Skip to content

release/v1.7.0
Compare
Choose a tag to compare
@kshrutik kshrutik released this 10 May 17:17
· 22 commits to master since this release
v1.7.0
c958afc
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.

Release notes:

New remediation jobs added for Azure:

  • Disable PostgreSQL server access from Azure services (azure_postgresql_allow_access_to_azure_service_disabled) Rule ID: 9b7b5a71-5eaa-4418-a6b0-17f796e8ebaa
  • Restrict UDP access from Internet (azure_security_udp_access_restricted_from_internet) Rule ID: 4e27676b-7e87-4e2e-b756-28c96ed4fdf8
  • Encrypt SQL Server TDE protector with CMK (azure_sql_tde_protector_encrypted_cmk) Rule ID: 7406e56f-bbf0-4571-8e50-21bd344e0fdb

New remediation jobs added for AWS:

  • Remove Network ACL Rules that allows public access to administration ports (3389 and 22) (aws_ec2_administration_ports_ingress_allowed) Rule ID: 1ec4a1f2-3e08-11eb-b378-0242ac130002
  • Restrict unsecured HTTP requests for S3 Bucket (aws_s3_bucket_policy_allow_https) Rule ID: 688d093c-3b8d-11eb-adc1-0242ac120002
  • Remove SQS Queue Public Access (aws_sqs_queue_publicly_accessible) Rule ID: 09639b9d-98e8-493b-b8a4-916775a7dea9

Updated list of supported remediation jobs in the Readme file with new jobs.

Assets 2
Loading