diff --git a/releases/2024-03-06-mondoo-10.6-is-out.md b/releases/2024-03-06-mondoo-10.6-is-out.md new file mode 100644 index 000000000..6a0c6337f --- /dev/null +++ b/releases/2024-03-06-mondoo-10.6-is-out.md @@ -0,0 +1,76 @@ +--- +slug: mondoo-10.6-is-out/ +title: Mondoo 10.6 is out! +author: Tim Smith +author_title: Mondoo Core Team +author_url: https://github.com/tas50 +tags: [release, mondoo] +--- + +## ๐Ÿฅณ Mondoo 10.6 is out! This release includes FOO, BAR, BAZ, and more! + +Get this release: [Installation Docs](https://mondoo.com/docs/cnspec/) | [Package Downloads](https://releases.mondoo.com/cnspec/) | [Docker Container](https://hub.docker.com/r/mondoo/cnspec) + +--- + +## ๐ŸŽ‰ NEW FEATURES + +### Convert types in MQL + +https://github.com/mondoohq/cnquery/pull/3463 + +### Open source Mondoo documentation + +DEETS + +## ๐Ÿงน IMPROVEMENTS + +### Resource improvements + +#### package + +- Add new `originVersion` field on Debian Linux based assets. +- Include version data in the `origin` field for source packages on Debian Linux based assets. + +### Filter AWS scans by region + +https://github.com/mondoohq/cnquery/pull/3225 + +```bash +cnquery shell aws --filters all:region=us-east-2 +cnquery shell aws --filters region=us-east-2 +cnquery shell aws --filters ec2:region=us-east-2 +``` + +### Improved policy check impact scores + +https://github.com/mondoohq/cnspec-enterprise-policies/pull/709 + +### Improved AWS policies + +- https://github.com/mondoohq/cnspec-enterprise-policies/pull/703 +- https://github.com/mondoohq/cnspec-enterprise-policies/pull/747 +- https://github.com/mondoohq/cnspec-enterprise-policies/pull/701 +- https://github.com/mondoohq/cnspec-enterprise-policies/pull/742 +- https://github.com/mondoohq/cnspec-enterprise-policies/pull/719 +- https://github.com/mondoohq/cnspec-enterprise-policies/pull/711 +- https://github.com/mondoohq/cnspec-enterprise-policies/pull/715 + +## ๐Ÿ› BUG FIXES AND UPDATES + +- Improve reliability of fetching CVE data for assets. +- Only show unresolved CVEs in the asset CVE list. +- Fix package CVE false positives for some Debian packages. +- Fix CVEs not showing after the first asset scan. +- Fix failures scanning a GitHub organization if the supplied token cannot access all repositories. +- Only show the options to add new integrations when the user has the appropriate permissions for the space. +- Change documentation links in the console to go directly to Mondoo Platform documentation. +- Improve how space owners are listed in the Organization dashboard's CVE list. +- Fix policy recommendation during the Kubernetes integration setup. +- Show EPSS scores with a single decimal point in all locations. +- Don't fail scanning if the location of an S3 bucket cannot be determined. +- Return more than 100 Microsoft 365 users in queries. +- Improve output of the `Ensure macOS is up to date` check in the macOS Security policy. +- Distinguish between domain controllers and member servers in Windows Security policy checks. +- Improve