Update snipe/snipe-it Docker tag to v6.4.2 - autoclosed

[renovate]

This PR contains the following updates:

Package	Update	Change
snipe/snipe-it	minor	v6.1.1 -> v6.4.2

---

Warning

Some dependencies could not be looked up. Check the Dependency Dashboard for more information.

---

Release Notes

snipe/snipe-it (snipe/snipe-it)

v6.4.2

Compare Source

[!CAUTION]
The NEXT MAJOR release of Snipe-IT (v7.0.0) will require PHP 8.1 or greater

As we wrap it all up for v7 (which you can preview on the snipeit_v7_laravel10 branch, we knew there would be a few more things we needed to handle. Most of these are small bugfixes (that have already been merged into the v7 branch) but we also came across some security issues that we wanted to patch as we close off the v6 line. Users are encouraged to upgrade to v6.4.2 - and of course, encouraged to make sure your servers are ready for v7 with PHP8.1.

What's Changed

• Bulk Edit Tests and Tweaks by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/14707
• Fixed user assets not updating when a user changes location by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14474
• Updated alpine to the latest version (3.13.10) by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14700
• Added security.txt file by @​snipe in https://github.com/snipe/snipe-it/pull/14725
• Adds a note text area to asset acceptances/declines by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14451
• Only attempt to decrypt custom fields in activity log if the value is not empty by @​snipe in https://github.com/snipe/snipe-it/pull/14728
• Added next audit date to assets form by @​snipe in https://github.com/snipe/snipe-it/pull/14719
• Sets purchase date as date (versus datetime) in labels by @​snipe in https://github.com/snipe/snipe-it/pull/14729
• Updated translations by @​snipe in https://github.com/snipe/snipe-it/pull/14730
• Fixed #​14664 - allow additional urls in env for CSP by @​snipe in https://github.com/snipe/snipe-it/pull/14731
• Small translation additions by @​snipe in https://github.com/snipe/snipe-it/pull/14736
• removed extra div tags by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14741
• Refactor group syncing on user edit API endpoint by @​snipe in https://github.com/snipe/snipe-it/pull/14745
• Fixed #​12299: permissions on storage dir in Docker (rebased) by @​uberbrady in https://github.com/snipe/snipe-it/pull/14751
• Nicer handling of erroring when filename+log do not match by @​snipe in https://github.com/snipe/snipe-it/pull/14752
• Added exif to required extensions by @​snipe in https://github.com/snipe/snipe-it/pull/14753

Full Changelog: snipe/snipe-it@v6.4.1...v6.4.2

v6.4.1

Compare Source

[!CAUTION]
The NEXT major release of Snipe-IT (v7.0.0) will require PHP 8.1 or greater

Hi folks - happy Monday! This is just tiny release to handle a few small remaining bug fixes as we head into v7.

The current working v7 branch will be merged into the existing develop branch within the week, and will then be available on the https://develop.snipeitapp.com demo link.

This update fixes a small issue with notifications and also optimizes some of the queries that populate the sidebar that could have slowed things down for folks with a lot of assets.

What's Changed

• Load settings in SendUpcomingAuditReport command by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14690
• Fixes #​14692 - set default variables for sidebar totals by @​snipe in https://github.com/snipe/snipe-it/pull/14693
• Fixes #​14701 - wrong total asset count by @​Toreg87 in https://github.com/snipe/snipe-it/pull/14702
• Fixed UI where delete button was not disabled even if the user couldn't be deleted by @​snipe in https://github.com/snipe/snipe-it/pull/14697
• Fix memory-hog query in AssetCountForSidebar middleware by @​jerm in https://github.com/snipe/snipe-it/pull/14711
• Bump codacy/codacy-analysis-cli-action from 4.4.0 to 4.4.1 by @​dependabot in https://github.com/snipe/snipe-it/pull/14715

Full Changelog: snipe/snipe-it@v6.4.0...v6.4.1

v6.4.0

Compare Source

[!CAUTION]
The NEXT major release of Snipe-IT (v7.0.0) will require PHP 8.1 or greater

Happy Monday, friends! This is the final release of the v6 line of Snipe-IT. (I know, I know.)

If you're hosted with us, you'll have these changes in your hot little hands within a day or so. If you're not, please make sure to upgrade your version of Snipe-IT. But more importantly, please make sure you're running PHP 8.1.x+ before you try to upgrade again after this.

No breaking changes, just some small tweaks, a few added features, and a few bug fixes. We did have to address a potential (though very hard to exploit) permissions escalation issue, which is why we're making this 6.4.0 instead of a point release.

v7 has been a long time coming, but we're nearly there.

Thanks as always to our community contributors for their awesome work! <3

What's Changed

• Fixed z-index of table load by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14520
• Fixed ambiguous id clause in custom report by @​snipe in https://github.com/snipe/snipe-it/pull/14551
• Redirect on checkin if the asset is already checked in by @​snipe in https://github.com/snipe/snipe-it/pull/14552
• Fixed alignment of dropdown menu for user in nav bar by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14547
• Hide/Show encrypted values in hardware list by @​mauro-miatello in https://github.com/snipe/snipe-it/pull/14529
• Fixed ldap location syncing incorrect locations for users. by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14559
• Added audit dates to label options by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14557
• Remove city as required field on location modal by @​snipe in https://github.com/snipe/snipe-it/pull/14567
• Reduce Extra Space in Header Dropdown by @​akemidx in https://github.com/snipe/snipe-it/pull/14582
• Fixed: Header Dropdown Menus had no hover coloring in dark themes by @​akemidx in https://github.com/snipe/snipe-it/pull/14558
• Upgraded Signature-pad.js && Fixed Resizing Canvas on mobile by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14577
• Fixed assigned to field in new label engine by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14581
• Fixed department validation to allow updates by @​Godmartinz in https://github.com/snipe/snipe-it/pull/13880
• Fixed label fields only showing first option by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14594
• First fix for user FMCS scoping by @​snipe in https://github.com/snipe/snipe-it/pull/14591
• Added test cases around modifying user groups via api by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14613
• Feat: add no-interactive flag for upgrade.php by @​Q4kK in https://github.com/snipe/snipe-it/pull/14578
• Fixed #​14508: Added PDO::MYSQL_ATTR_SSL_VERIFY_SERVER_CERT options to database.php … by @​jeffclay in https://github.com/snipe/snipe-it/pull/14511
• Fixed check-all button behaving inconsistently by @​snipe in https://github.com/snipe/snipe-it/pull/14622
• Added ico, image/x-icon, image/vnd.microsoft.icon to favicon validation by @​snipe in https://github.com/snipe/snipe-it/pull/14628
• Removed escaping on notes for file uploads by @​snipe in https://github.com/snipe/snipe-it/pull/14630
• Added "select" option to top of data sources in new label engine by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14632
• Fixed dark theme button text coloring by @​akemidx in https://github.com/snipe/snipe-it/pull/14616
• Re-enabled updating encrypted custom fields via API [sc-41465] by @​uberbrady in https://github.com/snipe/snipe-it/pull/14602
• Left Sidebar Was Not Respecting Theme by @​akemidx in https://github.com/snipe/snipe-it/pull/14608
• Removed encrypted fields from label options by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14499
• Added a License Export function and button by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14587
• Fixed purchase_cost not being allowed to be a string when creating asset via api by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14651
• Refactored due/overdue for audit, added due/overdue for checkin API endpoint and GUI by @​snipe in https://github.com/snipe/snipe-it/pull/14655
• Added Brother 18mm label type by @​snipe in https://github.com/snipe/snipe-it/pull/14391
• Improve RTL support by @​mustafa-online in https://github.com/snipe/snipe-it/pull/14679
• Upgrade tecnickcom/tcpdf from version 6.7.4 to 6.7.5 to address the security vulnerability CVE-2024-22640 by @​franceslui in https://github.com/snipe/snipe-it/pull/14661
• [Snyk] Upgrade alpinejs from 3.13.5 to 3.13.8 #​14646 by @​snipe in https://github.com/snipe/snipe-it/pull/14686
• Upgrade fontawesome from 6.5.1 to 6.5.2 by @​snipe in https://github.com/snipe/snipe-it/pull/14687
• [Snyk] Upgrade tableexport.jquery.plugin from 1.28.0 to 1.30.0 #​14656 by @​snipe in https://github.com/snipe/snipe-it/pull/14688
• Capitalize N instead of y since no is default by @​KorvinSzanto in https://github.com/snipe/snipe-it/pull/14689

New API Endpoints:

• Added the /api/v1/hardware/checkins/due and /api/v1/hardware/checkins/overdue endpoints
• Added the /api/v1/hardware/checkins/due-or-overdue and /api/v1/hardware/audits/due-or-overdue endpoints

New Dev Documentation:

• https://snipe-it.readme.io/docs/architecture
• https://snipe-it.readme.io/docs/accessibility

New Contributors

• @​Q4kK made their first contribution in https://github.com/snipe/snipe-it/pull/14578
• @​jeffclay made their first contribution in https://github.com/snipe/snipe-it/pull/14511
• @​mustafa-online made their first contribution in https://github.com/snipe/snipe-it/pull/14679
• @​franceslui made their first contribution in https://github.com/snipe/snipe-it/pull/14661
• @​KorvinSzanto made their first contribution in https://github.com/snipe/snipe-it/pull/14689

Full Changelog: snipe/snipe-it@v6.3.4...v6.4.0

v6.3.4

Compare Source

[!CAUTION]
The upcoming v7 release of Snipe-IT will require PHP 8.1 or greater

Happy Friday! Lots of fixes and improvements in this version. Here's the tldr;, with the full changelog below:

• Added Somali translation
• Fixed several label setting glitches
• Fixed some API scoping issues where results were not as constrained as they should have been when searching
• Added column selectors and signatures to the "print all assigned" page
• Added 2FA reset logging (this shows up as a separate action, not a normal user edit)
• Added AVIF as an accepted image format
• Added ability to "toggle all" columns in the list views on most pages
• Added the ability to "deep link" to search results in those list views
• Updated the documentation to reflect that the php exif library is required

[!WARNING]
Upcoming Breaking API change! In between the last release and this one, we also discovered that a change we made midway through releases broke the Jamf2Snipe integration for adding/updating assets. We had changed the "shape" of the asset response to be more consistent with how we present that JSON in other API responses - however in doing so, we broke some of the Jamf2Snipe capabilities. We've reverted that change for now, but in the next release, we'll be adding that change back and updating the Jamf2Snipe library to match that capability.

We are noticing in some of the translations in CrowdIn that some trans_choice() translations are showing with a weird <unk> symbol instead of the pipe (|) symbol that the translations strings need in order to decide whether or not to pluralize a string. We've been fixing them as we find them, but if you see anything unusual, open an issue here or propose the change in our CrowdIn project.

