Mwdb-core

Latest version: v2.14.0

Safety actively analyzes 710445 Python packages for vulnerabilities to keep your Python projects secure.

Scan your dependencies

Page 4 of 6

2.5.0

Not secure
Release focused on Karton integration bugfixes and small improvements

**New features and improvements**:
- Added support for AWS IAM authentication for Minio (https://github.com/CERT-Polska/mwdb-core/pull/443, thanks alex-ilgayev!)
- Built-in Karton integration allows to bind Karton analyses that doesn't origin from MWDB (https://github.com/CERT-Polska/mwdb-core/pull/430, https://github.com/CERT-Polska/mwdb-core/pull/436)

**Bugfixes**:
- Fixed handling of escape characters contained in config field and referenced by search query (https://github.com/CERT-Polska/mwdb-core/pull/437)
- Fixed scrollbar issues in react-ace component (https://github.com/CERT-Polska/mwdb-core/pull/441)
- Fixed `requests` package dependency conflict (https://github.com/CERT-Polska/mwdb-core/pull/440)

2.4.0

Not secure
Small release that includes minor improvements of existing features.

**New features and improvements**:
- API keys have names in addition to UUID identifier, so user can describe the purpose of API key (420)
- Web: DagreD3Plot and SwaggerUI components are lazy-loaded, so the main JS bundle is much smaller. This should boost the loading time of MWDB webapp (418, 427)
- User can delete all attributes under the same key via single API request. This is mainly a workaround for deletion of attribute values that are too long for URI query part of DELETE request. (426)

**Bugfixes**:
- Web: Multiple bugfixes in recent objects (417):
- Fix for `Number of results does not display after making a query using URL` (404)
- RecentView doesn't ask the server for count of all objects when query field is cleared
- Improved component stability

2.3.0

Not secure
This release is focused mainly on MWDB administration improvements and further UI refactoring. In addiition, Karton integration is now available out-of-the-box, without need of extra plugins.

If you are `mwdb-plugin-karton` user, read [Karton guide/Migration from unofficial setup](https://mwdb.readthedocs.io/en/latest/karton-guide.html#migration-from-unofficial-plugin-setup) section **before upgrade**.

For complete changelog, see [v2.3.0-rc1](https://github.com/CERT-Polska/mwdb-core/releases/tag/v2.3.0-rc1).

2.3.0rc1

Not secure
Release Candidate version of mwdb-core 2.3.0 :tada:

This release is focused mainly on MWDB administration improvements and further UI refactoring. In addiition, Karton integration is now available out-of-the-box, without need of extra plugins.

If you are `mwdb-plugin-karton` user, read [Karton guide/Migration from unofficial setup](https://mwdb.readthedocs.io/en/latest/karton-guide.html#migration-from-unofficial-plugin-setup) section before upgrade.

**Key changes**:

- Read-only guest accounts (https://github.com/CERT-Polska/mwdb-core/pull/334):
- All users are by default added into additional 'registered' group that enables profile customization and file upload
- To make a guest account, just remove it from 'registered' group, so only the 'public' capabilities will apply to this group. 'public' group doesn't have any capabilities by default, but feel free to change it depending on your needs.
- All groups have additional properties: "workspace" and "default". `registered` group and `public` group are not *workspaces* which prevents users from seeing each other within these groups. In the same time, they are *default* so all newcomers are automatically added.
- Built-in Karton integration (https://github.com/CERT-Polska/mwdb-core/pull/298)
- Removed `managing_attributes` capability because of its inconsistency. From now, all administration tasks require `manage_users` capability (https://github.com/CERT-Polska/mwdb-core/pull/377)
- New, more user-friendly Settings and Profile view

**Minor changes and improvements**:

- More removable elements:
- Attribute definitions (https://github.com/CERT-Polska/mwdb-core/pull/321)
- Relations (including permission inheritance side-effects, https://github.com/CERT-Polska/mwdb-core/pull/336)
- Groups and users (https://github.com/CERT-Polska/mwdb-core/pull/347)
- Sessions are not invalidated when group or capabilities was changed (https://github.com/CERT-Polska/mwdb-core/pull/325)
- Added hooks for tags and comments (https://github.com/CERT-Polska/mwdb-core/pull/353, thanks ITAYC0HEN!)
- Keyboard navigation in Autocomplete components (https://github.com/CERT-Polska/mwdb-core/pull/362)
- Replaced obsolete search help with link to ReadTheDocs (https://github.com/CERT-Polska/mwdb-core/pull/339)

**Bugfixes**:

- Fixed ISE 500 when member was already added/removed (https://github.com/CERT-Polska/mwdb-core/pull/332)
- Fixed broken tag search in detailed object view (https://github.com/CERT-Polska/mwdb-core/pull/378)
- Pending users counter is immediately updated after accepting/rejecting user (https://github.com/CERT-Polska/mwdb-core/pull/386)

2.2.2

Not secure
Bugfixes:

- Web: Some search links didn't render correctly (e.g. family in `/config/stats`) (fixed by https://github.com/CERT-Polska/mwdb-core/pull/323 and https://github.com/CERT-Polska/mwdb-core/pull/324)

2.2.1

Not secure
Bugfixes:
- Web: comments are not reloaded after navigation to the parent/child object (https://github.com/CERT-Polska/mwdb-core/pull/318)

Page 4 of 6

© 2025 Safety CLI Cybersecurity Inc. All Rights Reserved.