Tip |
---|
Welcome to CloudGuard Native (Dome9) Release Notes |
Expand |
---|
title | Deployment October 21th, 2021 |
---|
|
Info |
---|
Compliance - 12:30 UTC Type: Improvement Description: Image Assurance - Reduce the delay between consecutive image scans. Instead of a single image every 5 minutes, requests for image scans will now be sent from the backend to the scanning agent in batches. Known limitations: N/A Affected Components: Status |
---|
title | Kubernetes Image Assurance |
---|
|
|
Info |
---|
Compliance - 15:00 UTC Type: New Feature Description: Admission Control GSL rule verification has been improved. Clicking on the verify button will test the rule based on the cluster's recent API calls history. Users can now see if the rule violated any of the last 1000 events or the last 7 days of events (the smaller of the two). Known limitations: N/A Affected Components: Status |
---|
title | Kubernetes Admission Control |
---|
|
|
|
Expand |
---|
title | Deployment October 20th, 2021 |
---|
|
Info |
---|
GCP GSuite User & GCP GSuite Group - 17:00 UTC Type: Bug Fix Description: Support pagination Known limitations: N/A Affected Components: |
Info |
---|
GCP Service Account - 14:00 UTC Type: Bug Fix Description: Support pagination Case ID: DFT-1555 Known limitations: N/A Affected Components: |
Info |
---|
AWS IAM SAML & AWS IAM Open ID - 10:30 UTC Type: New Entities Case ID: DFR-1299 Description: Added support for AWS IAM SAML & AWS IAM Open ID in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 13:15 UTC Type: Improvement Description: The first release of Azure HITRUST v9.5.0 and Source Code Assurance 1.0 rulesets, adding new rules for the Azure platform, fixing Azure and GCP rules. A complete list can be found here. Adding new CloudBots for AWS and Azure platforms. Case ID: DFR-1913 Known limitations: N/A Affected Components: |
|
Expand |
---|
title | Deployment October 19th, 2021 |
---|
|
Info |
---|
Compliance - 12:30 UTC Type: Bug Fix Case ID : DFT-1499 Description: Fixing a bug with AWS SSO authentication Known limitations: N/A Affected Components: |
Info |
---|
Compliance - 15:00 UTC Type: Bug Fix Description: Fixing a bug with large email reports. Known limitations: N/A Affected Components: |
|
Expand |
---|
title | Deployment October 17th, 2021 |
---|
|
Info |
---|
Intelligence - 17:00 UTC Type: Improvement Description: Internal Improvements. Known limitations: N/A Affected Components: |
|
Expand |
---|
title | Deployment October 14th, 2021 |
---|
|
Info |
---|
Compliance Engine - 16:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Engine - 15:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
Info |
---|
Compliance API - 11:30 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
Info |
---|
Posture Findings Exclusions - 10:00 UTC Type: Bug Fix Case ID: DFT-1354 Description: Run Assessment when adding a new posture findings exclusion. Known limitations: N/A Affected Components: |
|
Expand |
---|
title | Deployment October 13th, 2021 |
---|
|
Info |
---|
Fetchers Improvement - 16:00 UTC Type: Improvement Description: Internal Configuration Improvement. Known limitations: N/A Affected Components: |
Info |
---|
AWS S3 Bucket - 12:00 UTC Type: Bug Fix Case ID: DFT-1503 Description: Fix ‘objectLevelLogging’ property Known limitations: N/A Affected Components: |
|
Expand |
---|
title | Deployment October 12th, 2021 |
---|
|
Info |
---|
Fetchers Improvement - 14:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
Info |
---|
Fetchers Permissions Handling Improvement - 09:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: Status |
---|
title | DATA FETCHERS Alibaba |
---|
|
|
|
Expand |
---|
title | Deployment October 11th, 2021 |
---|
|
Info |
---|
API Improvement - 15:30 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
Info |
---|
Fetchers Improvement - 09:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
Info |
---|
Compliance API - 07:00 UTC Type: Improvement Description: Internal Improvement Webhook integration. Known limitations: N/A Affected Components: |
Info |
---|
Compliance API - 07:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
|
Expand |
---|
title | Deployment October 10th, 2021 |
---|
|
Info |
---|
Intelligence - 18:00 UTC Type: Improvement Description: Onboarding Azure network traffic logs (a.k.a Azure flow logs) is now done using a custom ARM template. After assigning an additional IAM role to the CloudGuard application and selecting the Network Security Groups to onboard, the system will generate an ARM template for the customer to deploy. The template will handle the requirements for onboarding to Intelligence. This new onboarding replaces the previous onboarding for Azure network traffic logs. It is available to all customers. Known limitations: N/A Affected Components: Status |
---|
title | INTELLIGENCE ONBOARDING |
---|
|
|
Info |
---|
AWS SNS Platform Application, AWS Events Rule, AWS System Manager Parameter, AWS Kinesis Firehose, AWS Custom Domain Name - 16:00 UTC Type: Bug Fix Description: Support pagination Known limitations: N/A Affected Components: |
Info |
---|
Fetchers Improvement - 16:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
|
Expand |
---|
title | Deployment October 7th, 2021 |
---|
|
Info |
---|
Compliance API - 18:00 UTC Type: Improvement Description: Internal Improvement Webhook integration. Known limitations: N/A Affected Components: |
Info |
---|
Compliance API - 17:00 UTC Type: Improvement Description: Internal Improvement adding a TTL. Known limitations: N/A Affected Components: |
Info |
---|
Compliance API - 15:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
Info |
---|
Continuous posture - 15:00 UTC Type: Bug Fix Description: Fix a bug on ruleset save operation. Known limitations: N/A Affected Components: |
Info |
---|
Compliance API - 05:00 UTC Type: Improvement Description: Internal Improvement. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 23 ,2021 |
---|
|
Deployment October 6th, 2021 Info |
---|
Compliance Rulesets Update - 10:15 UTC Type: Improvement Description: The first release of CIS Kubernetes Benchmark v1.20 ruleset, fixing Azure rules. A complete list can be found here. Case ID: DFR-2041 Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 10:30 UTC Type: Bug Fix Description: Running Kubernetes node will now appear when filtering for billable assets. Known limitations: N/A Affected Components: |
|
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment October 5 ,2021 |
---|
Info |
---|
Compliance Improvement - 14:00 UTC Type: Improvement Description: Internal improvement Known limitations: N/A Affected Components: Status |
---|
title | Compliance Integrations |
---|
|
|
Info |
---|
Azure Storage Account - 13:00 UTCType: Improvement Case ID: DFR-392 Description: Added the following properties to Azure Storage Account in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
AWS Cognito - 13:00 UTCType: Improvement Description: Fetch Cognito identity and user pools from N. California, São Paulo, Paris, Stockholm and Bahrain Known limitations: N/A Affected Components: |
Info |
---|
AWS MQ Broker - 13:00 UTCType: Improvement Description: Fetch MQ brokers from GovCloud (US-East), GovCloud (US-West), Beijing and Ningxia Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment October 4 ,2021 |
---|
Info |
---|
Compliance API - 15:00 UTC Type: Improvement Description: Internal configuration change Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 12:15 UTC Type: Improvement Description: Fixing AWS rules. A complete list can be found here. Case ID: DFT-1342, DFT-1539 Known limitations: N/A Affected Components: |
Info |
---|
AWS SQS - 10:00 UTC Type: Bug Fix Case ID: DFT-1458 Description: Support pagination Known limitations: N/A Affected Components: |
Info |
---|
Internal changes for several components - 10:00 UTC Type: Improvement Description: Internal improvement Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 29 ,2021 |
---|
Info |
---|
Compliance Rulesets Update - 10:30 UTC Type: Improvement Description: Fixing Azure rules. A complete list can be found here. Case ID: DFT-1467 Known limitations: N/A Affected Components: |
Info |
---|
Protected Assets - Alibaba Entities - 11:00 UTCType: Improvement Description: Added 'Status' as additional field to Alibaba ECS Instance entity in protected assets. Added 'DBInstanceStatus' as additional field to Alibaba RDS DB Instance entity in protected assets. Alibaba ECS Instance 'Billable Asset' property is set to 'Yes' in case 'Status' is 'Running'. Alibaba RDS DB Instance 'Billable Asset' property is set to 'Yes' in case 'DBInstanceStatus' is 'Running'.
Known limitations: N/A Affected Components: |
Info |
---|
Serverless - Obsolete dotnetcore2.1 FSP injector changes - 17:00 UTC Type: New Feature Description: Add/remove auto-protect feature from webapp UI won't be supported for dotnetcore2.1 runtime. Cloud Formation template has been changed. the new version: 21 Known limitations: N/A Affected Components: Status |
---|
title | serverless cloud formation |
---|
|
|
Info |
---|
Serverless - FSP add support for graviton2 - 17:00 UTC Type: New Feature Description: Cloudguard FSP Support for AWS Lambda running on Graivton2 processors FSP has been changed. the new version: 1.5.62 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 23 ,2021 |
---|
Info |
---|
Azure Subnet and VNET - 08:30 UTC Type: Bug Fix Case ID: DFT-1497 Description: Improve the way we correlate subnet to VNET model in compliance engine Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 19 ,2021 |
---|
Info |
---|
Shift Left - Feature enabled in Preview mode for all customers - 07:00 UTC Type: New Feature Description: Releasing it as preview for everyone, supporting Terraform and CFT. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 14 ,2021 |
---|
Info |
---|
Protected Assets Page - 07:00 UTC Type: Improvement Description: internal improvements. Known limitations: N/A Affected Components: |
Info |
---|
Findings Page - 07:00 UTC Type: Improvement Description: internal improvements. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 13 ,2021 |
---|
Info |
---|
Compliance Rulesets Update - 16:00 UTC Type: Improvement Description: Azure and GCP rules removal. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 9 ,2021 |
---|
Info |
---|
Compliance Rulesets Update - 16:00 UTC Type: Improvement Description: Adding new rules to the Azure best practices ruleset. A complete list can be found here. Known limitations: N/A Affected Components: |
...
Serverless - Generate Obsolete Runtime Task - 15:00 UTC
Type: Improvement
Description: For the functions with runtimes, that have reached end of support from AWS, an ObsoleteRuntimeTask will be created to notify the user that the account has the functions with unsupported runtimes. The task will have an information how to resolve that.
...
...