empty states for software, CVE, and advisory asset page tabs. +- Improve rendering of columns in the asset page's advisories tab. diff --git a/yarn.lock b/yarn.lock index 0fd39c86d..d01f3f5b8 100644 --- a/yarn.lock +++ b/yarn.lock @@ -1646,9 +1646,9 @@ webpack "^5.88.1" "@fontsource/roboto@^5.0.7": - version "5.0.8" - resolved "https://registry.yarnpkg.com/@fontsource/roboto/-/roboto-5.0.8.tgz#613b477a56f21b5705db1a67e995c033ef317f76" - integrity sha512-XxPltXs5R31D6UZeLIV1td3wTXU3jzd3f2DLsXI8tytMGBkIsGcc9sIyiupRtA8y73HAhuSCeweOoBqf6DbWCA== + version "5.0.12" + resolved "https://registry.yarnpkg.com/@fontsource/roboto/-/roboto-5.0.12.tgz#418f7305a3be7fc567dd154db20090f7ece7fc6c" + integrity sha512-x0o17jvgoSSbS9OZnUX2+xJmVRvVCfeaYJjkS7w62iN7CuJWtMf5vJj8LqgC7ibqIkitOHVW+XssRjgrcHn62g== "@hapi/hoek@^9.0.0", "@hapi/hoek@^9.3.0": version "9.3.0" @@ -1714,9 +1714,9 @@ integrity sha512-eF2rxCRulEKXHTRiDrDy6erMYWqNw4LPdQ8UQA4huuxaQsVeRPFl2oM8oDGxMFhJUWZf9McpLtJasDDZb/Bpeg== "@jridgewell/trace-mapping@^0.3.17", "@jridgewell/trace-mapping@^0.3.20", "@jridgewell/trace-mapping@^0.3.24", "@jridgewell/trace-mapping@^0.3.9": - version "0.3.24" - resolved "https://registry.yarnpkg.com/@jridgewell/trace-mapping/-/trace-mapping-0.3.24.tgz#e5640be1cab4085e4012a94c132ae86138f90f48" - integrity sha512-+VaWXDa6+l6MhflBvVXjIEAzb59nQ2JUK3bwRp2zRpPtU+8TFRy9Gg/5oIcNlkEL5PGlBFGfemUVvIgLnTzq7Q== + version "0.3.25" + resolved "https://registry.yarnpkg.com/@jridgewell/trace-mapping/-/trace-mapping-0.3.25.tgz#15f190e98895f3fc23276ee14bc76b675c2e50f0" + integrity sha512-vNk6aEwybGtawWmy/PzwnGDOjCkLWSD2wqvjGGAgOAwCGWySYXfYoxt00IJkTF+8Lb57DwOb3Aa0o9CApepiYQ== dependencies: "@jridgewell/resolve-uri" "^3.1.0" "@jridgewell/sourcemap-codec" "^1.4.14" @@ -2995,9 +2995,9 @@ caniuse-api@^3.0.0: lodash.uniq "^4.5.0" caniuse-lite@^1.0.0, caniuse-lite@^1.0.30001587, caniuse-lite@^1.0.30001591: - version "1.0.30001591" - resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001591.tgz#16745e50263edc9f395895a7cd468b9f3767cf33" - integrity sha512-PCzRMei/vXjJyL5mJtzNiUCKP59dm8Apqc3PH8gJkMnMXZGox93RbE76jHsmLwmIo6/3nsYIpJtx0O7u5PqFuQ== + version "1.0.30001593" + resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001593.tgz#7cda1d9e5b0cad6ebab4133b1f239d4ea44fe659" + integrity sha512-UWM1zlo3cZfkpBysd7AS+z+v007q9G1+fLTUU42rQnY6t2axoogPW/xol6T7juU5EUoOhML4WgBIdG+9yYqAjQ== ccount@^2.0.0: version "2.0.1" @@ -4713,9 +4713,9 @@ hpack.js@^2.1.6: wbuf "^1.1.0" html-entities@^2.3.2: - version "2.4.0" - resolved "https://registry.yarnpkg.com/html-entities/-/html-entities-2.4.0.tgz#edd0cee70402584c8c76cc2c0556db09d1f45061" - integrity sha512-igBTJcNNNhvZFRtm8uA6xMY6xYleeDwn3PeBCkDz7tHttv4F2hsDI2aPgNERWzvRcNYHNT3ymRaQzllmXj4YsQ== + version "2.5.2" + resolved "https://registry.yarnpkg.com/html-entities/-/html-entities-2.5.2.tgz#201a3cf95d3a15be7099521620d19dfb4f65359f" + integrity sha512-K//PSRMQk4FZ78Kyau+mZurHn3FH0Vwr+H36eE0rPbeYkRRi9YxceYPhuN60UwWorxyKHhqoAJl2OFKa4BVtaA== html-escaper@^2.0.2: version "2.0.2"