Mondoo 11.22 is out!
๐ฅณ Mondoo 11.22 is out! This release includes the new case overview, Zendesk ticket support, a Microsoft Entra ID security policy, and more!โ
Get this release: Installation Docs | Package Downloads | Docker Container
๐ NEW FEATURESโ
Cases and ticket system integrations!โ
Mondoo users can now group security findings into cases and assign those cases to external ticket systems for efficient tracking and resolution. Cases ship today with out-of-the-box support for Jira and Zendesk, with more to come.
Key highlights:
- Group findings into cases for better organization and management.
- Delegate cases to external teams using your existing ticketing systems.
- Automatically update issues as your team remediates findings, ensuring real-time progress tracking.
- Auto-close cases and corresponding tickets when all findings within a case are resolved.
This feature enhances collaboration and simplifies the remediation process, helping teams stay focused on securing your environment.
Microsoft Entra ID policyโ
Secure your Microsoft Entra ID (previously Active Directory) with our new Mondoo Microsoft Entra ID Security policy. This policy includes essential checks to keep your directory data secure.
๐งน IMPROVEMENTSโ
New checks in the CIS Azure Foundations benchmark policyโ
Harden your Microsoft Azure subscriptions with expanded checks in the CIS Azure Foundations Benchmark policy. This policy now ensures that Azure Key Vault rotation is configured and AppService HTTP logs are enabled.
๐ BUG FIXES AND UPDATESโ
- Improve rendering of complex remediation text in CIS policies.
- Fix the alignment of the Start Scanning and Browse Integration buttons in new spaces.
- Improve handling of SMBIOS data on Windows to prevent errors displaying in the asset overview.
- Fix failures to scan more than 100 S3 buckets at a time.
- Resolve an AWS serverless integration error shown in the console integration details page.
- Improve the rendering of some CVE descriptions.
- Update AWS policies to use the latest RDS MQL resources.
- Install cnspec from install.mondoo.com instead of mondoo.com during Azure VM scans.
- Fix false negatives when checking bootloader config on Linux distributions based on RHEL 9.
- Skip GDM and firewalld checks when those packages aren't installed on Linux distributions based on RHEL 9.
- Fix policy pages in the registry to display all checks when policies include duplicate check names.
- Don't include asset, policies, or checks counts in ticket system integration pages.
- Improve consistency of letter score calculations.
- Add EOL detection support for FreeBSD 13.4.
- Fix auto-closing of Jira tickets when all Mondoo assets have been deleted.