What's Changed

• Updated language strings, added Somali by @​snipe in https://github.com/snipe/snipe-it/pull/14400
• Fixed uninitialized string offset error in labels in new label engine when field label was blank by @​snipe in https://github.com/snipe/snipe-it/pull/14404
• Fixed checkout_date for licenses on print all assigned for users by @​snipe in https://github.com/snipe/snipe-it/pull/14407
• Fixed deprecation warning on strtoupper() by @​snipe in https://github.com/snipe/snipe-it/pull/14413
• Fixed requestable search API scoping by @​snipe in https://github.com/snipe/snipe-it/pull/14430
• Removes the unused mediconesystems/livewire-datatables package by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14427
• Fixed z-index of date-picker by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14415
• Fix [sc-25008] - correct and improve legacy language warnings by @​uberbrady in https://github.com/snipe/snipe-it/pull/14401
• Removed dead test code by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14437
• Hide/Show ecnrypted values when click on the lock icon by @​mauro-miatello in https://github.com/snipe/snipe-it/pull/14406
• Organized notification test cases by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14436
• Make sure the category is still valid before displaying on view assets by @​snipe in https://github.com/snipe/snipe-it/pull/14445
• Add additional options to print all assigned view by @​snipe in https://github.com/snipe/snipe-it/pull/14447
• Fixed Bulk delete locations bug by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14457
• [Snyk] Upgrade bootstrap-table from 1.22.2 to 1.22.3 #​14455 by @​snipe in https://github.com/snipe/snipe-it/pull/14461
• Wider country dropdown by @​snipe in https://github.com/snipe/snipe-it/pull/14462
• Added #​14460 add avif format by @​snipe in https://github.com/snipe/snipe-it/pull/14465
• Added default location to print all assigned by @​snipe in https://github.com/snipe/snipe-it/pull/14468
• Added "toggle all" to column selector by @​snipe in https://github.com/snipe/snipe-it/pull/14464
• Removed the need to add InteractsWithSettings to each test case by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14438
• Adds a minimal amount of validation around asset_tags in AssetsController by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14421
• Added 2FA reset log entry by @​snipe in https://github.com/snipe/snipe-it/pull/14469
• Use htmlentities() instead of htmlspecialcharacters() on Custom Field Listbox Values by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/14089
• Added validation for last_audit_date and next_audit_date by @​snipe in https://github.com/snipe/snipe-it/pull/14472
• Created Dymo LabelWriter Label 2112283 by @​PP-JN-RL in https://github.com/snipe/snipe-it/pull/14485
• Fixes last_audit_date not being stored via API correctly by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14486
• Handle badly formatted last_audit_date in StoreAssetRequest by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14488
• Fixed #​14482 - bad method call model restore from view by @​snipe in https://github.com/snipe/snipe-it/pull/14490
• Added Dymo Labelwriter 1933081 by @​PP-JN-RL in https://github.com/snipe/snipe-it/pull/14491
• Fixed #​14483 - Added deeplinking to search/sort/pagination by @​snipe in https://github.com/snipe/snipe-it/pull/14492
• Added supplier details to license view by @​snipe in https://github.com/snipe/snipe-it/pull/14494
• Fixed #​14495 - Allow user_id to be passed to limit to only specific admins by @​snipe in https://github.com/snipe/snipe-it/pull/14498
• Add new validator for custom field checkboxes and fix asset model default updates by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/14369
• Added validation around pwd_secure_complexity by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14502
• Added ability to filter in user's assigned assets by category ID and model ID by @​snipe in https://github.com/snipe/snipe-it/pull/14509
• Last Checkin Date added to Hardware View and Index by @​akemidx in https://github.com/snipe/snipe-it/pull/14262
• Added signature to user print report for Accessories and Consumables by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14500
• Fixes #​14289: /reports/activity API endpoint scoping by @​squintfox in https://github.com/snipe/snipe-it/pull/14515
• Fixed sorting on last checkin assets api by @​snipe in https://github.com/snipe/snipe-it/pull/14516
• Check that the array key exists in the label engine by @​snipe in https://github.com/snipe/snipe-it/pull/14517
• Default Locale database value changed to en-US by @​akemidx in https://github.com/snipe/snipe-it/pull/14456

New Contributors

• @​PP-JN-RL made their first contribution in https://github.com/snipe/snipe-it/pull/14485
• @​squintfox made their first contribution in https://github.com/snipe/snipe-it/pull/14515

Full Changelog: snipe/snipe-it@v6.3.3...v6.3.4

v6.3.3

Compare Source

[!WARNING]
Future versions of Snipe-IT will require PHP 8.1 or greater

This is a small patch release that fixes a few regressions introduced in the last released related to labels. It also includes some minor security patches, and introduces a new script to convert a previously unencrypted custom field to be an encrypted custom field.

v7 is still well on its way. We hit a small snag with Laravel's switch from Swiftmailer to Symfony for mail sending, but we're back on track now.

