This release includes 1 security fix for security teams reviewing exposed deployments.
Published 16d
SIEM & Threat Detection
✓ No known CVEs patched
This release patches 1 known CVE
Affected surfaces
deps
Summary
AI summaryAdd MongoDB detection module and migrate testing framework to pytest.
Full changelog
What's Changed
- Update MS Teams webhook format by @thinkst-tom in https://github.com/thinkst/opencanary/pull/431
- Fix docker failure with dangling pid file by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/434
- Bump dependencies to remove vulnerable versions of packages by @jayjb in https://github.com/thinkst/opencanary/pull/437
- Bump dependencies by @jayjb in https://github.com/thinkst/opencanary/pull/442
- Bump paramiko from 2.12.0 to 3.4.0 in /opencanary/test by @dependabot[bot] in https://github.com/thinkst/opencanary/pull/330
- Bump dependencies by @jayjb in https://github.com/thinkst/opencanary/pull/443
- Addition of MongoDB module by @SecuriLee in https://github.com/thinkst/opencanary/pull/444
- Migrate opencanary to uv by @jayjb in https://github.com/thinkst/opencanary/pull/450
- Bump urllib3 from 2.0.7 to 2.6.3 in /docs by @dependabot[bot] in https://github.com/thinkst/opencanary/pull/432
- Update pre commit hooks with black and flake8 formatting by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/467
- Preparing for version 0.9.8 release by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/466
- Consolidate dependabot fixes into one commit by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/468
- Bump urllib3 from 2.6.3 to 2.7.0 in /docs by @dependabot[bot] in https://github.com/thinkst/opencanary/pull/469
- Bump urllib3 from 2.6.3 to 2.7.0 by @dependabot[bot] in https://github.com/thinkst/opencanary/pull/465
- Migrate to pytest: mongodb by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/470
- Migrate docker latest build to use uv by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/472
- Migrate to pytest git by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/471
- Migrate ftp tests to pytest by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/474
- Migrate ntp test to pytest by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/475
- Migrate ssh to pytest by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/476
- Migrate rdp test to pytest by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/477
- Migrate mysql to pytest by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/478
- Migrate http tests to pytest by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/479
- Migrate https tests to pytest by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/480
- Migrate docker stable build to use uv by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/473
- Fix the uv install so version check can run by @thinkst-pieter in https://github.com/thinkst/opencanary/pull/484
New Contributors
- @thinkst-tom made their first contribution in https://github.com/thinkst/opencanary/pull/431
- @SecuriLee made their first contribution in https://github.com/thinkst/opencanary/pull/444
Full Changelog: https://github.com/thinkst/opencanary/compare/v0.9.7...v0.9.8
Security Fixes
- Bump dependencies and paramiko/urllib3 versions to remove vulnerable package versions
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About Canary Tokens
Generates lightweight, embedded honeypot triggers called canary tokens for detecting unauthorized access.
Related context
Related tools
Beta — feedback welcome: [email protected]