[docs] march pro changelog, Iriusrisk Connector documentation (#14499)

* update changelog 2.56.1

* add iriusrisk connector documentation

* edit comparison.md

Author: paulOsinski

docs/content/import_data/import_intro/comparison.md

@@ -28,7 +28,7 @@ There are two main ways that DefectDojo can upload Finding reports.
 
 |  | **UI Import** | **API** | **Connectors** <span style="background-color:rgba(242, 86, 29, 0.3)">(Pro)</span> | **Smart Upload**  <span style="background-color:rgba(242, 86, 29, 0.3)">(Pro)</span>|
 | --- | --- | --- | --- | --- |
-| **Supported Scan Types** | All: see [Supported Tools](/supported_tools/) | All: see [Supported Tools](/supported_tools/) | Akamai API Security, Anchore, AWS Security Hub, BurpSuite, Checkmarx ONE, Dependency-Track, JFrog Xray, Probely, Semgrep, SonarQube, Snyk, Tenable, Wiz | Nexpose, NMap, OpenVas, Qualys, Tenable |
+| **Supported Scan Types** | All: see [Supported Tools](/supported_tools/) | All: see [Supported Tools](/supported_tools/) | Akamai API Security, Anchore, AWS Security Hub, BurpSuite, Checkmarx ONE, Dependency-Track, IriusRisk, JFrog Xray, Probely, Semgrep, SonarQube, Snyk, Tenable, Wiz | Nexpose, NMap, OpenVas, Qualys, Tenable |
 | **Automation?** | Available via API: `/reimport` `/import` endpoints | Triggered from [CLI Tools](/import_data/pro/specialized_import/external_tools/) or external code | Connectors is an inherently automated feature | Available via API: `/smart_upload_import` endpoint |
 
 ### Product Hierarchy and organization

docs/content/import_data/pro/connectors/about_connectors.md

@@ -31,7 +31,8 @@ We currently support Connectors for the following tools, with more on the way:
 * **AWS Security Hub**
 * **BurpSuite**
 * **Checkmarx ONE**
-* **Dependency\-Track**
+* **Dependency-Track**
+* **IriusRisk**
 * **JFrog Xray**
 * **Probely**
 * **Semgrep**

docs/content/import_data/pro/connectors/connectors_tool_reference.md

@@ -148,6 +148,28 @@ To generate a Dependency\-Track API key:
 
 For more information, see **[Dependency\-Track Documentation](https://docs.dependencytrack.org/integrations/rest-api/)**.
 
+## **IriusRisk**
+
+The IriusRisk connector uses an API token to pull threat modeling data from your IriusRisk instance.
+
+#### Prerequisites
+
+You will need an API token from your IriusRisk account. We recommend creating a dedicated service account for DefectDojo to clearly distinguish automated activity from manual team actions.
+
+To generate an API token in IriusRisk:
+
+1. Log in to your IriusRisk instance.
+2. Navigate to your **User Profile** in the top-right menu.
+3. Select **API Token** and generate a new token.
+
+See the [IriusRisk API documentation](https://support.iriusrisk.com/hc/en-us/categories/360001148511) for more information.
+
+#### Connector Mappings
+
+1. Enter your IriusRisk instance URL in the **Location URL** field. For cloud-hosted instances this is typically `https://{your-subdomain}.iriusrisk.com`. For on-premise installations, use your instance's base URL.
+2. Enter your **API Token** in the **Secret** field.
+3. Optionally, set a **Minimum Severity** to limit which findings are imported. Findings below the selected severity will not be imported.
+
 ## **JFrog Xray**
 
 The JFrog Xray connector uses the JFrog Xray REST API to fetch vulnerability data from your Artifactory repositories. DefectDojo will discover all repositories in your JFrog instance and generate vulnerability reports via Xray, importing findings on a scheduled basis.

docs/content/releases/pro/changelog.md

@@ -10,6 +10,23 @@ Here are the release notes for **DefectDojo Pro (Cloud Version)**. These release
 
 For Open Source release notes, please see the [Releases page on GitHub](https://github.com/DefectDojo/django-DefectDojo/releases), or alternatively consult the Open Source [upgrade notes](/releases/os_upgrading/upgrading_guide/).
 
+## Mar 2026: v2.56
+
+### Mar 12, 2026: v2.56.1
+
+* **(Pro UI)** Finding Groups can now be filtered by computed status: resolved, active, or risk-accepted.
+* **(Users)** Filters selected on the Users List are now included when exporting to CSV, so your export reflects the current view.
+* **(Jira)** Basic auth failures with Jira are now surfaced as warnings, making it easier to diagnose connection issues.
+
+### Mar 5, 2026: v2.56.0
+
+* **(API)** Restricted Note Types are now accessible via the API.
+* **(Connectors)** Added **IriusRisk** connector: see [tools reference](/en/connecting_your_tools/connectors/connectors_tool_reference/) for configuration instructions.
+* **(SAML)** SAML settings now support optional group attributes, allowing configurations that don't provide group mappings to work without errors.
+* **(SMTP)** Fixed an issue where DefectDojo would attempt SMTP authentication even when no credentials were configured, which could cause email delivery failures.
+* **(Universal Parser)** The Universal Parser now falls back to `clevercsv` for non-standard or malformed CSV files, improving compatibility with edge-case scanner outputs.
+
+
 ## Feb 2026: v2.55
 
 ### Feb 26, 2026: v2.55.5
@@ -97,22 +114,22 @@ No significant UX changes.
 
 ## Nov 2025: v2.52
 
-### Nov 24, 2025: v2.52.3
+#### Nov 24, 2025: v2.52.3
 
 * **(Pro UI)** Improved error messaging for failed Imports.
 * **(Pro UI)** Added Engagement Tags column to Finding lists
 
 
-### Nov 17, 2025: v2.52.2
+#### Nov 17, 2025: v2.52.2
 
 * No significant feature changes.
 
-### Nov 10, 2025: v2.52.1
+#### Nov 10, 2025: v2.52.1
 
 * **(Pro UI)** Finding view now shows all associated Endpoints, not just Active Endpoints
 
 
-### Nov 3, 2025: v2.52.0
+#### Nov 3, 2025: v2.52.0
 
 * **(Pro UI)** In-app Contact Support form now requires a valid email address in your user profile.
 * **(Pro UI)** You can now Add Files to Findings through the Pro UI directly from Finding Lists.