BP-2735: Release notes (2026-07-07)#333
Conversation
|
Important Review skippedAuto reviews are disabled on base/target branches other than the default branch. Please check the settings in the CodeRabbit UI or the ⚙️ Run configurationConfiguration used: Organization UI Review profile: CHILL Plan: Pro Run ID: You can disable this status message by setting the Use the checkbox below for a quick retry:
🚥 Pre-merge checks | ✅ 5✅ Passed checks (5 passed)
✨ Finishing Touches🧪 Generate unit tests (beta)
Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out. Comment |
|
|
||
| <Update label="BloodHound" description="New Feature" tags={["Data Collection"]}> | ||
| {/*BED-6155*/} | ||
| ## ADCS ESC14 Scenario A Attack Paths |
|
|
||
| <Update label="BloodHound" description="New Feature" tags={["API"]}> | ||
| {/*BED-8608, BED-8609*/} | ||
| ## Graph ID Lookup APIs |
|
|
||
| <Update label="BloodHound" description="Enhancement" tags={["Administration"]}> | ||
| {/*BED-8189*/} | ||
| ## Updated Default Admin Email Address |
|
|
||
| <Update label="BloodHound" description="Enhancement" tags={["Zone Builder"]}> | ||
| {/*BED-8276, BED-8781*/} | ||
| ## Variable Analysis Mode |
|
|
||
| <Update label="BloodHound" description="Enhancement" tags={["Zone Builder"]}> | ||
| {/*BED-8303, BED-7739, BED-8520*/} | ||
| ## Privilege Zone Rule Authoring Improvements |
| - Continues collection more often when single-object errors occur | ||
| - Handles deferred pipeline failures more consistently | ||
| - Reports its version to BloodHound for visibility on the **Manage Clients** page | ||
| - Uses human-readable plain-text logs by default for file and stdout output, while keeping structured JSON as an opt-in format |
StephenHinck
left a comment
There was a problem hiding this comment.
Slight tweak in verbiage
Co-authored-by: Stephen Hinck <shinck@specterops.io>
|
@coderabbitai review |
✅ Action performedReview finished.
|
There was a problem hiding this comment.
Actionable comments posted: 2
🤖 Prompt for all review comments with AI agents
Verify each finding against current code. Fix only still-valid issues, skip the
rest with a brief reason, keep changes minimal, and validate.
Inline comments:
In `@docs/resources/release-notes/2026-07-07.mdx`:
- Around line 91-93: The <Note> block is indented in a way that makes it render
as code instead of an admonition. Unindent the Note markup in the release note
content so the MDX parser treats it as a proper Note component; locate the block
by the <Note> tag in the release-notes entry and remove the extra leading
indentation around that section.
In `@docs/resources/release-notes/summary.mdx`:
- Around line 54-56: Update the release notes summary link so it points directly
to the fixed-issues heading on the target page rather than the generic
BloodHound update anchor. In the summary.mdx section with the “Fixed Issues”
text, adjust the href to use the fixed-issues anchor generated for the relevant
`<Update>` entry, taking into account Mintlify’s auto-generated heading anchors
from the `label` prop and any incrementing suffix if the label is repeated. Use
the surrounding “Fixed Issues” block and the `release-notes` link as the
location cues.
🪄 Autofix (Beta)
Fix all unresolved CodeRabbit comments on this PR:
- Push a commit to this branch (recommended)
- Create a new PR with the fixes
ℹ️ Review info
⚙️ Run configuration
Configuration used: Organization UI
Review profile: CHILL
Plan: Pro
Run ID: b8fe05d1-e5f6-4882-8888-2c76034bf407
📒 Files selected for processing (4)
docs/docs.jsondocs/manage-bloodhound/auth/users-and-roles.mdxdocs/resources/release-notes/2026-07-07.mdxdocs/resources/release-notes/summary.mdx
StephenHinck
left a comment
There was a problem hiding this comment.
left a bunch of comments - happy to peek again!
|
|
||
| This release expands ADCS attack path coverage, opens more administration workflows to auditors in read-only mode, and improves OpenHound collection resilience. Key highlights include: | ||
|
|
||
| - **New edges**: Model ADCS ESC14 Scenario A attack paths with new certificate-mapping edge coverage. |
There was a problem hiding this comment.
@JonasBK does ESC14 require a SharpHound upgrade to collect? I believe it does and we should make sure to notate as such.
|
|
||
| <Update label="BloodHound" description="New Feature" tags={["Data Collection"]}> | ||
| {/*BED-6155*/} | ||
| ## ADCS ESC14 Scenario A Attack Paths |
There was a problem hiding this comment.
Add a note that new SHarpHound is required for this
There was a problem hiding this comment.
New? I was told we're not doing a SharpHound release this cycle.
Co-authored-by: Stephen Hinck <shinck@specterops.io>
Purpose
This pull request (PR) adds release notes for the v9.4.0 BloodHound release cycle to the release integration branch, which includes:
No release for:
There are several related PRs for supporting documentation that also need to be reviewed and merged separately to ensure alignment with release notes:
Staging
Summary by CodeRabbit
New Features
Enhancements
Bug Fixes