Skip to content

Commit

Permalink
Add 11.37 release notes
Browse files Browse the repository at this point in the history 
New week. New release

Signed-off-by: Tim Smith <[email protected]>
  • Loading branch information
@tas50
tas50 committed Jan 14, 2025
1 parent 5e11281 commit 7cbbdbb
Show file tree
Hide file tree
Showing 12 changed files with 174 additions and 63 deletions.
1 change: 1 addition & 0 deletions .github/actions/spelling/expect.txt
View file
Original file line number Diff line number Diff line change
Expand Up @@ -331,6 +331,7 @@ sqlserver
sqlservice
srvsvc
stdevel
storageservice
Stupakov
sudolog
suki
Expand Down
17 changes: 9 additions & 8 deletions docs/mql/resources/aws-pack/aws.iam.instanceprofile.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -18,11 +18,12 @@ AWS IAM instance profile

**Fields**

| ID | TYPE | DESCRIPTION |
| ------------------- | ----------------------------------------- | ------------------------------------------ |
| arn | string | ARN of the instance profile |
| createDate | time | Time when the instance profile was created |
| instanceProfileId | string | ID of the IAM instance profile |
| instanceProfileName | string | Name of the instance profile |
| tags | map[string]string | Tags for the instance profile |
| iamRoles | &#91;&#93;[aws.iam.role](aws.iam.role.md) | role attached to the instanceProfile |
| ID | TYPE | DESCRIPTION |
| ------------------- | ----------------------------------------- | --------------------------------------------------------------------- |
| arn | string | ARN of the instance profile |
| createDate | time | Time when the instance profile was created: deprecated, use createdAt |
| createdAt | time | Time when the instance profile was created |
| instanceProfileId | string | ID of the IAM instance profile |
| instanceProfileName | string | Name of the instance profile |
| tags | map[string]string | Tags for the instance profile |
| iamRoles | &#91;&#93;[aws.iam.role](aws.iam.role.md) | role attached to the instanceProfile |
3 changes: 2 additions & 1 deletion docs/mql/resources/aws-pack/aws.iam.policy.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -29,7 +29,8 @@ The `aws.iam.policy` resource provides fields for assessing the configuration of
| description | string | Description of the policy |
| isAttachable | bool | Whether the policy can be attached |
| attachmentCount | int | Number of principal entities (users, groups, and roles) that the policy is attached to |
| createDate | time | Time when the policy was created |
| createDate | time | Time when the policy was created: deprecated, use createdAt |
| createdAt | time | Time when the policy was created |
| updateDate | time | Time when the policy was updated |
| scope | string | Scope of the policy |
| versions | &#91;&#93;[aws.iam.policyversion](aws.iam.policyversion.md) | List of versions for the policy |
Expand Down
15 changes: 8 additions & 7 deletions docs/mql/resources/aws-pack/aws.iam.policyversion.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -20,10 +20,11 @@ The `aws.iam.policyversion` resource provides fields for assessing the metadata

**Fields**

| ID | TYPE | DESCRIPTION |
| ---------------- | ------ | -------------------------------------------------- |
| arn | string | ARN of the policy version |
| versionId | string | Version ID |
| isDefaultVersion | bool | Whether this version is the policy default version |
| document | dict | JSON statements for this policy version |
| createDate | time | Time when this policy version was created |
| ID | TYPE | DESCRIPTION |
| ---------------- | ------ | -------------------------------------------------------------------- |
| arn | string | ARN of the policy version |
| versionId | string | Version ID |
| isDefaultVersion | bool | Whether this version is the policy default version |
| document | dict | JSON statements for this policy version |
| createDate | time | Time when this policy version was created: deprecated, use createdAt |
| createdAt | time | Time when this policy version was created |
3 changes: 2 additions & 1 deletion docs/mql/resources/aws-pack/aws.iam.role.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -27,5 +27,6 @@ The `aws.iam.role` resource provides fields for assessing the configuration of i
| name | string | Name of the role |
| description | string | Description of the role |
| tags | map[string]string | Tags associated with the role |
| createDate | time | Time when the role was created |
| createDate | time | Time when the role was created: deprecated, use createdAt |
| createdAt | time | Time when the role was created |
| assumeRolePolicyDocument | dict | Policy document that grants an entity permission to assume the role |
3 changes: 2 additions & 1 deletion docs/mql/resources/aws-pack/aws.iam.user.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -25,7 +25,8 @@ The `aws.iam.user` resource provides fields for assessing the configuration of i
| arn | string | ARN of the IAM user |
| id | string | ID of the IAM user |
| name | string | Name of the user |
| createDate | time | Time when user was created |
| createDate | time | Time when user was created: deprecated, use createdAt |
| createdAt | time | Time when user was created |
| passwordLastUsed | time | Time when password was last used |
| tags | map[string]string | Tags for the IAM user |
| policies | &#91;&#93;string | List of inline policies attached to the user |
Expand Down
51 changes: 26 additions & 25 deletions docs/mql/resources/aws-pack/aws.iam.usercredentialreportentry.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -24,28 +24,29 @@ aws.iam.usercredentialreportentry(properties map[string]string)

**Fields**

| ID | TYPE | DESCRIPTION |
| ------------------------- | ------------------------------- | -------------------------------------------- |
| properties | map[string]string | properties on the IAM user credential report |
| arn | string | ARN for the credential report |
| accessKey1Active | bool | Whether the access key is active |
| accessKey1LastRotated | time | Time when key was last rotated |
| accessKey1LastUsedDate | time | Time when key was last used |
| accessKey1LastUsedRegion | string | Region in which the key was last used |
| accessKey1LastUsedService | string | Service that last used the key |
| accessKey2Active | bool | Whether the access key is active |
| accessKey2LastRotated | time | Time when key was last rotated |
| accessKey2LastUsedDate | time | Time when key was last used |
| accessKey2LastUsedRegion | string | Region in which the key was last used |
| accessKey2LastUsedService | string | Service that last used the key |
| cert1Active | bool | Whether the cert is active |
| cert1LastRotated | time | Time when the cert was last rotated |
| cert2Active | bool | Whether the cert is active |
| cert2LastRotated | time | Time when the cert was last rotated |
| mfaActive | bool | Whether MFA is active in the account |
| passwordEnabled | bool | Whether passwords are enabled |
| passwordLastChanged | time | Time when the password was last changed |
| passwordLastUsed | time | Time when the password was last used |
| passwordNextRotation | time | Next time when the password should rotate |
| user | [aws.iam.user](aws.iam.user.md) | IAM user |
| userCreationTime | time | Time when user was created |
| ID | TYPE | DESCRIPTION |
| ------------------------- | ------------------------------- | ----------------------------------------------------- |
| properties | map[string]string | properties on the IAM user credential report |
| arn | string | ARN for the credential report |
| accessKey1Active | bool | Whether the access key is active |
| accessKey1LastRotated | time | Time when key was last rotated |
| accessKey1LastUsedDate | time | Time when key was last used |
| accessKey1LastUsedRegion | string | Region in which the key was last used |
| accessKey1LastUsedService | string | Service that last used the key |
| accessKey2Active | bool | Whether the access key is active |
| accessKey2LastRotated | time | Time when key was last rotated |
| accessKey2LastUsedDate | time | Time when key was last used |
| accessKey2LastUsedRegion | string | Region in which the key was last used |
| accessKey2LastUsedService | string | Service that last used the key |
| cert1Active | bool | Whether the cert is active |
| cert1LastRotated | time | Time when the cert was last rotated |
| cert2Active | bool | Whether the cert is active |
| cert2LastRotated | time | Time when the cert was last rotated |
| mfaActive | bool | Whether MFA is active in the account |
| passwordEnabled | bool | Whether passwords are enabled |
| passwordLastChanged | time | Time when the password was last changed |
| passwordLastUsed | time | Time when the password was last used |
| passwordNextRotation | time | Next time when the password should rotate |
| user | [aws.iam.user](aws.iam.user.md) | IAM user |
| userCreationTime | time | Time when user was created: deprecated, use createdAt |
| createdAt | time | Time when user was created |
1 change: 1 addition & 0 deletions docs/mql/resources/gcp-pack/gcp.project.storageservice.bucket.md
View file
Original file line number Diff line number Diff line change
Expand Up @@ -33,6 +33,7 @@ Google Cloud (GCP) Storage bucket
| iamPolicy | &#91;&#93;[gcp.resourcemanager.binding](gcp.resourcemanager.binding.md) | IAM policy |
| iamConfiguration | dict | IAM configuration |
| retentionPolicy | dict | Retention policy |
| encryption | dict | Encryption |

**References**

Expand Down
2 changes: 1 addition & 1 deletion package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -59,7 +59,7 @@
},
"devDependencies": {
"@docusaurus/tsconfig": "^3.7.0",
"@types/react": "^19.0.6",
"@types/react": "^19.0.7",
"@types/react-helmet": "^6.1.11",
"@types/react-router-dom": "^5.3.3",
"prettier": "3.4.2",
Expand Down
103 changes: 103 additions & 0 deletions releases/2025-01-14-mondoo-11.37-is-out.md
View file
Original file line number Diff line number Diff line change
@@ -0,0 +1,103 @@
---
slug: mondoo-11.37-is-out/
title: Mondoo 11.37 is out!
description: Announcing the 11.37 release of Mondoo with FOO, BAR, BAZ, and more!

Check warning on line 4 in releases/2025-01-14-mondoo-11.37-is-out.md

View workflow job for this annotation

GitHub Actions / Run spell check 

`BAZ` is not a recognized word. (unrecognized-spelling)
authors: [tim]
image: DEETS

Check warning on line 6 in releases/2025-01-14-mondoo-11.37-is-out.md

View workflow job for this annotation

GitHub Actions / Run spell check 

`DEETS` is not a recognized word. (unrecognized-spelling)
tags: [release, mondoo]
---

## 🥳 Mondoo 11.37 is out! This release includes FOO, BAR, BAZ, and more!

Check warning on line 10 in releases/2025-01-14-mondoo-11.37-is-out.md

View workflow job for this annotation

GitHub Actions / Run spell check 

`BAZ` is not a recognized word. (unrecognized-spelling)

Get this release: [Installation Docs](https://mondoo.com/docs/cnspec/) | [Package Downloads](https://releases.mondoo.com/cnspec/) | [Docker Container](https://hub.docker.com/r/mondoo/cnspec)

---

## 🎉 NEW FEATURES

### SentinelOne vulnerability integration

DEETS

Check warning on line 20 in releases/2025-01-14-mondoo-11.37-is-out.md

View workflow job for this annotation

GitHub Actions / Run spell check 

`DEETS` is not a recognized word. (unrecognized-spelling)

### Create workspaces from labels/tags, annotations, or technology

https://github.com/mondoohq/console/pull/5392

### Search for assets and findings in workspaces

DEETS

Check warning on line 28 in releases/2025-01-14-mondoo-11.37-is-out.md

View workflow job for this annotation

GitHub Actions / Run spell check 

`DEETS` is not a recognized word. (unrecognized-spelling)

## 🧹 IMPROVEMENTS

### AWS RDS Cluster support

DEETS:

Check warning on line 34 in releases/2025-01-14-mondoo-11.37-is-out.md

View workflow job for this annotation

GitHub Actions / Run spell check 

`DEETS` is not a recognized word. (unrecognized-spelling)

- Atlas
- Scanning
- Asset overview

### Improved CIS Azure Foundations benchmark checks

DEETS from Manuel on this one

Check warning on line 42 in releases/2025-01-14-mondoo-11.37-is-out.md

View workflow job for this annotation

GitHub Actions / Run spell check 

`DEETS` is not a recognized word. (unrecognized-spelling)

https://github.com/mondoohq/cnspec-enterprise-policies/pull/1184

### Quickly find integrations

Find the right integration with less scrolling. The add integration page now supports search based on integration categories in addition to integration names.

![Integration filtering with a category](/img/releases/2025-01-14-mondoo-11.37-is-out/integration_filtering.png)

### Improved asset overview information

DEETS from:

- Link to integrations from configuration overview: https://github.com/mondoohq/console/pull/5401
- Display scan times in scan overview: https://github.com/mondoohq/console/pull/5398
- Copy values from asset data: https://github.com/mondoohq/console/pull/5397

### Resource updates

#### aws.iam.instanceProfile

- Deprecate `createDate` in favor of a new `createdAt` field

#### aws.iam.policy

- Deprecate `createDate` in favor of a new `createdAt` field

#### aws.iam.policyversion

- Deprecate `createDate` in favor of a new `createdAt` field

#### aws.iam.role

- Deprecate `createDate` in favor of a new `createdAt` field

#### aws.iam.user

- Deprecate `createDate` in favor of a new `createdAt` field

#### aws.iam.usercredentialreportentry

- Deprecate `createDate` in favor of a new `createdAt` field

#### gcp.project.storageservice.bucket

- New `encryption` field

#### macos.alf

- Support macOS Sequoia (15) assets

## 🐛 BUG FIXES AND UPDATES

- Categorize Nmap assets as "Domains and Hosts" on the Assets page.
- Improve performance of compliance report generation. https://github.com/mondoohq/server/pull/9900
- Fix an `invalid reporting job` error when running certain policies.
- Fix display of score boxes on CVE and Advisory pages. https://github.com/mondoohq/console/pull/5336
- Show assets link on AWS integrations.
- Allow creating workspaces with the asset kind value of "Virtual Machine".
- Improve reliability of some CIS/BSI Windows policy checks on non-English systems.
- Improve fetching of available AWS regions.
0 ...oo-11.36-is-out/integration_filtering.png → ...oo-11.37-is-out/integration_filtering.png
View file
File renamed without changes
Loading

0 comments on commit 7cbbdbb

Please sign in to comment.