What's Changed
This patch release is primarily intended to address #1627
- Bump baseline-browser-mapping from 2.10.19 to 2.10.20 in the root-npm-version group by @dependabot[bot] in #1608
- Bump actions/setup-node from 6.3.0 to 6.4.0 in /.github/workflows in the update-version group by @dependabot[bot] in #1610
- Skip visual regression tests by @lreading in #1614
- Bump the vue-npm-security group across 1 directory with 3 updates by @dependabot[bot] in #1609
- td.vue: Remove unneeded overrides by @lreading in #1616
- td.server: Remove unneeded overrides by @lreading in #1615
- TM-BOM: refactor and debug merge / import by @jgadsden in #1550
- Bump minimatch from 3.1.3 to 3.1.5 in /td.server in the server-npm-security group across 1 directory by @dependabot[bot] in #1619
- Bump the server-npm-security group across 1 directory with 2 updates by @dependabot[bot] in #1628
- Bump aquasecurity/trivy-action from 0.35.0 to 0.36.0 in /.github/workflows in the update-version group by @dependabot[bot] in #1624
- Harden TM-BOM import / merge by @jgadsden in #1626
- Fix inconsistent state between cell data and name for component labels by @lreading in #1630
- add vue key to graph properties to prevent stale cell references by @lreading in #1633
- Release/v2.6.2 by @lreading in #1634
Full Changelog: v2.6.1...v2.6.2
Web application
The web application is provided as a .tar.gz file or a .zip file
along with SBOMs.
Docker containers
The docker images are available from Dockerhub:
- For X86 platforms pull the image: docker pull --platform linux/x86_64 owasp/threat-dragon:v2.6.2
- Alternatively for ARM64 platforms: docker pull --platform linux/arm64 owasp/threat-dragon:v2.6.2-arm64
Desktop version
──────────────────────────────────┬─────────────────────────────────────┬───────────────────────────
Platform │File │SHA512
──────────────────────────────────┼─────────────────────────────────────┼───────────────────────────
Windows NSIS installer │Threat-Dragon-ng-Setup-2.6.2.exe │checksum.yml
──────────────────────────────────┼─────────────────────────────────────┼───────────────────────────
MacOS installer x86 │Threat-Dragon-ng-2.6.2.dmg │checksum-mac.yml
──────────────────────────────────┼─────────────────────────────────────┼───────────────────────────
MacOS installer ARM64 │Threat-Dragon-ng-2.6.2-arm64.dmg │checksum-mac-arm64.yml
──────────────────────────────────┼─────────────────────────────────────┼───────────────────────────
Linux AppImage │Threat-Dragon-ng-2.6.2.AppImage │checksum-linux.yml
──────────────────────────────────┼─────────────────────────────────────┼───────────────────────────
Debian package, AMD64 │threat-dragon_2.6.2_amd64.deb │
──────────────────────────────────┼─────────────────────────────────────┼───────────────────────────
Redhat package manager, X86 64 bit│threat-dragon-2.6.2.x86_64.rpm │
──────────────────────────────────┼─────────────────────────────────────┼───────────────────────────
Linux Snap │direct from Snapcraft │
──────────────────────────────────┴─────────────────────────────────────┴───────────────────────────
Software Bill of Materials
SBOMs are provided for the server and for the frontend application including desktop.
Installing on Windows
Download and run the NSIS executable. Depending on the security applied in your Windows system,
you may need to open the file properties and check the 'Unblock' checkbox to allow Threat Dragon to run
Installing on MacOS
To install on MacOS systems download and run the disk image .dmg file , either the x86 or arm64 version.
Note that the MacOS .zip files are used for automatic updates, and are not recommended for installation.
Installing on Linux
Select the method that is most convenient for your distribution of Linux:
- AppImage can be used for most Linux distributions and hardware platforms
- a Snap image is available from the official Snapcraft distribution
- .rpm for Red Hat Linux, AIX, CentOS, Fedora
- .deb for debian based Linux such as Ubuntu, Trisqel and Debian itself
