Cti Stix Elevator Versions Save

Add a grouping or report to capture extra stix-package.header info

Fix functionality for --enable and --disable options

Additional fix for Hostname in SocketAddress in pattern

 - Populate name property with placeholder name if missing from STIX 1.x because it is required in STIX 2.x
    - new command line option -r
- Hostname in SocketAddress in pattern is fixed
- Revamp handling of Sightings
- Compare STIX 1.x ids in a case-insensitive way

ACS Data Marking issues

• Incorporate change to package dependency stix-edh
• Warn if ACS indetifier is invalid

- Improved processing of ACS data markings
- Handle multiple Vulnerabilites in an Exploit-Target correctly

Minor fixes to handle an empty STIX 1.x description tag, and improved processing of extensions in patterns.

This release optionally handles ACS data markings (see install doc)

• Other changes

  • added --acs option for ACS data markings
  • Fix hash_constant processing to handle defaults
  • Handle literals in missing policy code
  • Added time properties to incident extension
  • Handle malware aliases

• Changes

  • Avoid generating nested observation expressions, which are invalid
  • Handle cybox Homename object as domain-name object in STIX 2.x
  • Make sure identity created_by_ref property is set correctly
  • Correctly convert file object properties in patterns
  • Handle nested related objects in STIX 1.x Observables
  • Handle Information Source in a STIX 1.x package data marking
  • Better way to avoid infinite recursion when called get_identity
  • Add suffix 'ref(s)'' to property names for custom/extension of Incident
  • AIS data markings:
    • Insure TTP generated STIX 2.x objects and relationship objects have the correct AIS data markings
    • Change labels to handle CISA-PROPRIETARY correctly

Default spec_version when invoking the elevator programmatically (i.e., not from the command line) has been corrected to be 2.1