Info |
---|
Serverless - Dot-net auto protect bug fix - 15:00 UTCType: Bug Fix Description: Update Dot-net FSP instrumentation libraries to latest version. FSP has been changed. the new version: 1.5.60 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 5 ,2021 |
---|
|
Info |
---|
Azure Redis - 14:30 UTCType: Improvement Description: Internal improvement in error handling. Known limitations: N/A Affected Components: |
Info |
---|
Google Cloud Account - 13:30 UTCType: Improvement Description: Added new property "ProjectNumber" in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Type: Improvement Description: Removed redundant property "LastPingDateTime" in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Data Fetchers - 13:30 UTCType: Improvement Description: Internal improvement in multiple data fetchers. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 10:00 UTC Type: Improvement Case ID: SR-352, SR-346 Description: Adding new rules to the Azure best practices ruleset. A complete list can be found here. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 02 ,2021 |
---|
|
Info |
---|
Azure Redis - 18:00 UTCType: Improvement Case ID: DFR-1431 Description: Added the following properties to Azure Redis in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Data Fetchers Improvement - 18:00 UTCType: Improvement Description: Internal improvement in all data fetchers Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment September 1 ,2021 |
---|
|
Info |
---|
Compliance Rulesets Update - 15:00 UTC Type: Improvement Case ID: SR-281 Description: The first release of AWS CloudFormation Template ruleset. Known limitations: N/A Affected Components: |
Info |
---|
DataFetchers Improvement - 11:00 UTCType: Improvement Description: Internal improvement in all data fetchers Known limitations: N\A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 31 ,2021 |
---|
|
Info |
---|
Findings Page - Sorting - 18:00 UTC Type: Improvement Case ID: DFR-1866 Description: Adding Values for Action field: Detect and Prevent Known limitations: N/A Affected Components: |
Info |
---|
Findings Page - Sorting - 18:00 UTC Type: Bug Fix Description: Fix Events alphabetical sorting Known limitations: N/A Affected Components: |
Info |
---|
Findings Page - Action Buttons Improvement - 14:00 UTC Type: Improvement Case ID: DFR-1663 Description: UI change on the Findings actions. Known limitations: N/A Affected Components: |
Info |
---|
Dashboard - Widget Filter fix - 14:00 UTC Type: Bug Fix Case ID: DFT-1357 Description: Fixed an issue that affected filter on dashboards widgets. Known limitations: N/A Affected Components: |
Info |
---|
Intelligence Findings - Investigate button fix - 14:00 UTC Type: Bug Fix Case ID: DFT-1160 Description: Fixed a bug on the UI that sent the wrong URL when investigating a finding. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Report - Passed entities fix - 14:00 UTC Type: Bug Fix Case ID: DFT-1325, DFT-1420 Description: Fixed a bug on the UI representation on the report. Known limitations: N/A Affected Components: |
Info |
---|
External Findings API - 7:30 UTC Type: Bug Fix Description: Fixed a bug where External Findings API returns all types and findings, and not only external findings. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 30 ,2021 |
---|
|
Info |
---|
Azure Cosmos DB - 15:00 UTCType: Improvement Case ID: DFR-2028 Description: Added the following properties to Azure Cosmos DB in compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Serverless - fix list append - 16:00 UTCType: Bug Fix Description: Bug fix in k8s whitelist creation Known limitations: N/A Affected Components: |
Info |
---|
Serverless - profile according to callstack info - 16:00 UTCType: Improvement Description: Add support for callstack profiling and enforcement in Kubernetes - parent process/process that generate network activity. Known limitations: N/A Affected Components: |
Info |
---|
Serverless - intercept csharp function with harmony - 16:00 UTCType: Improvement Description: Intercept azure function using Harmony FSP has been changed. the new version: 1.5.59 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 26 ,2021 |
---|
|
Info |
---|
GCP Route - 11:00 UTCType: New Entity Case ID: DFR-1955 Description: Added support for GCP Route in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
GCP Router - 11:00 UTCType: New Entity Case ID: DFR-1954 Description: Added support for GCP Router in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
GCP Instance Template - 11:00 UTCType: New Entity Case ID: DFR-1953 Description: Added support for GCP Instance Template in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Azure Web App, Azure Function App - 11:00 UTCType: Improvement Case ID: DFR-1833 Description: Added 'scmIpSecurityRestrictionsUseMain' property under 'config' property in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Azure Web App, Azure Function App - 11:00 UTCType: Improvement Case ID: DFR-1833 Description: Added 'kind' property under 'config.accessRestrictions' property in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
AWS Onboarding - 10:00 UTC Type: Improvement Description: Internal change in AWS onboarding flow. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 25 ,2021 |
---|
|
Info |
---|
Data Fetchers - 11:30 UTC Type: Improvement Description: Internal Improvement Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 24 ,2021 |
---|
|
Info |
---|
Compliance Engine - 10:00 UTC Type: Terraform Improvement Description: Internal improvement. Known limitations: N/A Affected Components: |
Info |
---|
AWS GovCloud Onboarding - 12:30 UTC Type: Bug Fix Description: Fixed a bug which prevented onboarding of AWS GovCloud accounts. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Engine - 13:00 UTC Type: Removal of obsolete Ticketing system Description: Internal improvement. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 23 ,2021 |
---|
|
Info |
---|
Protected Assets - New Infrastructure - 11:00 UTCType: Improvement Description: Known limitations: N/A Affected Components: |
|
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 19 ,2021 |
---|
...
Kubernetes APIs - 14:00 UTC
Type: Improvement
Description: New and updated APIs for Pod Groups.
...
Change in Kubernetes image pod groups API return value.
When querying for pod groups that use specific KubernetesImage the ‘id’ field which to date returned the Kubernetes Id, will now be renamed as ExternalID.
Instead, the ‘id’ field will now return, CloudGuard id of the pod group and not the Kubernetes id.
Known limitations: N/A
Affected Components:
Info |
---|
Data Fetchers Improvement - 13:30 UTC Type: Improvement Description: Internal change in several data fetchers of AWS, Azure, GCP and Alibaba. Known limitations: N/A Affected Components: |
Info |
---|
AWS Onboarding - 11:00 UTC Type: Improvement Case ID: DFR-1884 Description: Changed the validation process. We no longer require EC2 permissions in order to complete AWS cloud accounts onboarding. Known limitations: N/A Affected Components: |
Info |
---|
CloudSecurityGroup API Performance - 11:00 UTC Type: Improvement Description: Improved the performance of '/v2/cloudsecuritygroup?forAccess=true' API. Known limitations: N/A Affected Components: |
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 18 ,2021 |
---|
|
Info |
---|
Compliance Engine MongoDB- 10:00 UTC Type: Improvement Description: Internal improvement. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 17 ,2021 |
---|
|
Info |
---|
Account registration and User Password Reset fix- 17:00 UTCType: Bug Fix Case ID: DFT-1370 Description: Fixed a UI issue that blocked specific flows affecting registering new accounts, users and password reset. Known limitations: N/A Affected Components: |
Info |
---|
Azure Storage Account - 13:30 UTCType: Improvement Case ID: DFR-1045 Description: Added 'AdvancedThreatProtectionEnabled' and 'BlobSoftDeleteEnabled' properties in protected assets and compliance engine. Known limitations: 'AdvancedThreatProtectionEnabled' is not supported in the following regions: southafricanorth, southafricawest, westus3, chinaeast2, norwayeast, australiacentral. Affected Components: |
Info |
---|
Azure Storage Account - 13:30 UTCType: Improvement Case ID: DFR-1045 Description: Enriched information in 'PrivateEndpointConnections' property in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Type: Improvement Description: Remove redundant 'ContentLength', 'HttpStatusCode' and 'ResponseMetadata' properties in compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
GCP HTTP Load Balancer - 13:00 UTC Type: New Entity Description: Added support for GCP HTTP Load Balancer in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
GCP TCP\UDP Load Balancer - 13:00 UTC Type: New Entity Description: Added support for GCP TCP\UDP Load Balancer in protected assets and compliance engine. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 16 ,2021 |
---|
|
Info |
---|
Compliance Engine- 16:00 UTC Type: Improvement Description: Internal improvement. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 12, 2021 |
---|
|
Info |
---|
AWS IAM User - 11:30 UTCType: Bug Fix Case ID: DFT-1359 Description: Set consistent order for the IAM access keys in compliance engine Known limitations: N/A Affected Components: |
Info |
---|
AWS Red Shift & AWS IAM User - 11:30 UTCType: Improvement Description: Improve error handling in the compliance engine. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 11,2021 |
---|
|
Info |
---|
Serverless - Proact - Get token from env var - 15:00 UTCType: Improvement Description: You can now use `CLOUDGUARD_ACCESS_TOKEN` environment variable to provide the token to cloudguard tool. Earlier only config file and command line parameters were supported. Known limitations: N/A Affected Components: |
Info |
---|
Serverless - get function errors - HF - 15:00 UTCType: Bug Fix Description: Serverless lambda errors (fsp injector, log subscription, inside vpc) Serverless azure function app errors Known limitations: N/A Affected Components: |
Info |
---|
Serverless - WRP auto identify os distribution - 15:00 UTCType: Improvement Description: Implement loader which responsible for identifying container OS, and initialize appropriate (per OS) libosfsp.so FSP has been changed. the new version: 1.5.52 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Info |
---|
Serverless - FSP node14.x support aws - 15:00 UTCType: Improvement Description: AWS is obsoleting node10.x runtime. We have removed Cloudguard FSP support for node10.x runtime and added support for node14.x. It is recommended to use latest nodejs runtime to continue protecting your functions with FSP. FSP has been changed. the new version: 1.5.57 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Info |
---|
AWS IAM Credentials Report - 14:00 UTCType: Bug Fix Description: Fixed an internal issue that caused a failure to generate the credentials report in some cases. Known limitations: N/A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 10,2021 |
---|
|
Info |
---|
Tenable.io Open Findings - 13:00 UTCType: Bug Fix Description: Fixed a bug which caused Tenable.io external finding to remain open after EC2 instance deletion. Known limitations: N\A Affected Components: |
|
Panel |
---|
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 9,2021 |
---|
|
Info |
---|
Azure Insights - 12:00 UTCType: Improvement Description: Infra Improvement for Azure Insights data fetcher. Known limitations: N\A Affected Components: |
Info |
---|
Shiftleft - Ignoring un relevant file types- 9:30 UTC Type: Improvement Description: Internal change in order to ignore not relevant files. Known limitations: N/A Affected Components: |
|
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 4,2021 |
---|
Info |
---|
Azure Virtual Machine - 13:30 UTC Type: Improvement Case ID: DFR-1938 Description: Added 'vmId' property to Azure Virtual Machine API Known limitations: N/A Affected Components: |
Info |
---|
Data Fetchers Improvement - 11:30 UTC Type: Improvement Description: Internal change in several data fetchers of Azure, GCP and Alibaba. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment August 3,2021 |
---|
Info |
---|
Kubernetes - Clean up old Images - 10:00 UTC Type: Improvement Description: Remove kubernetes Image objects that no longer exist in the cluster. Known limitations: N/A Affected Components: Kubernetes Images |
Info |
---|
Kubernetes - Update Admission Control APIs - 10:00 UTC Type: Improvement Description: Adding a targetType for requests and responses to Admission Control policies APIs. The relevant APIs are: {Get, Put, Post} at /v2/kubernetes/admissionControl/policy {Get, Delete} at /v2/kubernetes/admissionControl/policy/{id}.
