Tasks

• MongoDB Sanitizer Text Package Update: Updated the MongoDB sanitizer to address a vulnerability in the text package, enhancing security by moving to a version that resolves CVE-2022-32149. This change ensures the safety and integrity of text processing within our services. 
• MongoDB Sanitizer Busybox Security Update: Fixed a critical security issue by updating the busybox package in the MongoDB sanitizer to version 1.4.2, addressing CVE-2022-48174. This update helps to maintain the security standards of our Docker environments. 
• Crypto-JS Library Vulnerability Fix: Upgraded the crypto-js library used in the console from version 3.1.9-1 to 4.2.0 to mitigate known vulnerabilities, specifically addressing CVE-2023-46233. This upgrade ensures that our cryptographic practices remain secure and up to date.

Bugs

• Console Loop Due to Unsupported Scopes: Fixed an issue where new console pages were stuck in a loop due to unsupported scopes not being validated. This fix involves adding necessary validations for supported roles, enhancing reliability and user experience.
• UI Consistency in Log and Metric Access Buttons: Corrected the font color inconsistency in the 'Go to Logs' and 'Go to Metrics' buttons across different console versions to match the light gray specified in the design mockups, ensuring UI consistency and clarity.
• Race Condition in Database Restore Operations: Addressed a race condition that could cause database restore operations to fail, improving the robustness and reliability of our database services by ensuring proper synchronization during restores.