Skip to content

Release: 2026-07-07#341

Merged
jeff-matthews merged 9 commits into
mainfrom
release/v9.4.0
Jul 7, 2026
Merged

Release: 2026-07-07#341
jeff-matthews merged 9 commits into
mainfrom
release/v9.4.0

Conversation

@jeff-matthews

@jeff-matthews jeff-matthews commented Jul 6, 2026

Copy link
Copy Markdown
Contributor

Purpose

This pull request (PR) publishes docs for the July 7, 2026 release across the following versions:

  • BloodHound v9.4.0
  • OpenHound v0.2.2-v0.2.11
  • AzureHound (no release)
  • SharpHound (no release)

Warning

If the release date slips, it needs to be changed in the summary and detailed release notes files. It will also require changing the name of the detailed release notes file and corresponding nav entry in the docs.json file.

This includes individual PRs that have been reviewed and approved separately:

Staging

We no longer have access to staging builds on Mintlify 😒

JonasBK and others added 9 commits June 30, 2026 08:23
* ADCS ESC14 changes

* make adcsesc14 A snippet

* more snippets and code formatting

* remove quotes
* chore: update default admin email

* chore: reverted removal of principal_name prop from example config
* chore: bump openapi spec for v9.4.0

* chore: added new opengraph API endpoints
* docs: expanded openhound configuration guidance for v0.2.10

* chore: apply suggestions from CR review

* apply suggestions from ENG review

* apply suggestions from ENG review
* docs: added guidance for variable analysis mode

* style: indent callout text

* chore: apply suggestion from CR review

* style: minor copyediting
* docs: add v9.4.0 enhancements; normalize edition tagging and note formatting

* style: use root relative links for anchors

* chore: apply suggestion from CR review
* improve esc14 text

* Fix wording on certificate mapping explanation

Corrected the description of explicit and implicit certificate mapping for clarity.
* wip: initial draft of v9.4.0 release notes

* wip: added missing issues for variable analysis mode

* wip: added cypher memory limit boost for enterprise

* wip: add enterprise only tags

* wip: copyedited v9.4.0 features and enhancements

* wip: aligned v9.4.0 summary with detailed release notes

* wip: copyedited v9.4.0 fixed issues

* wip: copyedited v0.2.10 OH fixed issues

* chore: removed TODOs

* Apply suggestion from @StephenHinck

Co-authored-by: Stephen Hinck <shinck@specterops.io>

* chore: add cross refs to supporting docs; align summary with release notes

* fix: link to fixed issues

* chore: bump OH version and add a fixed issue

* docs: copyedit

* Apply suggestions from code review

Co-authored-by: Stephen Hinck <shinck@specterops.io>

* docs: copyedit

* chore: removed ADCS ESC14 edges from release notes

* chore: added openhound highlight for v9.4.0

---------

Co-authored-by: Stephen Hinck <shinck@specterops.io>
@jeff-matthews jeff-matthews self-assigned this Jul 6, 2026
@jeff-matthews jeff-matthews requested a review from slokie-so July 6, 2026 19:36
@coderabbitai

coderabbitai Bot commented Jul 6, 2026

Copy link
Copy Markdown
Contributor

Important

Review skipped

Too many files!

This PR contains 213 files, which is 63 over the limit of 150.

To get a review, narrow the scope:
• coderabbit review --type committed # exclude uncommitted changes
• coderabbit review --dir # limit to a subdirectory
• coderabbit review --base # compare against a closer base

Upgrade to a paid plan to raise the limit.

⚙️ Run configuration

Configuration used: Organization UI

Review profile: CHILL

Plan: Pro

Run ID: 92bb0d3a-f90e-43d4-8494-9839e3ac1791

📥 Commits

Reviewing files that changed from the base of the PR and between 3c67c3c and 7acdd76.