What's Changed

• Fixed Labels: bulk actions are handled before sorting by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14375
• Added route parameter by @​snipe in https://github.com/snipe/snipe-it/pull/14372
• Upgrade jspdf-autotable from 3.8.1 to 3.8.2 #​14365 by @​snipe in https://github.com/snipe/snipe-it/pull/14378
• Fixed 1dbarcodes to populate based on settings by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14380
• Added User email check when sending Asset acceptance reminder by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14371
• Fixes CVE-2024-27354 and CVE-2024-27355 in phpseclib/phpseclib by @​joelpittet in https://github.com/snipe/snipe-it/pull/14370
• Default label setup with custom fields by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14320
• Fix #​13515: Cannot restore backup by @​chandanchowdhury in https://github.com/snipe/snipe-it/pull/14379
• Added console command to encrypt previously unencrypted fields by @​snipe in https://github.com/snipe/snipe-it/pull/14385
• Fixed attempting to run bulk actions on an empty asset collection by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14388
• Fixed old label engine to work as intended with CSS by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14389
• Removed unneeded validation message by @​snipe in https://github.com/snipe/snipe-it/pull/14392
• Guard against checking require acceptance on non-existent relationship in accessory model by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14393
• [Snyk] Upgrade webpack from 5.90.1 to 5.90.2 by @​snipe in https://github.com/snipe/snipe-it/pull/14395
• Ensure Chat and Teams endpoints are not blank before attempting to send webhook on checkout and check in by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14394

New Contributors

• @​chandanchowdhury made their first contribution in https://github.com/snipe/snipe-it/pull/14379

Full Changelog: snipe/snipe-it@v6.3.2...v6.3.3

v6.3.2

Compare Source

⚠️ IMPORTANT: Future versions of Snipe-IT will require PHP 8.1 or greater

What's Changed

• Allowlist and db prefix for restore by @​uberbrady in https://github.com/snipe/snipe-it/pull/14278
• Better handle large downloads on backup API by @​snipe in https://github.com/snipe/snipe-it/pull/14296
• Added /backups/latest to API endpoint by @​snipe in https://github.com/snipe/snipe-it/pull/14297
• Add missing EXIF PHP library for Alpine Docker image by @​uberbrady in https://github.com/snipe/snipe-it/pull/14298
• Check that the model exists before trying to access properties by @​snipe in https://github.com/snipe/snipe-it/pull/14299
• Disallow branding uploads in demo mode by @​snipe in https://github.com/snipe/snipe-it/pull/14301
• Clean up the file extension on image file uploads by @​uberbrady in https://github.com/snipe/snipe-it/pull/14302
• Added ability to bulk delete locations by @​snipe in https://github.com/snipe/snipe-it/pull/14304
• Fixed title not appearing in new label engine by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14307
• Eager load relations to determine deletability on locations by @​snipe in https://github.com/snipe/snipe-it/pull/14308
• Fixed #​14183 API /hardware/:id/checkin doesn't return Licenses by @​inietov in https://github.com/snipe/snipe-it/pull/14192
• Only send notification if the item is assigned to a person by @​snipe in https://github.com/snipe/snipe-it/pull/14315
• Added email, phone icons by @​snipe in https://github.com/snipe/snipe-it/pull/14316
• Made website searchable on users table by @​snipe in https://github.com/snipe/snipe-it/pull/14317
• Fixes CVE-2024-25117 php-svg-lib lacks path validation on font through SVG inline styles by @​joelpittet in https://github.com/snipe/snipe-it/pull/14323
• Adding in PDF download to Accesories/Asset/License Histories by @​akemidx in https://github.com/snipe/snipe-it/pull/14321
• Check for activeFile before trying to get header on import by @​snipe in https://github.com/snipe/snipe-it/pull/14319
• Check for valid supplier in license view by @​snipe in https://github.com/snipe/snipe-it/pull/14325
• Nicer UI for history importer by @​snipe in https://github.com/snipe/snipe-it/pull/14327
• Generate unique department names in factory by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14341
• Copy encrypted custom fields by @​mauro-miatello in https://github.com/snipe/snipe-it/pull/14335
• Added created_by to groups table by @​snipe in https://github.com/snipe/snipe-it/pull/14344
• Added min_amt functionality to licenses by @​snipe in https://github.com/snipe/snipe-it/pull/14346
• Fixed: Checked in Assets Did Not Show in Custom Report when Selecting a Valid Checked Out Date by @​akemidx in https://github.com/snipe/snipe-it/pull/14283
• Added better label previews with the new label engine by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14281
• Added tests around asset check in and added missing actions to the api controller action by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14260
• Dynamically show models/assets on requestable page by @​snipe in https://github.com/snipe/snipe-it/pull/14347
• Use SVG cleaner on favicons by @​snipe in https://github.com/snipe/snipe-it/pull/14354
• Updated language strings by @​snipe in https://github.com/snipe/snipe-it/pull/14355
• Set CSP headers to true by default by @​snipe in https://github.com/snipe/snipe-it/pull/14356
• Removed unsafe-inline and unsafe-eval by @​snipe in https://github.com/snipe/snipe-it/pull/14357
• Fixes inconsistencies with generating labels by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14362

Full Changelog: snipe/snipe-it@v6.3.1...v6.3.2

v6.3.1

Compare Source

⚠️ IMPORTANT: Future versions of Snipe-IT will require PHP 8.1 or greater

What's Changed

• Fixed accessory checkout via API not sending notification and not adhering to qty limit by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14181
• Removed initial check for assets, licenses, etc by @​snipe in https://github.com/snipe/snipe-it/pull/14215
• Fixed company asset counts for dashboard widget by @​snipe in https://github.com/snipe/snipe-it/pull/14216
• Fixed FD-40296 - mobile uploads sometimes uploading with incorrect orientation by @​snipe in https://github.com/snipe/snipe-it/pull/14213
• Upgrade bootstrap-table from 1.22.1 to 1.22.2 #​14199 by @​snipe in https://github.com/snipe/snipe-it/pull/14217
• Added support for Google Chat notifications by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14191
• Security upgrade alpine from 3.18.5 to 3.18.6 #​14178 by @​snipe in https://github.com/snipe/snipe-it/pull/14218
• Fixed consumable checkout via API not sending notification by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14190
• Use parseEscapedMarkedownInline for more views by @​gitgrimbo in https://github.com/snipe/snipe-it/pull/13805
• Fixed #​14185 - Resurfaced load_remote in admin by @​snipe in https://github.com/snipe/snipe-it/pull/14219
• Removed loading of assets for label count by @​snipe in https://github.com/snipe/snipe-it/pull/14220
• Chunk data to reduce memory on large datasets when updating next_audit_date by @​snipe in https://github.com/snipe/snipe-it/pull/14221
• Added tests around getIdForCurrentUser method by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14222
• Switch to bulk updating to handle audit interval updates by @​snipe in https://github.com/snipe/snipe-it/pull/14227
• Fixed Select2 functionality in User bulk check-in Delete User by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14223
• Fixed: 404 Error on Importer When Uploading a .csv Under Certain Circumstance by @​akemidx in https://github.com/snipe/snipe-it/pull/14228
• Fixes file upload XSS vulnerability [sc-24156] by @​uberbrady in https://github.com/snipe/snipe-it/pull/14233
• Fixed the general webhook not notifying anymore by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14187
• Fixed select inputs un-select2-ifying on mobile by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14229
• Fixed barcodes crashing if asset was deleted by @​snipe in https://github.com/snipe/snipe-it/pull/14240
• Revert "Fixed barcodes crashing if asset was deleted" by @​snipe in https://github.com/snipe/snipe-it/pull/14241
• Fixed ReportsController to not try to return a serial if the item doesn’t exist by @​snipe in https://github.com/snipe/snipe-it/pull/14243
• Return null if asset was hard-deleted/purged by @​snipe in https://github.com/snipe/snipe-it/pull/14244
• Fixes Default Location Being Set During Asset Creation and Checkout by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/14188
• Bump codacy/codacy-analysis-cli-action from 4.3.0 to 4.4.0 by @​dependabot in https://github.com/snipe/snipe-it/pull/14251
• Fixed accessory check in emails being sent when setting disabled by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14256
• Cleaned up navbar-custom-menu by @​mauro-miatello in https://github.com/snipe/snipe-it/pull/14250
• Change how we check forward-looking upgrade requirements by @​jerm in https://github.com/snipe/snipe-it/pull/14236
• Fixes CVE-2024-24821 by upgrading composer/composer by @​joelpittet in https://github.com/snipe/snipe-it/pull/14245
• Fixes CVE-2022-24894 by upgrading symfony/http-kernel by @​joelpittet in https://github.com/snipe/snipe-it/pull/14246
• Fixes CVE-2023-37260 upgrading league/oauth2-server by @​joelpittet in https://github.com/snipe/snipe-it/pull/14247
• Added LDAP group tag to LDAP tests by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14255
• Fixed incorrect string for location not existing by @​snipe in https://github.com/snipe/snipe-it/pull/14261
• Added serial and status label to asset maintenances page and API by @​snipe in https://github.com/snipe/snipe-it/pull/14264
• Updated testing helper name by @​marcusmoore in https://github.com/snipe/snipe-it/pull/14272
• Upgrade alpinejs from 3.13.3 to 3.13.5 by @​snipe in https://github.com/snipe/snipe-it/pull/14274
• Upgrade webpack from 5.89.0 to 5.90.0 by @​snipe in https://github.com/snipe/snipe-it/pull/14275
• Fixed the notification listener by @​Godmartinz in https://github.com/snipe/snipe-it/pull/14268
• Fixed ambiguous query on supplier_id in maintenances by @​snipe in https://github.com/snipe/snipe-it/pull/14276
• Resolve Duplicate Activity Logs for Imports by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/14172
• Fixes #​14010 Adds Components and Licenses logs to Assets history view by @​inietov in https://github.com/snipe/snipe-it/pull/14197
• Lower log level to warning on webhook failure by @​snipe in https://github.com/snipe/snipe-it/pull/14277
• Improved UI for fieldsets by @​snipe in https://github.com/snipe/snipe-it/pull/14279

