Link Search Menu Expand Document
OpenRMF Professional Help

Version 2.14.00

This is a major release to consolidate components, improve security, updated features as well as several fix bugs. And this also updates DISA templates.

  • Consolidation of 7 internal API components into a single API component, with the External API remaining as is
  • Consolidation of 9 internal message components into a single message component, which we will cluster for performance and messaging
  • Removal of Javascript libraries no longer needed
  • Added internal security checks and hardening on values passed in and sent back on API calls
  • Added security checks on data throughout to improve validation
  • Updated the eMASS POAM export format to match the latest update to eMASS for all DoW services and users
  • Updated the swagger.json from the External API for newer calls
  • Removed data from the External API showing username and user ID values not needed
  • Updated 3rd party images with RapidFort curated images for reduced CVEs and security
  • Updated the NATS messaging credential accounts for future Service Provider Interface creation
  • Bug fix on POAM being updated correctly when a checklist has a hostname entered and status changed, when it was created with no hostname entry
  • Bug fix on null checklist vulnerability comments from the newer SCC application generating different CKLB format files
  • Bug fix to require AssetType on Bulk Edit Details of checklists
  • Bug fix on resetting an entire table listing when editing from a table in MS Edge
  • Bug fix on setting a default AssetType for a checklist created from the Template listing page
  • Bug fixes on // double slashes on certain pages with filtering
  • Bug fix on checklist history page listing showing the last date updated for the top current row
  • Bug fix on some checklist and template CKLB history downloads return a CKL file
  • Bug fix on tables refreshing the entire contents when you edit just a single row versus inline update without a total refresh
  • Bug fix on checklist download histoy for CKLB format to download correctly
  • Bug fix on system package total checklist history score listing using the current date, not the last updated date
  • Updated MongoDB to v7.0.31 for a known CVE with the curated image from RapidFort
  • Updated Keycloak to v 26.5.6 with the curated image from RapidFort and updated the login theme to be cleaner
  • Updated Grafana to v 11.6.13 with the curated image from RapidFort
  • Updated Prometheus to v3.10 with the curated image from RapidFort
  • Updated NATS to v 2.12.6 with the curated image from RapidFort
  • Updated the Elastic Stack to v 9.3.2 with the curated image from RapidFort
  • Updated Postgres to v 16.13 with the curated image from RapidFort
  • DISA Template updates as of April 10, 2026 from DISA public.cyber.mil
  • Improved automated scans for security and bugs in our development pipeline to catch issues earlier
  • Updated the base image for our software components with the latest Alpine Linux curated image from RapidFort

Copyright © 2021 - 2026 Soteria Software LLC.
Do The Work. Automate the Paperwork!SM