Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package python-pymisp for openSUSE:Factory checked in at 2021-10-11 15:31:29 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/python-pymisp (Old) and /work/SRC/openSUSE:Factory/.python-pymisp.new.2443 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "python-pymisp" Mon Oct 11 15:31:29 2021 rev:38 rq:924343 version:2.4.148.1 Changes: -------- --- /work/SRC/openSUSE:Factory/python-pymisp/python-pymisp.changes 2021-09-03 21:27:13.394265020 +0200 +++ /work/SRC/openSUSE:Factory/.python-pymisp.new.2443/python-pymisp.changes 2021-10-11 15:32:26.234923846 +0200 @@ -1,0 +2,45 @@ +Sat Oct 2 07:00:28 UTC 2021 - Sebastian Wagner <sebix+novell....@sebix.at> + +- update to version 2.4.148.1: + - New + - Add few keys to email object creator. [Rapha??l Vinot] + Fix #787 + - Test cases for edit objects and upload stix. [Rapha??l Vinot] + - Changes + - Bump misp-objects. [Rapha??l Vinot] + - Bump version. [Rapha??l Vinot] + - Bump deps. [Rapha??l Vinot] + - [doc] Minor fixes, note and typo. [Steve Clement] + - Bump deps. [Rapha??l Vinot] + - [misp-objects] updated to the latest version. [Alexandre Dulaunoy] + - [misp-objects] updated to the latest version. [Alexandre Dulaunoy] + - Update tutorial for custom objects. [Rapha??l Vinot] + - Bump deps. [Rapha??l Vinot] + - Bump live tests. [Rapha??l Vinot] + - [misp-objects] updated to the latest version. [Alexandre Dulaunoy] + - [types] updated types/categories mapping. [Christophe Vandeplas] + - Remove test files. [Rapha??l Vinot] + - Automatically pull the malwares repo when running + tests/testlive_comprehensive.py. [Rapha??l Vinot] + - Remove submodules with malware. [Rapha??l Vinot] + - Add test for updating a objects from a custom template. [Rapha??l + Vinot] + - Re-bump changelog. [Rapha??l Vinot] + - Fix + - Message_from_bytes really dislikes newline at the beginning of a mail. + [Rapha??l Vinot] + - Skip IPs in Received header. [Rapha??l Vinot] + - Name is passed to super. [Rapha??l Vinot] + - Do not create empty manifest, json load dislikes it. [Rapha??l Vinot] + - Initial round of cleanup on redis feed generator. [Rapha??l Vinot] + - Upload of STIX document with non-ascii characters. [Rapha??l Vinot] + Due to: https://github.com/psf/requests/issues/5560 + TL;DR: a variable of type str passed to data in a POST request will be + silently re-encoded to ISO-8859-1, making MISP barf on the other side. + - Remove outdated deps from setup.py. [Rapha??l Vinot] + Fix https://github.com/MISP/MISP/issues/7729 + - Other + - Update README.md. [Rapha??l Vinot] + Not using travis anymore. + +------------------------------------------------------------------- Old: ---- python-pymisp-2.4.148.tar.gz New: ---- python-pymisp-2.4.148.1.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ python-pymisp.spec ++++++ --- /var/tmp/diff_new_pack.FdsYyV/_old 2021-10-11 15:32:26.726924635 +0200 +++ /var/tmp/diff_new_pack.FdsYyV/_new 2021-10-11 15:32:26.730924641 +0200 @@ -18,9 +18,9 @@ %{?!python_module:%define python_module() python-%{**} python3-%{**}} %define skip_python2 1 -%define misp_objects_revision 8ecdd68eb881d6b5c565ad3a46b62143044a0b27 +%define misp_objects_revision 3d52773e9d3ba39ff324455bf8c10b47e11b695a Name: python-pymisp -Version: 2.4.148 +Version: 2.4.148.1 Release: 0 Summary: Python API for MISP License: BSD-2-Clause ++++++ misp-objects.tar.gz ++++++ diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/README.md new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/README.md --- old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/README.md 2021-07-25 09:11:42.000000000 +0200 +++ new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/README.md 2021-09-29 17:08:40.000000000 +0200 @@ -223,6 +223,7 @@ - [objects/github-user](https://github.com/MISP/misp-objects/blob/main/objects/github-user/definition.json) - GitHub user. - [objects/gitlab-user](https://github.com/MISP/misp-objects/blob/main/objects/gitlab-user/definition.json) - GitLab user. Gitlab.com user or self-hosted GitLab instance. - [objects/gtp-attack](https://github.com/MISP/misp-objects/blob/main/objects/gtp-attack/definition.json) - GTP attack object as seen on a GSM, UMTS or LTE network. +- [objects/hashlookup](https://github.com/MISP/misp-objects/blob/main/objects/hashlookup/definition.json) - hashlookup object as described on hashlookup services from circl.lu - https://www.circl.lu/services/hashlookup. - [objects/http-request](https://github.com/MISP/misp-objects/blob/main/objects/http-request/definition.json) - A single HTTP request header. - [objects/ilr-impact](https://github.com/MISP/misp-objects/blob/main/objects/ilr-impact/definition.json) - Institut Luxembourgeois de Regulation - Impact. - [objects/ilr-notification-incident](https://github.com/MISP/misp-objects/blob/main/objects/ilr-notification-incident/definition.json) - Institut Luxembourgeois de Regulation - Notification d'incident. @@ -318,6 +319,7 @@ - [objects/scrippsco2-o18-daily](https://github.com/MISP/misp-objects/blob/main/objects/scrippsco2-o18-daily/definition.json) - Daily average O18 concentrations (ppm) derived from flask air samples. - [objects/scrippsco2-o18-monthly](https://github.com/MISP/misp-objects/blob/main/objects/scrippsco2-o18-monthly/definition.json) - Monthly average O18 concentrations (ppm) derived from flask air samples. - [objects/script](https://github.com/MISP/misp-objects/blob/main/objects/script/definition.json) - Object describing a computer program written to be run in a special run-time environment. The script or shell script can be used for malicious activities but also as support tools for threat analysts. +- [objects/security-playbook](https://github.com/MISP/misp-objects/blob/main/objects/security-playbook/definition.json) - Security playbook with its metadata for executing course of action in cyberspace defense. - [objects/shell-commands](https://github.com/MISP/misp-objects/blob/main/objects/shell-commands/definition.json) - Object describing a series of shell commands executed. This object can be linked with malicious files in order to describe a specific execution of shell commands. - [objects/shodan-report](https://github.com/MISP/misp-objects/blob/main/objects/shodan-report/definition.json) - Shodan Report for a given IP. - [objects/short-message-service](https://github.com/MISP/misp-objects/blob/main/objects/short-message-service/definition.json) - Short Message Service (SMS) object template describing one or more SMS message. Restriction of the initial format 3GPP 23.038 GSM character set doesn't apply. diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/domain-ip/definition.json new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/domain-ip/definition.json --- old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/domain-ip/definition.json 2021-07-25 09:11:42.000000000 +0200 +++ new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/domain-ip/definition.json 2021-09-29 17:08:40.000000000 +0200 @@ -44,7 +44,6 @@ ], "description": "Associated TCP port with the domain", "misp-attribute": "port", - "multiple": true, "ui-priority": 1 }, "registration-date": { @@ -70,5 +69,5 @@ "hostname" ], "uuid": "43b3b146-77eb-4931-b4cc-b66c60f28734", - "version": 9 + "version": 10 } \ No newline at end of file diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/hashlookup/definition.json new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/hashlookup/definition.json --- old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/hashlookup/definition.json 1970-01-01 01:00:00.000000000 +0100 +++ new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/hashlookup/definition.json 2021-09-29 17:08:40.000000000 +0200 @@ -0,0 +1,104 @@ +{ + "attributes": { + "FileName": { + "description": "Complete path of the filename including the filename", + "disable_correlation": true, + "misp-attribute": "filename", + "ui-priority": 0 + }, + "FileSize": { + "description": "Size of the file, in bytes", + "disable_correlation": true, + "misp-attribute": "size-in-bytes", + "ui-priority": 0 + }, + "KnownMalicious": { + "description": "Source of the hashlookup record if it's a known malicious file", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 0 + }, + "MD5": { + "description": "MD5 hash (128 bits) in hex representation", + "misp-attribute": "md5", + "recommended": false, + "ui-priority": 1 + }, + "PackageArch": { + "description": "Package architecture", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 0 + }, + "PackageDescription": { + "description": "Package description and information", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 0 + }, + "PackageMaintainer": { + "description": "Package Maintainer(s)", + "misp-attribute": "text", + "ui-priority": 0 + }, + "PackageName": { + "description": "Package Name", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 0 + }, + "PackageRelease": { + "description": "Package Release", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 0 + }, + "PackageVersion": { + "description": "Package Version", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 0 + }, + "SHA-1": { + "description": "Secure Hash Algorithm 1 (160 bits) in hex representation", + "misp-attribute": "sha1", + "recommended": false, + "ui-priority": 1 + }, + "SHA-256": { + "description": "Secure Hash Algorithm 2 (256 bits) in hex representation", + "misp-attribute": "sha256", + "ui-priority": 1 + }, + "SSDEEP": { + "description": "SSDEEP - Fuzzy hashing", + "misp-attribute": "ssdeep", + "ui-priority": 1 + }, + "TLSH": { + "description": "TLSH - Trend Micro Locality Sensitive Hash", + "misp-attribute": "tlsh", + "ui-priority": 1 + }, + "source": { + "description": "Source of the hashlookup record", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 0 + } + }, + "description": "hashlookup object as described on hashlookup services from circl.lu - https://www.circl.lu/services/hashlookup";, + "meta-category": "file", + "name": "hashlookup", + "requiredOneOf": [ + "FileName", + "FileSize", + "MD5", + "SHA-1", + "SHA-256", + "TLSH", + "SSDEEP" + ], + "uuid": "18671816-2524-452e-b031-5fc0fe2ab774", + "version": 3 +} \ No newline at end of file diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/process/definition.json new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/process/definition.json --- old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/process/definition.json 2021-07-25 09:11:42.000000000 +0200 +++ new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/process/definition.json 2021-09-29 17:08:40.000000000 +0200 @@ -154,8 +154,14 @@ "misp-attribute": "datetime", "ui-priority": 0 }, - "user": { - "description": "User context of the process", + "user-creator": { + "description": "User who created of the process", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 2 + }, + "user-process": { + "description": "User who is running the process at the time of the analysis", "disable_correlation": true, "misp-attribute": "text", "ui-priority": 2 @@ -172,5 +178,5 @@ "current-directory" ], "uuid": "02aeef94-ac23-455c-addb-731757ceafb5", - "version": 8 + "version": 9 } \ No newline at end of file diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/security-playbook/definition.json new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/security-playbook/definition.json --- old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/security-playbook/definition.json 1970-01-01 01:00:00.000000000 +0100 +++ new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/security-playbook/definition.json 2021-09-29 17:08:40.000000000 +0200 @@ -0,0 +1,185 @@ +{ + "attributes": { + "created": { + "categories": [ + "Other" + ], + "description": "The time at which the playbook was originally created.", + "disable_correlation": true, + "misp-attribute": "datetime", + "ui-priority": 1 + }, + "creator": { + "categories": [ + "Other" + ], + "description": "Creator organization of the playbook.", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 1 + }, + "description": { + "categories": [ + "Other" + ], + "description": "Primary classification use case the data are prepared for, e.g. DGA, Phishing, Application identification, Host profiling, ...", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 1 + }, + "id": { + "categories": [ + "Other" + ], + "description": "A value that uniquely identifies the playbook.", + "disable_correlation": false, + "misp-attribute": "text", + "ui-priority": 1 + }, + "impact": { + "categories": [ + "Other" + ], + "description": "A positive integer that represents the impact the playbook has on the organization from 0 to 100.", + "disable_correlation": true, + "misp-attribute": "counter", + "ui-priority": 1 + }, + "label": { + "categories": [ + "Other" + ], + "description": "An optional set of terms, labels or tags associated with this playbook.", + "disable_correlation": true, + "misp-attribute": "text", + "multiple": true, + "ui-priority": 1 + }, + "modified": { + "categories": [ + "Other" + ], + "description": "The time that this particular version of the playbook was last modified.", + "disable_correlation": true, + "misp-attribute": "datetime", + "ui-priority": 1 + }, + "organization-type": { + "categories": [ + "Other" + ], + "description": "Type of an organization, that the playbook is intended for.", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 1 + }, + "playbook": { + "categories": [ + "Payload delivery" + ], + "description": "Content of the whole playbook.", + "misp-attribute": "attachment", + "ui-priority": 1 + }, + "playbook-abstraction": { + "categories": [ + "Other" + ], + "description": "Identifies the level of completeness of the playbook.", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 1, + "values_list": [ + "guideline", + "playbook template", + "playbook", + "partial workflow", + "full workflow", + "fully scripted" + ] + }, + "playbook-standard": { + "categories": [ + "Other" + ], + "description": "Identification of the playbook standard.", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 1 + }, + "playbook-type": { + "categories": [ + "Other" + ], + "description": "Identifies types of actions in the playbook.", + "disable_correlation": true, + "misp-attribute": "text", + "multiple": true, + "ui-priority": 1, + "values_list": [ + "notification playbook", + "detection playbook", + "investigation playbook", + "prevention playbook", + "mitigation playbook", + "remediation playbook", + "attack playbook" + ] + }, + "priority": { + "categories": [ + "Other" + ], + "description": "A positive integer that represents the priority of this playbook relative to other defined playbooks.", + "disable_correlation": true, + "misp-attribute": "counter", + "ui-priority": 1 + }, + "revoked": { + "categories": [ + "Other" + ], + "description": "A boolean that identifies if the playbook creator deems that this playbook is no longer valid.", + "disable_correlation": true, + "misp-attribute": "boolean", + "ui-priority": 1 + }, + "severity": { + "categories": [ + "Other" + ], + "description": "A positive integer that represents the seriousness of the conditions that this playbook addresses.", + "disable_correlation": true, + "misp-attribute": "counter", + "ui-priority": 1 + }, + "valid-from": { + "categories": [ + "Other" + ], + "description": "The time from which the playbook is considered valid and the steps that it contains can be executed.", + "disable_correlation": true, + "misp-attribute": "datetime", + "ui-priority": 1 + }, + "valid-until": { + "categories": [ + "Other" + ], + "description": "The time at which this playbook should no longer be considered a valid playbook to be executed.", + "disable_correlation": true, + "misp-attribute": "datetime", + "ui-priority": 1 + } + }, + "description": "Security playbook with its metadata for executing course of action in cyberspace defense.", + "meta-category": "misc", + "name": "security-playbook", + "required": [ + "playbook", + "playbook-standard", + "playbook-type" + ], + "uuid": "48894c92-447b-4abe-b093-360c4d823e9d", + "version": 1 +} \ No newline at end of file diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/ss7-attack/definition.json new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/ss7-attack/definition.json --- old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/ss7-attack/definition.json 2021-07-25 09:11:42.000000000 +0200 +++ new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/ss7-attack/definition.json 2021-09-29 17:08:40.000000000 +0200 @@ -18,6 +18,30 @@ ], "ui-priority": 1 }, + "GtAssignee": { + "description": "GT Assignee this is the party that got the GT range assigned by their Regulator.", + "misp-attribute": "text", + "multiple": true, + "ui-priority": 0 + }, + "GtLessee": { + "description": "GT Lessee is a third party who will use a leased global title from a GT Lessor.", + "misp-attribute": "text", + "multiple": true, + "ui-priority": 0 + }, + "GtLessor": { + "description": "GT Lessor is a GT Assignee that has decided to lease one or more of their GTs to a third party, the GT Lessee, typically on a commercial basis.", + "misp-attribute": "text", + "multiple": true, + "ui-priority": 0 + }, + "GtSubLessee": { + "description": "GT Sub-Lessee ??? this is an additional third party who has entered into an agreement with the GT Lessee to sub-lease a GT from them.", + "misp-attribute": "text", + "multiple": true, + "ui-priority": 0 + }, "MapApplicationContext": { "description": "MAP application context in OID format.", "disable_correlation": true, @@ -173,5 +197,5 @@ "text" ], "uuid": "f3493d8b-a7ab-48d0-a775-046c4d64d782", - "version": 2 + "version": 3 } \ No newline at end of file diff -urN '--exclude=CVS' '--exclude=.cvsignore' '--exclude=.svn' '--exclude=.svnignore' old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/user-account/definition.json new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/user-account/definition.json --- old/misp-objects-8ecdd68eb881d6b5c565ad3a46b62143044a0b27/objects/user-account/definition.json 2021-07-25 09:11:42.000000000 +0200 +++ new/misp-objects-3d52773e9d3ba39ff324455bf8c10b47e11b695a/objects/user-account/definition.json 2021-09-29 17:08:40.000000000 +0200 @@ -30,6 +30,12 @@ "misp-attribute": "datetime", "ui-priority": 1 }, + "description": { + "description": "A description of the user account.", + "disable_correlation": true, + "misp-attribute": "text", + "ui-priority": 1 + }, "disabled": { "description": "Specifies if the account is desabled.", "disable_correlation": true, @@ -112,12 +118,6 @@ "misp-attribute": "text", "ui-priority": 1 }, - "text": { - "description": "A description of the user account.", - "disable_correlation": true, - "misp-attribute": "text", - "ui-priority": 1 - }, "user-avatar": { "description": "A user profile picture or avatar.", "misp-attribute": "attachment", @@ -144,5 +144,5 @@ "user-id" ], "uuid": "49606b06-22f0-4ac8-8eee-2f12ad46f3d3", - "version": 3 + "version": 4 } \ No newline at end of file ++++++ python-pymisp-2.4.148.tar.gz -> python-pymisp-2.4.148.1.tar.gz ++++++ ++++ 2855 lines of diff (skipped)
