snipe-it v4.7.7 release notes (2019-09-04)

« Changelog History

snipe-it v4.7.7 Release Notes

Release Date: 2019-09-04 // over 4 years ago

🆕 New in v4.7.7

🚀 IMPORTANT: This release requires PHP 7.1.3 or greater.

💥 This is mostly a bugfix release, however it does introduce a breaking change to the API which caps the number of results returned at 500 by default. More details below. Additionally, we added a rekey console command that allows you to rotate your APP_KEY (in the event of a security breach where your APP_KEY was disclosed or discovered) which will decrypt any encrypted custom fields you have, generate a new key, and re-encrypt them using the newly generated key.

Usage:

php artisan snipeit:rotate-key

💥 BREAKING CHANGE:

0️⃣ The maximum number of items returned is now capped at 500 by default. This is to prevent server timeouts and memory issues when someone (usually a custom script) naively tries to request 100k items at one time. You can increase this limit by adding MAX_RESULTS to your .env file and setting that value to a higher number. Otherwise you should use standard pagination using the offset parameter to get your complete data set.

🛠 Fixed
- 🛠 Fixed CVE-2019-10742
- 🛠 History importer fixes
- 🛠 Fixed #7289 - git fetch before git checkout in upgrade.php
- 🛠 Fixed #7259 - upgraded phpdocumentor/reflection-docblock to v4
- Smaller chunking for custom report, add max_execution_time
- ✂ Removed erroneous withErrors() on JSON response
➕ Added
- ➕ Added #7321 - link to Helm Chart repo
- ➕ Added console rekey tool (#7330)
- Limit API request results per page (#7405)
⬆️ Upgrading

⬆️ For general upgrading instructions, click here. Users who installed Snipe-IT via Git (recommended) can just run php upgrade.php.

👀 For a full list of changes, see the changelog.

⬆️ After completing the upgrade process, be sure to clear your browser cookies.

⬆️ Upgrading from v3

⬆️ Please see the upgrade instructions here.