): Add SOCIAL_AUTH_OIDC_LOGIN_BUTTON_TEXT @kiblik (#13150)
• Allow enabling Django Debug Toolbar via env variable @valentijnscholten (#12921)
• 🎉 Add OXAS-ADV- vulnid @manuel-sommer (#13129)

🖌 Updates in UI

• feat(social): Add SOCIAL_AUTH_OIDC_LOGIN_BUTTON_TEXT @kiblik (#13150)

🧰 Maintenance

• Bump vite from 7.1.3 to 7.1.5 in /docs @dependabot (#13147)

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.50.0

• fix default order to finding_groups @LeoOMaia (#13127)
• 🐛 Fix finding_group view @manuel-sommer (#13119)
• ruff fixes @valentijnscholten (#13122)
• 🎉 Add fix_available information to jfrog xray unified parser #12633 @manuel-sommer (#13105)
• 🎉 Add fix_available information to jfrog @manuel-sommer (#13115)
• 🐛 Implement Wazuh v4.8 @manuel-sommer (#12739)
• semgrep pro parser @valentijnscholten (#12848)
• Update changelog 2.50 @paulOsinski (#13121)
• Update the Qualys Hacker Guardian parser to be compatible with larger CSV files @Jino-T (#13120)
• uwsgi: default to 4 processes x 4 threads @valentijnscholten (#13080)
• 🎉 Add fix_available information to aqua parser #12633 @manuel-sommer (#13106)
• System settings: correct page title/breadcrumbs @valentijnscholten (#13083)
• 🎉 Add fix_available to KrakenDAudit @manuel-sommer (#13055)

🚩 Changes to settings.dist.py / local_settings.py

• 🎉 add VAR vulnid @manuel-sommer (#13096)

🚀 API features and enhancements

• Password Reset: Disable for SSO users @Maffooch (#13079)

🖌 Updates in UI

• 🎉 Add number of fix_available information to test view @manuel-sommer (#13109)

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.49.0

• [docs] updates for August @paulOsinski (#13078)
• 🎉 Add fix_available to Harbor @manuel-sommer (#13053)
• Finding Filters: Add Product Life Cycle filter to be supported in both finding filters @Maffooch (#13068)
• 🎉 Add fix_available to AnchoreCTL @manuel-sommer (#13062)
• 🎉 Add fix_available to AnchoreEngine @manuel-sommer (#13060)
• 🎉 Add fix_available to TrivyOperator @manuel-sommer (#13056)
• Update References to Supported Version of Hugo to the Newest Compatible Version @Jino-T (#13047)
• 🎉 Add fix_available to Trivy @manuel-sommer (#13057)
• 🎉 Add fix_available to RedHatSatellite @manuel-sommer (#13059)
• 💄 Restructure Kubehunter json files to make it readable @manuel-sommer (#13061)
• feat(unittest): Small improvements in unittests @kiblik (#13064)
• Chartsynced charts and images for vendoring @rossops (#13063)
• fix(eng/failure_redirect): Fix rendering when coming from product site @kiblik (#13042)
• fix(eng/test-validate_forms): Show error if form is not valid @kiblik (#13045)
• feat(docker): Drop nginx debian @kiblik (#12998)
• cvss4: remove no longer needed custom parsing @valentijnscholten (#13037)
• Allow more file extensions for importers @Maffooch (#13034)
• mend: fix handling known_exploited/ransomware_used @valentijnscholten (#13036)
• [docs] update Priority & Risk docs @paulOsinski (#13035)
• feat(tests): Perform tests on latest supported k8s (1.33.4) @kiblik (#13024)
• BlackDuck: Support import in plaintext or bytes @Maffooch (#13033)
• feat(docker): Use Alpine 3.22 in docker images @kiblik (#13023)
• feat(docker-compose): Add digest pinning for busybox @kiblik (#13025)
• fix(timezone/commands): Drop obsolete 'locale' definitions @kiblik (#12995)
• Update Docs Link in Settings.py to Match Current Docs Structure @Jino-T (#13021)
• [docs] Integrations (beta) @paulOsinski (#12987)
• chore(deps): pin github actions by hash @datosh (#12958)
• Endpoint: Make post_delete signal more reliable @Maffooch (#12969)
• feat(helm): Drop support for networking.k8s.io/v1beta1 @kiblik (#12985)
• feat(helm): Drop support for annotation "kubernetes.io/ingress.class" in GKE @kiblik (#12986)
• File Path Access: Prevent exception for non existent paths @Maffooch (#12976)
• allow .fpr extension when importing scan @fopina (#12972)
• Updates ReadMe.MD @devGregA (#12980)
• [docs] cli updates, 2.48 changelog @paulOsinski (#12902)
• Documentation: Guide to testing hugo pipeline locally @Maffooch (#12959)
• Bump cvss from 3.4 to 3.6 @eric-warren (#12948)
• ADD: Alternative command to change password @ThiagoCruzBr (#12931)
• Enable ipv6 in nginx (if available) @kiblik (#12938)
• restore entrypoint-unit-tests-devDocker.sh @valentijnscholten (#12904)
• performance do_not_reactivate: adding a note doesn't need a finding save @valentijnscholten (#12901)
• new snyk_issue_api parser for code issues (file based) @valentijnscholten (#12903)
• Docs: Restore package-lock.json @Maffooch (#12954)
• Fix Mend kev_date format - add conversion @testaccount90009 (#12915)
• debug toolbar: downgrade to 5.2.0 @valentijnscholten (#12919)
• quickFix: invalid config in "Feat(nginx): Add support for IPv6" @kiblik (#12916)

🚩 Changes to settings.dist.py / local_settings.py

• Add SCA vulnid and fix example for SSA: @manuel-sommer (#13072)
• feat(form-import): DRY File Extension @kiblik (#13066)
• 🎉 Add wid-sec-w vulnid @manuel-sommer (#13038)
• API Docs: Remove space in Defect Dojo @Maffooch (#13011)

🚩 Database migration

• FileUploads: Clean up media when related objects are deleted @Maffooch (#13028)
• feat(settings): Drop time_zone @kiblik (#12999)

🚀 API features and enhancements

• Ruff: Add and autofix PLR1714 @kiblik (#13004)

🖌 Updates in UI

• 🎉 Add fix_available information to engagement views @manuel-sommer (#13070)
• Ruff: Add and autofix PLR1714 @kiblik (#13004)
• Fix 12955 / Set default value of postgresql.postgresServer to 127.0.0.1 in helm chart @lchastel (#12965)
• Global Finding Groups page @LeoOMaia (#12814)
• Display Tags: Do not rely on the request object being present @Maffooch (#12939)
• Webhook Notifications: Support the owner field @Maffooch (#12940)

🔧 Improved code quality with linters

• Ruff: Add and fix PLR1704 @kiblik (#13005)
• Ruff: Add and autofix PLR1714 @kiblik (#13004)
• Ruff: Add and autofix PLR1711 @kiblik (#13003)
• Ruff: Add and fix PYI024 (+ merge PYI) @kiblik (#13002)

🧰 Maintenance

• Bump python-gitlab from 6.2.0 to 6.3.0 @dependabot (#13071)
• chore(deps): update node.js from v22.18.0 to v22.19.0 (docs/package.json) @renovate (#13073)
• Bump ruff from 0.12.10 to 0.12.11 @dependabot (#13075)
• Bump boto3 from 1.40.18 to 1.40.20 @dependabot (#13074)
• Bump boto3 from 1.40.16 to 1.40.18 @dependabot (#13069)
• Bump boto3 from 1.40.16 to 1.40.17 @dependabot (#13067)
• Bump openapitools/openapi-generator-cli from v7.14.0 to v7.15.0 @dependabot (#13048)
• chore(deps): update gcr.io/cloudsql-docker/gce-proxy docker tag from 1.37.8 to v1.37.9 (helm/defectdojo/values.yaml) @renovate (#13049)
• Bump nginx from 1.28.0-alpine3.22 to 1.29.1-alpine3.22 @dependabot (#13050)
• Bump boto3 from 1.40.15 to 1.40.16 @dependabot (#13051)
• Bump humanize from 4.12.3 to 4.13.0 @dependabot (#13052)
• Bump datatables.net from 2.3.2 to 2.3.3 in /components @dependabot (#13027)
• Bump boto3 from 1.40.10 to 1.40.15 @dependabot (#13029)
• Bump lxml from 6.0.0 to 6.0.1 @dependabot (#13030)
• Bump ruff from 0.12.9 to 0.12.10 @dependabot (#13031)
• Bump ruff from 0.12.8 to 0.12.9 @dependabot (#12993)
• Update postgres:17.6-alpine Docker digest from 17.6 to 17.6-alpine (docker-compose.yml) @renovate (#13000)
• chore(deps): update azure/setup-helm action from v4.3.0 to v4.3.1 (.github/workflows/test-helm-chart.yml) @renovate (#13018)
• Bump brace-expansion in /docs @dependabot (#13013)
• chore(deps): update dependency vite from 7.1.2 to v7.1.3 (docs/package.json) @renovate (#13014)
• Bump requests from 2.32.4 to 2.32.5 @dependabot (#13016)
• Bump: curlimages/curl:8.15.0 @kiblik (#12977)
• chore(deps): update postgres docker tag from 17.5 to v17.6 (docker-compose.yml) @renovate (#12992)
• Bump boto3 from 1.40.6 to 1.40.10 @dependabot (#12994)
• Bump sqlalchemy from 2.0.42 to 2.0.43 @dependabot (#12978)
• chore(deps): update actions/checkout action from v4.3.0 to v5 (.github/workflows/validate_docs_build.yml) @renovate (#12961)
• Update dependency vite from 7.1.1 to v7.1.2 (docs/package.json) @renovate (#12973)
• Bump boto3 from 1.40.5 to 1.40.6 @dependabot (#12966)
• chore(deps): update actions/checkout action from v4.2.2 to v4.3.0 (.github/workflows/validate_docs_build.yml) @renovate (#12960)
• chore(deps): update dependency python from 3.9.23 to 3.13 (.github/workflows/test-helm-chart.yml) @renovate (#12957)
• fix(deps): update dependency @thulite/seo from 2.4.1 to v2.4.2 (docs/package.json) @renovate (#12928)
• Bump cryptography from 45.0.5 to 45.0.6 @dependabot (#12936)
• chore(deps): update github artifact actions (.github/workflows/rest-framework-tests.yml) (major) @renovate (#12932)
• chore(deps): update actions/cache action from v4.2.3 to v4.2.4 (.github/workflows/validate_docs_build.yml) @renovate (#12949)
• Bump ruff from 0.12.7 to 0.12.8 @dependabot (#12951)
• Bump boto3 from 1.40.0 to 1.40.5 @dependabot (#12952)
• fix(deps): update dependency @thulite/inline-svg from 1.2.0 to v1.2.1 (docs/package.json) @renovate (#12926)
• Bump djangorestframework from 3.16.0 to 3.16.1 @dependabot (#12945)
• Bump redis from 6.2.0 to 6.4.0 @dependabot (#12944)
• Bump packageurl-python from 0.17.3 to 0.17.5 @dependabot (#12943)
• chore(deps): update dependency vite from 7.0.6 to v7.1.1 (docs/package.json) @renovate (#12941)
• chore(deps): update docker/login-action action from v3.4.0 to v3.5.0 (.github/workflows/release-x-manual-tag-as-latest.yml) @renovate (#12909)

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.49.2

• mend: fix handling known_exploited/ransomware_used @valentijnscholten (#13036)
• [docs] update Priority & Risk docs @paulOsinski (#13035)
• BlackDuck: Support import in plaintext or bytes @Maffooch (#13033)

🚩 Changes to settings.dist.py / local_settings.py

• API Docs: Remove space in Defect Dojo @Maffooch (#13011)

🧰 Maintenance

• Bump brace-expansion in /docs @dependabot (#13013)

Please consult the Upgrade notes in the documentation for specific instructions for this release, and general upgrade instructions. Below is an automatically generated list of all PRs merged since the previous release.

Changes since 2.49.1

• [docs] Integrations (beta) @paulOsinski (#12987)
• Endpoint: Make post_delete signal more reliable @Maffooch (#12969)
• File Path Access: Prevent exception for non existent paths @Maffooch (#12976)
• allow .fpr extension when importing scan @fopina (#12972)
• Updates ReadMe.MD @devGregA (#12980)
• [docs] cli updates, 2.48 changelog @paulOsinski (#12902)