v3.8.0

What's Changed

• feat(epic): custom KPI and KRI by @ab-smith in #2932
• chores(build): update helm chart by @ab-smith in #3065
• i18n: align German GRC terminology with reference frameworks by @hlederhaas in #3071
• fix(ui): pat ui improvement by @tchoumi313 in #3073
• feat: tasks export as xlsx by @tchoumi313 in #3059
• feat(epic): Unify library model tables by @monsieurswag in #3040
• fix: align pro/community settings by @eric-intuitem in #3068
• fix: asset security capability not disabled in security objectives comparison by @Mohamed-Hacene in #3076
• fix: copy add score to target when mapping by @martinzerty in #3063

Full Changelog: v3.7.10...v3.8.0

v3.7.10

What's Changed

Important regression corrected in this version

• chore: move iso27001.xlsx and doc-pol.xlsx to their folder by @Mohamed-Hacene in #3047
• feat(lib): outline for ISO 42001-2023 (Artificial Intelligence) by @ab-smith in #3048
• feat(lib): add India's DPDPA 2023 by @ab-smith in #3050
• feat(lib): add SCF mappings and other associated fixes by @ab-smith in #2971
• fix: evidences owner sanitization during domain export by @ab-smith in #3051
• fix(UI): risk matrix label overflowing by @monsieurswag in #3056
• chore: align asset field in forms to search by ID by @Mohamed-Hacene in #3057
• fix: inspect requirement queryset by @Mohamed-Hacene in #3058
• build(deps-dev): bump filelock from 3.17.0 to 3.20.1 in /backend by @dependabot[bot] in #3054
• fix: remove the drag-n-drop mention on data wizard to avoid confusion by @ab-smith in #3061
• fix: incidents md export issue when threats are attached by @ab-smith in #3062
• fix: Risk matrix can be deleted while being used in BIA by @monsieurswag in #3055
• fix: allow matrix change in enterprise ebios rm form by @Mohamed-Hacene in #3052
• fix: applied controls initial value in requirement assessments by @Mohamed-Hacene in #3064

Full Changelog: v3.7.9...v3.7.10

v3.7.9

What's Changed

• fix: add missing domain entry in data wizard by @eric-intuitem in #3046

Full Changelog: v3.7.8...v3.7.9

v3.7.8

What's Changed

• German translation added by @hlederhaas in #3032
• feat: add import wizard for domains by @tchoumi313 in #3039
• fix: inconsistent filtering on 'many to many' fields by @tchoumi313 in #2961
• feat: add applied controls in table mode by @Axxiar in #2786
• feat: processing export by @tchoumi313 in #3022
• Feat/add mcp server capacities for tasks and audits by @jledoze in #2919
• fix: adjustment to mcp implementation on applied controls by @ab-smith in #3043
• feat: add ref_id to tasks on the aggregated tasks review by @ab-smith in #3044
• feat: allow switching risk matrices in risk assessments and EBIOS-RM studies by @Mohamed-Hacene in #3041
• feat: align audits scores with framework boundaries on update by @Mohamed-Hacene in #2840
• fix: multi stage propagation of disaster recovery objectives by @ab-smith in #3045

New Contributors

• @hlederhaas made their first contribution in #3032
• @jledoze made their first contribution in #2919

Full Changelog: v3.7.7...v3.7.8

v3.7.7

What's Changed

• fix: error on requirement assessment when the audit is locked by @ab-smith in #3034
• fix: align quant risk tolerance setting with probability inputs by @ab-smith in #3035
• feat(sso): improve SSO text by @eric-intuitem in #3031
• fix: missing search fields for tasks and reference controls by @ab-smith in #3037
• feat: incidents tracking improvement by @ab-smith in #3038
• feat: support validations on policies by @ab-smith in #3036

