snipe-it

A free open source IT asset/license management system

AGPL-3.0 License

Downloads
392
Stars
10.5K
Committers
302
View Code on GitHub Visit Website View on X
Ecosystems: PHP

Bot releases are visible (Hide)

snipe-it - v7.0.10 Latest Release

Published by snipe 3 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1.2 or greater

Hey everyone!

While this is just a point release, we're really excited for this one. We've a bunch of small bug fixes, but also added some UX sugar that we think will make everyone's workflows a little bit easier. You can now decide where you want to go after creating, editing, or checking in/out a first class object (Assets, Accessories, Licenses, Users, etc). You can also now check out more than one accessory at a time, if that's a thing that comes up in your workflow.

Also: If your table listings text ("Showing x of y pages") defaulted to Chinese, this release handles that (via https://github.com/snipe/snipe-it/pull/15133).

We've been doing a ton of under the hood stuff that won't seem very obvious as users, but it puts us in a much better position to move more quickly on a lot of things.

Another important technical note: this release mitigates a difficult to exploit but possible attack. If someone had access to your APP_KEY, it was possible to perform an RCE attack. We mitigated this by disabling cookie serialization, but I'd still argue that if someone has your APP_KEY, you're going to have a bad time in a bunch of other ways, so this is just a gentle reminder than your APP_KEY should never, ever be shared with anyone, for any reason, and you should never use the default APP_KEY values we have in some of our example env files. If you have encrypted custom fields and need to roll your APP_KEY because you feel it could have been compromised, we have a cli utility to handle that.

Next up: Custom fields for users, and the ability to check out accessories to assets and locations.

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.9...v7.0.10

snipe-it - v7.0.9

Published by snipe 3 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1.2 or greater

Another small patch release which largely handles missing translations and the some refinements on the upgrade.php script to make upgrading a little smoother, and added a boatload more automated tests. We also tightened up some queries on the consumables side, so hopefully those with much larger data sets for consumables will notice speedier load times there.

Additionally, we identified and fixed an issue where in some circumstances, custom field data could be lost when auditing an asset, and we also added better history tracking for consumables.

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.8...v7.0.9

snipe-it - v7.0.8

Published by snipe 3 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1.2 or greater

Happy Monday, nerds! This release fixes some missing translations, adds some improvements for merging users, fixes a bug where custom field data could be lost when auditing under certain conditions, and also adds some query optimizations for speed. Enjoy!

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.7...v7.0.8

snipe-it - v7.0.7

Published by snipe 4 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1.2 or greater

Happy Tuesday! This point release handles the unusual (but possible) use-case where the language in APP_LOCALE had not been updated correctly to use the four/five letter ISO code and was still using the two-letter code, so users might have seen issues with translation strings related to FALLBACK_APP_LOCALE. This also fixes the upgrade script where the requirements checks would fail if you did not have gd installed, but you do have Imagemagick installed. Plus, a new label template for endless 62mm Brother printer rolls!

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.6...v7.0.7

snipe-it - v7.0.6

Published by snipe 4 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1.2 or greater

This is a small point release that should handle a few translation issues as well as fixing some configuration issues for docker users and users behind a reverse proxy server using SAML.

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.5...v7.0.6

snipe-it - v7.0.5

Published by snipe 4 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1.2 or greater

This release largely handles some translation issues (especially related to backup notification emails), a few small importer issues related to date importing, and a bunch of additional automated tests. We also added the feature of being able to disallow your users to edit their profiles at all (via Admin > General Settings), and fixed an issue around the ability to delete users.

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.4...v7.0.5

snipe-it - v7.0.4

Published by snipe 4 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1 or greater

This release just addresses some small issues for folks behind reverse proxies and fixes a few small bits for folks on PHP 8.1.x that would have only have had issues if they pulled from master within the past 24 hours.

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.3...v7.0.4

snipe-it - v7.0.3

Published by snipe 4 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1 or greater

If you happen to be running Snipe-IT over a reverse-proxy and when you upgrade, your CSS does not load, try setting APP_FORCE_TLS=true in your .env.

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.2...v7.0.3

snipe-it - v7.0.2

Published by snipe 4 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1 or greater

Quick fix release for a backup notification issue, and also cleaned up some really small layout glitches.

If you happen to be running Snipe-IT over a reverse-proxy and when you upgrade, your CSS does not load, try setting APP_FORCE_TLS=true in your .env.

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v7.0.1...v7.0.2

snipe-it -

Published by snipe 4 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1 or greater

There's always one, isn't there :)

This fixes a framework compatibility issue we missed that no longer uses the static Request::has() facade, and adds some tests to make sure we don't miss that in the future.

If you happen to be running Snipe-IT over a reverse-proxy and when you upgrade, your CSS does not load, try setting APP_FORCE_TLS=true in your .env.

snipe-it - v7.0.0

Published by snipe 4 months ago

[!CAUTION]
Snipe-IT now requires PHP 8.1 or greater

It's here it's here! The long-awaited v7 is out. While this is largely a framework-level upgrade, you should see some performance improvements and bug fixes throughout. We've also added the ability to determine where you get redirected after a checkout and checkin for assets, and we'll be adding more of that functionality in the future.

If you happen to be running Snipe-IT over a reverse-proxy and when you upgrade, your CSS does not load, try setting APP_FORCE_TLS=true in your .env.

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.4.2...v7.0.0

snipe-it - v7.0.0-pre

Published by snipe 5 months ago

[!CAUTION]
This is a PRE-RELEASE and should NOT be used in production!

It's finally happening! The develop branch for Snipe-IT is now the pre-release of Snipe-IT v7.0.0. As we continue testing, we expect some additional changes and fixes to come (and a bunch of documentation fixes). Remember that this version WILL NOT WORK on versions of PHP under 8.1 - and also that while this is not a feature-free release, the primary goal for v7 was to upgrade the framework so we can start to tackle some of the bigger things we've wanted to work on for a while.

If you need to report bugs in this branch, please be sure to mention v7 in the title.

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.3.2...v7.0.0-pre

snipe-it - v6.4.2

Published by snipe 5 months ago

[!CAUTION]
The NEXT MAJOR release of Snipe-IT (v7.0.0) will require PHP 8.1 or greater

As we wrap it all up for v7 (which you can preview on the snipeit_v7_laravel10 branch, we knew there would be a few more things we needed to handle. Most of these are small bugfixes (that have already been merged into the v7 branch) but we also came across some security issues that we wanted to patch as we close off the v6 line. Users are encouraged to upgrade to v6.4.2 - and of course, encouraged to make sure your servers are ready for v7 with PHP8.1.

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.4.1...v6.4.2

snipe-it - v6.4.1

Published by snipe 5 months ago

[!CAUTION]
The NEXT major release of Snipe-IT (v7.0.0) will require PHP 8.1 or greater

Hi folks - happy Monday! This is just tiny release to handle a few small remaining bug fixes as we head into v7.

The current working v7 branch will be merged into the existing develop branch within the week, and will then be available on the https://develop.snipeitapp.com demo link.

This update fixes a small issue with notifications and also optimizes some of the queries that populate the sidebar that could have slowed things down for folks with a lot of assets.

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.4.0...v6.4.1

snipe-it - v6.4.0

Published by snipe 6 months ago

[!CAUTION]
The NEXT major release of Snipe-IT (v7.0.0) will require PHP 8.1 or greater

Happy Monday, friends! This is the final release of the v6 line of Snipe-IT. (I know, I know.)

If you're hosted with us, you'll have these changes in your hot little hands within a day or so. If you're not, please make sure to upgrade your version of Snipe-IT. But more importantly, please make sure you're running PHP 8.1.x+ before you try to upgrade again after this.

No breaking changes, just some small tweaks, a few added features, and a few bug fixes. We did have to address a potential (though very hard to exploit) permissions escalation issue, which is why we're making this 6.4.0 instead of a point release.

v7 has been a long time coming, but we're nearly there.

Thanks as always to our community contributors for their awesome work! <3

What's Changed

New API Endpoints:

  • Added the /api/v1/hardware/checkins/due and /api/v1/hardware/checkins/overdue endpoints
  • Added the /api/v1/hardware/checkins/due-or-overdue and /api/v1/hardware/audits/due-or-overdue endpoints

New Dev Documentation:

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.3.4...v6.4.0

snipe-it - v6.3.4

Published by snipe 7 months ago

[!CAUTION]
The upcoming v7 release of Snipe-IT will require PHP 8.1 or greater

Happy Friday! Lots of fixes and improvements in this version. Here's the tldr;, with the full changelog below:

  • Added Somali translation
  • Fixed several label setting glitches
  • Fixed some API scoping issues where results were not as constrained as they should have been when searching
  • Added column selectors and signatures to the "print all assigned" page
  • Added 2FA reset logging (this shows up as a separate action, not a normal user edit)
  • Added AVIF as an accepted image format
  • Added ability to "toggle all" columns in the list views on most pages
  • Added the ability to "deep link" to search results in those list views
  • Updated the documentation to reflect that the php exif library is required

[!WARNING]
Upcoming Breaking API change! In between the last release and this one, we also discovered that a change we made midway through releases broke the Jamf2Snipe integration for adding/updating assets. We had changed the "shape" of the asset response to be more consistent with how we present that JSON in other API responses - however in doing so, we broke some of the Jamf2Snipe capabilities. We've reverted that change for now, but in the next release, we'll be adding that change back and updating the Jamf2Snipe library to match that capability.

We are noticing in some of the translations in CrowdIn that some trans_choice() translations are showing with a weird <unk> symbol instead of the pipe (|) symbol that the translations strings need in order to decide whether or not to pluralize a string. We've been fixing them as we find them, but if you see anything unusual, open an issue here or propose the change in our CrowdIn project.

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.3.3...v6.3.4

snipe-it - v6.3.3

Published by snipe 8 months ago

⚠️ IMPORTANT: Future versions of Snipe-IT will require PHP 8.1 or greater

This is a small patch release that fixes a few regressions introduced in the last released related to labels. It also includes some minor security patches, and introduces a new script to convert a previously unencrypted custom field to be an encrypted custom field.

v7 is still well on its way. We hit a small snag with Laravel's switch from Swiftmailer to Symfony for mail sending, but we're back on track now.

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.3.2...v6.3.3

snipe-it - v6.3.2

Published by snipe 8 months ago

⚠️ IMPORTANT: Future versions of Snipe-IT will require PHP 8.1 or greater

What's Changed

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.3.1...v6.3.2

snipe-it - v6.3.1

Published by snipe 8 months ago

⚠️ IMPORTANT: Future versions of Snipe-IT will require PHP 8.1 or greater

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.3.0...v6.3.1

snipe-it - v6.3.0

Published by snipe 9 months ago

⚠️ IMPORTANT: Future versions of Snipe-IT will require PHP 8.1 or greater

Happy New Year, everyone! This update is a big one as we ramp up for the release of v7. We've got tons of bug-fixes, big and small, and we're stoked to announce support for Microsoft Teams in the notification integrations. As we continue work on v7, expect even more improvements and flexibility in notifications down the line.

We've also added the ability to specify custom fields that you would like to appear on the requestable assets page, and added user edit logging to track changes to users in the system (minus passwords, 2fa tokens, etc, of course), along with some bulk editing, LDAP and SAML improvements.

The full list of changes is below - enjoy!

What's Changed

New Contributors

Full Changelog: https://github.com/snipe/snipe-it/compare/v6.2.3...v6.3.0

Package Rankings
Top 14.88% on Packagist.org
Top 3.53% on Proxy.golang.org
Badges
Extracted from project README
Crowdin Docker Pulls Twitter Follow Codacy Badge Tests All Contributors Discord
Related Projects
snuffleupagus

Security module for php7 and php8 - Killing bugclasses and virtual-patching the rest!

20 Sep 2017 765