Skip to main content

158 posts tagged with "release"

View All Tags

Mondoo 5.36.1 is out!

ยท 2 min read
Mondoo Core Team

๐Ÿฅณ Mondoo 5.36.1 is out. This release's big features: EBS Volume based instance Scanning, Colorblind mode, and policy updates!

๐ŸŽ‰ NEW FEATURESโ€‹

Colorblind Modeโ€‹

A new user setting allows you to change to a colorblind-friendly color palette throughout the UI.

User Settings

Colorblind Space

AWS EBS Volume based Instance Scanningโ€‹

The Mondoo AWS Integration now includes the ability to scan instances using instance EBS volume data. This method does not require credentials or a client installation for scanning and can even scan stopped instances. Users can enable this feature and change how scanning occurs in this AWS integration configuration page.

EBS Settings

๐Ÿงน IMPROVEMENTSโ€‹

Linux Security Baseline Updatesโ€‹

We've made a number of improvements to our out of the box security policy this week. Our Linux Security Baseline by Mondoo is now more reliable. Many queries have been improved to work better on different Linux distributions and to better handle running in containers. We've also improved the query output and remediation instructions to make it easier to resolve discovered issues.

Rocky Linux CIS Benchmarksโ€‹

Mondoo now includes the Rocky Linux CIS Level 1 and 2 Server benchmarks. See the CIS Rocky Linux Benchmarks page for more information on these benchmarks.

Mondoo Kubernetes Operator Improvementsโ€‹

The Mondoo Kubernetes Operator 0.2.5 has been released with Kubernetes Workload scanning and the ability to scan Rancher provisioned controlplane and etcd nodes.

๐Ÿ› BUGFIXESโ€‹

  • Fixed a crash when scanning with invalid credentials
  • Fixed a crash when retrieving anti-spyware security product details on Windows

Mondoo 5.35.0 is out!

ยท 2 min read
Mondoo Core Team

๐Ÿฅณ Mondoo 5.35.0 is out. This release's big features: Search assets by tags, new UI elements, and new Windows resources.

๐ŸŽ‰ NEW FEATURESโ€‹

Search assets by tag and annotation key/valueโ€‹

The search box in the fleet view now filters assets by tags and annotations. This simple feature adds a lot of power! For example, you can now search across multiple AWS accounts for assets with the same tag. But as cool as that is, we'll do you one better: You can also search across multiple cloud providers. Or GitHub accounts. Or... you get the idea.

New graphs on the web consoleโ€‹

The Mondoo Web Console has two new sets of graphs to help you see the state of your assets at a glance! First, the new radial graphs now show the breakdown of your assets by score. Mouse hovers provide more detailed information from the dashboard.

New radial graphs

If you select the fleet view, you'll see a new bar graph showing the same distribution of assets by letter grade.

New bar graphs

And of course, it all looks great!

Add annotations to assets via the configโ€‹

To create specific annotations for all assets when scanning via the mondoo agent, set the following config string:

---
annotations:
mdm: annotation

New Windows Resourcesโ€‹

Mondoo now includes new resources for better examining the security of Windows systems out of the box:

๐Ÿงน IMPROVEMENTSโ€‹

Additional CI System Dataโ€‹

Mondoo now gathers more CI environment labels on GitLab, GitHub Actions, and Travis-CI.

Mondoo Kubernetes Operator Improvementsโ€‹

The Mondoo Kubernetes operator now scans Kubernetes Deployments in addition to Pods. See the full Operator release notes on the GitHub project.

๐Ÿ› BUGFIXESโ€‹

  • Fixed harbor integration scanning
  • Updated the CLI output colors on macOS systems to improve the readability of error messages
  • Fixed the display of Spaces on mobile devices

Mondoo 5.34.1 is out!

ยท 2 min read
Mondoo Core Team

๐Ÿฅณ Mondoo 5.34.1 is out. The big features this release: User defined asset tags and new Mondoo.com API endpoints

๐Ÿšš Mondoo Domain Changeโ€‹

Mondoo has moved to .com! As of April 12th weโ€™ve officially migrated our web console to https://console.mondoo.com and API to https://us.api.mondoo.com. The previous URLโ€™s will redirect to the new locations until they are EOLโ€™ed later this year. We encourage you to update your bookmarks and Mondoo Client configurations. All new configurations generated by Mondoo will use the new API location.

Mondoo 5.34.1 includes a migrate sub-command that can automatically update your Mondoo configuration to the new API endpoint:

## Check which API Endpoint we're using:
$ cat .config/mondoo/mondoo.yml | yq .api_endpoint
https://api.mondoo.app

## Upgrade the config:
$ mondoo migrate
โ†’ Migrate Mondoo CLI configuration:
โ†’ loaded configuration from /home/benr/.config/mondoo/mondoo.yml
โ†’ saving mondoo config path=/home/benr/.config/mondoo/mondoo.yml
โ†’ migrated configuration successfully

## Check the new API endpoint:
$ cat .config/mondoo/mondoo.yml | yq .api_endpoint
https://us.api.mondoo.com # <-- Good!

๐ŸŽ‰ NEW FEATURESโ€‹

User Defined, Editable Tags for Assetsโ€‹

Organization is the name of the game, and we're ready to help you spring clean. No more wondering what belongs where. Create custom tags right from the UI to help better manage your growing list of Assets. Get started today by selecting the 'plus' button next to Annotations in your Asset Configuration tab - your future self will thank you.

console-annotations

๐Ÿงน IMPROVEMENTSโ€‹

Improved EOL OS Detectionโ€‹

Mondoo now includes improved end-of-life operating systems detection with new VMware Photon / Oracle Linux support and updated EOL information for Ubuntu, Scientific Linux, Fedora, and macOS.