The available target types for these APIs are "Environment", indicating an environment policy, and "OrganizationalUnit", indicating an Organizational Unit Policy. Known limitations: N/A Affected Components: Kubernetes API |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 29 ,2021 |
---|
Info |
---|
Azure Insights - 12:00 UTCType: Improvement Description: Removed redundant fields from Azure Insights entity. Known limitations: N\A Affected Components: |
Info |
---|
AWS SES - 12:00 UTCType: New Entity Case ID: DFR-771 Description: Added support for AWS SES in protected assets and compliance engine. Known limitations: Limited up to 1000 ses items per cloud account . Affected Components: |
Info |
---|
AWS Elastic Beanstalk - 12:00 UTCType: Improvement Case ID: DFR-1337 Description: Added 'Resources' and 'Settings' properties in protected assets and compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
Azure Log Profile & AWS Iam User - 12:00 UTCType: Improvement Description: Improve error handling in the compliance engine. Known limitations: N/A Affected Components: |
Info |
---|
AWS Group History - 12:00 UTC Type: Improvement Case ID: DFR-1343 Description: Internal improvement for non US regions. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 28 ,2021 |
---|
Info |
---|
Serverless - Handle old accounts ProtegoAgentBucketPolicy - 18:00 UTC Type: Improvement Description: Update Cross account CFT in order to support account update. cloud formation template has been changed. the new version: 20 Known limitations: N/A Affected Components: Status |
---|
title | serverless cloud formation |
---|
|
|
Info |
---|
Serverless - Serverless get function errors - 18:00 UTC Type: New Feature Description: Serverless lambda errors (fsp injector, log subscription, inside vpc) Serverless azure function app errors Known limitations: N/A Affected Components: |
Info |
---|
Serverless - FSP subprocess context support - 18:00 UTC Type: Improvement Description: Added support for sub-process in Azure. FSP has been changed. the new version: 1.5.56 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Info |
---|
Kubernetes - New APIs - 15:00 UTC Type: Improvement Description: New APIs for Containers Image Assurance. A new API that queries a specific image for the image details, including the results of the scan. A new API that queries a specific image for the Pods and Pod Groups that are deployed from this image. Known limitations: N/A Affected Components: |
Info |
---|
Kubernetes - Cluster status improvement - 15:00 UTC Type: Bug Fix Description: Fixed a bug where the Kubernetes cluster status could go from Initializing back to Pending status, during the onboarding process. Known limitations: N/A Affected Components: |
Info |
---|
Kubernetes - Scan status improvements - 15:00 UTC Type: Improvement Description: Added detailed error messages for image scan status when the image exceeds max size limits (as defined in the Helm chart) or exceeds max IP or URL limitation. When the image hasn’t been scanned yet, the status text was changed from ‘Pending’ to "Pending Scan" When there is an unrecoverable error during the scan, the status text was changed from ‘Error’ to "Internal Error" Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 26 ,2021 |
---|
Info |
---|
Compliance Engine- 07:30 UTC Type: Improvement Description: Internal improvement. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 25 ,2021 |
---|
Info |
---|
Serverless - Remove Python2.7 from CLI Tool- 15:00 UTC Type: Improvement Description: From the deprecation date of July 15, 2021, AWS Lambda will no longer apply security patches and other updates to the Python 2.7 runtime used by Lambda functions. In addition, functions using Python 2.7 will no longer be eligible for technical support. You will no longer be able to create new Lambda functions using the Python 2.7 runtime from this date. Python 2.7 has been removed from Proact Tool supported runtime, if you run the tool on Python 2.7 functions, you will get below error `UnsupportedRuntimeError - Runtime Python2.7 will no longer be supported. To continue receiving security updates and support, please upgrade to Python3.x` Please migrate your Python 2.7 functions to Python 3.x proact tool has been changed. the new version: 1.5.50 Known limitations: N/A Affected Components: |
Info |
---|
Serverless - Obsolete node 10x- 15:00 UTC Type: Improvement Description: Since AWS will be soon obsoleting node 10.x support, the nodejs scanner is upgraded to node14.x Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 22 ,2021 |
---|
Info |
---|
Alibaba - Organizational Units - 14:00 UTC Type: Improvement Case ID: DFR-1903 Description: Added APIs to support Organizational Units management for Alibaba cloud accounts. Known limitations: Not supported in UI. Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 21 ,2021 |
---|
Info |
---|
Alibaba RAM Password Policy - 17:00 UTC Type: Bug Fix Description: Rename property from 'ramPolicyPasswordId' to 'policyPasswordId' in compliance engine Known limitations: N/A Affected Components: |
Info |
---|
Alibaba KMS - 17:00 UTC Type: Bug Fix Description: Change 'automaticRotation' property from date time to string type in compliance engine Known limitations: N/A Affected Components: |
Info |
---|
Support AWS Osaka Japan Region - 17:00 UTC Type: Improvement Description: Added support for Osaka region. Known limitations: N/A Affected Components: Status |
---|
title | SECURITY GROUP MANAGEMENT |
---|
|
|
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 20 ,2021 |
---|
Info |
---|
Kubernetes - Helm chart 2.4.0 released - 20:00 UTCType: New Release Description: A new Helm chart, version 2.4.0 was released. The main changes include: Image Assurance: Image Assurance Engine memory limit modified to be to [MAX_IMAGE_SIZE]+500MB (the default value remains 2GB+500MB). Runtime Protection: Added Containerd support. Reduce required agent privileges. Container runtime auto-detection. There is no longer a need to manually set the runtime environment (Docker/Containerd). Telemetry enhancements Miscellaneous bug fixes (fix references to Check Point in helm chart docs fields, fix various typos/formatting, etc)
Known limitations : N/A Affected Components : |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 19 ,2021 |
---|
Info |
---|
Serverless - FSP support for java8.al2 runtime - 12:00 UTCType: Improvement Description: Add FSP add/remove support for java8.al2 runtime. FSP has been changed. the new version: 1.5.55 Cloud Formation template has been changed. the new version: 18 Known limitations : N/A Affected Components : Status |
---|
title | serverless runtime protection |
---|
| |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 15 ,2021 |
---|
Info |
---|
AWS Backup Vault - 12:00 UTCType: New Entity Case ID: DFR-1789 Description: Added support for AWS Backup Vault in protected assets and compliance engine. Known limitations: Requires a new permission to cloud guard role - "backup:ListBackupVaults". Affected Components: |
Info |
---|
Azure Function App - 12:00 UTCType: Improvement Case ID: DFR-1935 Description: Added 'externalPrivateEndpoints' property in the compliance engine. Known limitations: Requires a new permission to cloud guard role - "Microsoft.Web/sites/config/list/action". Affected Components: |
Info |
---|
AWS VPC, Subnet & VPC Peering connection - 12:00 UTCType: Improvement Case ID: DFR-1848 Description: Added 'ownerId' property in the compliance engine and API. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 13,2021 |
---|
Info |
---|
Serverless - Obsolete Python2.7 - 18:00 UTCType: Improvement Description: Obsolete Python2.7 runtime as AWS is going to end Python 2 support for the AWS CLI and SDK. Known limitations: N\A Affected Components: |
Info |
---|
AWS Security Groups- 13:00 UTCType: Improvement Description: Infrastructure changes for data fetchers responsible for AWS security groups handling. Known limitations: N\A Affected Components: |
Info |
---|
Data Fetchers - Permissions Handling - 13:00 UTCType: Improvement Description: Cloud Accounts permissions handling infrastructure changes. Known limitations: N\A Affected Components: |
Info |
---|
Azure Insights - 13:00 UTCType: New Entity Case ID: DFR-891 Description: Added support for Azure Insights entity. The entity contains Azure resource's Diagnostic Settings. Currently the following entity types are supported: Virtual Machines, Function Apps, Web Apps, SQL DBs, Network Security Groups.
Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 11:45 UTC Type: Improvement Case ID: DFR-1661 Description: The first release of Hi-Trust and ITSG-33 rulesets for AWS. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 12,2021 |
---|
Info |
---|
Infrastructure Improvement - 14:00 UTC Type: Improvement Case ID: DFT-1353 Description: Improved Posture Findings filters sorting. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 11:25 UTC Type: Improvement Description: GCP CloudGuard Network Alerts ruleset depreciation. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 11,2021 |
---|
Info |
---|
Infrastructure Improvement - 09:00 UTC Type: Improvement Description: Internal improvement Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 8,2021 |
---|
Info |
---|
AWS EKS Cluster - 13:00 UTC Type: Improvement Case ID: DFR-1640 Description: Added 'fargateProfiles' property in the compliance engine Known limitations: N/A Affected Components: |
Info |
---|
AWS IAM Role - 13:00 UTC Type: Improvement Case ID: DFR-1790 Description: Added 'roleLastUsed' and 'maxSessionDuration' properties in the compliance engine and API. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 7,2021 |
---|
Info |
---|
Serverless - Azure learning - 16:00 UTC Type: New Feature Description: Add behavior for Azure Function App Known limitations: N/A Affected Components: |
Info |
---|
Serverless - Azure - support context in threads - 16:00 UTC Type: Improvement Description: A support to identify function name in a thread created by Azure function FSP has been changed. the new version: 1.5.52 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Info |
---|
Serverless - Java FSP remove bug - 16:00 UTC Type: Bug Fix Description: Java bug fix FSP add/remove using cli tool. FSP has been changed. the new version: 1.5.53 The plugin version has been changed. Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
| |
Info |
---|
Serverless - CLI Python3 Transition - 16:00 UTC Type: Improvement Description: Transition of CLI tool to Python3 as AWS is going to end Python 2 support for the AWS CLI and SDK. FSP has been changed. the new version: 1.5.49 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Info |
---|
Serverless - Add severity to security events - 16:00 UTC Type: Improvement Description: Add severity to k8s signature security events Known limitations: N/A Affected Components: |
Info |
---|
Type: Improvement Description: Improving throttling errors handling Known limitations: N\A Affected Components: |
Info |
---|
AWS Shield - 15:00 UTCType: Improvement Description: Improving throttling errors handling Known limitations: N\A Affected Components: |
Info |
---|
Alibaba RDS - 15:00 UTCType: Improvement Description: Added 'dbInstanceIpHostnames' property in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
Serverless - Remove logs poller - 15:00 UTC Type: Improvement Description: Remove Logs Poller. Known limitations: N/A Affected Components: |
Info |
---|
Serverless - Generate FSP UUID from plugin - 15:00 UTC Type: Improvement Description: Read UUID from cloudguard-fsp-config.json FSP has been changed. the new version: 1.5.51 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Info |
---|
Serverless - Bug fix for azure dot-net function on IO block - 15:00 UTC Type: Bug Fix Description: For any IO block event in azure dot-net functions, it should not allow access and return 500 internal server error FSP has been changed. the new version: 1.5.50 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Info |
---|
Serverless - Support network and improve signature alert - 15:00 UTC Type: New Feature Description: Add Network profiling and enforcement support for Kubernetes workloads. Change the Signature security events aggregation logic to include the event action - detect/block. Known limitations: N/A Affected Components: |
Info |
---|
Serverless - Retry FSP policy download - 15:00 UTC Type: Improvement Description: Implemented policy download retry mechanism for Azure FSP. FSP has been changed. the new version: 1.5.50 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
Info |
---|
Serverless - Bug fix for azure dot-net function on IO block - 15:00 UTC Type: Improvement Description: Generate timestamp UUID azure FSP has been changed. the new version: 1.5.49 Known limitations: N/A Affected Components: Status |
---|
title | serverless runtime protection |
---|
|
|
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment July 1,2021 |
---|
Info |
---|
Compliance Improvement- 17:45 UTC Type: Improvement Description: Internal improvement Known limitations: N/A Affected Components: |
Info |
---|
Infrastructure Improvement - 15:30 UTC Type: Improvement Description: Internal improvement Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 24,2021 |
---|
Info |
---|
AWS Application and Network Load Balancer - 16:00 UTC Type: Improvement Description: Internal performance improvement Known limitations: N/A Affected Components: |
Info |
---|
Alibaba RDS - 13:00 UTCType: Improvement Description: Adjust db type and version enrichment fetching for Alibaba RDS. Known limitations: N\A Affected Components: |
Info |
---|
AWS Application Auto Scaling Policy - 13:00 UTCType: New Entity Case ID: DFR-1653 Description: Added support for AWS Application Auto Scaling Policy in protected assets and compliance engine. Known limitations: N\A Affected Components: |
Info |
---|
EntityFetchStatus API - 13:00 UTCType: Improvement Description: Internal performance enhancement for the GET request in EntityFetchStatus API. Known limitations: N\A Affected Components: |
Info |
---|
Service Account - 13:00 UTCType: Improvement Case ID: DFT-1321 Description: Allow to manage service accounts via SSO JIT users. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 23,2021 |
---|
Info |
---|
Compliance Rulesets Update - 15:00 UTC Type: Improvement Description: Updating best practices rulesets, changing the name of Alibaba ruleset. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 22,2021 |
---|
Info |
---|
AWS Instance - 11:40 UTC Type: Improvement Description: Internal improvement Known limitations: N/A Affected Components: |
Info |
---|
Compliance Improvement- 11:40 UTC Type: Improvement Description: Internal improvement Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 20, 2021 |
