Release Date: 5 March, 2025.

## Improvements

- Updated the group's resource to use the `getent` utility ([#7284](https://github.com/inspec/inspec/pull/7284)).

  Updated the `groups` resource to retrieve group information using the `getent` utility instead of directly reading from the `/etc/group` file. This resolves failures when groups exist but are not listed in the `/etc/group` file.

## CVEs

- Upgraded Rack from 2.2.9 to 2.2.11 to address [CVE-2025-25184](https://nvd.nist.gov/vuln/detail/CVE-2025-25184). ([#7316](https://github.com/inspec/inspec/pull/7316))
- Updated train-winrm from 0.2 to 0.2.17 to address [CVE-2024-49761](https://nvd.nist.gov/vuln/detail/CVE-2024-49761). ([#7296](https://github.com/inspec/inspec/pull/7296))

## Bug Fixes

- Fixed an issue in the `postgres_session` resource for special characters in passwords ([#7276](https://github.com/inspec/inspec/pull/7276)).
  
  Formatted and encoded the password variable for `postgres_session` to avoid breaking the connection string.