Skip to content

v13.22.0

Choose a tag to compare

View all tags
@mondoo-mergebot mondoo-mergebot released this 09 Jun 08:43
· 174 commits to main since this release
v13.22.0
261db0c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

What's Changed

  • content: add Bicep IaC variants to Azure and M365 security policies by @tas50 in #2708
  • ♻️ Use terraform.resources() init instead of .where(nameLabel == ...) by @tas50 in #2710
  • content: migrate queries off deprecated MQL fields by @tas50 in #2706
  • ✨ Annotate Grafana on GitHub release by @jaym in #2705
  • 🎫 Replace PATs and SSH deploy key with mondoo-mergebot tokens by @philipbalinov in #2699
  • content: use sudoers resource for macOS sudo timeout check by @tas50 in #2653
  • Expand UniFi policy with EOL/unsupported devices, DPI, and geo-IP checks by @tas50 in #2712
  • Strengthen UniFi firmware/port-forward checks; add WPA3-only check by @tas50 in #2713
  • ✨ content: add security checks for new mql resource fields by @tas50 in #2714
  • Escape spreadsheet formula triggers in vulnerability CSV output by @tas50 in #2716
  • build(deps): bump the gomodupdates group with 5 updates by @dependabot[bot] in #2717
  • Add 11 OCI security checks across IAM, KMS, storage, DB, and network by @tas50 in #2718
  • ⭐ Add GCP checks: stale service accounts, GKE insecure RBAC, server TLS plaintext by @tas50 in #2719
  • Use windows.rdp resource for RDP/Terminal Services checks by @tas50 in #2722
  • ⭐ Add chrony, yum gpgcheck, and APT repo-trust checks to Linux policy by @tas50 in #2720
  • Simplify FreeBSD sudoers use_pty check with sudoers resource by @tas50 in #2725
  • Use windows.tpm and machine.secureboot resources in Windows 11 compatibility policy by @tas50 in #2726
  • Use parsed params maps for rsyslog and su PAM checks by @tas50 in #2727
  • 🐛 Exclude Azure development subscriptions from onboarding Terraform. by @VasilSirakov in #2723
  • Migrate Postfix checks to the postfix MTA resource by @tas50 in #2724
  • 🧹 Simplify TLS cert-match and reverse-DNS checks with new resource fields by @tas50 in #2728
  • 🔒 Mark Chef Infra Client 17 as EOL by @tas50 in #2731
  • ✨ Add 12 Azure security checks: IoT Hub, Trusted Launch, snapshots, WAF, SQL VA, Databricks by @tas50 in #2721
  • Replace deprecated MQL fields in Azure and GCP policies by @tas50 in #2729
  • 🧹 Bump mql to v13.22.0 by @mondoo-mergebot[bot] in #2737

New Contributors

  • @mondoo-mergebot[bot] made their first contribution in #2737

Full Changelog: v13.21.1...v13.22.0

Contributors

jaym, tas50, and 3 other contributors
Assets 28
Loading