BloodHound CE v6.4.0

This release requires an update to SharpHound v2.5.13

What's Changed

• BED-5060: Prevent user from changing their own role/auth by @wes-mil in #984
• Fix: EnrollOnBehalfOf logic issue by @JonasBK in #1002
• BED-5091 - Merge stage v6.3.0 by @zinic in #1009
• BED-5065: Display better error messages when creating a new user by @wes-mil in #1001
• BED-5172: Resolve CVE-2024-45337 by @wes-mil in #1013
• BED-4624: Backend Logic to Redirect User to UI on SSO Login Failure by @iustinum in #1003
• Update default tier zero by @JonasBK in #1022
• BED-4841: fix: fall back to ObjectID when DomainSID is missing while loading foreign members by @computator in #1029
• BED-5204: Resolve CVE-2024-45338 by @superlinkx in #1031
• BED-5191: GET /details API client can send multiple sort_by query params by @benwaples in #1032
• Remove DnsAdmins from default tier zero by @JonasBK in #1030
• BED-5198 - Merge stage/v6.3.1 by @zinic in #1036
• BED-5013: Deprecate Create SAML Endpoint by @iustinum in #1033
• BED-5066: Better error messaging when creating SSO providers by @wes-mil in #1010
• BED-5072 fix local dev infinite loop by @Holocraft in #1008
• BED-5178 fix: OIDC default scopes by @mistahj67 in #1041
• BED 4992: Added DoodleUI Skeleton component into Posture Page by @specter-flq in #1040
• Fix typescript errors in bh-shared-ui by @elikmiller in #1042
• BED-4963: Clean Up and Tighten Enforcement of Linters by @superlinkx in #1037
• BED-5070: Add Auto-provisioning Support to SSO Auth Flow on Backend by @ALCooper12 in #1025
• Bed-5008 feat: Add role provision support by @mistahj67 in #1043
• BED-5069 feat: add sso config options to providers by @mistahj67 in #990
• BED-5110 added NoDataDialog component by @Holocraft in #1046
• BED-4868 Wrong Reader Count for AZKeyVaults by @AD7ZJ in #1017
• chore: Deleted the updated_posture_page flag. by @elikmiller in #1045
• BED-5254 chore: automate year in license_check by @mistahj67 in #1053
• Fix abuse info around read LAPS password narrative by @JonasBK in #1018
• Bed-5218 refactor: swap to bespoke oidc token exchange by @mistahj67 in #1051
• Merge stage/v6.3.3 into main by @zinic in #1055
• chore: BED-5260 - remove unused functions by @zinic in #1056
• bloodhound.Dockerfile needs to point to SpecterOps org to find *hound releases by @definitelynotagoblin in #1057
• fix: include all asset files in static assets embed.FS by @computator in #1060
• BED-5218 chore: add better logging to oidc callback handlers by @mistahj67 in #1061
• feat: update SharpHound to v2.5.13 by @computator in #1063
• BED-4624 fix: missing error handling during sso login by @mistahj67 in #1062
• BED-5288 - Graph Assertion Ordering and Versioned Migration Checks by @zinic in #1064
• BED-5060: fix ui by @wes-mil in #1069

New Contributors

• @Holocraft made their first contribution in #1008

Full Changelog: v6.3.4...v6.4.0