Full Changelog: v3.7.6...v3.7.7

v3.7.6

What's Changed

• build(deps): bump urllib3 from 2.5.0 to 2.6.0 in /backend by @dependabot[bot] in #3018
• fix: inconsistent filtering on contracts on nested tables by @ab-smith in #3019
• chores(i18n): missing FR strings by @ab-smith in #3021
• chores(i18n): recover missing strings for German by @ab-smith in #3023
• chores(i18n): missing nl strings by @ab-smith in #3024
• feat: sanity check before deleting items by @tchoumi313 in #2936
• fix: use safe_display for audits comparison to have a fallback by @ab-smith in #3026
• fix: contract labels field by @Mohamed-Hacene in #3029
• fix: regression on tableMarkdown persistence by @ab-smith in #3030

Full Changelog: v3.7.5...v3.7.6

v3.7.5

What's Changed

• docs: update readme to mention Vendor Due Diligence and AD controls by @ab-smith in #3002
• docs: instructions for offline setup by @ab-smith in #2997
• fix: missing feature flags by @ab-smith in #3005
• fix: task templates management by @Mohamed-Hacene in #3003
• fix: audit score import logic corrected by @tchoumi313 in #2996
• feat: add evidences to processings by @ab-smith in #3007
• feat: allow changing domain for evidences and tasks while updating the children domains by @ab-smith in #3008
• feat: support multiple solutions by the same contract and adjustments to DORA ROI accordingly by @ab-smith in #3009
• feat: show the purpose(s) associated with a Processing by @ab-smith in #3010
• feat: context menu to switch CSF function for applied control by @ab-smith in #3012
• fix: better logs for mailing by @ab-smith in #3015
• fix: password reset is case insensitive by @ab-smith in #3016
• fix: prevent deleting an audit unrelated to the entity assessment enclave by @ab-smith in #3017
• feat: display the domain type on the domains table and allow filtering by @ab-smith in #3014
• fix: prevent frontend url errors for risk_tolerance and other equivalent fields by @ab-smith in #3011

Full Changelog: v3.7.4...v3.7.5

v3.7.4

What's Changed

• fix: process evidence in task template only by @Mohamed-Hacene in #2986
• build(deps): bump fonttools from 4.56.0 to 4.61.0 in /backend by @dependabot[bot] in #2981
• feat(pro): periodic tasks yearly review - experimental page by @ab-smith in #2974
• fix: risk matrix probability tooltip hidden by sidebar by @tchoumi313 in #2987
• feat: setting to enable/disable the warning on external links by @ab-smith in #2991
• feat: reverse link to controls on assets by @ab-smith in #2990
• feat(ui): lock icon added to the modatable name column by @tchoumi313 in #2993
• chores: pin validator to handle CVE-2025-12758 by @ab-smith in #2992
• chores(vulns): js-yaml pinning for CVE-2025-64718 by @ab-smith in #2994
• build(deps): bump django from 5.2.8 to 5.2.9 in /enterprise/backend by @dependabot[bot] in #2995
• build(deps): bump django from 5.2.8 to 5.2.9 in /backend by @dependabot[bot] in #2998
• feat: add iam, crq and pmbok permissions in roles by @Mohamed-Hacene in #2976
• feat: add more attributes to risk scenarios by @ab-smith in #2989
• feat: reverse links to risk scenarios on assets by @ab-smith in #3000
• chores: missing tag by @ab-smith in #3001

Full Changelog: v3.7.3...v3.7.4

v3.7.3

What's Changed

• fix: hide un-assessable items from mapping graph by @ab-smith in #2980
• feat: new UI for feature flags by @melinoix in #2978
• fix: avoid clearing field when switching to preview for some markdown fields by @ab-smith in #2979

Full Changelog: v3.7.2...v3.7.3

v3.7.2

What's Changed

• feat: improve settings rendering and prepare a new flag to allow self-validation by @ab-smith in #2955
• docs: update repobeat activity link by @ab-smith in #2969
• feat: add CHF to supported currencies by @ab-smith in #2968
• feat: admin can allow users to create self-validations flows by @ab-smith in #2967
• feat: include a graph on strategic scenario and ebios RM report improvements by @ab-smith in #2970
• fix: filter privacy overview KPIs by @nas-tabchiche in #2959

Full Changelog: v3.7.1...v3.7.2