From 7201b45605b90ec94cd80bb93c2a380871ad0cca Mon Sep 17 00:00:00 2001 From: Tim Smith Date: Fri, 24 Jan 2025 10:20:20 -0800 Subject: [PATCH] Add release notes for 11.39 New week. New release. Signed-off-by: Tim Smith --- .nvmrc | 1 + releases/2025-01-28-mondoo-11.39-is-out.md | 68 ++++++++++++++++++++++ yarn.lock | 24 ++++---- 3 files changed, 81 insertions(+), 12 deletions(-) create mode 100644 .nvmrc create mode 100644 releases/2025-01-28-mondoo-11.39-is-out.md diff --git a/.nvmrc b/.nvmrc new file mode 100644 index 00000000..9a2a0e21 --- /dev/null +++ b/.nvmrc @@ -0,0 +1 @@ +v20 diff --git a/releases/2025-01-28-mondoo-11.39-is-out.md b/releases/2025-01-28-mondoo-11.39-is-out.md new file mode 100644 index 00000000..62b625c1 --- /dev/null +++ b/releases/2025-01-28-mondoo-11.39-is-out.md @@ -0,0 +1,68 @@ +--- +slug: mondoo-11.39-is-out/ +title: Mondoo 11.39 is out! +description: Announcing the 11.39 release of Mondoo with FOO, BAR, BAZ, and more! +authors: [tim] +image: DEETS +tags: [release, mondoo] +--- + +## ๐Ÿฅณ Mondoo 11.39 is out! This release includes FOO, BAR, BAZ, and more! + +Get this release: [Installation Docs](https://mondoo.com/docs/cnspec/) | [Package Downloads](https://releases.mondoo.com/cnspec/) | [Docker Container](https://hub.docker.com/r/mondoo/cnspec) + +--- + +## ๐ŸŽ‰ NEW FEATURES + +### SentinelOne vulnerability integration + +DEETS + +### Create cases in workspaces + +DEETS + +### Search for assets and findings in workspaces + +DEETS + +## ๐Ÿงน IMPROVEMENTS + +### Risk insights on assets + +https://github.com/mondoohq/console/pull/5462 + +### More view options for asset lists + +https://github.com/mondoohq/console/pull/5416 + +### AWS RDS Cluster support + +DEETS: + +- Atlas +- Scanning +- Asset overview + +### Resource updates + +#### RESOURCE 1 + +- New `FIELD_NAME` field +- New `FIELD_NAME` field using the new `MQL.RESOURCE` resource + +## ๐Ÿ› BUG FIXES AND UPDATES + +- Fix asset technology fields on VMware and OCI assets. +- Add OCI to the list of technology values available for workspace creation. +- Fix incorrect CVSS scores displayed in CVE page score boxes. +- Ensure that positive risk factors display in green. +- Display the save button on the security model settings tab even if the advanced settings aren't selected. +- Update the workspaces selection filtering to move "Kind" under infrastructure. +- Add "OCI" under the workspaces technology selection filtering. +- Fix failures generating some exports. +- Support certificate based authentication for the Microsoft Defender integration. +- Add the version number to the PCI DSS compliance framework to make it more clear which version is included. +- Fix the application of risk factors on Debian-based systems. +- Show correct timestamps for export and import integrations. diff --git a/yarn.lock b/yarn.lock index 935c0345..37856a9b 100644 --- a/yarn.lock +++ b/yarn.lock @@ -2282,9 +2282,9 @@ integrity sha512-AYnb1nQyY49te+VRAVgmzfcgjYS91mY5P0TKUDCLEM+gNnA+3T6rWITXRLYCpahpqSQbN5cE+gHpnPyXjHWxcw== "@types/express-serve-static-core@*", "@types/express-serve-static-core@^5.0.0": - version "5.0.5" - resolved "https://registry.yarnpkg.com/@types/express-serve-static-core/-/express-serve-static-core-5.0.5.tgz#f6a851c7fd512e5da087f6f20d29f44b162a6a95" - integrity sha512-GLZPrd9ckqEBFMcVM/qRFAP0Hg3qiVEojgEFsx/N/zKXsBzbGF6z5FBDpZ0+Xhp1xr+qRZYjfGr1cWHB9oFHSA== + version "5.0.6" + resolved "https://registry.yarnpkg.com/@types/express-serve-static-core/-/express-serve-static-core-5.0.6.tgz#41fec4ea20e9c7b22f024ab88a95c6bb288f51b8" + integrity sha512-3xhRnjJPkULekpSzgtoNYYcTWgEZkp4myc+Saevii5JPnHNvHMRlBSHDbs7Bh1iPPoVTERHEZXyhyLbMEsExsA== dependencies: "@types/node" "*" "@types/qs" "*" @@ -2414,9 +2414,9 @@ "@types/node" "*" "@types/node@*": - version "22.10.10" - resolved "https://registry.yarnpkg.com/@types/node/-/node-22.10.10.tgz#85fe89f8bf459dc57dfef1689bd5b52ad1af07e6" - integrity sha512-X47y/mPNzxviAGY5TcYPtYL8JsY3kAq2n8fMmKoRCxq/c4v4pyGNCzM2R6+M5/umG4ZfHuT+sgqDYqWc9rJ6ww== + version "22.12.0" + resolved "https://registry.yarnpkg.com/@types/node/-/node-22.12.0.tgz#bf8af3b2af0837b5a62a368756ff2b705ae0048c" + integrity sha512-Fll2FZ1riMjNmlmJOdAyY5pUbkftXslB5DgEzlIuNaiWhXd00FhWxVC/r4yV/4wBb9JfImTu+jiSvXTkJ7F/gA== dependencies: undici-types "~6.20.0" @@ -2771,9 +2771,9 @@ ajv@^8.0.0, ajv@^8.9.0: require-from-string "^2.0.2" algoliasearch-helper@^3.22.6: - version "3.23.1" - resolved "https://registry.yarnpkg.com/algoliasearch-helper/-/algoliasearch-helper-3.23.1.tgz#1780ca624b5787dae3c62110d222750875c260ee" - integrity sha512-j/dF2ZELJBm4SJTK5ECsMuCDJpBB8ITiWKRjd3S15bK2bqrXKLWqDiA5A96WhVvCpZ2NmgNlUYmFbKOfcqivbg== + version "3.24.1" + resolved "https://registry.yarnpkg.com/algoliasearch-helper/-/algoliasearch-helper-3.24.1.tgz#763115d81fc56518bff36b7c707967f70d8fdf45" + integrity sha512-knYRACqLH9UpeR+WRUrBzBFR2ulGuOjI2b525k4PNeqZxeFMHJE7YcL7s6Jh12Qza0rtHqZdgHMfeuaaAkf4wA== dependencies: "@algolia/events" "^4.0.1" @@ -3966,9 +3966,9 @@ ee-first@1.1.1: integrity sha512-WMwm9LhRUo+WUaRN+vRuETqG89IgZphVSNkdFgeb6sS/E4OrDIN7t48CAewSHXc6C8lefD8KKfr5vY61brQlow== electron-to-chromium@^1.5.73: - version "1.5.87" - resolved "https://registry.yarnpkg.com/electron-to-chromium/-/electron-to-chromium-1.5.87.tgz#3a89bec85e43a8b32445ec938228e4ec982e0f79" - integrity sha512-mPFwmEWmRivw2F8x3w3l2m6htAUN97Gy0kwpO++2m9iT1Gt8RCFVUfv9U/sIbHJ6rY4P6/ooqFL/eL7ock+pPg== + version "1.5.88" + resolved "https://registry.yarnpkg.com/electron-to-chromium/-/electron-to-chromium-1.5.88.tgz#cdb6e2dda85e6521e8d7d3035ba391c8848e073a" + integrity sha512-K3C2qf1o+bGzbilTDCTBhTQcMS9KW60yTAaTeeXsfvQuTDDwlokLam/AdqlqcSy9u4UainDgsHV23ksXAOgamw== emoji-regex@^8.0.0: version "8.0.0"