Page Comparison

Expand

title	Deployment October 31thDecember 30th, 2021

Info

API Intelligence - 2213:45 00 UTC

Type: ImprovementBug Fix
Description: Improvements for a new infrastructure. Table in INTELLIGENCE tab under Assets\Environments now support AWS environments onboarded through Custom Onboarding
Known limitations: N/A
Affected Components:

Status

title	APIINTELLIGENCE

Expand

title	Deployment October 28thDecember 29th, 2021

Info

Compliance GenericList API - 1209:20 UTC

Type: ImprovementNew Managed Lists
Description: Improvements for a new infrastructure. Added new Managed List for AccountIds by plarform
Known limitations: N/A
Case ID: DFR-963
Affected Components:

Status

title	GENERIC LIST API

Status

title	COMPLIANCE CORE

Status

title	COMPLIANCE INTEGRATIONS

Info

AWS Security Groups

ENGINE

Info

Compliance Rulesets Update - 12:20 23 UTC

Type: Bug Fix
Description: Fixed edge cases that prevented Security Groups to be visible in the Security Groups page. email attached links to CloudGuard for Infinity Portal users.
Case ID: DFT-1678
Known limitations: N/A
Affected Components:

Status

title	email notifications

Status

title	DATA FETCHERS AWSInfinity portal

Info

SNS Notification for China- 11:40 Compliance Rulesets Update - 12:20 UTC

Type: Bug FixImprovement
Description: Adding support to China accounts to send compliance SNS notification. New AWS and GCP rules. A complete list can be found here.
Case ID: DFR DFT-20911614
Known limitations: N/A
Affected Components:

Status

title	compliance integrationsCOMPLIANCE RULESETS

Info

Billable Report Api - 08:40 Compliance Webhook API- 09:20 UTC

Type: New FeatureImprovement
Description: Added API to get a monthly billing report.
Case ID: DFR-1849
Improvements the Webhook integration API
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE WEBHOOK API

Info

GCP Firewall Rules API- 0805:00 30 UTC

Type: Bug FixImprovement
Description: Fixed edge cases that prevented data updates.
Case ID: DFR-2098 Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS GCPAPI

expandDeployment October 26th, 2021expandDeployment October 25th, 2021

Expand

title	Deployment October 27thDecember 28th, 2021

Info

Compliance Rulesets Update - 11:40

AWS Permissions Management - 15:00 UTC

Type: Improvement
Description:

Rules fixes. A complete list can be found here. Case ID: DFT-1223, DFT-1519, DFR-2086, DFT-1320, DFT-1428

Infrastructure change for AWS missing permissions management.
Known limitations: N/A
Affected Components:

Status

title	API

Status

title

COMPLIANCE RULESETS

DATA FETCHERS aws

Status

title

COMPLIANCE ENGINE

Info
Intelligence - 09:

00

15 UTC

Type:

Improvement

Internal Release
Description: Internal

improvements for data administration and performances

release in preparation for upcoming CIEM feature.
Known limitations: N/A
Affected Components:

Status

title

INTELLIGENCE

CIEM

Status

title

INTELLIGENCE

Info
Intelligence -

11

09:

00

15 UTC

Type:

Improvement

Internal Release
Description:

An email is automatically sent to CloudGuard users when Intelligence cannot retrieve logs from their storage place (support for additional use cases was added).

Internal release in preparation for upcoming support of GCP Account Activity in Intelligence
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Compliance

Intelligence -

08

09:

30

15 UTC

Type:

Improvement

Bug Fix
Description:

Improvement

Fixed error messages display in Intelligence
Known limitations: N/A
Affected Components:

Status

title

API

INTELLIGENCE

Info

Authentication - Reset password fix - 07:00

Intelligence - 09:15 UTC

Type: Bug Fix
Description:

Fixed an issue that affected reset password flow in specific edge cases.
Case ID: DFT-1551

Fixed bug when number of events was calculated before all logs were loaded in Intelligence Account Activity and Network Traffic log tables.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Gcp API - 08:30 UTC

Type: Bug fix
Description: Fix logic relevant to the GcpProject API.
Known limitations: N/A
Affected Components:

Status

title	API

Info

AWS EMR Cluster - 08:30 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aws

Expand

title	Deployment October 24thDecember 27th, 2021

Info

Intelligence Billing Report - 12:00 UTC

Type: Improvement
Description: Network Traffic Logs - New columns available in csv export
When exporting network traffic logs from the portal, the csv now contains new columns: Src Address (IP address of the source), Src Type (External, Lambda…), Src Name (will be empty if the entity is not known by Cloudguard), Dst Address (IP address of the destination), Dst Type and Dst Name.Billing report - improved export file view. Reports for Azure accounts would be displayed by Resource group.
Case ID: DFT-2119
Known limitations: N/A
Affected Components:

Status

title	INTELLLIGENCE NETWORK TRAFFICAPI

Expand

title	Deployment October 21stDecember 26th, 2021

Info

Compliance Intelligence Rulesets Update - 1415:30 20 UTC

Type: Improvement
Description: Image Assurance - Reduce the delay between consecutive image scans.
Instead of a single image every 5 minutes, requests for image scans will now be sent from the backend to the scanning agent in batches. Rules fixes, adding new rulesets.
Case ID: N/A
Known limitations: N/A
Affected Components:

Status

Kubernetes Image Assurance

title		Intelligence RULESETS

GCP GSuite User & GCP GSuite Group - 17:00

Expand

title	Deployment December 23rd, 2021

Info
Compliance API-

12

13:

30

40 UTC

Type:

New Feature
Description: Admission Control GSL rule verification has been improved. Clicking on the verify button will test the rule based on the cluster's recent API calls history.
Users can now see if the rule violated any of the last 1000 events or the last 7 days of events (the smaller of the two).

Improvement
Description: new API - AssessmentHistoryV2/LastAssessmentResults/minimized - for getting last assessment with minimized entities
Known limitations: N/A
Case ID: DFR-2145
Affected Components:

Status

title

Kubernetes Admission Control

COMPLIANCE API

Info

Compliance

API- 12:30 UTC

Type:

New Feature

Improvement
Description:

The Runtime Protection feature creates Behavioral profiles for workloads. When creating rules and exclusions for profiles, the users can now set a parent process, this information is also shown in the rules and exclusions table as well.

Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title

Kubernetes Runtime protection

Expand

title	Deployment October 20th, 2021

Info

API

Info

Compliance Webhook Integration- 11:15 UTC

Type:

Bug Fix

Improvement
Description:

Support pagination
Case ID: DFT-1423

internal improvement in the compliance Webhook integration
Known limitations: N/A
Affected Components:

Status

title

DATA FETCHERS GCP

COMPLIANCE WEBHOOK INTEGRATION

Info

GCP Service Account

API-

14

10:

00

15 UTC

Type:

Bug Fix

Improvement
Description:

Support pagination
Case ID: DFT-1555

Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title

DATA FETCHERS GCP

API

Info
AWS

IAM SAML & AWS IAM Open ID -

Inspector - 10:

30 UTC

00 UTC

Type:

New Entities
Case ID: DFR-1299
Description: Added support for AWS IAM SAML & AWS IAM Open ID in protected assets and compliance engine

Improvement
Description: Updated regions for data fetching:

Added data fetching from “eu-west-2“ and “us-gov-west-1“.
Removed data fetching from “cn-north-1“ and “cn-northwest-1“.

Known limitations: N/

A

A
Affected Components:

Status

title

Compliance Engine

Status

title	DATA FETCHERS AWS

DATA FETCHERS aws

Info

API- 09:15 UTC

Type: Improvement
Description: Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title

PROTECTED ASSETS

API

Info

Compliance Rulesets Update

API-

13

08:

15

30 UTC

Type: Improvement
Description:

The first release of Azure HITRUST v9.5.0 and Source Code Assurance 1.0 rulesets, adding new rules for the Azure platform, fixing Azure and GCP rules. A complete list can be found here. Adding new CloudBots for AWS and Azure platforms.Case ID: DFR-1913
Known limitations: N

Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title

COMPLIANCE RULESETS

API

Expand

title	Deployment October 19thDecember 22th, 2021

Info

Compliance Rulesets Update - 12:30 10 UTC

Type: Bug FixImprovement
Description: New GCP and CFT rules. A complete list can be found here.
Case ID: DFT-1499
Description: Fixing a bug with AWS SSO authentication
1665
Known limitations: N/A
Affected Components:

Status

title	authenticationCOMPLIANCE RULESETS

Info

Compliance AWS EMR Cluster - 08:15 :00 UTC

Type: Bug FixImprovement
Description: Fixing a bug with large email reportsInternal improvement.
Known limitations: N/A
Affected Components:

Status

title	reports

Status

title	compliance

Status

title	Notifications

DATA FETCHERS aws

Expand

title	Deployment October 17thDecember 21st, 2021

Info

Intelligence - 17:00 UTC
Type: Improvement Improvement
Description: Internal ImprovementsThe new Azure Network Traffic onboarding via ARM will only create one Storage Account per region instead of one per NSG in case the NSG flow logs are not yet archived to a Storage Account.
Known limitations: N/A A
Affected Components:

Status

title	ADMINOINTELLIGENCE

Status

title	INTERCOMAZURE

Expand

title	Deployment October 14th, 2021

Compliance Engine - 16

Info

Intelligence - 17:00 UTC
Type: Improvement Improvement
Description: Internal ImprovementAdded pre-requisites of NSG flow logs in Version 2 in Azure Network Traffic onboarding.
Known limitations: N/A A
Affected Components:

Status

compliance ENGINE

title		INTELLIGENCE

Status

title	AZURE

Info

Compliance Engine Intelligence - 1517:00 UTC

Type: ImprovementBug Fix
Description: Internal Improvement. Fixed error in instructions for Azure Account Activity onboarding
Known limitations: N/A
Affected Components:

Status

title	compliance ENGINEINTELLIGENCE

Status

title	AZURE

Info

Compliance API Intelligence - 1117:30 00 UTC
Type: Improvement Improvement
Description: Internal ImprovementAdded support for several possible configurations of NSGs and Storage Account in Azure Network Traffic onboarding.
Known limitations: N/A A
Affected Components:

Status

compliance API

title		INTELLIGENCE

Status

title	AZURE

Deployment October 13th, 2021

Expand

title	Deployment December 19th, 2021

title

Info

Posture Findings Exclusions - 10:00

Compliance Engine - 13:30 UTC

Type:

Bug Fix
Case ID: DFT-1354

Improvement
Description:

Run Assessment when adding a new posture findings exclusion

Added support for double quotes when using getResource method in GSL.
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE ENGINE

Expand

Info

Several Data Fetchers Improvement - 1613:00 30 UTC
Type: Improvement Improvement
Description: Internal Configuration Improvementimprovement.
Known limitations: N/A A
Affected Components:

Status

title	DATA FETCHERS AWSaws

Status

title	DATA FETCHERS AZUREazure

Status

title	DATA FETCHERS GCPgcp

Status

title	DATA FETCHERS ALIalibaba

API Improvement - 15:30

Expand

title	Deployment December 17th, 2021

Info

AWS S3 Bucket

Intelligence -

12

11:

00

15 UTC

Type: Bug Fix

Case ID: DFT-1503
Description: Fix ‘objectLevelLogging’ property

Description: Fixed a bug when the logs screen was stuck when an error was returned by the back-end API.
Known limitations: N/A
Affected Components:

Status

title

COMPLIANCE ENGINE

Expand

title	Deployment October 12th, 2021

INTELLIGENCE

Info

Fetchers Improvement

Intelligence -

14

11:

00

15 UTC

Type:

Improvement

Bug Fix
Description:

Internal Improvement.

