Release Notes

Improvement Compliance Rulesets Update - 06:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: DFT-5433, CNAPP-16732, CNAPP-16725
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 08:00 UTC
Description: General maintenance and content updates, including managed lists alignment for server ports and managed K8s services.
Case ID: CNAPP-16687, CNAPP-16697, CNAPP-16698
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 08:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: DFT-5434, CNAPP-16730
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 11:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16717
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

FEATURE Fixed crash in dotnet layer - 05:30 UTC
Description: Fixed crash in dotnet layer
Case ID: AL-3210
Known limitations: N/A
Affected Components: Serverless

Improvement Compliance Rulesets Update - 12:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: DFT-5387
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 15:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16688, DFT-5387
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 10:00 UTC
Description: General maintenance and content updates, including managed lists alignment for network ports.
Case ID: CNAPP-16696, CNAPP-16703
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 11:00 UTC
Description: General maintenance and content updates, including managed lists alignment for AWS write permissions.
Case ID: CNAPP-16702
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 08:00 UTC
Description: General maintenance and content updates, including managed lists alignment for PaaS stack runtime versions.
Case ID: CNAPP-16694, CNAPP-16701
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 10:30 UTC
Description: General maintenance and content updates, including managed lists alignment for databases.
Case ID: CNAPP-16692, CNAPP-16693
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

FEATURE Fix python scanner golang vulnerabilties - 05:30 UTC
Description: Fix python scanner golang vulnerabilties.
Case ID: AL-3209
Known limitations: N/A
Affected Components: Serverless

Improvement Compliance Rulesets Update - 08:00 UTC
Description: General maintenance and content updates, including managed lists alignment for Amazon EKS and Lambda function runtimes.
Case ID: CNAPP-16685, DFT-5397
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

FEATURE Add Nodejs20-22 runtime FSP support- 05:30 UTC
Description: Add nodejs20-22 runtime FSP support. FSP has been updated to version 1.5.129.
Case ID: AL-3206
Known limitations: Needed re-onboarding
Affected Components: Serverless , Serverless runtime protection

FEATURE Upgrade CloudGuard FSPInjector and FSPLogsSender lambda from python3.9 to 3.11 - 05:30 UTC
Description: Upgrade CloudGuard FSPInjector and FSPLogsSender lambda from python3.9 to 3.11 . CFT version is updated to 36.
Case ID: AL-3207
Known limitations: Needed serverless update
Affected Components: Serverless , Serverless Cloudguard formation

Improvement Compliance Rulesets Update - 05:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16658, DFT-5189
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 07:30 UTC
Description: General maintenance and content updates, including latest CIS benchmarks for AWS and Azure.
Case ID: CNAPP-16665, DFT-5364
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 06:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16628, DFT-5322
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 10:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16605, DFT-5310
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 13:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16592, DFT-5293
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 06:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16582, DFT-5286
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 08:45 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16571, DFT-5254
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 10:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16457, CNAPP-16470, DFT-5211, DFT-5228
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 11:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16457, DFT-5211, DFT-5229
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 06:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16375, DFT-5139
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 08:00 UTC
Description: General maintenance and content updates, including a new CIS Amazon Web Services Foundations Benchmark v5.0.0 ruleset.
Case ID: CNAPP-16365, DFR-4149
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 06:00 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16352, DFT-5072
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 13:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16281, DFT-5029
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Azure User - 11:30 UTC
Description: Added support for “AccountEnabled” Property for the Azure User Entity in Compliance Engine and Protected Assets.
Case ID: DFR-4147
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS PROTECTED ASSETS FETCHERS

Improvement Azure Machine Learning Workspace - 13:30 UTC
Description: Added support for the IpAllowList and NetworkAcls Properties for the Azure Machine Learning Workspace Entity.
Case ID: DFR-4148
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS PROTECTED ASSETS FETCHERS

Improvement Compliance Rulesets Update - 10:45 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16258, DFT-5058
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 13:45 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16281, DFT-5029
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement GCP Gke Cluster - 11:30 UTC
Description: Added support for ‘Autopilot’ property in GCP Gke Cluster.
Case ID: DFT-5029
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS PROTECTED ASSETS FETCHERS

Improvement Compliance Rulesets Update - 09:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-15581, CNAPP-16078, CNAPP-16270, DFR-4084, DFT-5047
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

FEATURE AWS WAF Global V2 - 14:30 UTC
Description: Added a ‘Rules[].Statement’ property for the AWS WAF Global V2 entity to allow for better means of distinguishing between enabled enforcement and disabled enforcement.
Case ID: DFT-5000
Known Limitations: N/A
Affected Components: COMPLIANCE ENGINE PROTECTED ASSETS

FEATURE Azure Front Door - 14:30 UTC
Description: Added ‘Endpoints’ Property for the Azure FrontDoor Entity.
Case ID: CNAPP-15579
Known Limitations: N/A
Affected Components: COMPLIANCE ENGINE FETCHERS PROTECTED ASSETS

Improvement Compliance Rulesets Update - 11:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16258, DFT-5034
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 09:45 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16508, DFT-4947
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Compliance Rulesets Update - 10:15 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-16204, CNAPP-16205, DFT-5007, DFT-5008
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement AWS Account Alternate Contact - 14:00 UTC
Description: Add support for AWS AccountAlternateContact in ProtectedAssets.
Case ID: CNAPP-15635
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS PROTECTED ASSETS

Improvement Compliance Rulesets Update - 10:00 UTC
Description: General maintenance and content updates. FISC v12 rulesets for AWS and Azure.
Case ID: CNAPP-15126, DFR-4078
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

Improvement Azure Front Door - 14:00 UTC
Description: Added support for Front Door secrets and origin Groups properties in compliance engine and protected assets.
Case ID: CNAPP-14577
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS FETCHERS PROTECTED ASSETS

Improvement AWS new regions support - 12:30 UTC
Description: Added support for 3 new AWS Regions: mx_central_1, ap_southeast_5, ap_southeast_7 - across all AWS entities.
Case ID: CNAPP-15014
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS FETCHERS PROTECTED ASSETS

FEATURE Azure Data Factory - 16:00 UTC
Description: Added support for the following properties for the Data Factory entity in Compliance Engine and Protected Assets: GitConfigurations, DataFactoryV2IntegrationRuntime, privateLinkServiceConnectionState, PurviewConfiguration.
Case ID: CNAPP-14566
Known Limitations: N/A
Affected Components: COMPLIANCE ENGINE FETCHERS PROTECTED ASSETS

FIXED AWS RDS DB Cluster - 14:00 UTC
Description: Fixed an issue that caused the tags of the Aws RDSDBCluster Entity’s tags to incorrectly show as empty.
Case ID: DFT-4965
Known Limitations: N/A
Affected Components: COMPLIANCE ENGINE PROTECTED ASSETS

FIXED AWS S3 Bucket - 18:30 UTC
Description: Added support to new AWS regions, so that S3 bucket will not get missing policy statement, and will show all correct data.
Case ID: DFT-4894
Known Limitations: N/A
Affected Components: FETCHERS

Improvement Compliance Rulesets Update - 10:00 UTC
Description: General maintenance and content updates. Azure CloudGuard Best Practices ruleset Japanese translation. A complete list can be found here.
Case ID: CNAPP-15819, CNAPP-16099, DFT-4881, DFT-4967
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

FEATURE AWS Fin Space Kx Environment - 16:00 UTC
Description: Added support for AWS Fin Space Kx Environment entity in compliance engine and protected assets.
Case ID: DFR-4144
Known Limitations: N/A
Affected Components: COMPLIANCE ENGINE FETCHERS PROTECTED ASSETS

Improvement Compliance Rulesets Update - 12:30 UTC
Description: General maintenance and content updates. A complete list can be found here.
Case ID: CNAPP-15673, CNAPP-15693, CNAPP-15694, CNAPP-15695, CNAPP-16050, CNAPP-16075, DFT-4942, DFT-4957
Known limitations: N/A
Affected Components: COMPLIANCE RULESETS

FIXED AWS Secret Manager - 14:00 UTC
Description: Fixed an issue where the AWS Secret Manager Entities got cut off while fetching because of a limit on the results.
Case ID: DFT-4938
Known Limitations: N/A
Affected Components: FETCHERS

Improvement AWS Access Analyzer Finding - 16:00 UTC
Description: Expose AWS Access Analyzer Finding in GSL and Protected Assets.
Case ID: DFR-3557
Known limitations: N/AAffected Components: