Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
New week. New release Signed-off-by: Tim Smith <[email protected]>
- Loading branch information
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,84 @@ | ||
| --- | ||
| slug: mondoo-11.15-is-out/ | ||
| title: Mondoo 11.15 is out! | ||
| description: Announcing the 11.15 release of Mondoo, with FOO, BAR, BAZ, and more! | ||
| author: Tim Smith | ||
| author_title: Mondoo Core Team | ||
| author_url: https://github.com/tas50 | ||
| image: /img/featured_img/release-feature.jpg | ||
| tags: [release, mondoo] | ||
| --- | ||
|
|
||
| ## 🥳 Mondoo 11.15 is out! This release includes FOO, BAR, BAZ, and more! | ||
|
|
||
| Get this release: [Installation Docs](https://mondoo.com/docs/cnspec/) | [Package Downloads](https://releases.mondoo.com/cnspec/) | [Docker Container](https://hub.docker.com/r/mondoo/cnspec) | ||
|
|
||
| --- | ||
|
|
||
| ## 🎉 NEW FEATURES | ||
|
|
||
| ### CIS benchmarks for GitLab security | ||
|
|
||
| DEETS | ||
|
|
||
| ### New compliance framework experience | ||
|
|
||
| DEETS | ||
|
|
||
| ## 🧹 IMPROVEMENTS | ||
|
|
||
| ### Focus Kubernetes scanning on top-level resources | ||
|
|
||
| DEETS | ||
|
|
||
| ### CIS RHEL 9 benchmark policies 2.0 | ||
|
|
||
| - AlmaLinux | ||
| - Oracle Linux | ||
| - Red Hat Enterprise Linux | ||
| - Rocky Linux | ||
|
|
||
| DEETS | ||
|
|
||
| ### Linux Mint 22 CVE/EOL detection | ||
|
|
||
| DEETS | ||
|
|
||
| ### Improved data exports | ||
|
|
||
| https://github.com/mondoohq/server/pull/8674 | ||
|
|
||
| ### Resource updates | ||
|
|
||
| #### aws.eks.cluster | ||
|
|
||
| - Add new `supportType` field | ||
| - Add new `authenticationMode` field | ||
|
|
||
| #### aws.rds.dbcluster | ||
|
|
||
| - Add new `engineLifecycleSupport` field | ||
|
|
||
| #### aws.rds.dbinstance | ||
|
|
||
| - Add new `engineLifecycleSupport` field | ||
|
|
||
| ## 🐛 BUG FIXES AND UPDATES | ||
|
|
||
| - Fix incorrect policy scoring when banded scoring is selected. | ||
| - Fix passing the `--token` failure with the Shodan provider. | ||
| - Fix the display of organizations with zero spaces on the organization's dashboard. | ||
| - Don't apply CIS Windows desktop benchmark policies to Windows Server assets. | ||
| - Fix `Ensure password hashing algorithm is SHA-512` check in the CIS Distribution Independant Linux benchmark policy. | ||
| - Improve the application of CIS Linux policies on container assets. | ||
| - Fix failures scanning Atlassian Confluence assets. | ||
| - Fix an error when fetching `createdAt` in the `aws.ec2.keypair` resource. | ||
| - Fix a failure fetching `approvalSettings` in the `gitlab.project` resource. | ||
| - Fix broken links in Jira issues created with cases. | ||
| - Update Debian 11 and Ubuntu 24.04 EOL dates to match the latest vendor published dates. | ||
| - Ensure that AWS EC2 instance name is always set as asset name if present. | ||
| - Fix reports retrieval for Google Workspace | ||
| - Fix fetching of project approval settings in GitLab. | ||
| - Add debug level logging for retries in the GitHub provider. | ||
| - Rework CIS Google Workspace policy queries to improve output. | ||
| - Add descriptions to the CIS Google Workspace policies. | ||