📒 Files selected for processing (213)
  • docs/analyze-data/findings/analysis.mdx
  • docs/analyze-data/privilege-zones/labels.mdx
  • docs/analyze-data/privilege-zones/overview.mdx
  • docs/analyze-data/privilege-zones/rules.mdx
  • docs/analyze-data/privilege-zones/zones.mdx
  • docs/collect-data/enterprise-collection/monitor.mdx
  • docs/docs.json
  • docs/manage-bloodhound/auth/users-and-roles.mdx
  • docs/manage-bloodhound/bh-config.mdx
  • docs/openapi.json
  • docs/opengraph/developer/api.mdx
  • docs/openhound/collectors/github/collect-data.mdx
  • docs/openhound/configuration.mdx
  • docs/openhound/enterprise.mdx
  • docs/reference/opengraph-experimental/get-node-by-graph-node-id.mdx
  • docs/reference/opengraph-experimental/get-relationship-by-graph-relationship-id.mdx
  • docs/resources/edges/abuse-tgt-delegation.mdx
  • docs/resources/edges/adcs-esc1.mdx
  • docs/resources/edges/adcs-esc10a.mdx
  • docs/resources/edges/adcs-esc10b.mdx
  • docs/resources/edges/adcs-esc13.mdx
  • docs/resources/edges/adcs-esc3.mdx
  • docs/resources/edges/adcs-esc4.mdx
  • docs/resources/edges/adcs-esc6a.mdx
  • docs/resources/edges/adcs-esc6b.mdx
  • docs/resources/edges/adcs-esc9a.mdx
  • docs/resources/edges/adcs-esc9b.mdx
  • docs/resources/edges/add-allowed-to-act.mdx
  • docs/resources/edges/add-key-credential-link.mdx
  • docs/resources/edges/add-member.mdx
  • docs/resources/edges/add-self.mdx
  • docs/resources/edges/admin-to.mdx
  • docs/resources/edges/all-extended-rights.mdx
  • docs/resources/edges/allowed-to-act.mdx
  • docs/resources/edges/allowed-to-delegate.mdx
  • docs/resources/edges/az-add-members.mdx
  • docs/resources/edges/az-add-owner.mdx
  • docs/resources/edges/az-add-secret.mdx
  • docs/resources/edges/az-aks-contributor.mdx
  • docs/resources/edges/az-app-admin.mdx
  • docs/resources/edges/az-authenticates-to.mdx
  • docs/resources/edges/az-automation-contributor.mdx
  • docs/resources/edges/az-avere-contributor.mdx
  • docs/resources/edges/az-cloud-app-admin.mdx
  • docs/resources/edges/az-contains.mdx
  • docs/resources/edges/az-contributor.mdx
  • docs/resources/edges/az-execute-command.mdx
  • docs/resources/edges/az-get-certificates.mdx
  • docs/resources/edges/az-get-keys.mdx
  • docs/resources/edges/az-get-secrets.mdx
  • docs/resources/edges/az-global-admin.mdx
  • docs/resources/edges/az-has-role.mdx
  • docs/resources/edges/az-key-vault-contributor.mdx
  • docs/resources/edges/az-logic-app-contributor.mdx
  • docs/resources/edges/az-managed-identity.mdx
  • docs/resources/edges/az-member-of.mdx
  • docs/resources/edges/az-mg-add-member.mdx
  • docs/resources/edges/az-mg-add-owner.mdx
  • docs/resources/edges/az-mg-add-secret.mdx
  • docs/resources/edges/az-mg-app-role-assignment-readwrite-all.mdx
  • docs/resources/edges/az-mg-application-readwrite-all.mdx
  • docs/resources/edges/az-mg-directory-readwrite-all.mdx
  • docs/resources/edges/az-mg-grant-app-roles.mdx
  • docs/resources/edges/az-mg-grant-role.mdx
  • docs/resources/edges/az-mg-group-member-readwrite-all.mdx
  • docs/resources/edges/az-mg-group-readwrite-all.mdx
  • docs/resources/edges/az-mg-role-management-readwrite-directory.mdx
  • docs/resources/edges/az-mg-service-principal-endpoint-readwrite-all.mdx
  • docs/resources/edges/az-node-resource-group.mdx
  • docs/resources/edges/az-owner.mdx
  • docs/resources/edges/az-owns.mdx
  • docs/resources/edges/az-privileged-auth-admin.mdx
  • docs/resources/edges/az-privileged-role-admin.mdx
  • docs/resources/edges/az-reset-password.mdx
  • docs/resources/edges/az-role-approver.mdx
  • docs/resources/edges/az-role-eligible.mdx
  • docs/resources/edges/az-runs-as.mdx
  • docs/resources/edges/az-scoped-to.mdx
  • docs/resources/edges/az-user-access-administrator.mdx
  • docs/resources/edges/az-vm-admin-login.mdx
  • docs/resources/edges/az-vm-contributor.mdx
  • docs/resources/edges/az-website-contributor.mdx
  • docs/resources/edges/can-ps-remote.mdx
  • docs/resources/edges/can-rdp.mdx
  • docs/resources/edges/claim-special-identity.mdx
  • docs/resources/edges/coerce-and-relay-ntlm-to-adcs.mdx
  • docs/resources/edges/coerce-and-relay-ntlm-to-ldap.mdx
  • docs/resources/edges/coerce-and-relay-ntlm-to-ldaps.mdx
  • docs/resources/edges/coerce-and-relay-ntlm-to-smb.mdx
  • docs/resources/edges/coerce-to-tgt.mdx
  • docs/resources/edges/contains.mdx
  • docs/resources/edges/cross-forest-trust.mdx
  • docs/resources/edges/dc-for.mdx
  • docs/resources/edges/dc-sync.mdx
  • docs/resources/edges/delegated-enrollment-agent.mdx
  • docs/resources/edges/dump-smsa-password.mdx
  • docs/resources/edges/enroll-on-behalf-of.mdx
  • docs/resources/edges/enroll.mdx
  • docs/resources/edges/enterprise-ca-for.mdx
  • docs/resources/edges/execute-dcom.mdx
  • docs/resources/edges/extended-by-policy.mdx
  • docs/resources/edges/force-change-password.mdx
  • docs/resources/edges/generic-all.mdx
  • docs/resources/edges/generic-write.mdx
  • docs/resources/edges/get-changes-all.mdx
  • docs/resources/edges/get-changes-in-filtered-set.mdx
  • docs/resources/edges/get-changes.mdx
  • docs/resources/edges/golden-cert.mdx
  • docs/resources/edges/gp-link.mdx
  • docs/resources/edges/has-session.mdx
  • docs/resources/edges/has-sid-history.mdx
  • docs/resources/edges/has-trust-keys.mdx
  • docs/resources/edges/hosts-ca-service.mdx
  • docs/resources/edges/issued-signed-by.mdx
  • docs/resources/edges/local-to-computer.mdx
  • docs/resources/edges/manage-ca.mdx
  • docs/resources/edges/manage-certificates.mdx
  • docs/resources/edges/member-of-local-group.mdx
  • docs/resources/edges/member-of.mdx
  • docs/resources/edges/nt-auth-store-for.mdx
  • docs/resources/edges/oid-group-link.mdx
  • docs/resources/edges/overview.mdx
  • docs/resources/edges/owns-limited-rights.mdx
  • docs/resources/edges/owns-raw.mdx
  • docs/resources/edges/owns.mdx
  • docs/resources/edges/protect-admin-groups.mdx
  • docs/resources/edges/published-to.mdx
  • docs/resources/edges/read-gmsa-password.mdx
  • docs/resources/edges/read-laps-password.mdx
  • docs/resources/edges/remote-interactive-logon-right.mdx
  • docs/resources/edges/root-ca-for.mdx
  • docs/resources/edges/same-forest-trust.mdx
  • docs/resources/edges/spoof-sid-history.mdx
  • docs/resources/edges/sql-admin.mdx
  • docs/resources/edges/sync-laps-password.mdx
  • docs/resources/edges/synced-to-ad-user.mdx
  • docs/resources/edges/synced-to-entra-user.mdx
  • docs/resources/edges/traversable-edges.mdx
  • docs/resources/edges/trusted-for-nt-auth.mdx
  • docs/resources/edges/write-account-restrictions.mdx
  • docs/resources/edges/write-alt-security-identities.mdx
  • docs/resources/edges/write-dacl.mdx
  • docs/resources/edges/write-gp-link.mdx
  • docs/resources/edges/write-owner-limited-rights.mdx
  • docs/resources/edges/write-owner-raw.mdx
  • docs/resources/edges/write-owner.mdx
  • docs/resources/edges/write-pki-enrollment-flag.mdx
  • docs/resources/edges/write-pki-name-flag.mdx
  • docs/resources/edges/write-public-information.mdx
  • docs/resources/edges/write-spn.mdx
  • docs/resources/nodes/ad-local-group.mdx
  • docs/resources/nodes/aiaca.mdx
  • docs/resources/nodes/az-app.mdx
  • docs/resources/nodes/az-automation-account.mdx
  • docs/resources/nodes/az-base.mdx
  • docs/resources/nodes/az-container-registry.mdx
