Add 10.6 release notes

Docs for the 10.6 release

Signed-off-by: Tim Smith <[email protected]>

releases/2024-03-06-mondoo-10.6-is-out.md

@@ -0,0 +1,76 @@
+---
+slug: mondoo-10.6-is-out/
+title: Mondoo 10.6 is out!
+author: Tim Smith
+author_title: Mondoo Core Team
+author_url: https://github.com/tas50
+tags: [release, mondoo]
+---
+
+## 🥳 Mondoo 10.6 is out! This release includes FOO, BAR, BAZ, and more!
+
+Get this release: [Installation Docs](https://mondoo.com/docs/cnspec/) | [Package Downloads](https://releases.mondoo.com/cnspec/) | [Docker Container](https://hub.docker.com/r/mondoo/cnspec)
+
+---
+
+## 🎉 NEW FEATURES
+
+### Convert types in MQL
+
+https://github.com/mondoohq/cnquery/pull/3463
+
+### Open source Mondoo documentation
+
+DEETS
+
+## 🧹 IMPROVEMENTS
+
+### Resource improvements
+
+#### package
+
+- Add new `originVersion` field on Debian Linux based assets.
+- Include version data in the `origin` field for source packages on Debian Linux based assets.
+
+### Filter AWS scans by region
+
+https://github.com/mondoohq/cnquery/pull/3225
+
+```bash
+cnquery shell aws --filters all:region=us-east-2
+cnquery shell aws --filters region=us-east-2
+cnquery shell aws --filters ec2:region=us-east-2
+```
+
+### Improved policy check impact scores
+
+https://github.com/mondoohq/cnspec-enterprise-policies/pull/709
+
+### Improved AWS policies
+
+- https://github.com/mondoohq/cnspec-enterprise-policies/pull/703
+- https://github.com/mondoohq/cnspec-enterprise-policies/pull/747
+- https://github.com/mondoohq/cnspec-enterprise-policies/pull/701
+- https://github.com/mondoohq/cnspec-enterprise-policies/pull/742
+- https://github.com/mondoohq/cnspec-enterprise-policies/pull/719
+- https://github.com/mondoohq/cnspec-enterprise-policies/pull/711
+- https://github.com/mondoohq/cnspec-enterprise-policies/pull/715
+
+## 🐛 BUG FIXES AND UPDATES
+
+- Improve reliability of fetching CVE data for assets.
+- Only show unresolved CVEs in the asset CVE list.
+- Fix package CVE false positives for some Debian packages.
+- Fix CVEs not showing after the first asset scan.
+- Fix failures scanning a GitHub organization if the supplied token cannot access all repositories.
+- Only show the options to add new integrations when the user has the appropriate permissions for the space.
+- Change documentation links in the console to go directly to Mondoo Platform documentation.
+- Improve how space owners are listed in the Organization dashboard's CVE list.
+- Fix policy recommendation during the Kubernetes integration setup.
+- Show EPSS scores with a single decimal point in all locations.
+- Don't fail scanning if the location of an S3 bucket cannot be determined.
+- Return more than 100 Microsoft 365 users in queries.
+- Improve output of the `Ensure macOS is up to date` check in the macOS Security policy.
+- Distinguish between domain controllers and member servers in Windows Security policy checks.
+- Improve empty states for software, CVE, and advisory asset page tabs.
+- Improve rendering of columns in the asset page's advisories tab.

yarn.lock

@@ -1646,9 +1646,9 @@
     webpack "^5.88.1"
 
 "@fontsource/roboto@^5.0.7":
-  version "5.0.8"
-  resolved "https://registry.yarnpkg.com/@fontsource/roboto/-/roboto-5.0.8.tgz#613b477a56f21b5705db1a67e995c033ef317f76"
-  integrity sha512-XxPltXs5R31D6UZeLIV1td3wTXU3jzd3f2DLsXI8tytMGBkIsGcc9sIyiupRtA8y73HAhuSCeweOoBqf6DbWCA==
+  version "5.0.12"
+  resolved "https://registry.yarnpkg.com/@fontsource/roboto/-/roboto-5.0.12.tgz#418f7305a3be7fc567dd154db20090f7ece7fc6c"
+  integrity sha512-x0o17jvgoSSbS9OZnUX2+xJmVRvVCfeaYJjkS7w62iN7CuJWtMf5vJj8LqgC7ibqIkitOHVW+XssRjgrcHn62g==
 
 "@hapi/hoek@^9.0.0", "@hapi/hoek@^9.3.0":
   version "9.3.0"
@@ -1714,9 +1714,9 @@
   integrity sha512-eF2rxCRulEKXHTRiDrDy6erMYWqNw4LPdQ8UQA4huuxaQsVeRPFl2oM8oDGxMFhJUWZf9McpLtJasDDZb/Bpeg==
 
 "@jridgewell/trace-mapping@^0.3.17", "@jridgewell/trace-mapping@^0.3.20", "@jridgewell/trace-mapping@^0.3.24", "@jridgewell/trace-mapping@^0.3.9":
-  version "0.3.24"
-  resolved "https://registry.yarnpkg.com/@jridgewell/trace-mapping/-/trace-mapping-0.3.24.tgz#e5640be1cab4085e4012a94c132ae86138f90f48"
-  integrity sha512-+VaWXDa6+l6MhflBvVXjIEAzb59nQ2JUK3bwRp2zRpPtU+8TFRy9Gg/5oIcNlkEL5PGlBFGfemUVvIgLnTzq7Q==
+  version "0.3.25"
+  resolved "https://registry.yarnpkg.com/@jridgewell/trace-mapping/-/trace-mapping-0.3.25.tgz#15f190e98895f3fc23276ee14bc76b675c2e50f0"
+  integrity sha512-vNk6aEwybGtawWmy/PzwnGDOjCkLWSD2wqvjGGAgOAwCGWySYXfYoxt00IJkTF+8Lb57DwOb3Aa0o9CApepiYQ==
   dependencies:
     "@jridgewell/resolve-uri" "^3.1.0"
     "@jridgewell/sourcemap-codec" "^1.4.14"
@@ -2995,9 +2995,9 @@ caniuse-api@^3.0.0:
     lodash.uniq "^4.5.0"
 
 caniuse-lite@^1.0.0, caniuse-lite@^1.0.30001587, caniuse-lite@^1.0.30001591:
-  version "1.0.30001591"
-  resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001591.tgz#16745e50263edc9f395895a7cd468b9f3767cf33"
-  integrity sha512-PCzRMei/vXjJyL5mJtzNiUCKP59dm8Apqc3PH8gJkMnMXZGox93RbE76jHsmLwmIo6/3nsYIpJtx0O7u5PqFuQ==
+  version "1.0.30001593"
+  resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001593.tgz#7cda1d9e5b0cad6ebab4133b1f239d4ea44fe659"
+  integrity sha512-UWM1zlo3cZfkpBysd7AS+z+v007q9G1+fLTUU42rQnY6t2axoogPW/xol6T7juU5EUoOhML4WgBIdG+9yYqAjQ==
 
 ccount@^2.0.0:
   version "2.0.1"
@@ -4713,9 +4713,9 @@ hpack.js@^2.1.6:
     wbuf "^1.1.0"
 
 html-entities@^2.3.2:
-  version "2.4.0"
-  resolved "https://registry.yarnpkg.com/html-entities/-/html-entities-2.4.0.tgz#edd0cee70402584c8c76cc2c0556db09d1f45061"
-  integrity sha512-igBTJcNNNhvZFRtm8uA6xMY6xYleeDwn3PeBCkDz7tHttv4F2hsDI2aPgNERWzvRcNYHNT3ymRaQzllmXj4YsQ==
+  version "2.5.2"
+  resolved "https://registry.yarnpkg.com/html-entities/-/html-entities-2.5.2.tgz#201a3cf95d3a15be7099521620d19dfb4f65359f"
+  integrity sha512-K//PSRMQk4FZ78Kyau+mZurHn3FH0Vwr+H36eE0rPbeYkRRi9YxceYPhuN60UwWorxyKHhqoAJl2OFKa4BVtaA==
 
 html-escaper@^2.0.2:
   version "2.0.2"