v2.8.0

What's Changed

• Add CVE services Mermaid architecture diagrams by @taladrane in #1690
• Resolves #1688 and #1769, Schema Validation and Dropped Keys on Org/User POST/PUT by @afoote-mitre in #1770
• Resolves issue #1785, Updates utility and schema structures to properly respect empty arrays in request payloads. by @david-rocca in #1792
• Resolves issue #1784 , Fixes false positives in joint approval change detection due to Date vs String comparison. by @david-rocca in #1793
• Resolves issue #1775, Fix vulnerability where the inUse lock is stripped during organization updates. by @david-rocca in #1794
• Various Fixes by @david-rocca in #1797
• WIP: New User Registry Fields by @david-rocca in #1790
• Dr 07052026 fixes by @david-rocca in #1804

New Contributors

• @taladrane made their first contribution in #1690

Full Changelog: v2.7.5...v2.8.0

v2.6.4

What's Changed

• Hotfix to adjust database interactions prod - v2.6.4 by @jdaigneau5 in #1803

Full Changelog: v2.6.3...v2.6.4

v2.6.3

What's Changed

• Updating database configurations by @jdaigneau5 in #1788

Full Changelog: v2.6.2...v2.6.3

v2.7.5

What's Changed

• Resolves issue #1748, Adds quota bounds to Org JSON schemas to prevent MongoDB constraint errors. by @david-rocca in #1750
• Resolves issue #1697, Ensures that the registry origin endpoint consistently returns pagination metadata on its responses. by @david-rocca in #1752
• Resolves issues #1756, #1757, #1758, #1712, Enhances user/org update safety and conversation visibility boundaries. by @david-rocca in #1759
• Resolves issue #1754, Fixes an issue where updating a user incorrectly clears the user's time.created timestamp. by @david-rocca in #1760
• V2.7.5 feature by @david-rocca in #1761
• Updating Staging to v2.7.5 by @david-rocca in #1762

Full Changelog: v2.7.4...v2.7.5

v2.7.4

What's Changed

• Resolves issue #1737, Stopped a user from passing in secret in update user. by @david-rocca in #1741
• Resolves issue #1731, #1733 Fixes Mongoose document replacement failures during user updates and appropriately routes inactive users as unauthenticated. by @david-rocca in #1743
• V2.7.4 Bug Fixes by @david-rocca in #1742
• Updating Test to v2.7.4 by @david-rocca in #1746

Full Changelog: v2.7.3...v2.7.4

v2.7.3

What's Changed

• Update Staging with version 2.7.3 - getAllOrgs DocumentDb bug fix. by @david-rocca in #1726

Full Changelog: v2.7.2...v2.7.3

v2.7.2

What's Changed

• Resolves issue #1717 , Replace old CNA fields with new generic partner fields across organization APIs. by @david-rocca in #1718
• v2.7.2 - Renaming some fields & Reports_to and Oversees updates by @david-rocca in #1725

Full Changelog: v2.7.1...v2.7.2

v2.7.1

What's Changed

• Fixing read after write in baseOrgRepository by @david-rocca in #1675
• If the user is a secretariat, they will be able to see the visibility by @david-rocca in #1693
• locks down coversations by @david-rocca in #1695
• #1677 - Fixing an issue were ADMIN was not fully removed by @david-rocca in #1686
• Closes: #1685 and #1687 by @david-rocca in #1689
• Causal Consistency clean up by @david-rocca in #1676
• #1683 hard_quota is now a Joint Approval by @david-rocca in #1691
• Resolves issues #1669 and #1668 by @emathew5 in #1696
• #1679 - Fix incorrect spelling of charter_or_scope by @david-rocca in #1698
• resolves #1664 by @david-rocca in #1703
• Resolves #1680 and #1681 by @david-rocca in #1701
• Fixing all NPM flagged issues by @david-rocca in #1702
• Conversation Edits by @cberger8 in #1692
• Removing the extra fields, fixing populate.js by @david-rocca in #1710

Full Changelog: v2.6.2...v2.7.1

v2.6.2

What's Changed

• Resolves #1629: Prevents ambiguous timestamps in ADP containers
• Upgrades to node v24

Full Changelog: v2.6.1...v2.6.2

v2.6.1

What's Changed

• Resolves #1626 Formats timeline.time values to yyyy-MM-ddTHH:mm:ss.sssZ (ISO-8601, UTC)
• Resolves #1623 Prevents invalid timeline.time values by @jdaigneau5 in #1625

Full Changelog: v2.6.0...v2.6.1