Skip to main content

Mondoo 5.13.0 is out!

ยท 2 min read
Jay Mundrawala
Mondoo Core Team

๐Ÿฅณ mondoo 5.13.0 is out!

๐ŸŽ‰ NEW FEATURESโ€‹

DNS resource

This release includes a new resource to make DNS queries to allow testing against DNS records.

dns("mondoo.com").records {
type
rdata
}
dns.records: [
0: {
type: "TXT"
rdata: [
0: "google-site-verification=BJHy4ONNsxrKr7Vtz3g6Y-dJDAOZ3S0PLFdqKVZv6To"
1: "v=DMARC1; p=none; rua=mailto:postmaster@mondoo.com, mailto:dmarc@mondoo.com; sp=none; pct=100; adkim=r; aspf=r"
2: "v=spf1 include:_spf.google.com include:_spf.salesforce.com include:amazonses.com include:mail.zendesk.com ~all"
]
}
1: {
type: "SOA"
rdata: [
0: "ns-cloud-c1.googledomains.com. cloud-dns-hostmaster.google.com. 1 21600 3600 259200 300"
]
}
2: {
type: "MX"
rdata: [
0: "10 alt3.aspmx.l.google.com."
1: "5 alt2.aspmx.l.google.com."
2: "1 aspmx.l.google.com."
3: "10 alt4.aspmx.l.google.com."
4: "5 alt1.aspmx.l.google.com."
]
}
3: {
type: "NS"
rdata: [
0: "ns-cloud-c2.googledomains.com."
1: "ns-cloud-c3.googledomains.com."
2: "ns-cloud-c1.googledomains.com."
3: "ns-cloud-c4.googledomains.com."
]
}
4: {
type: "A"
rdata: [
0: "76.223.34.124"
1: "13.248.160.137"
]
}
]

CVE View through the CLI

In this release, we're introducing a new command to get a view of CVEs affecting a space:

mondoo vuln list //captain.api.mondoo.app/spaces/test-infallible-taussig-796596

vuln list

๐Ÿงน IMPROVEMENTSโ€‹

  • Improved query error handling
  • Introduce a new certificate.expiresIn field to get the remaining time !1680
  • The mount resource is now supported for file system based scans through /etc/fstab

โš ๏ธ BREAKING CHANGES:

  • The certificate resources has the following breaking changes:
    1. renamed hashs field to fingerprints
    2. use camelCase for certificate fields