New Contributors

• @​gitgrimbo made their first contribution in https://github.com/snipe/snipe-it/pull/13805

Full Changelog: snipe/snipe-it@v6.3.0...v6.3.1

v6.3.0

Compare Source

⚠️ IMPORTANT: Future versions of Snipe-IT will require PHP 8.1 or greater

Happy New Year, everyone! This update is a big one as we ramp up for the release of v7. We've got tons of bug-fixes, big and small, and we're stoked to announce support for Microsoft Teams in the notification integrations. As we continue work on v7, expect even more improvements and flexibility in notifications down the line.

We've also added the ability to specify custom fields that you would like to appear on the requestable assets page, and added user edit logging to track changes to users in the system (minus passwords, 2fa tokens, etc, of course), along with some bulk editing, LDAP and SAML improvements.

The full list of changes is below - enjoy!

What's Changed

• Check that the location is valid before debugging by @​snipe in https://github.com/snipe/snipe-it/pull/13753
• Fixed #​13652 - Labels Using Wrong Logo by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/13756
• Fixed RB-17334 - ErrorException: Undefined variable $user_formatted_array by @​snipe in https://github.com/snipe/snipe-it/pull/13757
• Check for true/false explicitly on api table view by @​snipe in https://github.com/snipe/snipe-it/pull/13759
• Check for valid date in custom report by @​snipe in https://github.com/snipe/snipe-it/pull/13761
• Make sure order number is not an array by @​snipe in https://github.com/snipe/snipe-it/pull/13762
• Fixed ErrorException: Array to String Conversion rb17355 by @​inietov in https://github.com/snipe/snipe-it/pull/13758
• Fixed custom report date fields error by @​Robert-Azelis in https://github.com/snipe/snipe-it/pull/13777
• Fixed accessory not found string by @​snipe in https://github.com/snipe/snipe-it/pull/13784
• Map Snipe-IT logs to storage logs folder in Docker by @​svpernova09 in https://github.com/snipe/snipe-it/pull/13786
• Fixed ErrorException: Undefined array key in importer blade [sc-23864] by @​inietov in https://github.com/snipe/snipe-it/pull/13787
• Added an option to bulk edit location & fixed location bug by @​Godmartinz in https://github.com/snipe/snipe-it/pull/13584
• Added optional custom fields to requestable assets page by @​snipe in https://github.com/snipe/snipe-it/pull/13796
• Added employee number as a searchable field to the asset table by @​Godmartinz in https://github.com/snipe/snipe-it/pull/13797
• Fixed #​13795 Unlogged checkin action post updating the username of an asset through the CSV import by @​inietov in https://github.com/snipe/snipe-it/pull/13799
• Improvements to EOL rate and EOL date by @​Robert-Azelis in https://github.com/snipe/snipe-it/pull/13776
• Fixed FD-38641 - Bulk asset edit unable to update model_id, misc other bugs by @​snipe in https://github.com/snipe/snipe-it/pull/13800
• Fixes EOL on Custom Report by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/13802
• Added User Phone & Address Fields to Custom Asset Report by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/13803
• Added min_amt value to model detail page by @​snipe in https://github.com/snipe/snipe-it/pull/13809
• Fixed #​11179: APP_FORCE_TLS missing from the example .env.docker by @​mmanjos in https://github.com/snipe/snipe-it/pull/13810
• Added trim() to import values by @​snipe in https://github.com/snipe/snipe-it/pull/13731
• Added missing translation string by @​Godmartinz in https://github.com/snipe/snipe-it/pull/13811
• Handle redirect from after POST request from backup restore by @​snipe in https://github.com/snipe/snipe-it/pull/13812
• Added additional fields to Download All in Activity Report by @​snipe in https://github.com/snipe/snipe-it/pull/13815
• Added checkboxes to intentionally remove field values in bulk user edit by @​snipe in https://github.com/snipe/snipe-it/pull/13817
• Fixed validation handling on backup uploads by @​snipe in https://github.com/snipe/snipe-it/pull/13818
• Check that the category exists on user print page by @​snipe in https://github.com/snipe/snipe-it/pull/13819
• Fixed Attempt to read property fields on null [sc-23903] by @​inietov in https://github.com/snipe/snipe-it/pull/13820
• Fixed datetime displayed on license edit for fields that should be date by @​snipe in https://github.com/snipe/snipe-it/pull/13816
• More graceful failure if ldap_results JSON decode isn’t set by @​snipe in https://github.com/snipe/snipe-it/pull/13821
• Fixed ldap location sync by @​Godmartinz in https://github.com/snipe/snipe-it/pull/13828
• Added employee number to user merge screen by @​snipe in https://github.com/snipe/snipe-it/pull/13837
• Removed Refresh button on Client Tables by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/13847
• Fixed notes not saving to action log when licenses are checked in/out by @​marcusmoore in https://github.com/snipe/snipe-it/pull/13842
• Added #​13754 - asset history tab to locations view by @​ntbutler-nbcs in https://github.com/snipe/snipe-it/pull/13814
• New translation strings for Custom Asset report by @​spencerrlongg in https://github.com/snipe/snipe-it/pull/13823
• Clarified address column under locations by @​Godmartinz in https://github.com/snipe/snipe-it/pull/13769
• Fixed URL to favicon on default blade (used in 404 messages) by @​snipe in https://github.com/snipe/snipe-it/pull/13852
• Fixed undefined array key 266 in dashboard pie when over 265 status labels exist by @​akemidx in https://github.com/snipe/snipe-it/pull/13857
• Security upgrade alpine from 3.17.3 to 3.17.5 by @​snipe in https://github.com/snipe/snipe-it/pull/13871
• Link back to asset on create by @​snipe in https://github.com/snipe/snipe-it/pull/13853
• Fixed exception when an array is incorrectly submitted

---

Configuration

📅 Schedule: Branch creation - At any time (no schedule defined), Automerge - At any time (no schedule defined).

🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.

♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.

🔕 Ignore: Close this PR and you won't be reminded about this update again.

---

• If you want to rebase/retry this PR, check this box

---

This PR has been generated by Mend Renovate. View repository job log here.