Skip to main content

Mondoo 11.26 is out!

ยท 3 min read
Tim Smith
Tim Smith
Mondoo Core Team

๐Ÿฅณ Mondoo 11.26 is out! This release includes new AWS scan filtering options, custom fields in Zendesk cases, and more!โ€‹

Get this release: Installation Docs | Package Downloads | Docker Container

๐ŸŽ‰ NEW FEATURESโ€‹

AWS resource scan filteringโ€‹

Pick and choose the exact AWS resources that Mondoo evaluates with new scan filtering.

The AWS serverless integration now includes the ability to define AWS resources to scan with region-, instance-, and tag-based include and exclude filters. Scan just a single region or exclude resources using owner tags.

AWS resource filtering

For CLI users, now you can specify a comma-separated list of tag values with the --filters flag.

To include only EC2 instances with the "Owner" tag of "backend", "frontend", or "dba":

--filters ec2:tag:Owner=backend,frontend,dba

To exclude EC2 instances with the "Owner" tag of "qa" and "dev":

--filters exclude:ec2:tag:Owner=qa,dev

Custom fields for Zendesk casesโ€‹

Improve the routing of cases generated in Zendesk with new globally set custom fields.

Custom fields for Zendesk

๐Ÿงน IMPROVEMENTSโ€‹

Improved policy risk displayโ€‹

Understand the risk scores distribution of policies across assets in your spaces with improved asset scan results on the security policies page.

Risk score distribution

Ubuntu 24.10 platform supportโ€‹

Secure workstations running the latest release of Ubuntu with full Ubuntu 24.10 support including Linux security policies, vulnerability detection, and EOL support.

๐Ÿ› BUG FIXES AND UPDATESโ€‹

  • Fix errors on the Software page versions graph if all risk severities are unchecked.
  • Add a creation date column to ticketing integration lists.
  • Don't display "Last scanned" on ticketing integration pages.
  • Don't display the "Schedule Now" button on ticketing integration pages.
  • Don't include the "Pause Scanning" menu option on ticketing integration pages.
  • Improve display of affected assets on advisories, CVEs, and checks pages.
  • Fix flickering of text fields on integration setup pages.
  • Improve rendering of manual setup instructions on the Workstation integration setup page.
  • Don't show base scores in the score summaries of CVEs or Advisories.
  • Fix incorrect rendering of some tool tips on overview pages.
  • Improve rendering of compliance progress bars at 0% progress.
  • Improve reliability of advisories and MTTR values on the vulnerabilities overview page.
  • Improve readability of markdown generated by cases.
  • Expand and improve help in cnquery and cnspec.
  • Properly parse command line flags containing double hyphens (--).
  • Improve performance loading asset checks.