---|
Info |
---|
Authentication Improvements - 12:30 UTCType: Improvement Description: Authentication flows improvements. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 17,2021 |
---|
Info |
---|
AWS Instance - 15:15 UTC Type: Improvement Case ID: DFR-1429 Description: Added 'ssmAgentInstanceInformation' property in the compliance engine Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 16,2021 |
---|
Info |
---|
Azure Storage Account - Blob Containers - 12:00 UTC Type: Internal Change Description: Limited the amount of fetched Blob Containers for each Storage Account. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement- 10:30 UTC Type: Improvement Description: Internal improvement Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 13,2021 |
---|
Info |
---|
Compliance Rulesets Update - 12:45 UTC Type: Improvement Description: Fix for D9.AWS.CRY.05. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 10,2021 |
---|
Info |
---|
Compliance Improvement - 15:30 UTCType: Improvement core Description: Internal improvement upgrading core version. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 9,2021 |
---|
Info |
---|
Azure Key Vault - 12:00 UTCType: Improvement Case ID: DFT-1128 Description: Added 'ipRulesObjects' property in the compliance engine Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 7,2021 |
---|
Info |
---|
AWS Lambda Function - 17:00 UTCType: Bug Fix Case ID: DFT-1133 Description: Fetch lambda functions where package type is image Known limitations: N\A Affected Components: |
Info |
---|
Serverless billable asset change - 17:00 UTCType: Improvement Description: Billable assets Serverless ratio was updated to 1:60 Known limitations: N\A Affected Components: |
Info |
---|
Azure Security Center - 10:00 UTCType: New Entities Case ID: DFR-1226 Description: Added support for Azure AutoProvisioningSettings and SecurityContact in the compliance engine. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 3,2021 |
---|
Info |
---|
Alibaba RDS - 13:15 UTCType: Improvement Description: Added 'dbInstanceBackupPolicy' property in the compliance engine Added 'dbInstanceEndpoints' property in the compliance engine Added 'dbInstanceEncryptionKey' property in the compliance engine
Known limitations: N\A Affected Components: |
Info |
---|
Azure Data Fetchers - 13:15 UTCType: Improvement Description: Improving permission errors handling Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 2,2021 |
---|
Info |
---|
Kubernetes Agent Status Enchantments - 16:30 UTC Type: Improvement Description: The Kubernetes agent status have been refactored with faster and more detailed Agent deployment status information. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 12:45 UTC Type: Improvement Description: The first release of the Azure New Zealand Information Security Manual (NZISM) v.3.4 rulesets and fix duplicated rules. A complete list can be found here. Known limitations: N/A Affected Components: |
Info |
---|
Azure Storage Account - 11:15 UTC Type: Improvement Case ID: DFR-1465 Description:
Known limitations: N\A Affected Components: |
Info |
---|
Azure Virtual Machine - 11:15 UTC Type: Improvement Case ID: DFR-1465, DFR-1680 Description:
Known limitations: N\A Affected Components: |
Info |
---|
AWS Cloud Front - 11:15 UTC Type: Improvement Description: Added property 'protectedByShield' to AWS Cloud Front entity. Known limitations: N\A Affected Components: |
Info |
---|
AWS Network Load Balancer - 11:15 UTC Type: Improvement Description: Added property 'protectedByShield' to AWS NLB entity. Known limitations: N\A Affected Components: |
Info |
---|
AWS Application Load Balancer - 11:15 UTC Type: Improvement Description: Added property 'protectedByShield' to AWS ALB entity. Known limitations: N\A Affected Components: |
Info |
---|
AWS ELB - 11:15 UTC Type: Improvement Description: Added property 'protectedByShield' to AWS ELB entity. Known limitations: N\A Affected Components: |
Info |
---|
Alibaba SLB - 11:15 UTCType: New Entity Case ID: DFR-1506 Description: Added support for Alibaba Server Load Balancer in protected assets and compliance engine. Known limitations: N\A Affected Components: |
Info |
---|
Alibaba Auto Scaling Group- 11:15 UTCType: New Entity Case ID: DFR-1512 Description: Added support for Alibaba Auto Scaling Group in protected assets and compliance engine. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment June 1,2021 |
---|
Info |
---|
Compliance Improvement - 8:00 UTCType: Improvement Description: Internal improvement Statistics counter improvement. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 15:00 UTCType: Improvement Description: Internal improvement Image Scan model update. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 31,2021 |
---|
Info |
---|
Intercom - 16:45 UTC Type: Bug Fix Description: Added default value for 'registered by' property. Known limitations: N/A Affected Components: |
Info |
---|
Support Alibaba Region - China Guangzhou - 15:30 UTC Type: Improvement Description: Added support for China Guangzhou region. Known limitations: N/A Affected Components: |
Info |
---|
Update Image Risk Score - 12:30 UTCType: Improvement Description: ImageScan result will now feature an Image Risk Score value in the CVSS format of 0-10.0. Image Risk Score will denote an image’s overall risk potential. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 30,2021 |
---|
Info |
---|
Kubernetes new APIs - 16:45 UTCType: Improvement Description: Some Kubernetes API have been changed for better usability. Kubernetes onboarding and Admission Control APIs have been refactored. note: Even though the documentation has been updated to reflect the new format, the old format of the APIs will continue to be supported. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 26,2021 |
---|
Info |
---|
Compliance Rulesets Update - 12:45 UTC Type: Improvement Description: Adding new rules to new vendor preview ruleset. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 20,2021 |
---|
Info |
---|
Serverless - FSP Version List - 14:00 UTCType: New Feature Description: Adding the ability to set the FSP version manually for AWS Lambda. The plugin and proact tool have been changed. Known limitations: N\A Affected Components: |
Info |
---|
Serverless - SNS Topic per Account - 14:00 UTCType: Improvement Description: Use SNS topic per account for cross account interaction cloud_formation template has been changed. the new version: 16 Known limitations: N\A Affected Components: |
Info |
---|
Serverless - Ignore IO Values - 14:00 UTCType: Bug Fix Description: This fixes the false positive security events due to change in chrome headers in latest update. FSP has been changed. the new version: 1.5.48 Known limitations: N\A Affected Components: |
Info |
---|
Azure Data Fetchers - Permissions Handling - 10:00 UTCType: Improvement Description: Azure Cloud Accounts permissions handling infrastructure changes. Known limitations: N\A Affected Components: |
Info |
---|
Azure Policy Definition - 10:00 UTCType: Bug Fix Description: Fixed an issue with Azure Policy Definition data fetcher which caused sync failures in some cases. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 19,2021 |
---|
Info |
---|
New Cloud Vendor Support - 17:00 UTCType: New Entity Description: Added support for new entities in the compliance engine Known limitations: N/A Affected Components: |
Info |
---|
AWS IAM Data Fetchers - 17:00 UTCType: Improvement Description: Infrastructure improvement Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 12:00 UTC Type: Improvement Description: Adding new rules to new vendor preview ruleset. Removing D9.AWS.NET.69. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 12,2021 |
---|
Info |
---|
AWS IAM Data Fetchers - 18:00 UTCType: Improvement Description: Infrastructure improvement Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 09:37 UTC Type: Improvement Description: Adding new rules to Azure Best Practice ruleset. Fixing D9.AZU.IAM.06 rule. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 10,2021 |
---|
Info |
---|
AWS Onboarding - Role Trust Policy - 16:00 UTC Type: Bug Fix Description: Changes in AWS Roles External ID generation logic. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 11:10 UTC Type: Improvement Description: Azure CloudGuard Network Alerts ruleset depreciation. Replacing old network rules in new network rules. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 9,2021 |
---|
Info |
---|
GCP Data Fetchers - Permissions Handling - 12:00 UTCType: Improvement Description: GCP Cloud Accounts permissions handling infrastructure changes. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment May 3,2021 |
---|
Info |
---|
Roles Page - Adding Service account indicator - 16:15 UTCType: Improvement Case ID: DFR-1146 Description: Adding Service Accounts indicator. Known limitations: N\A Affected Components: |
Info |
---|
Dashboards - Public option fix - 16:15 UTCType: Bug fix Case ID: DFT-1146 Description: Fixing an issue while creating a public custom dashboard. Known limitations: N\A Affected Components: |
Info |
---|
Environments page - typo fix - 16:15 UTCType: Bug fix Case ID: DFT-1153 Description: Fixing a typo on EU West region. Known limitations: N\A Affected Components: |
Info |
---|
CSV Export - Download fix - 16:15 UTCType: Bug fix Case ID: DFT-1166 Description: Fixing an issue that prevented download on windows system. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Report - Print fix - 16:15 UTCType: Bug fix Case ID: DFT-1169, DFT-1174 Description: Fixing an issue that affected printing reports. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 8:00 UTCType: Improvement Description: Internal improvement Statistics counter improvment. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 10:00 UTCType: Improvement Description: Internal improvement ElasticSearch Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 29,2021 |
---|
Info |
---|
Compliance Improvement - 7:00 UTCType: Improvement Description: Internal improvement Runners. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 8:00 UTCType: Improvement Description: Internal improvement Data Migration. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 28,2021 |
---|
Info |
---|
Compliance Rulesets Update - 13:40 UTC Type: Improvement Description: Rules added to AWS and GCP best practices rulesets. Rule D9.AWS.IAM.1020 was fixed. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 28,2021 |
---|
Info |
---|
Kubernetes Assets - New columns - 11:00 UTC Type: Improvement Description: Kubernetes asset list now support additional columns such as namespace, number of workloads, image tags, etc. Known limitations: This change only affects new and/or changed objects. Affected Components: Status |
---|
title | Kubernetes Protected Assets page |
---|
|
|
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 27,2021 |
---|
Info |
---|
Azure Storage Account - 14:00 UTC Type: Improvement Case ID: DFR-1535 Description: Added 'blobContainers' property for Azure Storage Account in the compliance engine. Known limitations: N\A Affected Components: |
Info |
---|
Azure Container Registry - 14:00 UTC Type: Improvement Case ID: DFR-1621 Description: Added networking properties for Azure Container Registry in the compliance engine. Known limitations: N\A Affected Components: |
Info |
---|
AWS Athena - 14:00 UTC Type: Entity Removal Case ID: DFT-1114 Description: AWS Athena Query Execution (Athena in GSL) was removed in order to prevent rate limit and costs impact. Known limitations: N\A Affected Components: |
Info |
---|
AWS RDS DB Instance - 13:00 UTC Type: Bug Fix Case ID: DFT-1096 Description: Fetch tags for AWS RDS DB Instance in china and gov regions. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 26,2021 |
---|
Info |
---|
Compliance CSV export - 18:30 UTC Type: Improvement Case ID: DFR-1743 Description: Added IsExcluded field to the CSV report. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 15:00 UTC Type: Improvement Description: Rules added to AWS and GCP best practices rulesets. Known limitations: N/A Affected Components: |
Info |
---|
AWS Dynamo DB Table - 13:30 UTC Type: Bug Fix Case ID: DFT-1096 Description: Fetch tags for AWS Dynamo DB Table in china and gov regions. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 22,2021 |
---|
Info |
---|
UI - Infrastructure improvements - 12:30 UTCType: Improvement Description: Internal improvement and new login page. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 8:00 UTCType: Improvement Description: Internal improvement Teams integrations Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 21,2021 |
---|
Info |
---|
Protected assets - Kubernetes fixes - 22:00 UTCType: Bug fix Case ID: DFT-1142, DFT-1141 Description: Fixing minor UI issues. Known limitations: N\A Affected Components: |
Info |
---|
Protected assets page - VPC fix - 22:00 UTCType: Bug fix Case ID: DFT-1147 Description: Fixing an issue that showed AWS VPC as new vendor cloud VPC. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 20,2021 |
---|
Info |
---|
Serverless - optimise se q flow - 14:00 UTCType: Improvement Description: Optimize security events handling flow, to prevent delay of processing and display. Known limitations: N\A Affected Components: |
Info |
---|
Serverless - Azure python post deploy instrumentation - 14:00 UTCType: New Feature Description: FSP can now be added to an already deployed Azure function app. This support is currently enabled for Python runtime (Linux containers). Known limitations: N\A Affected Components: |
Info |
---|
Serverless - Azure post deploy premium - 14:00 UTCType: Improvement Description: Added support for Azure post deploy functionality for premium and app service plans. Known limitations: N\A Affected Components: |
Info |
---|
Serverless - Add dynamic signatures fetch - 14:00 UTCType: New Feature Description: Dynamic update of k8s signatures from Check Point Research team. Known limitations: N\A Affected Components: |
Info |
---|
AWS S3 Bucket - 14:00 UTC Type: Improvement Description: Added property 'arn' to AWS S3Bucket entity. Known limitations: N\A Affected Components: |
Info |
---|
GCP IAM Group - 12:30 UTC Type: Bug Fix Description: Fixed an issue that caused GcpIamGroup.groupData property to be empty. Known limitations: N\A Affected Components: |
Info |
---|
GCP IAM User - 10:30 UTC Type: Improvement Description: Added 'roles' property in the compliance engine. This property holds all the roles assigned to the user directly on the onboarded project. Added 'userData.groups' property in the compliance engine. This property includes holds all groups the user is member in and in the same domain.
Known limitations: Roles are not include organization inheritance Affected Components: |
Info |
---|
GCP IAM Role - 10:30 UTC Type: New Entity Description: Added support for GCP Project IAM Role (custom and predefined) including the role permissions in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
GCP VM Instance- 10:30 UTC Type: Improvement Description: Added 'sourceImage' and 'sourceImageId' properties for each GCP VM Instance Disk in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
GCP Disk - 10:30 UTC Type: New Entity Description: Added support for GCP Disk in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
GCP Image - 10:30 UTC Type: Improvement Description: Added 'creationTimestamp' property for GCP Image in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
GCP Project - 10:30 UTC Type: Improvement Case ID: DFR-1698 Description: Added 'enabledServices' property for GCP Project in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
Azure Function App and Web App - 10:30 UTC Type: Improvement Case ID: DFR-1572 Description: Added 'appServicePlan' property for Azure Function App and Web App in the compliance engine Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 19,2021 |
---|
Info |
---|
Azure Function App - 18:00 UTC Type: Improvement Case ID: DFR-1635, DFR-1636, DFR-1642 Description:
Added 'privateEndpoints' property in the compliance engine Added 'unauthenticatedClientAction' property in the compliance engine Populate SCM IP Security Restrictions as part of 'config.accessRestrications' property in the compliance engine
Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 15:00 UTC Type: Improvement Description: Rules added to Azure best practices ruleset. Logic fix of D9.GCP.CRY.07. Known limitations: N/A Affected Components: |
Info |
---|
New Cloud Vendor Support - New Infrastructure - 14:00 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
Info |
---|
AWS Shield - 14:00 UTC Type: New Entity Case ID: DFR-1715 Description: Added support for AWS Shield in the compliance engine Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 13,2021 |
---|
Info |
---|
New Cloud Vendor Support - New Infrastructure - 19:00 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 12,2021 |
---|
Info |
---|
Compliance Rulesets Update - 13:00 UTC Type: Improvement Description: The first release of GCP GDPR ruleset. Rules added to GCP best practices ruleset. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 08,2021 |
---|
Info |
---|
Azure Storage Account - 10:30 UTCType: Bug Fix Case ID: DFT-1149 Description: Populate 'resourceGroup' property for Azure Storage Account in compliance engine. Known limitations: N\A Affected Components: |
Info |
---|
New Cloud Vendor Support - New Infrastructure - 10:30 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 07,2021 |
---|
Info |
---|
AWS Data Fetchers - 13:30 UTC Type: Bug Fix Description: Fixed an issue with missing permissions handling for AWS entities: Sqs, Organization. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 14:00 UTC Type: Improvement Description: Fixing an issue affected internally. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 06, 2021 |
---|
Info |
---|
Rulesets page - Run assessment permission fix - 13:30 UTCType: Bug fix Case ID: DFT-1124 Description: Fixing an issue that disabled the run button. Known limitations: N\A Affected Components: |
Info |
---|
Exclusions page - Free search text fix - 13:30 UTCType: Bug fix Case ID: DFT-1123 Description: Fixing an issue that affected searching for rule names. Known limitations: N\A Affected Components: |
Info |
---|
Event page - Adding missing links - 13:30 UTCType: Bug fix Case ID: DFT-1116 Description: Adding alert missing links. Known limitations: N\A Affected Components: |
Info |
---|
AWS Onboarding - Fix for full protection - 13:30 UTCType: Bug fix Case ID: DFT-1070 Description: Fixing an issue to restrict converting security groups to full protection. Known limitations: N\A Affected Components: Status |
---|
title | aws unsafe-onboarding |
---|
|
|
Info |
---|
Log.ic - Fixing time ticker - 13:30 UTCType: Bug fix Case ID: DFT-1095 Description: Fixing an issue affected the time ticker. Known limitations: N\A Affected Components: |
Info |
---|
New cloud vendor support - Infrastructure change - 13:30 UTCType: New feature Case ID: DFR-1598 Description: Adding new vendor support framework. Known limitations: N\A Affected Components: |
Info |
---|
Continuous posture - Showing only associated policies - 13:30 UTCType: Improvement Case ID: DFR-1381 Description: Showing only associated elements. Known limitations: N\A Affected Components: |
Info |
---|
Protected assets - Added DaemonSet asset page - 13:30 UTCType: Improvement Case ID: DFR-1266 Description: Adding DaemonSet asset page. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Apr 05,2021 |
---|
Info |
---|
New Cloud Vendor Support - New Infrastructure - 17:00 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
Info |
---|
GCP Filestore Instance - 16:30 UTC Type: New Entity Case ID: DFR-1558 Description: Added support for GCP Filestore Instance in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
AWS Data Fetchers - 14:00 UTC Type: Bug Fix Description: Fixed an issue with missing permissions handling for AWS entities: NatGateway, RDSDBSnapshot. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 12:00 UTC Type: Improvement Description: Rules added to Azure and GCP best practices rulesets. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 31, 2021 |
---|
Info |
---|
Azure SQL Server - 11:00 UTC Type: Improvement Case ID: DFR-1102 Description: Added 'minimalTlsVersion' property for Azure SQL Server entity in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
New Cloud Vendor Support - New Infrastructure - 11:00 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 30, 2021 |
---|
Info |
---|
New Cloud Vendor Support - New Infrastructure - 08:30 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 25, 2021 |
---|
Info |
---|
AWS Route53 Hosted Zone - 14:00 UTC Type: Improvement Case ID: DFR-1442 Description: Added 'queryLoggingConfigs' property for AWS Route53 Hosted Zone entity in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
New Cloud Vendor Support - New Infrastructure - 14:00 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 22, 2021 |
---|
Info |
---|
Compliance Improvement - 10:00 UTCType: Improvement Description: Internal improvement Known limitations: N\A Affected Components: |
Info |
---|
New cloud vendor support - Infrastructure change - 10:00 UTCType: New feature Case ID: DFR-1528, DFR-1530, DFR-1531 Description: Adding new vendor support framework. Known limitations: N\A Affected Components: |
Info |
---|
Dashboards - Fixing account ID filter - 10:00 UTCType: Bug fix Case ID: DFT-1078 Description: Fixing an issue for specific widgets with account Id. Known limitations: N\A Affected Components: |
Info |
---|
UI changes - Titles removal and filter change - 10:00 UTCType: Improvement Case ID: DFR-1576, DFR-1577 Description: Removing page titles from all system pages, combine the filter and search to a single line. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Reports - Adding representation for passed entities - 10:00 UTCType: Improvement Case ID: DFR-377 Description: The assessment results now will show the failed and passed entities. Known limitations: N\A Affected Components: |
Info |
---|
Notifications page - Improving Error Messages - 10:00 UTCType: Improvement Case ID: DFR-1437 Description: When a Webhook integration fails the page will return the complete error message. Known limitations: N\A Affected Components: |
Info |
---|
Dashboards - Adding Assignee = me - 10:00 UTCType: Improvement Case ID: DFR-1548 Description: Adding filter to represent which alerts assigned to the current user. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 21, 2021 |
---|
Info |
---|
GCP Data Fetchers - New Infrastructure - 13:00 UTCType: Improvement Description: Added a new Infrastructure for GCP Data Fetchers Known limitations: N/A. Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 18, 2021 |
---|
Info |
---|
New Cloud Vendor Support - New Infrastructure - 15:00 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
Info |
---|
New Welcome Pages - 14:00 UTCType: Improvement Description: Added new default welcome pages to menu sections : Posture Network Identity Workload Protection Intelligence
Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 17,2021 |
---|
Info |
---|
New Cloud Vendor Support - New Infrastructure - 14:00 UTCType: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 12:30 UTCType: Improvement Description: Rules added to GCP Best Practice ruleset. D9.AWS.DR.04 was removed. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 15,2021 |
---|
Info |
---|
Compliance Backend Functionality enhancement - 14:00 UTCType: Improvement Description: Adding Backend functionality in order to support a new cloud vendor. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 14,2021 |
---|
Info |
---|
FSP version visibility - 08:00 UTCType: New Feature Case ID: PROT-713 Description: Adding a new visibility for each AWS lambda that’s use FSP, to get the FSP version. The purpose of this feature is that in the next step we will have the ability to set the FSP version manually. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 10,2021 |
---|
Info |
---|
New Cloud Vendor Support - New Infrastructure - 12:00 UTC Type: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 12:40 UTC Type: Improvement Description: Rules added to Azure CIS v1.1,v1.2, and v1.3 rulesets. and Azure CIS v1.2 enrichment. New and fix rules for GCP rulesets. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 09,2021 |
---|
Info |
---|
Compliance Improvement - 10:00 UTCType: Improvement Description: Internal improvement Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 08,2021 |
---|
Info |
---|
GSL Builder - Run rule on all Accounts - 14:00 UTCType: Improvement Case ID: DFR-434 Description: Added ability to run a rule on multiple accounts. Known limitations: N\A Affected Components: |
Info |
---|
Environment page - Log.ic improvements - 14:00 UTCType: Improvement Case ID: DFR-1451, DFR-1452, DFR-1454 Description: Minor UI Improvements Known limitations: N\A Affected Components: |
Info |
---|
Configuration explorer - Group by fix - 14:00 UTCType: Bug fix Case ID: DFT-1034 Description: Fix for group by option Known limitations: N\A Affected Components: Status |
---|
title | configuration explorer |
---|
|
|
Info |
---|
Exclusions page - Export to CSV fix - 14:00 UTCType: Bug fix Case ID: DFT-1086 Description: Fix for the excluded rule name Known limitations: N\A Affected Components: |
Info |
---|
Exclusions page - Rule name fix - 14:00 UTCType: Bug fix Case ID: DFT-1052 Description: Fix for the excluded rule name Known limitations: N\A Affected Components: |
Info |
---|
Log.ic - Explorer graph fix - 14:00 UTCType: Bug fix Case ID: DFT-1100 Description: Fix an issue that cause the page to break Known limitations: N\A Affected Components: |
Info |
---|
Ruleset page - Bug fix on create exclusion - 14:00 UTCType: Bug fix Case ID: DFT-1102 Description: Fix an exception that cause the page to freeze Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 13:40 UTCType: Improvement Description: Internal Migration Known limitations: N\A Affected Components: |
Info |
---|
ShiftLeft CLI - 12:00 UTCType: Improvement Description: Improving error messages output Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 10:40 UTCType: Improvement Description: Internal improvement Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 07,2021 |
---|
Info |
---|
Azure Storage Account - 11:30 UTC Type: Improvement Case ID: DFR-1485 Description: Added 'privateEndpointConnections' property for Azure StorageAccount entity in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 10:30 UTC Type: Improvement Description: The first release of Azure CIS v1.3 ruleset and Azure CIS v1.2 enrichment. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 04,2021 |
---|
Info |
---|
Cloud IAM Role - 09:55 UTC Type: Improvement Description: Added 'AssumeRolePolicy’ property to Cloud IAM Role API Known limitations: N/A Affected Components: |
Info |
---|
New Cloud Vendor Support - New Infrastructure - 09:55 UTC Type: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 02,2021 |
---|
Info |
---|
Compliance Improvement - 10:00 UTCType: Improvement Description: Internal improvement Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 12:00 UTCType: Improvement Description: Internal Finding Validation improvement Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Mar 01,2021 |
---|
Info |
---|
AWS EKS Cluster - 16:00 UTC Type: Bug Fix Case ID: DFT-1048 Description: Support node group label/tag key containing dots. Known limitations: N/A Affected Components: |
Info |
---|
Azure Function App and Web App - 16:00 UTC Type: Improvement Case ID: DFR-1461 Description: Access Restrictions with source of type 'Service Tag' are supported. Known limitations: N/A Affected Components: |
Info |
---|
New Cloud Vendor Support - New Infrastructure - 13:00 UTC Type: Improvement Description: Adding new infrastructure in order to support new cloud vendor. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 28,2021 |
---|
Info |
---|
Azure Event Hub Namespace - 15:30 UTC Type: Improvement Case ID: DFR-1053 Description: Added 'virtualNetworkRules' property for Azure Event Hub Namespace in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
Azure Data Fetchers - 13:00 UTCType: Improvement Description: Infra Improvement for Azure data fetchers: Bastion and Maria DB. Known limitations: N\A Affected Components: |
Info |
---|
AWS API Gateway V2 - 13:00 UTC Type: New Entity Case ID: DFR-1470 Description: Added support for AWS HTTP API Gateway in the compliance engine Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 25,2021 |
---|
Info |
---|
Azure Function App and Web App - 16:00 UTC Type: Improvement Case ID: DFR-1461 Description: Known limitations: Access Restrictions with at least one source of type 'Service Tag' are not supported. Will be supported on later phase. Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 24,2021 |
---|
Info |
---|
Compliance Rulesets Update - 10:00 UTC Type: Improvement Description: Adding AWS Best practices rule. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 23,2021 |
---|
Info |
---|
AWS SQS and SNS - 15:00 UTCType: Improvement Description: Add 'cryptoKeyId' property for AWS SQS and SNS in compliance engine. Known limitations: N\A Affected Components: |
Info |
---|
Environment API - fixing a minor issue 11:00 UTCType: Bug Fix Description: Fixing an issue that affected removing cloud account. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 22, 2021 |
---|
Info |
---|
Type: Bug Fix Case ID: DFT-1084 Description: Fixed an issue that caused the UI to freeze. Known limitations: N\A Affected Components: |
Info |
---|
Compliance dashboard - Export fix - 8:30 UTCType: Bug Fix Case ID: DFT-1059 Description: fixing missing Account Id on export. Known limitations: N\A Affected Components: |
Info |
---|
Exclusions page - New look and feel - 8:30 UTCType: Improvement Case ID: DFR-1212 Description: Adjusted to the general system style. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Report - Redirect to referrer page - 8:30 UTCType: Improvement Case ID: DFR-412 Description: After closing the report redirect to the referrer page. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 18,2021 |
---|
Info |
---|
Internal configuration improvement - 14:00 UTCType: Improvement Description: Internal configuration improvement Known limitations: N\A Affected Components: |
Info |
---|
Azure Service Fabric Cluster- 14:00 UTCType: New Entity Case ID: DFR-330 Description: Added support for Azure Service Fabric Cluster in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
Azure Bastion - 14:00 UTCType: New Entity Case ID: DFR-1498 Description: Added support for Azure Bastion in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
GCP Security Group - 14:00 UTCType: Improvement Case ID: DFR-458 Description: Added the 'enabled' property to Security Groups Inbound and Outbound rules. The property reflects the enforcement status of the corresponding firewall rules. The change effects GcpSecurityGroup and VMInstance entities.
Known limitations: N\A Affected Components: |
Info |
---|
AWS Credentials Editing - New infra structure - 14:00 UTC Type: Improvement Description: Adding new infra structure in order to support new future features. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 14:00 UTC Type: Improvement Description: D9.AWS.VLN.02 fix. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 17,2021 |
---|
Info |
---|
Compliance Improvement - 13:00 UTCType: Improvement Description: Infrastructure improvement Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 11:30 UTCType: Improvement Description: Api Infrastructure improvement Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 08:30 UTCType: Improvement Description: Infrastructure improvement Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 16,2021 |
---|
Info |
---|
AWS SQS and SNS - 11:00 UTCType: Bug Fix Case ID: DFT-1079 Description: Populate 'cryptoKey' property for keys without alias name in compliance engine. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 9:20 UTC Type: Improvement Description: A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 11,2021 |
---|
Info |
---|
Compliance Improvement - 10:00 UTCType: Improvement Description: Infrastructure improvement Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 10,2021 |
---|
Info |
---|
Azure Subnet - 12:00 UTCType: Improvement Case ID: DFR-1450 Description: Added 'delegationsList' property for Azure Subnet in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
AWS CloudTrail - Organization Trails - 10:30 UTCType: Improvement Case ID: DFT-1042 Description: Known limitations: Tags are not supported for organization level trails on member accounts. Affected Components: |
Info |
---|
Compliance Rulesets Update - 10:20 UTC Type: Improvement Description: Fix two AWS IAM rules. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 9, 2021 |
---|
Info |
---|
Kubernetes Onboarding - Saving entered values - 12:00 UTCType: Improvement Case ID: DFR-1449 Description: Saving values entered on onboarding even if the user clicked back. Known limitations: N\A Affected Components: |
Info |
---|
Clarity - Adding missing flow logs link - 12:00 UTCType: Bug Fix Case ID: DFT-1028 Description: Adding missing flow logs link. Known limitations: N\A Affected Components: |
Info |
---|
Protected Assets - GCP VM UI fix - 12:00 UTCType: Bug Fix Case ID: DFT-1064 Description: Fixing an issue that prevented viewing GCP VM's detailed view. Known limitations: N\A Affected Components: |
Info |
---|
AWS NACL - Added ICMP codes - 12:00 UTCType: Improvement Case ID: DFR-1361 Description: Added ICMP types to the UI. Known limitations: N\A Affected Components: |
Info |
---|
Notifications - Security Hub Integration - 12:00 UTCType: Improvement Case ID: DFR-1460 Description: Added regions to our integration. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 8,2021 |
---|
Info |
---|
Compliance Improvement - 14:00 UTCType: Improvement Description: Add new UI functions to API. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 11:00 UTCType: Improvement Description: Improved load time of ruleset page. Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 7,2021 |
---|
Info |
---|
Azure Network Security Group - 14:00 UTCType: Improvement Description: Added 'subnetId' property for Azure Network Security Group in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
AWS Elastic Beanstalk - 14:00 UTCType: New Entity Case ID: DFR-1379 Description: Added support for AWS Elastic Beanstalk in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
Azure Maria DB - 14:00 UTCType: New Entity Case ID: DFR-501 Description: Added support for Azure Maria DB in the compliance engine Known limitations: N\A Affected Components: |
Info |
---|
Azure Virtual Machine Scale Set - 11:00 UTCType: Improvement Description: Infrastructure improvement Known limitations: N\A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Feb 3,2021 |
---|
Info |
---|
New Service Now Application - 20:30 UTCType: Improvement Description: New application with new features and certified for Paris Version, find it here Known limitations: N\A Affected Components: Status |
---|
title | ServiceNOW Application |
---|
| |
Info |
---|
Internal configuration improvement - 19:30 UTCType: Improvement Description: Internal configuration improvement Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 11:00 UTC Type: Improvement Description: The first release of Azure CIS Foundations v. 1.2.0. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 28,2021 |
---|
Info |
---|
Azure Data Fetchers - 17:00 UTCType: Improvement Description: Infra Improvement for Azure data fetchers: Virtual Machine, Virtual Machine Scale Set and Redis. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement- 14:00 UTC Type: Internal Improvement Description: Internal improvement. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 27,2021 |
---|
Info |
---|
Exclusions page - New Dialog - 12:30 UTCType: Improvement Case ID: DFR-1212 Description: Adding new improved dialog. Known limitations: N\A Affected Components: |
Info |
---|
Dashboard - Export fix - 12:30 UTCType: Bug Fix Case ID: DFT-1043 Description: Fixing the Dashboard export. Known limitations: N\A Affected Components: |
Info |
---|
Environments page - Remove instance column - 12:30 UTCType: Improvement Case ID: DFR-1453 Description: Removing the instance column. Known limitations: N\A Affected Components: |
Info |
---|
Kubernetes Onboarding - Blades rename - 12:30 UTCType: Improvement Case ID: DFR-1239 Description: Renamed blades. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Improvement - 12:00 UTC Type: Internal Improvement Description: External finding improvement. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 11:00 UTC Type: Improvement Description: A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 26,2021 |
---|
Info |
---|
Protected Assets - Index Azure VM private IP - 11:00 UTCType: Improvement Description: Index Azure VM private IP Known limitations: N/A Affected Components: |
Info |
---|
Compliance Improvement- 11:00 UTC Type: Internal Improvement Description: Internal improvement. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 21,2021 |
---|
Info |
---|
Azure Event Hub Namespace - 13:30 UTCType: New Entity Case Id: DFR-1401 Description: Added support for Azure Event Hub Namespace in the compliance engine GSL Examples: Known limitations: N/A Affected Components: |
Info |
---|
AWS Update Credentials API - 13:30 UTCType: Bug Fix Case Id: DFT-1057 Description: Fixed an issue for handling empty cloud account in user based credentials. Known limitations: N/A. Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 20,2021 |
---|
Info |
---|
Compliance Rulesets Update - 13:45 UTC Type: Improvement Description: A complete list can be found here. Known limitations: N/A Affected Components: |
Info |
---|
AWS Onboarding - New infra structure - 13:00 UTC Type: Improvement Description: Adding new infra structure in order to support new future features. Known limitations: N/A Affected Components: |
Info |
---|
Add "Sync Now" support for Azure Load Balancer - 13:00 UTCType: Improvement Description: Azure load balancer fetching supports "Sync Now" Functionality. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 18, 2021 |
---|
Info |
---|
Compliance Improvement - 16:30 UTC Type: Internal Improvement Description: Revert due to an issue discovered. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Improvement- 14:00 UTC Type: Internal Improvement Description: Internal improvement. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Improvement - 12:00 UTC Type: Internal Improvement Description: External finding improvement. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Improvement- 10:00 UTC Type: Internal Improvement Description: Internal API improvement. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 17, 2021 |
---|
Info |
---|
Authentication Improvements - 14:00 UTCType: Improvement Description: Authentication flows improvements. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 14, 2021 |
---|
Info |
---|
PREVIEWLog.ic - Azure Activity Logs - 15:30 UTC Type: New Feature Description: Added Log.ic support on Azure Storage, Audit, Signin, Activity Logs. Known limitations: Currently in Early Availability Affected Components: |
...
GCP App Engine - 11:00 UTC
Type: New Entity
Case ID: DFR-608
Description: Added support for GCP App Engine in the compliance engine
GSL Examples:
Ensure that GCP AppEngine utilizes Identity-Aware Proxy:
AppEngine should have iap.enabled=true
...
...
Info |
---|
Azure HDInsight - 11:00 UTCType: Improvement Case ID: DFR-1436 Description: Region and location properties were converted into lower case strings Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 13, 2021 |
---|
Info |
---|
Compliance Improvement- 10:00 UTC Type: Internal Improvement Description: Internal importer improvement. Known limitations: N/A Affected Components: |
Info |
---|
Compliance Improvement- 06:45 UTC Type: Internal Improvement Description: Managed generic list backend capability only. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 11, 2021 |
---|
Info |
---|
Protected assets - Detailed export fix - 20:30 UTCType: Bug Fix Case ID: DFT-1017 Description: minor UI fix. Known limitations: N\A Affected Components: |
Info |
---|
Notifications - Jira integration - 20:30 UTCType: Improvement Case ID: DFT-1024, DFR-1391 Description: Jira default JSON payload changed, Test button enabled on payload change. Known limitations: N\A Affected Components: |
Info |
---|
Account page - Adding more Logic usage data - 20:30 UTCType: Bug Fix Case ID: DFT-1003 Description: Adding more details to improve usability. Known limitations: N\A Affected Components: |
Info |
---|
Main Menu - Log.ic menu item - 20:30 UTCType: Bug Fix Case ID: DFT-1001 Description: Log.ic will always be present even if not onboarded. Known limitations: N\A Affected Components: |
Info |
---|
Kubernetes Onboarding - Region support - 20:30 UTCType: Improvement Case ID: DFR-1400 Description: Added region support to the HELM command. Known limitations: N\A Affected Components: |
Info |
---|
Compliance Rulesets Update - 14:45 UTC Type: Improvement Description: AWS CloudGuard Network Alerts ruleset deprecation. Known limitations: N/A Affected Components: |
Info |
---|
Azure Storage Account - 14:30 UTCType: Improvement Case ID: DFR-1109 Description: Added multiple properties in compliance engine for Azure Storage Account. Known limitations: N/A Affected Components: |
Info |
---|
AWS NACL - 14:30 UTCType: Improvement Description: Added 'icmpProtocol' property in compliance engine for AWS NACL inbound and outbound entries. Known limitations: N/A Affected Components: |
Info |
---|
AWS System Manager Document - 14:00 UTCType: Improvement Description: Fetching only documents that are not owned by Amazon. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 10,2021 |
---|
Info |
---|
AWS S3 Bucket Account Public Access Block - 14:30 UTCType: Bug Fix Case ID: DFT-1037 Description: Fixed a syncing issue when deleting account level public access block settings. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 7,2021 |
---|
Info |
---|
Shift Left - 7:30 UTCType: Improvement Description: Added additional flags, improved the output to be more human readable and option to send the results to assessment history page. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 5,2021 |
---|
Info |
---|
Compliance Entities Changes - 15:10 UTCType: Improvement Case ID: DFR-1186 Description: Compliance entities model changes: Tags - Removed from unsupported entities. Region - Presented as 'Global' when location information is not available. Source - Removed from all entities. Vpc - Relevant for AWS entities only, removed from unsupported entities.
Known limitations: N/A Affected Components: |
Info |
---|
Azure User - 15:10 UTCType: Improvement Case ID: DFR-1214 Description: Added 'assignedRoles' property in compliance engine for Azure User. Known limitations: N/A Affected Components: |
Info |
---|
AWS API Gateway - 15:10 UTCType: Improvement Case ID: DFR-1234 Description: Added 'securityPolicy' property in compliance engine for AWS API Gateway Known limitations: N/A Affected Components: |
Info |
---|
MSP Portal - Log.ic Notifications - 13:00 UTCType: New feature Description: Add support to set Log.ic usage notifications from the MSP portal Known limitations: N/A Affected Components: Status |
---|
title | LOG.ic notifications |
---|
| |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 4,2021 |
---|
Info |
---|
AWS Application Load Balancer and Network Load Balancer - 12:30 UTCType: Improvement Case ID: DFT-658 Description: Additional properties are supported in compliance engine for AWS Application Load Balancer and Network Load Balancer Known limitations: N/A Affected Components: |
Info |
---|
Compliance Rulesets Update - 10:30 UTC Type: Improvement Description: The first release of the Azure Security Benchmark ruleset. New rules were added to Azure CloudGuard Best Practices reuleset and some GCP rules fixes. A complete list can be found here. Known limitations: N/A Affected Components: |
...
borderColor | grey |
---|
bgColor | #F7F7F7 |
---|
titleColor | pink |
---|
titleBGColor | #012038 |
---|
borderStyle | solid |
---|
title | Deployment Jan 3,2021 |
---|
Info |
---|
Shift Left - New Infrastructure - 16:00 UTCType: Improvement Description: Added internal infrastructure to support future features for Shift Left. Known limitations: N\A Affected Components: |
Info |
---|
Data fetching services - 11:00 UTCType: Improvement Description: Change internal configuration for performance improvements. Known limitations: N\A Affected Components: Status |
---|
title | All data fetching components |
---|
| |
For older release notes please search in Release History
...
Deployment May 06, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS TransitGateway - 12:00 UTC Description: Added support for ‘hasFlowLog ’ property in AWS TransitGateway in Compliance engine & Protected Assets. Case ID: DFR-3405 Known limitations: Affected Components: |
Info |
---|
AWS S3Bucket - 12:00 UTC Description: Fixed missing tags issue in AWS S3Bucket. Case ID: DFT-3631 Known limitations: N/A Affected Components: |
Info |
---|
GCP Cloud Run - 10:30 UTC Description: Fixed an issue that caused some GCP Cloud Run entities to be missing in the database. Case ID: IN-8627 Known limitations: N/A Affected Components: |
Deployment May 05, 2024
Info |
---|
Reports | Assessment history | Mismatch between results to CSV - 12:00 UTC Description: UI was update in order to clarify the export details Case ID: DFT-3462 Known limitations: N/A Affected Components: |
Info |
---|
GCP Security Command Center - 11:00 UTC Description: Added support for GCP Security Command Center entities in Compliance Engine and Protected Assets: SecurityCenterSource, SecurityCenterNotificatConfig, SecurityCenterMuteConfig. Case ID: CNAPP-6371 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| GCP BigQueryTable, GCP DataprocCluster - 10:00 UTC Description: GCP BigQueryTable and GCP DataprocCluster are now fetched with a new mechanism and containing more fields (fields that are not configured will contain null). US DC only.Case ID: CNAPP-7753 Known limitations: Relevant to US DC only Affected Components: |
Deployment May 02, 2024
Info |
---|
Security Issue vulnerabilities - 12:30 UTC Description: Fixed issue where some entity types would not display the correct CVEs in Security Issue vulnerabilities view. Case ID: CNAPP-8498 Known limitations: N/A Affected Components: |
Info |
---|
Traffic Trends dashboard widget - 12:30 UTC Description: Fixed widget that stopped working. Case ID: CNAPP-8492, DFT-3558 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Azure Function App - 11:00 UTC Description: Added support for ‘BasicPublishingCredentials’ property in Azure Function App in Compliance engine & Protected Assets. Case ID: DFR-3193 Known limitations: Affected Components: |
Deployment May 01, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 08:30 UTCDescription: New rules for Azure. A complete list can be found here. Case ID: CNAPP-8536, DFT-3503 Known limitations: N/A Affected Components: |
Info |
---|
Findings not removed - Policy deleted - Even if the Assessment History is 100% Compliant, there are High "Posture Findings" events for the same ruleset - 7:00 UTC Description: Finding are deleted in case policy is deleted (applied also retroactively) Case ID: DFT-2976 Known limitations: N/A Affected Components: |
Deployment April 28, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS S3 bucket Macie - 10:30 UTC Description: Added support for ‘lastAutomatedDiscoveryTime’ and ‘sensitivityScore’ fields in AWS S3 bucket in Compliance engine & Protected Assets. Case ID: DFR-3439 Known limitations: Affected Components: |
Deployment April 26, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS StorageGateway - 11:20 UTC Description: Added support for ‘Volumes’ and ‘volumeEncryptionKeyList’ properties in AWS Storage Gateway in Compliance engine and Protected Assets. Case ID: DFR-3178 Known limitations: Affected Components: |
Deployment April 25, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Azure Application Gateway - 14:00 UTC Description: Added support for ‘sslProfiles’ property in Azure Application Gateway in Compliance engine, Protected Assets & API. This is due to a structure change in Azure. Case ID: DFT-3465 Known limitations: Replaces the ‘sslPolicy’ property. Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS Auto Scaling Groups - 11:00 UTC Description: Data fetching for AWS auto scaling groups launch configurations and EC2 launch templates. Case ID: CNAPP-8129 Known limitations: N/A Affected Components: |
Info |
---|
Azure NatGateway - 10:00 UTC Description: Added support for Azure NatGateway entity in Compliance Engine and Protected Assets. Case ID: DFR-3315 Known limitations: N/A Affected Components: |
Deployment April 24, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS EksCluster- 10:30 UTC Description: Added support for ‘kmsKeys’ property in in AWS EKS clusters in Compliance engine. Case ID: DFR-2911 Known limitations: Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 08:30 UTCDescription: New Ruleset AICPA SOC 2 for Alibaba; New Ruleset HIPAA for Alibaba; New Ruleset ISO 27001:2022 for Alibaba; New Ruleset NIST SP 800-53rev5 for Alibaba; New Ruleset PCI DSS v4 for Alibaba; New Ruleset AICPA SOC 2 for OCI; New Ruleset HIPAA for OCI; New Ruleset ISO 27001:2022 for OCI; New Ruleset NIST SP 800-53rev5 for OCI; New Ruleset PCI DSS v4 for OCI. A complete list can be found here. Case ID: CNAPP-8460, DFT-3446, DFT-3471, DFT-3587, DFT-3590 Known limitations: N/A Affected Components: |
Deployment April 18, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| GCP BigQueryTable, GCP DataprocCluster - 10:00 UTC Description: GCP BigQueryTable and GCP DataprocCluster are now fetched with a new mechanism and containing more fields (fields that are not configured will contain null). Ireland DC only.Case ID: CNAPP-7752 Known limitations: Relevant to Ireland DC only Affected Components: |
Deployment April 17, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS EC2 Instance, AWS ELB, AWS RDS, AWS VPC, AWS Subnet, AWS Security Group and AWS NACL - 17:00 UTC Description: Added support for ‘VendorIdentifier’ property in AWS EC2 Instance, AWS ELB, AWS RDS, AWS VPC, AWS Subnet, AWS Security Group and AWS NACL entities in Compliance Engine and Protected Assets. Case ID: DFR-2987, CNAPP-8002 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 08:30 UTCDescription: New rules for GCP. A complete list can be found here. Case ID: CNAPP-8326 Known limitations: N/A Affected Components: |
Info |
---|
Menu item for IAM Safety Policy Report - 7:00 UTC Description: Added the missing report page to the menu. Case ID: CNAPP-8423 Known limitations: N/A Affected Components: |
Deployment April 16, 2024
Info |
---|
Erm Dashboard - Security Issues widgets - 8:00 UTC Description: Fixed an issue where the widgets of the security issues would show closed issues. Case ID: CNAPP-8404 Known limitations: N/A Affected Components: |
Deployment April 14, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS Network Firewall, AWS Code Build Project, AWS Code Build Build, AWS Code Pipeline Webhook, AWS ElastiCache Parameter Group, AWS Kinesis Analyics Application, AWS RDS DB Cluster, AWS RDS DB Cluster Parameter Group, AWS RDS DB Cluster Snapshot and AWS RDS Event Subscription - 12:00 UTC Description: Added support for ‘VendorIdentifier’ property in AWS Network Firewall, AWS Code Build Project, AWS Code Build Build, AWS Code Pipeline Webhook, AWS ElastiCache Parameter Group, AWS Kinesis Analytics Application, AWS RDS DB Cluster, AWS RDS DB Cluster Parameter Group, AWS RDS DB Cluster Snapshot and AWS RDS Event Subscription entities in Compliance Engine and Protected Assets. Case ID: DFR-2987, CNAPP-8169, CNAPP-8177, CNAPP-8337 Known limitations: N/A Affected Components: |
Deployment April 11, 2024
Info |
---|
Protected Assets - Security Groups - 15:00 UTC Description: Fixed an issue that prevented cleanup of deleted Security Groups from Protected Assets. Case ID: CNAPP-8309 Known limitations: N/A Affected Components: |
Deployment April 10, 2024
Info |
---|
AWS Region - 10:50 UTC Description: Fixed an issue in the fetching of ‘ConfigurationRecordingStatus' property in AWS Region. Case ID: DFT-3471 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 08:00 UTCDescription: General maintenance and content updates. A complete list can be found here. Case ID: CNAPP-8162, DFT-3545, DFT-3552, DFT-3589 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| GCP Project - 9:00 UTC Description: Added support for ‘ProjectTagBinding’ property in GCP Project in Compliance engine. Case ID: DFR-3259 Known limitations: Relevant to Singapore, Mumbai, Canada and Sydney only Affected Components: |
Deployment April 8, 2024
Info |
---|
Azure Virtual Network Gateway - 14:50 UTC Description: Fixed an issue that caused partial fetching for ‘VirtualNetworkGateway’ entities. Case ID: IN-8633 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Helm 2.29.0: Runtime Protection daemon 1.16.2: enhancements- 13:00 UTC Description: Runtime Protection daemon 1.16.2Affected Components: CloudGuard Workload Protection agents Case ID: CON-8396 Known limitations: Affected Components: |
Deployment April 7, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| GCP BigQueryTable & GCP DataprocCluster Permission update- 13:00 UTC Description: BigQueryTable and DataprocCluster are fetched using GCP Cloud Asset Inventory export API call. In order to use this API call Cloud Asset API should be enabled and also the Cloud Asset Viewer role should be granted to Cloud guard’s service account. In case permissions are missing it will be displayed in the cloud account’s environment page --> missing permission table under the “GcpAssetInventory“ type. Case ID: CNAPP-7919 Known limitations: Relevant to Singapore, Mumbai, Canada and Sydney only Affected Components: |
Info |
---|
GCP AlloyDB for PostgreSQL - 11:00 UTC Description: Added support for GCP AlloyDB for PostgreSQL entities in Compliance Engine and Protected Assets: AlloyDBCluster, AlloyDBInstance, AlloyDBBackup. Case ID: CNAPP-1466 Known limitations: N/A Affected Components: |
Deployment April 4, 2024
Info |
---|
AWS S3 bucket & Region - 13:50 UTC Description: Fixed wrong value under the “Region” column in the protected assets table. Case ID: CNAPP-4868, DFR-2822 Known limitations: N/A Affected Components: |
Deployment April 3, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS Cognito User Pool, AWS IAM Server Certificate, AWS SNS Platform Application, AWS Transfer and AWS WAF Regional - 12:00 UTC Description: Added support for ‘VendorIdentifier’ property in AWS Cognito User Pool, AWS IAM Server Certificate, AWS SNS Platform Application, AWS Transfer and AWS WAF Regional entities in Compliance Engine and Protected Assets. Case ID: DFR-2987, CNAPP-8001 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS SNS Platform Application - 12:00 UTC Description: Enable fetching AWS SNS Platform Application in region “us-east-2”. Case ID: CNAPP-8001 Known limitations: N/A Affected Components: |