Fixed the date column in network traffic logs to show local time
Known limitations: N/A
Affected Components:

Status

title

DATA FETCHERS AWS

INTELLIGENCE

Info

Fetchers Permissions Handling Improvement - 09:00

Intelligence - 11:15 UTC

Type:

Improvement

Bug Fix
Description:

Internal Improvement

Info

Fixed a bug where number of items was not shown in log tables.
Known limitations: N/A
Affected Components:

Status

title

DATA FETCHERS Alibaba

Status

title	DATA FETCHERS Azure

Status

title	DATA FETCHERS gcp

Expand

title	Deployment October 11th, 2021

INTELLIGENCE

Info

Intelligence - 11:15 UTC

Type:

Improvement

Bug Fix
Description

: Internal Improvement.
Known limitations

:

N/A
Affected Components:

Status

title	API

InfoFetchers Improvement - 09

Fixed a bug regarding the timeline in the activity and traffic explorers when there is a big amount of data.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Compliance API- 13:30 UTC

Type: Bug Fix
Description: Fix Posture finding clearance on Policy deletion.
Known limitations: N/A
Case ID: DFT-1439
Affected Components:

Status

title	COMPLIANCE ENGINE

Status

title	API

Info

Billing Report - 10:30 UTC

Type: Improvement
Description: Add normalized column to the exported file.
Known limitations: N/A
Affected Components:

Status

title	API

Info

Compliance Engine- 10:00 UTC

Type: Improvement
Description: Internal

Improvement

improvements.
Known limitations: N/

A

A
Affected Components:

Status

title	COMPLIANCE ENGINE

DATA FETCHERS AZURE

Expand

title

Deployment December 16th, 2021

Info
Compliance API-

07

13:

00

30 UTC

Type:

ImprovementDescription: Internal Improvement Webhook integration

Bug Fix
Description: Fix Posture finding clearance on Policy deletion.
Known limitations: N/A
Case ID: DFT-1439
Affected Components:

Status

title	COMPLIANCE ENGINE

Status

title	API

Info

Billing Report - 10:30 UTC

Type: Improvement
Description: Add normalized column to the exported file.
Known limitations: N/A
Affected Components:

Status

title	API

Info

Compliance Engine- 10:00 UTC

Type: Improvement
Description: Internal improvements.
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE ENGINE

Expand

title	Deployment December 15th, 2021

Info

Intelligence - 16:30 UTC

Type: Improvement
Description: Internal deployment
Known limitations: N\A
Affected Components:

Status

title	INTELLIGENCE

Info

GCP Log Based Metric - 14:15 UTC

Type: New Entity
Description: Added support for GCP Log Based Metric in the compliance engine and protected assets.
Known limitations: N\A
Affected Components:

Status

title	DATA FETCHERS GCP

Status

title	Compliance Engine

Status

title	PROTECTED ASSETS

Info

GCP Alert Policy - 14:15 UTC

Type: New Entity
Description: Added support for GCP Alert Policy in the compliance engine and protected assets.
Known limitations: N\A
Affected Components:

Status

title	DATA FETCHERS GCP

Status

title	Compliance Engine

Status

title	PROTECTED ASSETS

Info

Several Data Fetchers - 14:15 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aws

Status

title	DATA FETCHERS azure

Status

title	DATA FETCHERS gcp

Status

title	DATA FETCHERS alibaba

Info

Azure Databricks Workspace - 14:15 UTC

Type: New Entity
Case ID: DFR-2127
Description: Added support for Azure Databricks Workspace in the compliance engine.
Known limitations: N\A
Affected Components:

Status

title	DATA FETCHERS AZURE

Status

title	Compliance Engine

Info

Azure SQL DB and Azure Data Warehouse - 14:15 UTC

Type: Improvement
Description: Added property ‘resourceGroup’ in Azure SQL DB and in Azure Data Warehouse model in compliance and protected assets.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	PROTECTED ASSETS

Info

AWS Network Interface - 14:15 UTC

Type: Bug Fix
Description: Fix missing subnetId property in AWS Network Interface model in compliance and protected assets.
Case ID: DFT-1601
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	PROTECTED ASSETS

Info

Compliance Rulesets Update - 13:45 UTC

Type: Improvement
Description: The new release of the GCP CIS v1.1, the GCP CIS v1.2 and the AWS MITRE ATT&CK rulesets. New GCP and CFT rules. A complete list can be found here.
Case ID: DFT-1535
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE RULESETS

Expand

title	Deployment December 13th, 2021

Info

API- 07:15 UTC

Type: Improvement
Description: Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title	API

Expand

title	Deployment December 12th, 2021

Info

Protected Assets - 13:00 UTC

Type: Improvement
Description: Internal change for error handling in the protected assets service.
Known limitations: N/A
Affected Components:

Status

title	PROTECTED ASSETS

Expand

title	Deployment December 8th, 2021

Info

AWS Glue Connection - 15:00 UTC

Type: Fix
Description: Remove unsafe password data from protected assets and compliance engine.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	PROTECTED ASSETS

Status

title	DATA FETCHERS aws

Info

AWS EMR Cluster - 14:45 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aws

Info

GCP VM Instance - 12:45 UTC

Type: Fix
Description: Fix missing Firewall inbound\outbound rules in protected assets and compliance engine..
Case ID: DFT-1633
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	PROTECTED ASSETS

Info

Compliance Rulesets Update - 11:15 UTC

Type: Improvement
Description: The new release of the Azure CIS v1.3.1 ruleset. New AWS, GCP and CFT rules. A complete list can be found here.
Case ID: -
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE RULESETS

Expand

title	Deployment December 7th, 2021

Info

Billing Report - Export Improvement 15:00 UTC

Type: Improvement
Description: Billing report export cosmetic improvements.
Case ID: DFT-1638
Known limitations: N/A
Affected Components:

Status

title	API

Info

Billing Report 13:00 UTC

Type: Bug Fix
Description: Billing report export improvement.
Case ID: N/A
Known limitations: N/A
Affected Components:

Status

title	API

Info

Compliance Notification API- 14:50 UTC

Type: Bug Fix
Description: Fix create Notification with null WebhookPayloadFormat
Case ID: DFT-1638
Known limitations: N/A
Affected Components:

Status

title	Compliance NOTIFICATION API

Info

Compliance - 14:30 UTC

Type: Improvement
Description: Internal Compliance pipeline improvement
Known limitations: N/A
Affected Components:

Status

title	Compliance

Info

Compliance API- 09:30 UTC

Type: Improvement
Description: Change AssessmentHistoryV2/csv/{assessmentResultId} API on GCP Assessment to return ProjectNumber instead of ProjectId
Case ID: DFT-1378
Known limitations: N/A
Affected Components:

