Added security enhancements and improvements to Vehicle Insite reports.
Enhancements and Improvements
(This section describes enhancements and improvements added for Rekor Discover.)
- Optimized queries in Vehicle Insite Speed Segments to improve performance and reduce long execution times.
- Security enhancements:
- Added image upload sanitization: restricts uploads to common image file types and mitigated HTML injection risks per penetration test findings.
-
- Improved login failure messaging to prevent information disclosure.
- Added more rate limiting improvements for login attempts, password resets, and related actions to mitigate brute-force attacks.
- Added role-based access control enforcement: strengthened user role enforcement on tenants and permissions to to mitigate penetration test findings.
Known Issues
(This section describes fixes, known issues, and suggested work arounds for Rekor Discover.)
- Resolved an issue where charts would continuously spin in live Volume Charts.
- Fixed a time zone discrepancy affecting report accuracy in the Vehicle Insite Year over Year Volume Report.