Deployment April 3, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 08:30 UTCDescription: New Ruleset CIS GCP Benchmark v3.0.0; New Ruleset CIS K8S Benchmark v1.9.0; New rules for AWS and GCP. A complete list can be found here. Case ID: CNAPP-7979, DFT-3520, DFT-3521, DFT-3560 Known limitations: N/A Affected Components: |
Deployment April 2, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| CSPM Managed Ruleset Versions - 6:00 UTC Description: Added versions to CSPM managed rulests. Case ID: CNAPP-3847 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Reports page improvements - 6:00 UTC Description: Added filtering capabilities and actions to the reports table. Case ID: CNAPP-5660 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| CDR Rulesets Update - 09:30 UTCDescription: New Azure rules. A complete list can be found here. Case ID: - Known limitations: N/A Affected Components: |
Deployment April 1, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| API Gateway and API Gateway V2 property - 11:30 UTC Description: Added support for ‘mappedCustomDomainName’ property in “AWS API Gateway V2” and “AWS API Gateway” entities in compliance engine and protected assets. Case ID: DFR-2876 Known limitations: N/A Affected Components: |
Deployment March 31, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| CG API Keys - Last used info - 2:00 UTC Description: CG now displays API keys with the information about when were they last been used. Case ID: DFR-2953 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS Code Build Project - 10:00 UTC Description: Reduced fetching frequency for Aws Code Build Project to once a day to avoid throttling. Case ID: DFT-3574 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| GCP BigQueryTable, GCP DataprocCluster - 10:00 UTC Description: GCP BigQueryTable and GCP DataprocCluster are now fetched with a new mechanism and containing more fields (fields that are not configured will contain null). Relevant to Singapore, Mumbai and Canada DCs only.Case ID: CNAPP-7749, CNAPP-7750, CNAPP-7751 Known limitations: Relevant to Singapore, Mumbai, Canada DC only Affected Components: |
Deployment March 28, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS Organization Account - 15:30 UTC Description: Add SCP account policies that are inherited from OU. Case ID: DFR-2256 Known limitations: N/A Affected Components: |
Deployment March 27, 2024
Info |
---|
Risk Management - Azure SQL Server Network Exposure - 11:30 UTC Description: Treating the build it firewall rule that allows traffic from Azure services as partially public. Case ID: CNAPP-7702 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 09:30 UTCDescription: General maintenance and content updates. A complete list can be found here. Case ID: CNAPP-7825, DFT-3536 Known limitations: N/A Affected Components: |
Deployment March 26, 2024
Info |
---|
CIEM label can be added to CSPM rules - 11:00 UTC Description: Adding support for adding CIEM label to custom CPSM rule, findings with that label will show up under CIEM\Findings. Case ID: DFR-3257 Known limitations: N/A Affected Components: |
Info |
---|
Multi entities selection on CSPM exclusions - 10:00 UTC Description: Added support for multi entities selection on CSPM exclusion, entities can be selected from a list or by using a wildcard Case ID: DFR-3422, DFR-2327 Known limitations: N/A Affected Components: |
Deployment March 25, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS Region - 11:00 UTC Description: Added support for Organization Access Analyzers Type under the “accessAnalyzers” field. Case ID: DFR-3185 Known limitations: N/A Affected Components: |
Info |
---|
AWS Organization Unit - 10:00 UTC Description: Added support for AWS Organization Unit in compliance engine and protected assets. Case ID: DFR-2914 Known limitations: N/A Affected Components: |
Deployment March 24, 2024
Info |
---|
Risk Management - Azure SQL Server Network Exposure - 13:25 UTC Description: Ignoring firewall rule that allows traffic from Azure services when calculating external public exposure. Case ID: CNAPP-7702 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Azure Load Balancer 11:00 Description: Added outbound rules support for the ‘LoadBalancer’ entity as a new property: ‘outboundRules’. Case ID: DFR-2352 Known limitations: N/A Affected Components: |
Deployment March 19, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS CloudWatch Events - 11:10 UTC Description: Added support for ECS parameters as new property 'targets[].ecsParameters' for the ‘CloudWatchEventsRule’ entity. Case ID: DFR-3372 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS Security Group - 11:10 UTC Description: Added support in the ‘SecurityGroup’ entity for ‘EcsSchduledTask’ under the ‘networkAssetsStats’ property. Case ID: DFR-3372 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 10:30 UTCDescription: New Ruleset CIS Amazon EKS Benchmark v1.4.0, New Ruleset CIS GKE Benchmark v1.5.0, New Ruleset CIS Microsoft Kubernetes Engine (AKS) Benchmark v1.4.0; New AWS,OCI, Alibaba ,GCP and Kubernetes rules. A complete list can be found here. Case ID: CNAPP-7660, DFT-3455 Known limitations: N/A Affected Components: |
Deployment March 19, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS S3 Bucket - 12:00 UTC Description: Avoid deleting previous data of AWS S3 Bucket when not receiving new data (due to missing permissions or other reasons). Case ID: DFR-2952 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS Account - 10:30 UTC Description: Added support for ‘Contact Information’ property in AWS Account in Compliance engine & Protected Assets. Case ID: DFR-2383 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| OCI VNIC - 9:30 UTC Description: Expose public & private IP in OCI VNIC in Protected Assets page Case ID: DFT-3217 Known limitations: N/A Affected Components: |
Deployment March 18, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Sydney - GCP BigQueryTable, GCP DataprocCluster - 10:00 UTC Description: GCP BigQueryTable and GCP DataprocCluster are now containing more fields (fields that are not configured will contain null). Relevant to Sydney DC only. Case ID: CNAPP-7553 Known limitations: N/A Affected Components: |
Info |
---|
AWS Credential Report API - 9:00 UTC Description: Fixed an issue that caused the presentation of old data in the 'CloudIamCredentialReport' API. Case ID: DFT-3454 Known limitations: N/A Affected Components: |
Deployment March 17, 2024
Info |
---|
GSL Builder Export | OU Path set to N/A while running a GSL rule - 15:00 UTC Description: Fixed missing OU path when exporting from GSL builder Case ID: DFT-3339 Known limitations: N/A Affected Components: |
Info |
---|
UI | Unable to associate Ali baba cloud to another OU - 11:00 UTC Description: Fixed failure to associate Ali baba cloud to OU Case ID: DFT-3496 Known limitations: N/A Affected Components: |
Info |
---|
Azure PostgreSQL - 10:50 UTC Description: Fixed an issue that caused partial fetching for ‘PostgreSQL’ entities. Case ID: DFT-3466 Known limitations: N/A Affected Components: |
Deployment March 14, 2024
Info |
---|
GCP Identity Platform - 13:00 UTC Description: Added support for GCP Identity Platform Entities: IdentityPlatformTenant and IdentityPlatformUser. Case ID: CNAPP-1463 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Azure Network Security Groups Management - 11:30 UTC Description: Internal change in the way we generate tokens to access Azure APIs. The change affects services that manage the network security groups in Azure. Case ID: CNAPP-7585 Known limitations: N/A Affected Components: |
Info |
---|
Risk Management - Network Exposure - 11:30 UTC Description: Network Exposure support for Azure SQL Server. Available in Protected Assets and as part of the risk score calculation. Case ID: CNAPP-7064 Known limitations: N/A Affected Components: |
Info |
---|
AWS VPC\KMS\Route table shown incorrectly in Protected Assets - 10:00 UTC Description: Fixed a bug where AWS VPC\KMS was shown as Alibaba VPC\KMS in the protected assets table, and AWS route table was shown as Azure route table in the protected assets table. Case ID: DFT-3458, DFT-3510, DFT-3452, DFT-3508 Known limitations: N/A Affected Components: |
Deployment March 13, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 10:00 UTCDescription: New AWS, OCI, Alibaba, and GCP rules; DFTs fixes. A complete list can be found here. Case ID: CNAPP-7557, DFT-3484, DFT-3447 Known limitations: N/A Affected Components: |
Info |
---|
UI | Missing permissions | Key vault seems to be duplicated on the amount of entities that have an issue- 10:00 UTC Description: Remove duplication of key vault Case ID: DFT-3408 Known limitations: N/A Affected Components: |
Deployment March 12, 2024
Info |
---|
UI | Reporting | when we download the report from CIEM somehow don't get the label column on the export file- 14:00 UTC Description: Lable was added to CIEM findings Case ID: DFT-2551 Known limitations: N/A Affected Components: |
Deployment March 10, 2024
Info |
---|
GCP Cloud Source Repository 13:00 UTC Description: Added support for GCP Cloud Source Repository entity in Compliance Engine and Protected Assets. Case ID: CNAPP-1467 Known limitations: N/A Affected Components: |
Deployment March 07, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Azure Network Security Groups Management - 13:25 UTC Description: Internal change in the way we generate tokens to access Azure APIs. The change affects services that manage the network security groups in Azure. Case ID: CNAPP-7491 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Azure User - 12:30 UTC Description: Added support for ‘assignmentRoles’ property in Azure User in Compliance Engine and Protected Assets. Case ID: DFT-3348 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Azure Cosmos DB Account - 11:15 UTC Description: Added support for ‘minimalTlsVersion’ property in Azure Cosmos DB Account in Compliance Engine and Protected Assets. Case ID: DFR-2932 Known limitations: N/A Affected Components: |
Deployment March 06, 2024
Info |
---|
UI | MSP | Cannot switch roles on FireFox - 14:00 UTC Description: Fixed issue of switching logs in MSP in Firefox Case ID: DFT-3430 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| Compliance Rulesets Update - 11:00 UTCDescription: DFTs fixes. A complete list can be found here. Case ID: CNAPP-7453, DFT-3455, DFT-3381 Known limitations: N/A Affected Components: |
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| GCP GKE Cluster - 10:00 UTC Description: Added support for ‘networkConfig’ property in GCP GkeCluster. Case ID: DFR-2663 Known limitations: N/A Affected Components: |
Info |
---|
AWS Kinesis Firehose - 06:00 UTC Description: Fixed rate limit issue in AWS Kinesis Firehose. Case ID: DFT-3432 Known limitations: N/A Affected Components: |
Deployment March 05, 2024
Info |
---|
GCP Cloud Armor Security Policy entity - 13:00 UTC Description: Added support for GCP Cloud Armor Security Policy entity in Compliance Engine and Protected Assets. Case ID: DFR-2968 Known limitations: N/A Affected Components: |
Deployment March 04, 2024
Info |
---|
UI | Typo in Role Creation Screen - 18:00 UTC Description: Fix typo in role creation screen Case ID: DFT-3483 Known limitations: N/A Affected Components: |
Deployment March 04, 2024
Info |
---|
Slack and Teams Notification - 18:00 UTC Description: Bug fix in Slack and Teams Notifications. Case ID: CNAPP-8613 Known limitations: N/A Affected Components: |
Deployment March 02, 2024
Info |
---|
Status |
---|
colour | Green |
---|
title | IMPROVEMENT |
---|
| AWS S3 Bucket - 17:30 UTC Description: Added support for ‘encryption.serverSideEncryptionRules.serverSideEncryptionByDefault.isCrossAccountKey’ and ‘encryption.serverSideEncryptionRules.serverSideEncryptionByDefault.kmsKey' properties in AWS S3 Bucket in Compliance engine & Protected Assets. Case ID: DFR-2482 Known limitations: Keys which are cross account will be seen in the 'kmsKey’ property - only if belongs to a cloud account which was on boarded to the same CloudGuard account as the S3Bucket’s cloud account, and only if the client has approved account data sharing. Affected Components: |
Deployment March 01, 2024
Info |
---|
Slack and Teams Notification - 23:00 UTC Description: Bug fix in Slack and Teams Notifications. Case ID: CNAPP-8613 Known limitations: N/A Affected Components: |