1.5.2
Policy Updates
- Added 11 new policies across Azure and GCP
- Fixed the bugs with the existing policy metadata/documentation.
- We are improving the wiki for the existing rules. This is an ongoing effort.
UI Updates
- Fixed bugs across the application
Installer Changes:
- Users do not need to expose port 80 post installation now. We have fixed the issue and now the installer will expose port 80 to CIDR only.
- Added the tags to all the missing installer resources.
- Added the ability to configure the batch compute instance and the batch job VCPU and RAM.
- Please note that we have added missing tags to AWS Batch resources. You need to destroy the Batch resources before upgrading the Paladin Cloud. Please follow the commands mentioned in the doc to destroy the Batch resources before upgrading to the current release
Known Issues
- We are testing the 4 GCP policies, these may not be fully functional in this release.
What's Changed
- fix: fixed violation tiles to display correct data when one of the tiles has 0 values. by @sidharthjain-zemoso in #659
- fix: Modified Display Name of target type by @arunpaladin in #665
- fix/checkFtpStateRule by @kushZemoso in #660
- chore/https sg chages by @rnithinpaladin in #670
- fix: addressed azure and gcp bug fixes by @AnjaliMadhavi-Nakirikanti in #673
- fix: Added correct legacy Authorization enabled flag by @kushZemoso in #669
- fix:dynamic distribution of assets by @ranadheer-b in #674
- feat:Added Collector for Kubernetes Services in Azure by @kushZemoso in #661
- fix :addressed syntax error in db file by @AnjaliMadhavi-Nakirikanti in #679
- fix: fixed azure policies syntax in db file by @AnjaliMadhavi-Nakirikanti in #684
- fix:display qualys cve number and link in UI by @raviteja-mandala in #688
- fix: fixed navigation in asset distribution and modified violation de… by @sidharthjain-zemoso in #690
- fix: emails was not getting populated by @AishwaryaKulkarni97 in #683
- feat: cluster monitoring and authorised IP ranges by @AishwaryaKulkarni97 in #664
- Feat/kms roles by @AishwaryaKulkarni97 in #682
- chore: updated version number by @santhosh-challa in #692
- fix: qualys data by @sidharthjain-zemoso in #694
- feat: Avoid Assigning Service Roles to IAM Users at project level. by @kushZemoso in #697
- fix:Policy AWS security hub and CloudWatch log metric filter and alarm rule by @akashpaladin in #696
- fix: azure and gcp bug fixes by @AnjaliMadhavi-Nakirikanti in #702
- Adding Images to Troubleshoot section by @MonikaSharma1307 in #703
- fix: fixed breadcrumb model, clear text in table search bar and filte… by @sidharthjain-zemoso in #698
- Adding image to troubleshoot by @MonikaSharma1307 in #704
- feat: Added server side sorting by @ranadheer-b in #708
- feat: added filter chips to table, added api for issue status filter … by @sidharthjain-zemoso in #706
- feat: Enforce Separate Service Account Duties for Users by @AnjaliMadhavi-Nakirikanti in #663
- Chore/asset list page size by @sidharthjain-zemoso in #712
- fix:Removed null values from security and category field and Added respectiv… by @kushZemoso in #711
- feat: Policy for Ensuring EKS Cluster inbound traffic only on 443 by @akashpaladin in #707
- Feat/disable kubernetes dash board by @AnjaliMadhavi-Nakirikanti in #668
- fix: fixed policy description and resolution url for Disable Contained Database Authentication Flag for SQL Server Database Instances by @AnjaliMadhavi-Nakirikanti in #715
- fix : incorrect violation was being raised by @AishwaryaKulkarni97 in #717
- fix: Display Name of Policies by @kushZemoso in #718
- fix : severity should be critical by @AishwaryaKulkarni97 in #720
- fix : added wiki links by @AishwaryaKulkarni97 in #721
- fix: fixed breadcrumbs to persist queryparams by @sidharthjain-zemoso in #714
- Added RESOURCE_NAME_PREFIX by @PaladinCloudJohn in #719
- Feat/load balancer by @AishwaryaKulkarni97 in #713
- feat:Enable API Key Application Restrictions by @AnjaliMadhavi-Nakirikanti in #705
- Feature/api restriction by @kushZemoso in #710
- Feature/check insecure ssl cipher by @kushZemoso in #716
- fix: restricted the elb sg ingress to cidr by @santhosh-challa in #724
- Chore/s3voilation by @rnithinpaladin in #723
- fix: dispalyName of policies by @kushZemoso in #722
- fix:Enable Https rule by @kushZemoso in #725
- chore:added tagging for batch by @rnithinpaladin in #727
- chore:ecs_service_tagging by @rnithinpaladin in #729
- fix: fixed failure of issues end point in compliance API when sort … by @sidharthjain-zemoso in #730
- Chore/https fix by @rnithinpaladin in #731
- Chore/ecs tagging by @rnithinpaladin in #732
- fix : null pointer exception for immutability policy and legal hold by @AishwaryaKulkarni97 in #728
- fix: fixed add-revoke API failure by @sidharthjain-zemoso in #733
- Chore/batchconfig by @rnithinpaladin in #735
- fix : renaming policies by @AishwaryaKulkarni97 in #726
- chore:batch_size_number by @rnithinpaladin in #741
New Contributors
- @PaladinCloudJohn made their first contribution in #719
Full Changelog: 1.5.1...1.5.2