Status

title	Compliance API

Info

API- 07:30 UTC

Type: Improvement
Description: Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title	API

Expand

title	Deployment December 6th, 2021

Info

Dashboard - Refactor Kubernetes Image Assurance Policy APIs15:00 UTC
Type: Improvement
Description:

Released new APIs for ImageAssurance Policy that use a clearer and more organized flow. Relevant APIs
- KubernetsImageAssurancePolicy
- ContainerRegistryImageAssurancePolicy (Container Registry is still in EA)

Known limitations: N/A
Affected Components:

Status

title	Kubernetes

Status

title	Container registry scanning

Info

Dashboard - 13:00 UTC
Type: Bug Fix
Description: Trying to create a widget dashboard of type “Trend Change Summary” or “Trend Line With Change Summary” did not work.
Known limitations: N/A
Affected Components:

Status

title	Dashboard

Expand

title	Deployment December 5th, 2021

Info

Compliance Engine - 10:00 UTC
Type: Improvement
Description: Internal change in the external findings mechanism to improve performance in the compliance engine.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Info

Cloud Instance API - 10:00 UTC
Type: Improvement
Description: CloudInstance API performance improvement.
Known limitations: N/A
Affected Components:

Status

title	API

Expand

title	Deployment December 3rd, 2021

Info

Intelligence - 10:15 UTC
Type: Bug Fix
Description: Fixed an issue with the way Intelligence rules were presented in the CloudGuard Portal
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Intelligence - 10:15 UTC
Type: New Feature
Description: Added ability to group and sort in Account Activity and Network traffic log tables.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Expand

title	Deployment December 2nd, 2021

Info

Assessment History - Adding entity links to the report - 14:30 UTC

Type: Bug Fix
Description: Adding links to each entity no matter if it passed or fail.
Case ID: DFT-1623, DFT-1588
Known limitations: N/A
Affected Components:

Status

title	Assessment history

Expand

title	Deployment December 1st, 2021

Info

Compliance Rulesets Update - 14:15 UTC

Type: Improvement
Description: New AWS and CFT rules. A complete list can be found here.
Case ID: -
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE RULESETS

Info

Compliance API - 12:30 UTC

Type: Bug Fix
Description: Fixed a bug with license activation
Case ID: DFT-1619
Known limitations: N/A
Affected Components:

Status

title	API

Info

Compliance API - 12:30 UTC

Type: Improvement
Description: Added Cloudbot section to Ruleset API
Known limitations: N/A
Affected Components:

Status

title	API

Info

Intelligence - 8:15 UTC

Type: Bug Fix
Description: Fixed an issue where a few deprecated rules were still displayed in the portal.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Expand

title	Deployment November 30th, 2021

Info

AWS EMR Cluster - 14:30 UTC
Type: Improvement
Description: Internal improvement
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aws

Info

Clarity & GcpPubSub APIs - 13:45 UTC
Type: Improvement
Description: Internal improvements for the following calls:
Clarity API → google-security-groups & google-networks
GcpPubSub API → topics by cloudAccountId
Known limitations: N/A
Affected Components:

Status

title	API

Info

Azure Entities - 13:45 UTC
Type: Improvement
Case ID: DFR-2090
Description: Added support for all types of service tags in networkSecurityGroup's inboundRules.source\outboundRules.Destination field in protected assets and compliance engine for the following Azure entities:
SqlServer, RedisCache, StorageAccount, Subnet, NetworkSecurityGroup, LoadBalancer, VirtualMachine, Vnet & NetworkInterface.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	PROTECTED ASSETS

Expand

title	Deployment November 29th, 2021

Info

Compliance API - 14:00 UTC

Type: Improvement
Description: Improve exclusion mechanism to support faster findings exclusion
Known limitations: N/A
Affected Components:

Status

title	API

Info

API- 12:00 UTC

Type: Improvement
Description: Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title	API

Expand

title	Deployment November 25th, 2021

Info

Intelligence - 16:45 UTC
Type: Bug Fix
Description: Fixed a bug where the time range selected was being changed when moving between Activity and Traffic Explorer.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Registration Page - Improved error messages - 13:30 UTC
Type: Improvement
Description: Added human readable error messages to the registration page.
Known limitations: N/A
Affected Components:

Status

title	UI

Info

Cloud IAM Role API - 12:30 UTC
Type: Improvement
Case ID: DFT-1590
Description: CloudIamRole API performance improvement when passing ‘roleArns’ as parameter.
Known limitations: N/A
Affected Components:

Status

title	API

Expand

title	Deployment November 24th, 2021

Info

Intelligence - 12:30 UTC

Type: Bug Fix
Description: Fixed bug where Intelligence rulesets were not shown in the portal if no account was onboarded to CloudGuard.
Known limitations: N/A
Affected Components:

Status

title	Intelligence

Info

AWS Inspector - 12:30 UTC

Type: Improvement
Description: Update list of supported regions.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aws

Info

AWS EMR Cluster - 11:45 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aws

Info

Compliance Rulesets Update - 11:00 UTC

Type: Improvement
Description: The first release of the Azure ITSG-33 ruleset, rules fixes. A complete list can be found here.
New CloudBots were added. AWS CFT rules were added to the GSL website.
Case ID: DFR-1257
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE RULESETS

Info

AWS API Gateway - 11:45 UTC

Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aws

Info

Azure Resource Group - 09:45 UTC

Type: Improvement
Description: Show also inherited locks (from subscription) for a resource group in protected assets and compliance engine.
Case ID: DFT-1456
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	PROTECTED ASSETS

Info

GCP API Key - 09:45 UTC

Type: New Entities
Description: Added support for GCP API Key in protected assets and compliance engine.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	DATA FETCHERS GCP

Status

title	PROTECTED ASSETS

Info

CloudRoute53HostedZone & CloudRoute53RecordSetGroup API - 08:30 UTC

Type: Improvement
Description: Added new APIs for AWS Route53 Hosted Zones & AWS Route53 Record Set Groups.
Case ID: DFR-2123
Known limitations: N/A
Affected Components:

Status

title	API

Expand

title	Deployment November 23rd, 2021

Info

Cloud IAM Policy API - 13:00 UTC
Type: Improvement
Case ID: DFT-1590
Description: CloudIamPolicy API performance improvement when passing ‘roleArns’ as parameter.
Known limitations: N/A
Affected Components:

Status

title	API

Info

Intelligence - 11:30 UTC
Type: Bug Fix
Description: Fixed issue in GSL with NOT operator
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Status

title	GSL

Info

New agents and Helm chart - 2.8.0 released - 12:00 UTC
Type: New Feature
Description:

New Image Assurance agent, version 2.0.0: Add support for ACR scanning.
New Admission Control Policy agent version 1.0.1, Enforcer agent version1.2.2: Collect data on historical API calls for improved verification (validate Admission Control rules based on operation history).
Address Helm install warnings by removing deprecated Kubernetes objects.

Known limitations: N/A
Affected Components:

Status

title	Kubernetes

Status

title	Helm

Expand

title	Deployment November 18th, 2021

Info

Intelligence - 17:30 UTC
Type: Improvement
Description: Internal improvements

Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Compliance API - 17:30 UTC
Type: Improvement
Description: Improve IAC Assessments result

Known limitations: N/A
Affected Components:

Status

title	API

Info

Enrichment Engine - 15:00 UTC
Type: Bux Fix
Description: Fixed issue with Security Group enrichment

Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

New Early Availability Helm chart released - 2.8.0: ACR scan support, Admission Control assessment history, improvements for k8s 1.19+ - 13:30 UTC
Type: New Feature
Description:

Image Assurance 2.0.0: add ACR scan support
Admission Control policy 1.0.1, Admission Control enforcer 1.2.2: collect data for improved verification
Remove deprecated objects referenced to remove warnings during deployment.

Known limitations: N/A
Affected Components:

Status

title	Kubernetes

Status

title	Helm

Info

Block misconfigured Kubernetes environments - clusters that are onboarded multiple times using the same ClusterID - 13:30 UTC
Type: New Feature
Description:

A detection mechanism for Kubernetes clusters on-boarding misconfiguration is added
The mechanism detects cases of multiple clusters accidentally onboarded with the same clusterID
Detection of such an event is presented in Audit Logs and the cluster's status indications

Known limitations: N/A
Affected Components:

Status

title	Kubernetes

Info

Added ShiftLeft Image entities - 13:00 UTC
Type: New Feature
Description: ShiftLeftImage entities were added to the Protected Assets page and to the API /api/kubernetes/imageAssurance/image/general

Known limitations: N/A
Affected Components:

Status

title	Kubernetes

Status

title	ShiftLeft

Status

title	Image Assurance

Info

New Admission Control use case to address CVE-2021-25742: Ingress-nginx custom snippets allows retrieval of secrets - 12:30 UTC
Type: Enhancement
Description: A security issue was discovered in ingress-nginx (CVE-2021-25742) where a user that can create or update ingress objects can use the custom snippets feature to obtain all secrets in the cluster.

Added 2 Use-cases:

Ingress should not use unsafe annotations
1. This rule can prevent the exploitation of CVE-2021-25742
Ingress Nginx ConfigMap should not use allow-snippet-annotations
1. This rule can prevent changing the Nginx configuration to be vulnerable to CVE-2021-25742

Known limitations: N/A
Affected Components:

Status

title	Kubernetes

Status

title	Admission Control

Info

Improved Workload Protection Audit logs - 12:00 UTC
Type: Enhancement
Description:

New audit logs for Runtime Protection configuration changes
New audit logs when enabling/disabling features
Admission Control audit title “Admission Control Event” changed to “Kubernetes Admission Control”
Known limitations: N/A
Affected Components:
Status
title Kubernetes
Status
title Runtime protection
Status
title Admission Control

Info

Add support for parent process in Runtime Protection rules and exclusions - 11:30 UTC
Type: New Feature
Description: When creating rules and exclusions for Runtime Protection profiles, the users can now set a parent process. This information is also shown in the rules and exclusions tables as well.
Known limitations: N/A
Affected Components:

Status

title	Kubernetes

Status

title	Runtime protection

Info

Cloud Instance API - 11:00 UTC
Type: Bug Fix
Case ID: DFT-1589
Description: Cloud Instance API bug fix for EC2 classic.
Known limitations: N/A
Affected Components:

Status

title	API

Info

API- 09:00 UTC

Type: Improvement
Description: Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title	API

Expand

title	Deployment November 17th, 2021

Info

All Data Fetchers - 14:00 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aws

Status

title	DATA FETCHERS azure

Status

title	DATA FETCHERS gcp

Status

title	DATA FETCHERS alibaba

Info

Compliance Rulesets Update - 11:00 UTC

Type: Improvement

Description: The first release of the AWS CIS Foundations v. 1.4.0 ruleset, adding new rules to the AWS CIS Foundations v. 1.3 rulesets, adding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here.

New CloudBots were added

Case ID: DFT-1582, DFR-2045

Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE RULESETS

Info

GCP GSuite User - 09:30 UTC
Type: Improvement
Description: Added support for new field Languages to GCP GSuite User on protected assets and compliance engine.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	DATA FETCHERS GCP

Status

title	PROTECTED ASSETS

Expand

title	Deployment November 16th, 2021

Info

Compliance - 11:30 UTC

Type: Improvement
Description: General improvements.
Known limitations: N/A
Affected Components:

Status

title	API

Info

AzureManagement, AzureGenericEntity, AzureActivityLog, AzureSqlServer - 09:45 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS azure

Info

Intelligence - 09:30 UTC
Type: New Feature
Description: Added “Remove Intelligence” button for Azure environments. The button can be found under Assets\Environments, within the specific environment’s page. Clicking on it and confirming will off-board the environment from Intelligence (both Account Activity and Network Traffic).
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCe

Info

Intelligence - 09:30 UTC

Type: Bug FiIx
Description: Unsupported GSL query will now display an error in the UI.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Intelligence - 09:30 UTC

Type: Improvement
Description: New grid implementation in Account Activity and Network Traffic log tables (benefits: endless scroll, reorder/resize columns, etc.)
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Expand

title	Deployment November 14th, 2021

Info

Intelligence - 18:50 UTC
Type: Improvement
Description: Updated API documentation for Intelligence
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCe

Status

title	API DOCUMENTATION

Info

AWS Cloud Trail - Lookup Events - 16:00 UTC
Type: Improvement
Description: Improved data fetcher performance.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aWS

Info

Azure Data Fetchers - 11:00 UTC
Type: Improvement
Description: Internal improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS azure

Info

Intelligence - 9:15 UTC
Type: Improvement
Case ID:
Description: Added link to online help in email warning users that Intelligence cannot retrieve their logs from their storage place.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Intelligence - 9:15 UTC
Type: Improvement
Case ID:
Description: Improvements for move to new infrastructure.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENce

Expand

title	Deployment November 11th, 2021

Info

Compliance- 18:00 UTC
Type: Bug Fix
Case ID: DFT-1439
Description: Added ability to export large amount of events as CSV
Known limitations: N/A
Affected Components:

Status

title	Events

Status

title	compliance

Info

Intelligence - 10:15 UTC
Type: Bug Fix
Case ID:
Description: Fixed a bug in GSL query for “in” function.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENce

Status

title	GSL

Expand

title	Deployment November 10th, 2021

Info

GCP VM Instance - 18:45 UTC
Type: Improvement
Case ID: DFR-2024
Description: Added multiple properties to GCP VM Instance on protected assets and compliance engine.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	DATA FETCHERS GCP

Status

title	PROTECTED ASSETS

Info

AWS Cloud Trail - Lookup Events - 14:00 UTC
Type: Improvement
Description: Improved paging and throttling handling.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS aWS

Info

AWS Network Firewall - 13:00 UTC
Type: Improvement
Case ID: DFT-1533
Description: Added support for AWS Network Firewall to the following regions: af-south-1, ap-east-1, ap-northeast-1, ap-northeast-2, ap-south-1, ap-southeast-1, ap-southeast-2, cn-north-1, cn-northwest-1, us-gov-east-1, us-gov-west-1, ca-central-1, eu-central-1, eu-north-1, eu-south-1, eu-west-2, eu-west-3, me-south-1, sa-east-1, us-east-2, us-west-1.
Known limitations: Not supporting the following regions: cn-north-1, cn-northwest-1, us-gov-east-1, us-gov-west-1
Affected Components:

Status

title	DATA FETCHERS aWS

Info

AWS Network Firewall - 13:00 UTC
Type: Improvement
Case ID: DFR-1468
Description: Added 'firewallPolicy' property to AWS Network Firewall on protected assets and compliance engine.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

compliance API

title		DATA FETCHERS aWS

Status

title	PROTECTED ASSETS

Info

Compliance API Rulesets Update - 0711:00 30 UTC

Type: Improvement

Description: Internal ImprovementAdding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here.

Known limitations: N/A
Affected Components:

Status

title	compliance APICOMPLIANCE RULESETS

Expand

title	Deployment October 10thNovember 4th, 2021

Info

Intelligence Compliance - 1816:00 20 UTC

Type: Improvement
Description: Onboarding Azure network traffic logs (a.k.a Azure flow logs) is now done using a custom ARM template. After assigning an additional IAM role to the CloudGuard application and selecting the Network Security Groups to onboard, the system will generate an ARM template for the customer to deploy. The template will handle the requirements for onboarding to Intelligence. This new onboarding replaces the previous onboarding for Azure network traffic logs. It is available to all customers. Improvements for a new infrastructure.
Known limitations: N/A
Affected Components: AWS SNS Platform Application, AWS Events Rule, AWS System Manager Parameter, AWS Kinesis Firehose, AWS Custom Domain Name - 16:00

API

Status

title

Status

title	INTELLIGENCE ONBOARDING

Info

	API

Info

Compliance API - 10:40 UTC

Type: Bug FixImprovement
Description: Support pagination bug fix for events empty value filter
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS AWS

	API

expandDeployment October 7th, 2021

Expand

title	Deployment November 3rd, 2021

Info

Fetchers Improvement - 16:00 Azure Activity Log Monitor - 14:30 UTC

Type: Improvement
Description: Internal Improvement Enriched Azure Storage Account information in Azure Activity Log Monitor on protected assets and compliance engine.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS GCP

	Compliance Engine

Status

title

PROTECTED ASSETS

Info

Compliance API - 18:00 UTC

Azure Container Instance - 14:30 UTC

Type:

Improvement

New Entities
Case ID: DFR-1262
Description:

Internal Improvement Webhook integration

Added support for Azure Container Instance in protected assets and compliance engine.
Known limitations: N/

A

A
Affected Components:

Status

title	Compliance Engine

Status

title	DATA FETCHERS azure

Status

title

compliance API

PROTECTED ASSETS

Info
Compliance

API - 17:00 UTCType: Improvement
Description: Internal Improvement adding a TTL.

Rulesets Update - 12:30 UTC

Type: Improvement

Description: Adding new rules to AWS CloudFormation ruleset, rules fixes. A complete list can be found here. New CloudBots were added.

Case ID: DFT-1069
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE RULESETS

compliance API

Expand

title

Deployment November 2nd, 2021

Info

Compliance API - 15

Azure Storage Blob Containers - 10:00 UTC

Type: Improvement
Description: Internal

Improvement

data fetcher logic improvement.
Known limitations: N/A
Affected Components:

Status

title

compliance API

DATA FETCHERS AZURE

Expand

title	Deployment November 1st, 2021

Info

Continuous posture

Intelligence -

15

13:

00

30 UTC

Type:

Bug Fix

Improvement
Description:

Fix a bug on ruleset save operation

We improved both quality and accuracy of geolocation data for account activity and network traffic logs.
Known limitations: N/A
Affected Components:

Status

title

ui

INTELLIGENCE

status

API

Expand

title

Deployment October 31th, 2021

Info

Compliance

API -

05

22:

00

45 UTC

Type: Improvement
Description:

Internal Improvement.

Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title

compliance

API

Expand

title	Deployment October 28th, 2021

Info

Compliance - 12:20 UTC

Type: Improvement
Description: Improvements for a new infrastructure.
Known limitations: N/A
Affected Components:

Status

title	API

Status

title	COMPLIANCE CORE

Status

title	COMPLIANCE INTEGRATIONS

Info

AWS Security Groups - 12:20 UTC

Type: Bug Fix
Description: Fixed edge cases that prevented Security Groups to be visible in the Security Groups page.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS AWS

Info

SNS Notification for China- 11:40 UTC

Type: Bug Fix
Description: Adding support to China accounts to send compliance SNS notification.
Case ID: DFR-2091
Known limitations: N/A
Affected Components:

Status

title	compliance integrations

Info

Billable Report Api - 08:40 UTC

Type: New Feature
Description: Added API to get a monthly billing report.
Case ID: DFR-1849
Known limitations: N/A
Affected Components:

Status

title	API

Info

GCP Firewall Rules - 08:00 UTC

Type: Bug Fix
Description: Fixed edge cases that prevented data updates.
Case ID: DFR-2098
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS GCP

Expand

title	Deployment October 27th, 2021

Info

Compliance Rulesets Update - 11:40 UTC

Type: Improvement

Description: Rules fixes. A complete list can be found here.

Case ID: DFT-1223, DFT-1519, DFR-2086, DFT-1320, DFT-1428
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE RULESETS

Expand

title	Deployment October 26th, 2021

Info

Intelligence - 09:00 UTC

Type: Improvement

Description: Internal improvements for data administration and performances.
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Expand

title	Deployment October 25th, 2021

Info

Intelligence - 11:00 UTC

Type: Improvement
Description: An email is automatically sent to CloudGuard users when Intelligence cannot retrieve logs from their storage place (support for additional use cases was added).
Known limitations: N/A
Affected Components:

Status

title	INTELLIGENCE

Info

Compliance - 08:30 UTC

Type: Improvement
Description: Improvement
Known limitations: N/A
Affected Components:

Status

title	API

Info

Authentication - Reset password fix - 07:00 UTC

Type: Bug Fix
Description: Fixed an issue that affected reset password flow in specific edge cases.
Case ID: DFT-1551
Known limitations: N/A
Affected Components:

Status

title	API

Expand

title	Deployment October 24th, 2021

Info

Intelligence - 12:00 UTC

Type: Improvement
Description: Network Traffic Logs - New columns available in csv export
When exporting network traffic logs from the portal, the csv now contains new columns: Src Address (IP address of the source), Src Type (External, Lambda…), Src Name (will be empty if the entity is not known by Cloudguard), Dst Address (IP address of the destination), Dst Type and Dst Name.
Known limitations: N/A
Affected Components:

Status

title	INTELLLIGENCE NETWORK TRAFFIC

Expand

title	Deployment October 21st, 2021

Info

Compliance - 14:30 UTC

Type: Improvement
Description: Image Assurance - Reduce the delay between consecutive image scans.
Instead of a single image every 5 minutes, requests for image scans will now be sent from the backend to the scanning agent in batches.
Known limitations: N/A
Affected Components:

Status

title	Kubernetes Image Assurance

Info

Compliance - 12:30 UTC

Type: New Feature
Description: Admission Control GSL rule verification has been improved. Clicking on the verify button will test the rule based on the cluster's recent API calls history.
Users can now see if the rule violated any of the last 1000 events or the last 7 days of events (the smaller of the two).
Known limitations: N/A
Affected Components:

Status

title	Kubernetes Admission Control

Info

Compliance - 12:30 UTC

Type: New Feature
Description: The Runtime Protection feature creates Behavioral profiles for workloads. When creating rules and exclusions for profiles, the users can now set a parent process, this information is also shown in the rules and exclusions table as well.
Known limitations: N/A
Affected Components:

Status

title	Kubernetes Runtime protection

Expand

title	Deployment October 20th, 2021

Info

GCP GSuite User & GCP GSuite Group - 17:00 UTC

Type: Bug Fix
Description: Support pagination
Case ID: DFT-1423
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS GCP

Info

GCP Service Account - 14:00 UTC

Type: Bug Fix
Description: Support pagination
Case ID: DFT-1555
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS GCP

Info

AWS IAM SAML & AWS IAM Open ID - 10:30 UTC

Type: New Entities
Case ID: DFR-1299
Description: Added support for AWS IAM SAML & AWS IAM Open ID in protected assets and compliance engine.
Known limitations: N/A
Affected Components:

Status

title	Compliance Engine

Status

title	DATA FETCHERS AWS

Status

title	PROTECTED ASSETS

Info

Compliance Rulesets Update - 13:15 UTC

Type: Improvement

Description: The first release of Azure HITRUST v9.5.0 and Source Code Assurance 1.0 rulesets, adding new rules for the Azure platform, fixing Azure and GCP rules. A complete list can be found here. Adding new CloudBots for AWS and Azure platforms.

Case ID: DFR-1913
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE RULESETS

Expand

title	Deployment October 19th, 2021

Info

Compliance - 12:30 UTC

Type: Bug Fix
Case ID : DFT-1499
Description: Fixing a bug with AWS SSO authentication
Known limitations: N/A
Affected Components:

Status

title	authentication

Info

Compliance - 15:00 UTC

Type: Bug Fix
Description: Fixing a bug with large email reports.
Known limitations: N/A
Affected Components:

Status

title	reports

Status

title	compliance

Status

title	Notifications

Expand

title	Deployment October 17th, 2021

Info

Intelligence - 17:00 UTC

Type: Improvement
Description: Internal Improvements.
Known limitations: N/A
Affected Components:

Status

title	ADMINO

Status

title	INTERCOM

Expand

title	Deployment October 14th, 2021

Info

Compliance Engine - 16:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	compliance ENGINE

Info

Compliance Engine - 15:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	compliance ENGINE

Info

Compliance API - 11:30 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	compliance API

Info

Posture Findings Exclusions - 10:00 UTC

Type: Bug Fix
Case ID: DFT-1354
Description: Run Assessment when adding a new posture findings exclusion.
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE ENGINE

Expand

title	Deployment October 13th, 2021

Info

Fetchers Improvement - 16:00 UTC

Type: Improvement
Description: Internal Configuration Improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS AWS