Kubernetes Operator Improvementsโ€‹

Our preview Kubernetes Operator release 0.2.3 shipped with several improvements for added reliability in scanning:

  • Operator pods now include readiness probes.
  • Operator status information reports in the MondooAuditConfig CR
  • Users can now skip the resolution of the Mondoo Client container image if necessary.
  • Operator resource limits have been lowered to limit cluster impact.

Updated Output in mondoo policy commandsโ€‹

The mondoo policy describe and mondoo policy list commands have been updated with a fresh new output format to improve readability. mondoo policy list now also includes policy version information, and a new --list-all flag lets you list all private, public, and enabled policies at once.

Mondoo 5.33.0 is out!

ยท One min read
Mondoo Core Team

๐Ÿฅณ Mondoo 5.33.0 is out. The Big features this release: New CIS certified policies!

๐ŸŽ‰ NEW FEATURESโ€‹

CIS Certified Red Hat Linux Policiesโ€‹

This week we welcome more new additions to Mondoo's suite of CIS-certified policies. Mondoo now offers CIS-certified policies for Red Hat Enterprise Linux 7, and Red Hat Enterprise Linux 8.

The full list of CIS certified Mondoo Policies is always visible on the Center for Internet Security's website.

๐Ÿงน IMPROVEMENTSโ€‹

Better, stronger, fasterโ€‹

  • Several minor bug fixes and improvements for forthcoming features.

Mondoo 5.32.0 is out!

ยท 2 min read
Mondoo Core Team

Mondoo 5.32.0 is out. The Big features this release: A re-designed and improved Policy Hub, full support for AlmaLinux, and a new color scheme for the UI!

๐ŸŽ‰ NEW FEATURESโ€‹

Re-designed Policy Hubโ€‹

We've re-designed the Policy Hub with many new features. The Policy Hub now helps you quickly understand much greater nuance about your policies. Policy scores let you see at a glance which policies have the broadest adherence or divergence in your organization. The assets count shows which policies have the widest impact across your fleet of assets. And un-used policies are now hidden by default.

policy_hub

Asset View

The individual policy view now has an asset tab. This tab displays the policy score for each asset to which the policy applies.

policy_hub

Hide un-used policies

The Policy Hub now only shows policies that have been enabled in the Space.

Previously, the Policy Hub would display all available policies, even if those policies had not been enabled for the Space. To show new policies, use the "Add Policy" button.

AlmaLinux Supportโ€‹

Mondoo now includes support for the latest Red Hat Linux derivative, AlmaLinux. This includes updates to the client install scripts, Chef Infra cookbook support, and new AlmaLinux OS 8 CIS Level 1 and 2 benchmarks.

New Colorsโ€‹

The Mondoo Console has been refreshed with a new color scheme. As a result, text pops and graphs are much easier to differentiate.

๐Ÿงน IMPROVEMENTSโ€‹

New and Improved Policies

We've been busy this week expanding and improving our out of the box policies with a number of new early access policies now available:

  • New Amazon Elastic Kubernetes Service (EKS) Level 1 / 2 CIS benchmarks
  • New early access Terraform Static Analysis Policy for AWS EKS policy
  • New early access GitLab Baseline by Mondoo
  • Updated SLES 12 and 15 CIS benchmarks to version 1.1.1
  • Expanded the queries in our RHEL 8 CIS benchmarks
  • Improved the Kubernetes Application Benchmark by Mondoo

Updated Client Install Script

Our Mondoo Client install.sh script now supports AlmaLinux, Rocky Linux, and macOS systems without Homebrew.

Mondoo 5.31.0 is out!

ยท 2 min read
Mondoo Core Team

๐Ÿฅณ mondoo 5.31.0 is out!

๐ŸŽ‰ NEW FEATURESโ€‹

New Getting Started Guide for AWS

We've launched a new getting started path for people who want to Try out Mondoo with AWS. Learn how to set up Mondoo in AWS CloudShell or your local laptop, and policy scan your AWS account in just a few minutes.

We've also revamped the Getting Started section of the Mondoo documentation site. We've released new tutorials for getting started not just with AWS, but also Azure, Google Cloud, Kubernetes, VMware, Docker, and more.

CIS Amazon Linux 2 Policy Certification

This week, the "CIS Amazon Linux 2" policy becomes the eleventh addition to Mondoo's suite of CIS-certified policies. For more information about our growing collection of CIS-certified policies, see the Mondoo 5.29.1 Release Notes from earlier this month.

Expanded Platform Support with Chef

The Mondoo Chef Infra Cookbook 0.3.0 is out with expanded platform support for openSUSE, SLES, Fedora, Rocky Linux, and Scientific Linux distros. Use this cookbook to install Mondoo Client and register new nodes automatically with Mondoo Platform.

๐Ÿงน IMPROVEMENTSโ€‹

Terraform Improvements

  • ๐Ÿ› Bugfixes to the Terraform AWS policy.
  • โญ๏ธ Terraform support has been updated to better support breaking changes in Terraform providers.

Kubernetes Operator Improvements

  • โญ๏ธ Prometheus metrics are now exposed by the operator.

MQL Improvements

  • containerImage and containerRepository are now supported MQL resources.

Mondoo 5.30.0 is out!

ยท One min read
Mondoo Core Team

๐Ÿฅณ mondoo 5.30.0 is out!

๐Ÿงน IMPROVEMENTSโ€‹

Better, stronger, faster

  • This version is all under-the-hood improvements. If we were an iOS app, this message would read, "Bug fixes and performance improvements."

Mondoo 5.29.1 is out!

ยท One min read
Mondoo Core Team

๐Ÿฅณ mondoo 5.29.1 is out!

๐ŸŽ‰ NEW FEATURESโ€‹

CIS Amazon Linux 2 Policy Certification

This week, the "CIS Amazon Linux 2" policy becomes the 10th addition to Mondoo's suite of CIS-certified policies. We now offer CIS-certified policies for:

  • Amazon Linux
  • AWS
  • CentOS
  • Debian
  • macOS
  • Red Hat Enterprise Linux versions 6, 7, and 8
  • Windows 2019
  • And more!

There are more CIS-certified policies on the way. Evaluate your assets against these policies and many more, free from the Policy Hub.

Kubernetes Operator is available

We're excited to announce Early Access to our Mondoo Operator for Kubernetes. You can easily integrate the Mondoo Operator into your existing deployment strategies using Helm, OLM, or Kubectl. In addition, the operator will scan both your deployed workloads and your Kubernetes nodes without requiring any additional access! We're eager to hear your feedback and hope you love it as much as we do.

๐Ÿงน IMPROVEMENTSโ€‹

Custom Labels

  • We now support the --annotation flag when running scans for adding custom labels to assets. An enhanced view of labels on assets will be coming to the UI in an upcoming release.

Mondoo 5.28.0 is out!

ยท 2 min read
Mondoo Core Team

๐Ÿฅณ mondoo 5.28.0 is out!

๐ŸŽ‰ NEW FEATURESโ€‹

Space Vulnerability Views

Mondoo has always supported inspecting an asset to track which CVEs and advisories apply. Starting today, it's now simple to also follow CVEs and advisories to understand which assets they impact.

cve-2022-22823

To use the new view, open the Policy Hub and then view the Platform Vulnerability policy. The new Advisories and Vulnerabilities tabs will list all vulnerabilities and advisories applicable to assets in the fleet. Sort these by CVSS criticality, date of the first detection, or the number of assets impacted to find the highest-impact issues in your environment.

platform-vulnerability-policy

๐Ÿงน IMPROVEMENTSโ€‹

  • There is now a setting to remove terminated assets under the Space Settings tab.

Mondoo keeps an inventory of every unique asset it scans. However, some people frequently create and destroy hosts and containers, especially in cloud environments. Over time, this can lead to Mondoo tracking hundreds or even thousands of assets that no longer exist and never will again.

This new setting tells Mondoo to no longer inventory cloud-based assets destroyed by a cloud provider. The setting defaults to true for all spaces created after February 18, 2022. For spaces created prior to this date, the setting will remain false.

RemoveTerminatedAssets

Mondoo 5.27.0 is out!

ยท One min read
Mondoo Core Team

๐Ÿฅณ mondoo 5.27.0 is out!

๐ŸŽ‰ NEW FEATURESโ€‹

ESXi command resource

Connect to a specific ESXi host:

mondoo shell -t vsphere://root@192.168.178.30 --ask-pass --discover host-machines --platform-id //platformid.api.mondoo.app/runtime/vsphere/instance/ha-host/moid/HostSystem-ha-host

Then run the command and retrieve the results:

mondoo> esxi.command("system coredump network get").result
esxi.command.result: [
0: {
Enabled: "false"
HostVNic: ""
IsUsingIPv6: "false"
NetworkServerIP: ""
NetworkServerPort: "0"
}
]

When you connect to vSphere's API you can combine the resource with each host:

vsphere.datacenters {
hosts {
inventoryPath
esxi.command(command: "system coredump network get", inventoryPath: inventoryPath).result
}
}

๐Ÿงน IMPROVEMENTSโ€‹

  • Linux policy updates
  • New vulnerability report api, UI view coming soon!
  • Split the VMware policy between vsphere and vsphere-esxi

๐Ÿ› BUG FIXES AND UPDATESโ€‹

  • AWS integration: fix AddPermissions error recorded in CloudWatch logs when trying to update the lambda function policy