Add 11.19 release notes (#335)

* Add 11.19 release notes New week. New release Signed-off-by: Tim Smith <[email protected]> * Typo Signed-off-by: Tim Smith <[email protected]> * Add Mvc Signed-off-by: Tim Smith <[email protected]> * Fix typo Signed-off-by: Tim Smith <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Tim Smith <[email protected]> * Pull in the updated gh fields Signed-off-by: Tim Smith <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> * Update releases/2024-08-27-mondoo-11.19-is-out.md Co-authored-by: Letha <[email protected]> --------- Signed-off-by: Tim Smith <[email protected]> Co-authored-by: Letha <[email protected]>
mondoohq · Aug 28, 2024 · 2e2a217 · 2e2a217
1 parent 2e7e9ed
commit 2e2a217
Show file tree

Hide file tree

Showing 5 changed files with 99 additions and 10 deletions.
diff --git a/.github/actions/spelling/expect.txt b/.github/actions/spelling/expect.txt
@@ -217,6 +217,7 @@ mpim
 MSsqm
 multani
 multistring
+Mvc
 mwezi
 myemail
 mypro

diff --git a/docs/mql/resources/github-pack/github.commit.md b/docs/mql/resources/github-pack/github.commit.md
@@ -14,13 +14,15 @@ GitHub repository commit
 
 **Fields**
 
-| ID         | TYPE                          | DESCRIPTION            |
-| ---------- | ----------------------------- | ---------------------- |
-| owner      | string                        | Commit owner           |
-| repository | string                        | Commit repository      |
-| sha        | string                        | Commit SHA             |
-| url        | string                        | Commit URL             |
-| author     | [github.user](github.user.md) | Commit author          |
-| committer  | [github.user](github.user.md) | Commit committer       |
-| commit     | [git.commit](git.commit.md)   | Commit resource object |
-| stats      | dict                          | Commit stats           |
+| ID            | TYPE                          | DESCRIPTION            |
+| ------------- | ----------------------------- | ---------------------- |
+| owner         | string                        | Commit owner           |
+| repository    | string                        | Commit repository      |
+| sha           | string                        | Commit SHA             |
+| url           | string                        | Commit URL             |
+| author        | [github.user](github.user.md) | Commit author          |
+| committer     | [github.user](github.user.md) | Commit committer       |
+| commit        | [git.commit](git.commit.md)   | Commit resource object |
+| stats         | dict                          | Commit stats           |
+| authoredDate  | time                          | Authored date          |
+| committedDate | time                          | Committed date         |
diff --git a/releases/2024-08-27-mondoo-11.19-is-out.md b/releases/2024-08-27-mondoo-11.19-is-out.md
@@ -0,0 +1,86 @@
+---
+slug: mondoo-11.19-is-out/
+title: Mondoo 11.19 is out!
+description: Announcing the 11.19 release of Mondoo with a new Shodan security policy, security policy updates, and more!
+authors: [tim]
+image: /img/releases/2024-08-27-mondoo-11.19-is-out/shodan.png
+tags: [release, mondoo]
+---
+
+## 🥳 Mondoo 11.19 is out! This release includes a new Shodan security policy, updates to existing security policies, and more!
+
+Get this release: [Installation Docs](https://mondoo.com/docs/cnspec/) | [Package Downloads](https://releases.mondoo.com/cnspec/) | [Docker Container](https://hub.docker.com/r/mondoo/cnspec)
+
+---
+
+## 🎉 NEW FEATURES
+
+### New Mondoo Shodan Security policy
+
+Secure critical, public-facing domains and IP addresses with the new Mondoo Shodan Security policy. It includes checks to identify open ports and vulnerabilities as reported by the Shodan network scanning service.
+
+![Shodan policy](/img/releases/2024-08-27-mondoo-11.19-is-out/shodan.png)
+
+## 🧹 IMPROVEMENTS
+
+### Risk summaries for vendor advisories
+
+Better understand the criticality of vendor advisories with new score summaries. Advisories now include an overall risk score, taking into account blast radius and Mondoo-identified risk factors.
+
+![Vendor Advisory summary](/img/releases/2024-08-27-mondoo-11.19-is-out/advisory.png)
+
+### Vulnerability detection on Windows Enterprise multi-session
+
+Mondoo now includes vulnerability detection on Windows 10/11 Enterprise multi-session editions.
+
+### Compliance data in exports
+
+Data exports now include compliance control references, so you can feed compliance evidence collected by Mondoo into external data analytics systems.
+
+### Expanded security policies
+
+Secure your ever growing fleet of assets with new and expanded policies:
+
+- Mondoo HTTP Security policy now includes checks to ensure Server, X-AspNetMvc-Version, X-AspNet-Version, X-Powered-By, and Public-Key-Pins HTTP headers are not set.
+- CIS Azure Foundations benchmark policy includes 8 new checks as well as filter and query improvements.
+- Mondoo Endpoint Detection and Response (EDR) policy now includes support for Cortex XDR.
+- AWS Operational Best Practices policy includes improved S3 bucket permission checks.
+
+### New console audit events
+
+Keep tabs on changes made to your Mondoo organization and spaces with improved audit logging. New events recorded in the Mondoo Console audit log include:
+
+- Policies or frameworks enabled
+- Policies or frameworks disabled
+- Policies or frameworks put in preview
+- Risk factor configuration changes
+- Integrations created
+- Integrations deleted
+- Space settings modified
+- Registration tokens created
+- API tokens created
+- Compliance reports generated
+- Custom policy or framework uploads
+
+### Expanded query packs
+
+Collect important asset inventory data with new and expanded query packs:
+
+- macOS Inventory Pack now collects system extensions information.
+- Shodan inventory pack now collects DNS NS records, subdomains, and domain tag information.
+- There's a new Event Log Collector for NTLMv1 query pack.
+- We added the Event Log Collector for SMBv1 query pack.
+
+### Resource updates
+
+#### github.commit
+
+- New `authoredDate` field
+- New `committedDate` field
+
+## 🐛 BUG FIXES AND UPDATES
+
+- Add custom icons in the registry for AlmaLinux, BSI, Oracle Linux, Rocky Linux, and Arista.
+- Improve the consistency of table score headings throughout the console.
+- Improve descriptions in multiple CIS benchmark policies.
+- Improve handling of expired registration tokens in cnquery and cnspec.
diff --git a/static/img/releases/2024-08-27-mondoo-11.19-is-out/advisory.png b/static/img/releases/2024-08-27-mondoo-11.19-is-out/advisory.png
diff --git a/static/img/releases/2024-08-27-mondoo-11.19-is-out/shodan.png b/static/img/releases/2024-08-27-mondoo-11.19-is-out/shodan.png
-Original file line number
+Diff line change
@@ Expand Up / @@ -217,6 +217,7 @@ mpim @@
     MSsqm
     multani
     multistring
+    Mvc
     mwezi
     myemail
     mypro
@@ Expand Down @@