Status

title	DATA FETCHERS AZURE

Status

title	DATA FETCHERS GCP

Status

title	DATA FETCHERS ALI

Info

AWS S3 Bucket - 12:00 UTC

Type: Bug Fix
Case ID: DFT-1503
Description: Fix ‘objectLevelLogging’ property
Known limitations: N/A
Affected Components:

Status

title	COMPLIANCE ENGINE

Expand

title	Deployment October 12th, 2021

Info

Fetchers Improvement - 14:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS AWS

Info

Fetchers Permissions Handling Improvement - 09:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS Alibaba

Status

title	DATA FETCHERS Azure

Status

title	DATA FETCHERS gcp

Expand

title	Deployment October 11th, 2021

Info

API Improvement - 15:30 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	API

Info

Fetchers Improvement - 09:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS AZURE

Info

Compliance API - 07:00 UTC

Type: Improvement

Description: Internal Improvement Webhook integration.
Known limitations: N/A
Affected Components:

Status

title	compliance API

Info

Compliance API - 07:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	compliance API

Expand

title	Deployment October 10th, 2021

Info

Intelligence - 18:00 UTC

Type: Improvement
Description: Onboarding Azure network traffic logs (a.k.a Azure flow logs) is now done using a custom ARM template. After assigning an additional IAM role to the CloudGuard application and selecting the Network Security Groups to onboard, the system will generate an ARM template for the customer to deploy. The template will handle the requirements for onboarding to Intelligence. This new onboarding replaces the previous onboarding for Azure network traffic logs. It is available to all customers.
Known limitations: N/A
Affected Components:

Status

title	API

Status

title	INTELLIGENCE ONBOARDING

Info

AWS SNS Platform Application, AWS Events Rule, AWS System Manager Parameter, AWS Kinesis Firehose, AWS Custom Domain Name - 16:00 UTC

Type: Bug Fix
Description: Support pagination
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS AWS

Info

Fetchers Improvement - 16:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS GCP

Expand

title	Deployment October 7th, 2021

Info

Compliance API - 18:00 UTC

Type: Improvement
Description: Internal Improvement Webhook integration.
Known limitations: N/A
Affected Components:

Status

title	compliance API

Info

Compliance API - 17:00 UTC

Type: Improvement
Description: Internal Improvement adding a TTL.
Known limitations: N/A
Affected Components:

Status

title	compliance API

Info

Compliance API - 15:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	compliance API

Info

Continuous posture - 15:00 UTC

Type: Bug Fix
Description: Fix a bug on ruleset save operation.
Known limitations: N/A
Affected Components:

Status

title	ui

Status

title	API

Info

Compliance API - 05:00 UTC

Type: Improvement
Description: Internal Improvement.
Known limitations: N/A
Affected Components:

Status

title	compliance API

...

Panel

borderColor	grey
bgColor	#F7F7F7
titleColor	pink
titleBGColor	#012038
borderStyle	solid
title	Deployment October 4 ,2021

Info

Assessment report - Failed tests by fix - 15:00 UTC

Type: Bug Fix
Description: fix to populate failed by severity value
Known limitations: N/A
Affected Components:

Status

title	UI

Info

Compliance API - 15:00 UTC

Type: Improvement
Description: Internal configuration change
Known limitations: N/A
Affected Components:

Status

title	API

Info

Compliance Rulesets Update - 12:15 UTC

Type: Improvement

Description: Fixing AWS rules. A complete list can be found here.

Case ID: DFT-1342, DFT-1539
Known limitations: N/A
Affected Components:

Status

title	compliance rulesets

Info

AWS SQS - 10:00 UTC

Type: Bug Fix
Case ID: DFT-1458
Description: Support pagination
Known limitations: N/A
Affected Components:

Status

title	DATA FETCHERS AWS

Info

Internal changes for several components - 10:00 UTC

Type: Improvement
Description: Internal improvement
Known limitations: N/A
Affected Components:

Status

title	ALL SYSTEM

Panel

borderColor	grey
bgColor	#F7F7F7
titleColor	pink
titleBGColor	#012038
borderStyle	solid
title	Deployment September 29 ,2021

Info

Compliance Rulesets Update - 10:30 UTC

Type: Improvement

Description: Fixing Azure rules. A complete list can be found here.

Case ID: DFT-1467
Known limitations: N/A
Affected Components:

Status

title	compliance rulesets

Info

Protected Assets - Alibaba Entities - 11:00 UTC

Type: Improvement
Description:

Added 'Status' as additional field to Alibaba ECS Instance entity in protected assets.
Added 'DBInstanceStatus' as additional field to Alibaba RDS DB Instance entity in protected assets.
Alibaba ECS Instance 'Billable Asset' property is set to 'Yes' in case 'Status' is 'Running'.
Alibaba RDS DB Instance 'Billable Asset' property is set to 'Yes' in case 'DBInstanceStatus' is 'Running'.

Known limitations: N/A
Affected Components:

Status

title	protected assets

Status

title	API

Status

title	DATA FETCHERS ALI

Info

Serverless - Obsolete dotnetcore2.1 FSP injector changes - 17:00 UTC

Type: New Feature
Description: Add/remove auto-protect feature from webapp UI won't be supported for dotnetcore2.1 runtime.
Cloud Formation template has been changed. the new version: 21
Known limitations: N/A
Affected Components:

Status

title	serverless

Status

title	serverless cloud formation

Info

Serverless - FSP add support for graviton2 - 17:00 UTC

Type: New Feature
Description: Cloudguard FSP Support for AWS Lambda running on Graivton2 processors
FSP has been changed. the new version: 1.5.62
Known limitations: N/A
Affected Components:

Status

title	serverless

Status

title	serverless runtime protection

...

Panel

borderColor	grey
bgColor	#F7F7F7
titleColor	pink
titleBGColor	#012038
borderStyle	solid
title	Deployment August 10,2021

Info

Tenable.io Open Findings - 13:00 UTC

Type: Bug Fix
Description: Fixed a bug which caused Tenable.io external finding to remain open after EC2 instance deletion.
Known limitations: N\A
Affected Components:

Status

title	compliance engine

...

Versions Compared

Old Version 4

New Version Current

Key

Protected Assets - Alibaba Entities - 11:00 UTC

Tenable.io Open Findings - 13:00 UTC