Improvements

The issues in release mentioned under the section improvements are considered as new functionality, user experience improvements and bug fixes.

‍

Error when adding a question from the library to an evaluation - EV-309

Incidentally users experienced a 'server error' when adding a question from the library to an evaluation. This was caused by an expected pre-set title of the additional question block that should contain the question from the library. This situation shouldn't give an error, and has been fixed. Users can now add questions from the library to an evaluation without errors.

‍

Technical updates to stay up-to-date

Besides new functionality the sprints and related releases also cover so-called technical updates. These are updates not visual for the users, but guarantee the product stays up-to-date and uses actual and recent libraries and functionality. The mentioned security patches also fall under this regime, but they are mentioned specifically to inform the users what vulnerabilities have been identified and fixed. A similar approach is for the used underlying technique, but that is not mentioned in detail, unless it might have effect on the behaviour of the application.

During this release the majority of the time is spent to get the technical layer into a up-to-date shape.

‍

Added new histogram visualisation - EV-304

A new visualisation format has been added to display a histogram of the evaluation question results.

The original format showed along with the histogram information on the deviation and average.

The added format (histogram without average) only shows the histogram.

In both cases the average and deviation is shown (as a number) next to histogram .

Security

An integral part of our develop and build processes is automatic scanning for known security vulnerabilities. The vulnerabilities will be fixed based on their impact, which means that in some cases an immediate hot-fix will be applied, and in other cases the vulnerability will be fixed in the current or next Sprint (release). The security section provides an overview of the vulnerabilities mitigated.

This release mitigates the following vulnerabilities:

Due to the effort to get all technical aspect up-to-date a number of vulnerabilities have been addressed. In this case they are not mentioned, since they were reported as vulnerability in a specific context that didn't meet the technical setup of Evaluation. In this section we only report the 'positive matches' that require action to update to mitigate the mentioned CVE.

For more information on reported vulnerabilities, see the central database of vulnerabilities.

‍

‍For more guidance on configuration and setup of Evaluation, use the relevant Evaluation manual.

‍