  • docs/resources/nodes/az-device.mdx
  • docs/resources/nodes/az-federated-identity-credential.mdx
  • docs/resources/nodes/az-function-app.mdx
  • docs/resources/nodes/az-group.mdx
  • docs/resources/nodes/az-key-vault.mdx
  • docs/resources/nodes/az-logic-app.mdx
  • docs/resources/nodes/az-managed-cluster.mdx
  • docs/resources/nodes/az-management-group.mdx
  • docs/resources/nodes/az-resource-group.mdx
  • docs/resources/nodes/az-role.mdx
  • docs/resources/nodes/az-service-principal.mdx
  • docs/resources/nodes/az-subscription.mdx
  • docs/resources/nodes/az-tenant.mdx
  • docs/resources/nodes/az-user.mdx
  • docs/resources/nodes/az-vm-scale-set.mdx
  • docs/resources/nodes/az-vm.mdx
  • docs/resources/nodes/az-web-app.mdx
  • docs/resources/nodes/base.mdx
  • docs/resources/nodes/cert-template.mdx
  • docs/resources/nodes/computer.mdx
  • docs/resources/nodes/container.mdx
  • docs/resources/nodes/domain.mdx
  • docs/resources/nodes/enterprise-ca.mdx
  • docs/resources/nodes/gpo.mdx
  • docs/resources/nodes/group.mdx
  • docs/resources/nodes/issuance-policy.mdx
  • docs/resources/nodes/meta.mdx
  • docs/resources/nodes/nt-auth-store.mdx
  • docs/resources/nodes/ou.mdx
  • docs/resources/nodes/overview.mdx
  • docs/resources/nodes/root-ca.mdx
  • docs/resources/nodes/user.mdx
  • docs/resources/release-notes/2026-07-07.mdx
  • docs/resources/release-notes/summary.mdx
  • docs/snippets/edges/ad-permission-modification-opsec.mdx
  • docs/snippets/edges/adcs-certificate-issuance-opsec.mdx
  • docs/snippets/edges/adcs-dnshostname-spn-note.mdx
  • docs/snippets/edges/adcs-enrollment-identity-attributes.mdx
  • docs/snippets/edges/adcs-relationship-certificate-issuance-opsec.mdx
  • docs/snippets/edges/adcs-victim-mail-requirements.mdx
  • docs/snippets/edges/adcs-victim-session-options.mdx
  • docs/snippets/edges/alt-security-identities-esc14.mdx
  • docs/snippets/edges/azure-generic-abuse-log-opsec.mdx
  • docs/snippets/edges/gpo-abuse-tools.mdx
  • docs/snippets/edges/ntlm-coercion-methods.mdx
  • docs/snippets/edges/ntlm-inveigh-relay.mdx
  • docs/snippets/edges/ntlm-relay-detection.mdx
  • docs/snippets/edges/ntlm-relay-guidance.mdx
  • docs/snippets/edges/ntlm-webclient-coercion-note.mdx
  • docs/snippets/resources/any-node-edges-intro.mdx
  • docs/snippets/resources/azure-resource-node-properties-table.mdx
  • docs/snippets/resources/edition-pill.mdx
  • docs/snippets/resources/enterprise-edition-pill.mdx
  • docs/snippets/resources/node-edges-intro.mdx
  • docs/snippets/resources/node-properties-intro.mdx
  • docs/snippets/resources/node-properties-table-guide.mdx
  • docs/snippets/sample-data.mdx

You can disable this status message by setting the reviews.review_status to false in the CodeRabbit configuration file.

Use the checkbox below for a quick retry:

  • 🔍 Trigger review
✨ Finishing Touches
🧪 Generate unit tests (beta)
  • Create PR with unit tests
  • Commit unit tests in branch release/v9.4.0

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

Comment @coderabbitai help to get the list of available commands.

@slokie-so slokie-so left a comment

Copy link
Copy Markdown

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM

@jeff-matthews jeff-matthews marked this pull request as ready for review July 7, 2026 20:24
@jeff-matthews jeff-matthews merged commit 042edad into main Jul 7, 2026
3 checks passed
@jeff-matthews jeff-matthews deleted the release/v9.4.0 branch July 7, 2026 20:24
@github-actions github-actions Bot locked and limited conversation to collaborators Jul 7, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Labels

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants