Welcome to CloudGuard Native (Dome9) Release Notes
...
...
| Tip |
|---|
Welcome to CloudGuard Native (Dome9) Release Notes |
| Expand |
|---|
| title | Deployment October 21th, 2021 |
|---|
|
| Info |
|---|
Compliance - 12:30 UTC Type: Improvement
Description: Image Assurance - Reduce the delay between consecutive image scans.
Instead of a single image every 5 minutes, requests for image scans will now be sent from the backend to the scanning agent in batches.
Known limitations: N/A
Affected Components: | Status |
|---|
| title | Kubernetes Image Assurance |
|---|
|
|
| Info |
|---|
Compliance - 15:00 UTC Type: New Feature
Description: Admission Control GSL rule verification has been improved. Clicking on the verify button will test the rule based on the cluster's recent API calls history.
Users can now see if the rule violated any of the last 1000 events or the last 7 days of events (the smaller of the two).
Known limitations: N/A
Affected Components: | Status |
|---|
| title | Kubernetes Admission Control |
|---|
|
|
|
| Expand |
|---|
| title | Deployment October 20th, 2021 |
|---|
|
|
GCP GSuite User & GCP GSuite Group - 17:00 UTC
Type: Bug Fix
Description: Support pagination
Known limitations: N/A
Affected Components:
| Info |
|---|
GCP Service Account - 14:00 UTC Type: Bug Fix
Description: Support pagination
Case ID: DFT-1555
Known limitations: N/A
Affected Components: |
| Info |
|---|
AWS IAM SAML & AWS IAM Open ID - 10:30 UTC Type: New Entities
Case ID: DFR-1299
Description: Added support for AWS IAM SAML & AWS IAM Open ID in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance Rulesets Update - 13:15 UTC Type: Improvement Description: The first release of Azure HITRUST v9.5.0 and Source Code Assurance 1.0 rulesets, adding new rules for the Azure platform, fixing Azure and GCP rules. A complete list can be found here. Adding new CloudBots for AWS and Azure platforms. Case ID: DFR-1913
Known limitations: N/A
Affected Components: |
| Expand |
|---|
| title | Deployment October 19th, 2021 |
|---|
|
| Info |
|---|
Compliance - 12:30 UTC Type: Bug Fix
Case ID : DFT-1499
Description: Fixing a bug with AWS SSO authentication
Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance - 15:00 UTC Type: Bug Fix
Description: Fixing a bug with large email reports.
Known limitations: N/A
Affected Components: |
|
| Expand |
|---|
| title | Deployment October 17th, 2021 |
|---|
|
| Info |
|---|
Intelligence - 17:00 UTC Type: Improvement
Description: Internal Improvements.
Known limitations: N/A
Affected Components: |
|
| Expand |
|---|
| title | Deployment October 14th, 2021 |
|---|
|
| Info |
|---|
Compliance Engine - 16:00 UTC Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance Engine - 15:00 UTC Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance API - 11:30 UTC Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Posture Findings Exclusions - 10:00 UTC Type: Bug Fix
Case ID: DFT-1354
Description: Run Assessment when adding a new posture findings exclusion.
Known limitations: N/A
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment September 9 ,2021 |
|---|
|
| Info |
|---|
Compliance Rulesets Update - 16:00 UTC Type: Improvement Description: Adding new rules to the Azure best practices ruleset. A complete list can be found here.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Type: Improvement
Description: For the functions with runtimes, that have reached end of support from AWS, an ObsoleteRuntimeTask will be created to notify the user that the account has the functions with unsupported runtimes. The task will have an information how to resolve that. Please visit the link below for information on runtime end of support dates.
https://docs.aws.amazon.com/lambda/latest/dg/runtime-support-policy.html
Known limitations: N/A
Affected Components: |
| Info |
|---|
Serverless - Dot-net auto protect bug fix - 15:00 UTCType: Bug Fix
Description: Update Dot-net FSP instrumentation libraries to latest version.
FSP has been changed. the new version: 1.5.60
Known limitations: N/A
Affected Components: | Status |
|---|
| title | serverless runtime protection |
|---|
|
|
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment September 5 ,2021 |
|---|
|
| Info |
|---|
Azure Redis - 14:30 UTCType: Improvement
Description: Internal improvement in error handling. Known limitations: N/A
Affected Components: |
| Info |
|---|
Google Cloud Account - 13:30 UTCType: Improvement
Description: Added new property "ProjectNumber" in protected assets and compliance engine. Known limitations: N/A
Affected Components: |
| Info |
|---|
Type: Improvement
Description: Removed redundant property "LastPingDateTime" in protected assets and compliance engine. Known limitations: N/A
Affected Components: |
| Info |
|---|
Data Fetchers - 13:30 UTCType: Improvement
Description: Internal improvement in multiple data fetchers. Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance Rulesets Update - 10:00 UTC Type: Improvement Case ID: SR-352, SR-346
Description: Adding new rules to the Azure best practices ruleset. A complete list can be found here.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment September 02 ,2021 |
|---|
|
| Info |
|---|
Azure Redis - 18:00 UTCType: Improvement
Case ID: DFR-1431
Description: Added the following properties to Azure Redis in protected assets and compliance engine. Known limitations: N/A
Affected Components: |
| Info |
|---|
Data Fetchers Improvement - 18:00 UTCType: Improvement
Description: Internal improvement in all data fetchers
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment September 1 ,2021 |
|---|
|
| Info |
|---|
Compliance Rulesets Update - 15:00 UTC Type: Improvement Case ID: SR-281
Description: The first release of AWS CloudFormation Template ruleset.
Known limitations: N/A
Affected Components: |
| Info |
|---|
DataFetchers Improvement - 11:00 UTCType: Improvement
Description: Internal improvement in all data fetchers
Known limitations: N\A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 31 ,2021 |
|---|
|
| Info |
|---|
Findings Page - Sorting - 18:00 UTC Type: Improvement Case ID: DFR-1866
Description: Adding Values for Action field: Detect and Prevent
Known limitations: N/A
Affected Components: |
| Info |
|---|
Findings Page - Sorting - 18:00 UTC Type: Bug Fix
Description: Fix Events alphabetical sorting
Known limitations: N/A
Affected Components: |
| Info |
|---|
Findings Page - Action Buttons Improvement - 14:00 UTC Type: Improvement
Case ID: DFR-1663
Description: UI change on the Findings actions.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Dashboard - Widget Filter fix - 14:00 UTC Type: Bug Fix
Case ID: DFT-1357
Description: Fixed an issue that affected filter on dashboards widgets.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Intelligence Findings - Investigate button fix - 14:00 UTC Type: Bug Fix
Case ID: DFT-1160
Description: Fixed a bug on the UI that sent the wrong URL when investigating a finding.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance Report - Passed entities fix - 14:00 UTC Type: Bug Fix
Case ID: DFT-1325, DFT-1420
Description: Fixed a bug on the UI representation on the report.
Known limitations: N/A
Affected Components: |
| Info |
|---|
External Findings API - 7:30 UTC Type: Bug Fix
Description: Fixed a bug where External Findings API returns all types and findings, and not only external findings.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 30 ,2021 |
|---|
|
| Info |
|---|
Azure Cosmos DB - 15:00 UTCType: Improvement
Case ID: DFR-2028
Description: Added the following properties to Azure Cosmos DB in compliance engine. Known limitations: N/A
Affected Components: |
| Info |
|---|
Serverless - fix list append - 16:00 UTCType: Bug Fix
Description: Bug fix in k8s whitelist creation
Known limitations: N/A
Affected Components: |
| Info |
|---|
Serverless - profile according to callstack info - 16:00 UTCType: Improvement
Description: Add support for callstack profiling and enforcement in Kubernetes - parent process/process that generate network activity.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Serverless - intercept csharp function with harmony - 16:00 UTCType: Improvement
Description: Intercept azure function using Harmony
FSP has been changed. the new version: 1.5.59
Known limitations: N/A
Affected Components: | Status |
|---|
| title | serverless runtime protection |
|---|
|
|
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 26 ,2021 |
|---|
|
| Info |
|---|
GCP Route - 11:00 UTCType: New Entity
Case ID: DFR-1955
Description: Added support for GCP Route in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
GCP Router - 11:00 UTCType: New Entity
Case ID: DFR-1954
Description: Added support for GCP Router in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
GCP Instance Template - 11:00 UTCType: New Entity
Case ID: DFR-1953
Description: Added support for GCP Instance Template in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Azure Web App, Azure Function App - 11:00 UTCType: Improvement
Case ID: DFR-1833
Description: Added 'scmIpSecurityRestrictionsUseMain' property under 'config' property in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Azure Web App, Azure Function App - 11:00 UTCType: Improvement
Case ID: DFR-1833
Description: Added 'kind' property under 'config.accessRestrictions' property in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
AWS Onboarding - 10:00 UTC Type: Improvement
Description: Internal change in AWS onboarding flow.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 25 ,2021 |
|---|
|
| Info |
|---|
Data Fetchers - 11:30 UTC
Type: Improvement
Description: Internal Improvement
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 24 ,2021 |
|---|
|
| Info |
|---|
Compliance Engine - 10:00 UTC Type: Terraform Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components: |
| Info |
|---|
AWS GovCloud Onboarding - 12:30 UTC Type: Bug Fix
Description: Fixed a bug which prevented onboarding of AWS GovCloud accounts.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance Engine - 13:00 UTC Type: Removal of obsolete Ticketing system
Description: Internal improvement.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 23 ,2021 |
|---|
|
| Info |
|---|
Protected Assets - New Infrastructure - 11:00 UTCType: Improvement
Description: Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 19 ,2021 |
|---|
|
| Info |
|---|
Kubernetes APIs - 14:00 UTC
Type: Improvement
Description: New and updated APIs for Pod Groups.
A new API that queries a specific pod group for its images
A new API that queries a specific pod group for its pods
Change in Kubernetes image pod groups API return value.
When querying for pod groups that use specific KubernetesImage the ‘id’ field which to date returned the Kubernetes Id, will now be renamed as ExternalID.
Instead, the ‘id’ field will now return, CloudGuard id of the pod group and not the Kubernetes id. Known limitations: N/A
Affected Components: |
| Info |
|---|
Data Fetchers Improvement - 13:30 UTC
Type: Improvement
Description: Internal change in several data fetchers of AWS, Azure, GCP and Alibaba.
Known limitations: N/A
Affected Components: |
| Info |
|---|
AWS Onboarding - 11:00 UTC Type: Improvement
Case ID: DFR-1884
Description: Changed the validation process. We no longer require EC2 permissions in order to complete AWS cloud accounts onboarding.
Known limitations: N/A
Affected Components: |
| Info |
|---|
CloudSecurityGroup API Performance - 11:00 UTC Type: Improvement
Description: Improved the performance of '/v2/cloudsecuritygroup?forAccess=true' API.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 18 ,2021 |
|---|
|
| Info |
|---|
Compliance Engine MongoDB- 10:00 UTC Type: Improvement
Description: Internal improvement. Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 17 ,2021 |
|---|
|
| Info |
|---|
Account registration and User Password Reset fix- 17:00 UTCType: Bug Fix
Case ID: DFT-1370
Description: Fixed a UI issue that blocked specific flows affecting registering new accounts, users and password reset.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Azure Storage Account - 13:30 UTCType: Improvement
Case ID: DFR-1045
Description: Added 'AdvancedThreatProtectionEnabled' and 'BlobSoftDeleteEnabled' properties in protected assets and compliance engine.
Known limitations: 'AdvancedThreatProtectionEnabled' is not supported in the following regions: southafricanorth, southafricawest, westus3, chinaeast2, norwayeast, australiacentral.
Affected Components: |
| Info |
|---|
Azure Storage Account - 13:30 UTCType: Improvement
Case ID: DFR-1045
Description: Enriched information in 'PrivateEndpointConnections' property in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Type: Improvement
Description: Remove redundant 'ContentLength', 'HttpStatusCode' and 'ResponseMetadata' properties in compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
GCP HTTP Load Balancer - 13:00 UTC Type: New Entity
Description: Added support for GCP HTTP Load Balancer in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
| Info |
|---|
GCP TCP\UDP Load Balancer - 13:00 UTC Type: New Entity
Description: Added support for GCP TCP\UDP Load Balancer in protected assets and compliance engine.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 16 ,2021 |
|---|
|
| Info |
|---|
Compliance Engine- 16:00 UTC Type: Improvement
Description: Internal improvement. Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 12, 2021 |
|---|
|
| Info |
|---|
AWS IAM User - 11:30 UTCType: Bug Fix
Case ID: DFT-1359
Description: Set consistent order for the IAM access keys in compliance engine
Known limitations: N/A
Affected Components: |
| Info |
|---|
AWS Red Shift & AWS IAM User - 11:30 UTCType: Improvement
Description: Improve error handling in the compliance engine.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 11,2021 |
|---|
|
| Info |
|---|
Serverless - Proact - Get token from env var - 15:00 UTCType: Improvement
Description: You can now use `CLOUDGUARD_ACCESS_TOKEN` environment variable to provide the token to cloudguard tool.
Earlier only config file and command line parameters were supported.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Serverless - get function errors - HF - 15:00 UTCType: Bug Fix
Description: Serverless lambda errors (fsp injector, log subscription, inside vpc)
Serverless azure function app errors
Known limitations: N/A
Affected Components: |
| Info |
|---|
Serverless - WRP auto identify os distribution - 15:00 UTCType: Improvement
Description: Implement loader which responsible for identifying container OS, and initialize appropriate (per OS) libosfsp.so
FSP has been changed. the new version: 1.5.52
Known limitations: N/A
Affected Components: | Status |
|---|
| title | serverless runtime protection |
|---|
|
|
| Info |
|---|
Serverless - FSP node14.x support aws - 15:00 UTCType: Improvement
Description: AWS is obsoleting node10.x runtime. We have removed Cloudguard FSP support for node10.x runtime and added support for node14.x. It is recommended to use latest nodejs runtime to continue protecting your functions with FSP.
FSP has been changed. the new version: 1.5.57
Known limitations: N/A
Affected Components: | Status |
|---|
| title | serverless runtime protection |
|---|
|
|
ses | Info |
|---|
AWS IAM Credentials Report - 14:00 UTCType: Bug Fix
Description: Fixed an internal issue that caused a failure to generate the credentials report in some cases.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 10,2021 |
|---|
|
| Info |
|---|
Tenable.io Open Findings - 13:00 UTCType: Bug Fix
Description: Fixed a bug which caused Tenable.io external finding to remain open after EC2 instance deletion.
Known limitations: N\A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 9,2021 |
|---|
|
| Info |
|---|
Azure Insights - 12:00 UTCType: Improvement
Description: Infra Improvement for Azure Insights data fetcher.
Known limitations: N\A
Affected Components: |
| Info |
|---|
Shiftleft - Ignoring un relevant file types- 9:30 UTC
Type: Improvement
Description: Internal change in order to ignore not relevant files.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment August 4,2021 |
|---|
|
| Info |
|---|
Azure Virtual Machine - 13:30 UTC
Type: Improvement
Case ID: DFR-1938
Description: Added 'vmId' property to Azure Virtual Machine API
Known limitations: N/A
Affected Components: |
| Info |
|---|
Data Fetchers Improvement - 11:30 UTC
Type: Improvement
Description: Internal change in several data fetchers of Azure, GCP and Alibaba.
Known limitations: N/A
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment July 21 ,2021 |
|---|
|
| Info |
|---|
Alibaba RAM Password Policy - 17:00 UTC Type: Bug Fix
Description: Rename property from 'ramPolicyPasswordId' to 'policyPasswordId' in compliance engine
Known limitations: N/A
Affected Components: |
| Info |
|---|
Alibaba KMS - 17:00 UTC Type: Bug Fix
Description: Change 'automaticRotation' property from date time to string type in compliance engine
Known limitations: N/A
Affected Components: |
| Info |
|---|
Support AWS Osaka Japan Region - 17:00 UTC Type: Improvement
Description: Added support for Osaka region.
Known limitations: N/A
Affected Components: | Status |
|---|
| title | SECURITY GROUP MANAGEMENT |
|---|
|
|
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment June 24,2021 |
|---|
|
| Info |
|---|
AWS Application and Network Load Balancer - 16:00 UTC Type: Improvement
Description: Internal performance improvement
Known limitations: N/A
Affected Components: |
| Info |
|---|
Alibaba RDS - 13:00 UTCType: Improvement
Description: Adjust db type and version enrichment fetching for Alibaba RDS.
Known limitations: N\A
Affected Components: |
| Info |
|---|
AWS Application Auto Scaling Policy - 13:00 UTCType: New Entity
Case ID: DFR-1653
Description: Added support for AWS Application Auto Scaling Policy in protected assets and compliance engine.
Known limitations: N\A
Affected Components: |
| Info |
|---|
EntityFetchStatus API - 13:00 UTCType: Improvement
Description: Internal performance enhancement for the GET request in EntityFetchStatus API.
Known limitations: N\A
Affected Components: |
| Info |
|---|
Service Account - 13:00 UTCType: Improvement
Case ID: DFT-1321
Description: Allow to manage service accounts via SSO JIT users.
Known limitations: N\A
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment June 2,2021 |
|---|
|
| Info |
|---|
Kubernetes Agent Status Enchantments - 16:30 UTC Type: Improvement
Description: The Kubernetes agent status have been refactored with faster and more detailed Agent deployment status information.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance Rulesets Update - 12:45 UTC Type: Improvement
Description: The first release of the Azure New Zealand Information Security Manual (NZISM) v.3.4 rulesets and fix duplicated rules. A complete list can be found here.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Azure Storage Account - 11:15 UTC Type: Improvement
Case ID: DFR-1465
Description:
Known limitations: N\A
Affected Components: |
| Info |
|---|
Azure Virtual Machine - 11:15 UTC Type: Improvement
Case ID: DFR-1465, DFR-1680
Description:
Known limitations: N\A
Affected Components: |
| Info |
|---|
AWS Cloud Front - 11:15 UTC Type: Improvement
Description: Added property 'protectedByShield' to AWS Cloud Front entity.
Known limitations: N\A
Affected Components: |
| Info |
|---|
AWS Network Load Balancer - 11:15 UTC Type: Improvement
Description: Added property 'protectedByShield' to AWS NLB entity.
Known limitations: N\A
Affected Components: |
| Info |
|---|
AWS Application Load Balancer - 11:15 UTC Type: Improvement
Description: Added property 'protectedByShield' to AWS ALB entity.
Known limitations: N\A
Affected Components: |
| Info |
|---|
AWS ELB - 11:15 UTC Type: Improvement
Description: Added property 'protectedByShield' to AWS ELB entity.
Known limitations: N\A
Affected Components: |
| Info |
|---|
Alibaba SLB - 11:15 UTCType: New Entity
Case ID: DFR-1506
Description: Added support for Alibaba Server Load Balancer in protected assets and compliance engine.
Known limitations: N\A
Affected Components: |
| Info |
|---|
Alibaba Auto Scaling Group- 11:15 UTCType: New Entity
Case ID: DFR-1512
Description: Added support for Alibaba Auto Scaling Group in protected assets and compliance engine.
Known limitations: N\A
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment May 31,2021 |
|---|
|
| Info |
|---|
Intercom - 16:45 UTC Type: Bug Fix
Description: Added default value for 'registered by' property.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Support Alibaba Region - China Guangzhou - 15:30 UTC Type: Improvement
Description: Added support for China Guangzhou region.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Update Image Risk Score - 12:30 UTCType: Improvement
Description: ImageScan result will now feature an Image Risk Score value in the CVSS format of 0-10.0.
Image Risk Score will denote an image’s overall risk potential.
Known limitations: N/A
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment Apr 20,2021 |
|---|
|
| Info |
|---|
Serverless - optimise se q flow - 14:00 UTCType: Improvement
Description: Optimize security events handling flow, to prevent delay of processing and display.
Known limitations: N\A
Affected Components: |
| Info |
|---|
Serverless - Azure python post deploy instrumentation - 14:00 UTCType: New Feature
Description: FSP can now be added to an already deployed Azure function app. This support is currently enabled for Python runtime (Linux containers).
Known limitations: N\A
Affected Components: |
| Info |
|---|
Serverless - Azure post deploy premium - 14:00 UTCType: Improvement
Description: Added support for Azure post deploy functionality for premium and app service plans.
Known limitations: N\A
Affected Components: |
| Info |
|---|
Serverless - Add dynamic signatures fetch - 14:00 UTCType: New Feature
Description: Dynamic update of k8s signatures from Check Point Research team.
Known limitations: N\A
Affected Components: |
| Info |
|---|
AWS S3 Bucket - 14:00 UTC Type: Improvement
Description: Added property 'arn' to AWS S3Bucket entity.
Known limitations: N\A
Affected Components: |
| Info |
|---|
GCP IAM Group - 12:30 UTC Type: Bug Fix
Description: Fixed an issue that caused GcpIamGroup.groupData property to be empty.
Known limitations: N\A
Affected Components: |
| Info |
|---|
GCP IAM User - 10:30 UTC Type: Improvement
Description: Added 'roles' property in the compliance engine.
This property holds all the roles assigned to the user directly on the onboarded project. Added 'userData.groups' property in the compliance engine.
This property includes holds all groups the user is member in and in the same domain.
Known limitations: Roles are not include organization inheritance
Affected Components: |
| Info |
|---|
GCP IAM Role - 10:30 UTC Type: New Entity
Description: Added support for GCP Project IAM Role (custom and predefined) including the role permissions in the compliance engine
Known limitations: N\A
Affected Components: |
| Info |
|---|
GCP VM Instance- 10:30 UTC Type: Improvement
Description: Added 'sourceImage' and 'sourceImageId' properties for each GCP VM Instance Disk in the compliance engine
Known limitations: N\A
Affected Components: |
| Info |
|---|
GCP Disk - 10:30 UTC Type: New Entity
Description: Added support for GCP Disk in the compliance engine
Known limitations: N\A
Affected Components: |
| Info |
|---|
GCP Image - 10:30 UTC Type: Improvement
Description: Added 'creationTimestamp' property for GCP Image in the compliance engine
Known limitations: N\A
Affected Components: |
| Info |
|---|
GCP Project - 10:30 UTC Type: Improvement
Case ID: DFR-1698
Description: Added 'enabledServices' property for GCP Project in the compliance engine
Known limitations: N\A
Affected Components: |
| Info |
|---|
Azure Function App and Web App - 10:30 UTC Type: Improvement
Case ID: DFR-1572
Description: Added 'appServicePlan' property for Azure Function App and Web App in the compliance engine
Known limitations: N\A
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment Mar 15,2021 |
|---|
|
| Info |
|---|
Compliance Backend Functionality enhancement - 14:00 UTCType: Improvement
Description: Adding Backend functionality in order to support a new cloud vendor.
Known limitations: N/A
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment Mar 14,2021 |
|---|
|
| Info |
|---|
FSP version visibility - 08:00 UTCType: New Feature
Case ID: PROT-713
Description: Adding a new visibility for each AWS lambda that’s use FSP, to get the FSP version.
The purpose of this feature is that in the next step we will have the ability to set the FSP version manually.
Known limitations: N/A
Affected Components: |
|
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment Mar 10,2021 |
|---|
|
| Info |
|---|
New Cloud Vendor Support - New Infrastructure - 12:00 UTC Type: Improvement
Description: Adding new infrastructure in order to support new cloud vendor.
Known limitations: N/A
Affected Components: |
| Info |
|---|
Compliance Rulesets Update - 12:40 UTC Type: Improvement
Description: Rules added to Azure CIS v1.1,v1.2, and v1.3 rulesets. and Azure CIS v1.2 enrichment. New and fix rules for GCP rulesets. A complete list can be found here.
Known limitations: N/A
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment Jan 21,2021 |
|---|
|
| Info |
|---|
Azure Event Hub Namespace - 13:30 UTCType: New Entity
Case Id: DFR-1401
Description: Added support for Azure Event Hub Namespace in the compliance engine
GSL Examples: Known limitations: N/A
Affected Components: |
| Info |
|---|
AWS Update Credentials API - 13:30 UTCType: Bug Fix
Case Id: DFT-1057
Description: Fixed an issue for handling empty cloud account in user based credentials.
Known limitations: N/A.
Affected Components: |
|
...
| Panel |
|---|
| borderColor | grey |
|---|
| bgColor | #F7F7F7 |
|---|
| titleColor | pink |
|---|
| titleBGColor | #012038 |
|---|
| borderStyle | solid |
|---|
| title | Deployment Jan 14, 2021 |
|---|
|
| Info |
|---|
PREVIEWLog.ic - Azure Activity Logs - 15:30 UTC Type: New Feature
Description: Added Log.ic support on Azure Storage, Audit, Signin, Activity Logs.
Known limitations: Currently in Early Availability
Affected Components: |
| Info |
|---|
GCP App Engine - 11:00 UTCType: New Entity
Case ID: DFR-608
Description: Added support for GCP App Engine in the compliance engine
GSL Examples:
Known limitations: N/A
Affected Components:
|
| Info |
|---|
Azure HDInsight - 11:00 UTCType: Improvement
Case ID: DFR-1436
Description: Region and location properties were converted into lower case strings
Known limitations: N/A
Affected Components: |
|
...
