Mondoo 8.10 is out!
๐ฅณ Mondoo 8.10 is out! This release includes new SaaS scanning integrations, Oracle Cloud Infrastructure (OCI) support, expanded OS CVE detection, and more!โ
Get this release: Installation Docs | Package Downloads | Docker Container
๐ NEW FEATURESโ
Scan Oracle Cloud Infrastructure (OCI)โ
cnquery and cnspec now include support for scanning Oracle Cloud Infrastructure (OCI) using your local OCI CLI configuration file. Explore your infrastructure configuration using cnquery or enforce security and compliance with custom cnspec security policies.
Connect to OCI using the cnquery shell:
$ cnquery shell oci
Query the tenant information:
cnquery> oci.tenancy
oci.tenancy: oci.tenancy name="example"
Fetch all users:
cnquery> oci.identity.users
oci.identity.users: [
0: oci.identity.user name="alice@example.com"
1: oci.identity.user name="bob@example.com"
2: oci.identity.user name="john@example.com"
]
Fetch all groups:
cnquery> oci.identity.groups
oci.identity.groups: [
0: oci.identity.group name="All Domain Users"
1: oci.identity.group name="Administrators"
]
Dive deeper with information from new OCI resources:
# list identity policies
oci.identity.policies
# list compute instances
oci.compute.instances
# list compute images
oci.compute.images
# list virtual cloud networks
oci.network.vcns
# list virtual cloud networks security lists
oci.network.securityLists
# list all buckets
oci.objectStorage.buckets
Stay tuned for additional OCI support, including Mondoo/CIS policies, and continuous scanning with Mondoo Platform.
Slack / GitHub / GitLab integrationsโ
Need continuous visibility into the security of the SaaS services you rely to do business? Now you can continuously scan GitHub repositories, GitLab groups, and Slack teams directly from the Mondoo Console without installing anything into your infrastructure.
Find these new integrations under SaaS in the Mondoo Console: