23.8.15 Release Notes

InsightCloudSec Software Release Notice - 23.8.15 Release

Release Highlights (23.8.15)

InsightCloudSec is pleased to announce Release 23.8.15. This release includes a new visualization for Threat Findings, expanded GCP Source Document support, expanded remediation policy types for Least Privileged Access (LPA), API support for exemption rules expiration, and CloudTrail Source connection testing for AWS LPA. In addition, 23.8.15 includes six bug fixes.

• Contact us through the unified Customer Support Portal with any questions.

Features & Enhancements (23.8.15)

• We have updated evaluation of Cache Instance modifications to evaluate whether Automatic Minor Version Upgrade has changed; i.e., if there are changes, it will trigger a resource modification hookpoint. [ENG-29702]

• Updated the IAM Settings to now test Cloudtrail Sources within the form before they can be saved/edited to avoid adding broken settings. [ENG-29271]

• Allows for Deny All and Deny Not remediation policy (for Least Privileged Access) to be called rather than just the Deny Not action policy. [ENG-29843]

• Introduced an expiration limit for exemptions rules (support via API only). [ENG-26638]

• Added a Trend and Analytics graph to the Threat Findings page that visualizes threats by severity and/or source over time. [ENG-29002]

• Added support for in-region Host Vulnerability assessments for AWS, which means we will download and assess snapshots in the regions we have a presence in. See the Host Vulnerability Management FAQ for more information. [ENG-22373]

Resources (23.8.15)

GCP

• Added GCP Source Document support for Web Application Firewalls. [ENG-28618]
• Added GCP Source Document support for 2nd Gen GCP Cloud Functions. Now harvesting 2nd Gen GCP Cloud Functions in ServerlessFunctions. [ENG-29560]

Bug Fixes (23.8.15)

• Resolved issue with adding Oracle Cloud accounts with non-standard regions. [ENG-30606]

• Made a fix for evaluating references to parameters that are of the type CommaDelimitedList or List<Number> in IaC scans of CloudFormation Templates. [ENG-30345]

• Fixed row action of vulnerabilities tables, where filter by impacted instance and impacted resource now is displayed in the filter component at the top of the page to indicate the filter is active, and can also be removed using clear feature. [ENG-29662]

• Fixed an issue where Bot actions using Jinja2 templates would not parse out Cognitive Service Account type resource information. [ENG-28997]

• Optimized data collection list endpoints to improve latency for listings, Bots, and Query Filters. [ENG-27827]

• Fixed some UI inconsistencies in Bot lifecycle actions and enhanced error messages for Bots that rely on multi-select fields. [ENG-22510]