v1.4.2

What's Changed

• Added assignee field to jira ticketing #445 by @saiprasanth1303 in #603
• message for the error has been changed deepfence/enterprise-roadmap#1603 by @mukuldeepfence in #563
• Fixed empty cve table when deleing all entries in the last page by @saiprasanth1303 in #611
• Add service account to all console pods by @ramanan-ravi in #614
• Add status to vulnerability upload form by @manV in #613
• Remove unused meta fields from node info panel by @manV in #612
• Vulnerability scan - fix exploit poc url extraction by @ramanan-ravi in #617
• redirect URL format has been changed #621 by @mukuldeepfence in #622
• Add single compliance result view via url by @manV in #619
• Add cri-o support by @ramanan-ravi in #623
• Added ability to customise K8s agent instructions by @saiprasanth1303 in #625
• Use CRI version v1alpha2 by @ramanan-ravi in #627
• adding token by @deviprasad303 in #628
• Improve plugins build time by @noboruma in #624
• Updated K8s instructions customisation by @saiprasanth1303 in #629
• Password reset using command by @ramanan-ravi in #631
• Remove topology table actions for console by @manV in #630
• Add cri-o in k8s installation instruction by @ramanan-ravi in #632
• allow row to click except other actionable item by @milan-deepfence in #633
• miss to remove debugger in previous merge by @milan-deepfence in #635
• Avoid root files leak when building plugins by @noboruma in #634
• fix page index does not change on filter change by @milan-deepfence in #620
• Settings page top menu bar does not change when a admin make another admin a user by @mukuldeepfence in #638
• fix cri-o secret scans by @gnmahanth in #641
• Refresh attack graph autometically by @manV in #639
• added posture and malware logs delete by @milan-deepfence in #648
• Refactor router helm chart by @gnmahanth in #645
• issue has been resolved deepfence/enterprise-roadmap#1605 by @mukuldeepfence in #651
• make backend service configureable in haproxy by @gnmahanth in #652
• Handle no data case for expandable rows in topology table by @manV in #640
• Bulk delete fix on secret scan results by @saiprasanth1303 in #654
• Threat Graph Enhancements by @ramanan-ravi in #661
• move redis and es config to secrets by @gnmahanth in #659
• simplify custom tls certificate configuration by @gnmahanth in #664
• [662][646] fixes to cleanup posture data and correcting docs after cleanup by @mukuldeepfence in #666
• Update security headers in haproxy by @ramanan-ravi in #670
• Add type validations for file uploads by @manV in #669
• update option and api key for compliance log deletion by @milan-deepfence in #657
• Fix indefinite loading issue when expanding topology table by @manV in #636
• Public Docker registry and hub images by @saurabh2253 in #676
• Fix mask host vs image by @milan-deepfence in #679
• #655 Mask across node type api changes by @saurabh2253 in #677
• Upgrade scope dependencies by @ramanan-ravi in #672
• added toltip for the cut off text by @milan-deepfence in #687
• Feat/686 by @milan-deepfence in #699
• Add ability to integrate with AWS Security Hub #686 by @jatin-baweja in #703
• Upgrade scope to go1.19 by @noboruma in #644
• add pentest reports by @ibreakthecloud in #711
• now we will scan the container file system instead of image by which container is formed by @mukuldeepfence in #712
• downgrade prometheus and its deps to fix runtime topology error by @ibreakthecloud in #729
• removes empty/null values from cve url by @ibreakthecloud in #731
• control connection issue is resolved by @mukuldeepfence in #744
• Fix global filter not working and duplicate api calls by @manV in #749
• extend TLD matching to match till 18 chars by @ibreakthecloud in #753
• added title missing on posture by @milan-deepfence in #755
• Bugfix/th compliance mask unmask by @milan-deepfence in #756
• fix:to update graph and count chart based on action from table by @milan-deepfence in #750
• Bugfix/vulnerability mask unmask by @milan-deepfence in #757
• fix: delete all records from single page was broken by @milan-deepfence in #759
• Fix duplicate back buttons on compliance results by @manV in #763
• Add priorityClassName by @j771 in #765
• fix:remove user activities resource from dropdown as it is not suppor… by @milan-deepfence in #767
• Add cloud-scanner multi-account option by @noboruma in #768
• added missing client side pagination by @milan-deepfence in #774
• Upgrade Postgresql to v14 in helm chart by @ramanan-ravi in #775
• JIRA and Teams Integrations Doc by @saurabh2253 in #682
• Upgrade dependencies by @ramanan-ravi in #782
• Upgrade dependencies by @ramanan-ravi in #786
• Option to configure docker socket path by @ramanan-ravi in #788
• Increase postgresql connection limit by @ramanan-ravi in #798
• Upgrade version by @ramanan-ravi in #800

New Contributors

• @j771 made their first contribution in #765

Full Changelog: v1.4.1...v1.4.2

v1.4.1

What's Changed

• reset check type on changing compliance provider by @manV in #522
• Add ThreatGraph missing icons by @manV in #524
• Remove UI resolver in router config #523 by @ramanan-ravi in #525
• Cloud stats by @ramanan-ravi in #528
• Update documentation by @ramanan-ravi in #529
• changed cve-links to show as actual links in popup by @saiprasanth1303 in #527
• Bugfix/remove phone input arrows by @MilanRajkumar in #515
• Updated API params for report generation by @saiprasanth1303 in #531
• Update README.md by @fferrann in #532
• New Helm chart version by @ramanan-ravi in #537
• Discrepancy in the results while we select container image in report download by @mukuldeepfence in #536
• fix the condition toenable schedule compliance scans by @ibreakthecloud in #534
• UI: Reset page index on filter on registry image list by @manV in #542
• UI: Show checkbox for only relevant node types on topology table by @manV in #544
• fix: empty response of search filter must update severity counts by @milan-deepfence in #543
• Fixed the CSS for status pills in topology table by @saiprasanth1303 in #546
• Schedule Scan for compliance issue is fixed by @mukuldeepfence in #547
• Enable haproxy logs by @gnmahanth in #552
• Enable haproxy logs by @gnmahanth in #553
• Fix user-sent notifications by @ramanan-ravi in #555
• fix/538-add compliance menu for integration by @milan-deepfence in #539
• Fix api path for vulnerability db upload by @manV in #558
• Made changes to ecr registry by @saiprasanth1303 in #564
• Cloudtrail logs processing by @jatin-baweja in #561
• Cloudtrail alerts UI by @saiprasanth1303 in #562
• add compliance percentage for linux (fix: issue 1601) by @gnmahanth in #568
• Support custom file path for docker/containerd socket by @ramanan-ravi in #572
• Fix compliance scan summary issues by @manV in #570
• #565 Api and UI changes for KSPM by @saurabh2253 in #575
• Update README.md by @Bentipe in #576
• #577 trigger scheduled scan action by @saurabh2253 in #578
• #565 adding kspm dependency in helm chart by @saurabh2253 in #581
• Kubernetes scanner - docs by @ramanan-ravi in #583
• Added cloudformation template for AWS cloud in posture page by @saiprasanth1303 in #580
• #565 Kspm cis check type to nsa-cisa by @saurabh2253 in #584
• fix:to have info icon for an error case by @milan-deepfence in #586
• Fixed UI masking and unmasking on compliance by @saiprasanth1303 in #588
• Helm chart - add resources per pod in values.yaml by @ramanan-ravi in #589
• fix for fetching images from amazon public ECR deepfence/ThreatMapper… by @mukuldeepfence in #559
• fix threat graph not generated by @gnmahanth in #595
• FIxed empty xlsx report generation by @saiprasanth1303 in #596
• changed the params which caused empty xlsx report generation by @saiprasanth1303 in #597
• Version upgrade - v1.4.1 by @ramanan-ravi in #598
• fix:controls button misalignment on details pop up by @milan-deepfence in #599
• FIxed integration table data mismatch by @saiprasanth1303 in #600
• add missing internal port on api pod by @gnmahanth in #602
• now we can assign the issue to assignee #445 by @mukuldeepfence in #601
• Upload vulnerability database issue #557 by @ramanan-ravi in #605

New Contributors

• @MilanRajkumar made their first contribution in #515
• @fferrann made their first contribution in #532
• @Bentipe made their first contribution in #576

Full Changelog: v1.4.0...v1.4.1

v1.4.0

What's Changed

• Render custom dropdown in a portal to avoid overflow clipping by @manV in #504
• Cloud Security Posture Analysis and Threat Graph by @ramanan-ravi in #518
• 1.4 docs update by @ogarrett in #517

Full Changelog: v1.3.1...v1.4.0

v1.3.1

What's Changed

• #336 Mounting containerd directories in write mode by @saurabh2253 in #350
• Sorting support for RBOM tables by @manV in #349
• show scan status beside the scan button by @pandyamarut in #354
• diagnosis timestamp change to local time by @pandyamarut in #351
• Ci/cd changes for v1.3 by @mukuldeepfence in #352
• donut modal popup severity sorting fix by @pandyamarut in #357
• add pagination to the runtime bom table by @pandyamarut in #362
• Add user menu to settings screen by @manV in #360
• Runtime bom query optimisation and pagination by @saurabh2253 in #364
• Upgrade golang version by @ramanan-ravi in #365
• Add wait for secret scan process to restart by @saurabh2253 in #368
• Enhance the vulnerability database by @ramanan-ravi in #369
• Containerd reporter in discovery pod by @ramanan-ravi in #375
• Make es index names, url scheme configurable by @ramanan-ravi in #378
• issue-376: Support setting a temporary password by @shahpratikr in #379
• Harbor Registry by @mukuldeepfence in #383
• Make console url domain resolution optional in probe by @ramanan-ravi in #386
• Fix interrupted secret scans status by @ramanan-ravi in #388
• Ignore management console port in the url if 443 by @ramanan-ravi in #391
• Excel and PDF report has been added for the Secret Scans' results by @mukuldeepfence in #382
• Issue-381: ES changes to support multi-tenancy by @shubhamjain32 in #390
• Add the secret scan report download by @pandyamarut in #372
• Modified notification related APIs #394 by @ramanan-ravi in #395
• Management Console diagnosis logs - limit kubernetes namespace by @ramanan-ravi in #398
• Temporary password change ui by @manV in #401
• Changes required in fetcher service by @shubhamjain32 in #400
• Xlpdf 2 by @mukuldeepfence in #399
• Added separate node type options for secret scan reports & changed re… by @saiprasanth1303 in #402
• Upgrade dependencies by @ramanan-ravi in #404
• Fix minor issue where empty maps are created by @ramanan-ravi in #407
• Update fargate sensors to v1.3.0 by @jatin-baweja in #392
• add external-sources to enhance java results by @ibreakthecloud in #408
• Cache topology data in redis by @ramanan-ravi in #409
• Use pg_isready command to check if postgresql by @ramanan-ravi in #413
• Remove open-tracer by @ramanan-ravi in #414
• (feat). API to upload vulnerability db in airgapped env by @ibreakthecloud in #412
• Add nginx ingress controller as type for router service installation by @jatin-baweja in #418
• Add support to upload db files in airgapped enviornment by @pandyamarut in #411
• Add support for ui runtime env variables by @manV in #410
• Secret scanner added to agent supervisor by @saurabh2253 in #416
• add exploit poc url in cve scan report by @ibreakthecloud in #422
• Fixed styling of input and delete button in vuln. management page by @saiprasanth1303 in #427
• Fix error in api container init script #424 by @ramanan-ravi in #429
• Fix registry table bulk actions by @manV in #438
• Fixed masked filter not being sent to the API when generating reports… by @saiprasanth1303 in #440
• [Iss1503] Filtering on Runtime BOM page yields 0 results by @mukuldeepfence in #448
• [Iss1510] Data under Sbom is not shown right by @mukuldeepfence in #449
• Reworked helm chart for ThreatMapper by @runitmisra in #425
• Issue275 severity type parameter cicd by @sidd0529 in #452
• Consider presence of exploit when sorting most exploitable vulnerabilities by @ramanan-ravi in #444
• Add exploit link column for cve table by @manV in #454
• add agent set up instructions to console by @manV in #437
• Dependency upgrade by @ramanan-ravi in #455
• Add secret scanner binary and config in separate folder by @ramanan-ravi in #456
• Made minor improovement in runtime_sbom API by @mukuldeepfence in #459
• Trimmed leading and trailing white spaces of a string in forms by @mukuldeepfence in #460
• Changes in package scanner build by @ramanan-ravi in #464
• minor change in resource filter api response #428 by @mukuldeepfence in #435
• Docker Hub Registry not listing any images #465 by @ramanan-ravi in #466
• Fix scroll issues with agent instructions pages by @manV in #461
• fix diagnosis dropdown issues by @manV in #468
• Upgrade dependency by @ramanan-ravi in #470
• Add option to update postgres configuration and add cluster domain fo… by @jatin-baweja in #471
• Disable vulnerability db validity check to support air-gapped environments by @ramanan-ravi in #475
• Update ci/cd instructions by @ramanan-ravi in #477
• Fix connections report by @noboruma in #478
• Modified haproxy config to update dns cache of ui pod by @usandeepc in #485
• Upgrade elasticsearch version by @sidd0529 in #481
• make changes to reaper_task to handle es scan status being idle issues by @deviprasad303 in #486
• Fixed issue-462: Console not available by @shahpratikr in #488
• Update dropdown overflows on pop ups by @manV in #493
• Fresh product documentation by @ogarrett in #487
• Fix error in case of missing container tag by @manV in #501
• Use codec.NewDecoder instead of json.Unmarshal for scope NodeSummaries by @ramanan-ravi in #503

New Contributors

• @shahpratikr made their first contribution in #379
• @shubhamjain32 made their first contribution in #390
• @runitmisra made their first contribution in #425
• @sidd0529 made their first contribution in #452
• @noboruma made their first contribution in #478
• @usandeepc made their first contribution in #485
• @deviprasad303 made their first contribution in #486

Full Changelog: v1.3.0...v1.3.1

v1.3.0

ThreatMapper 1.3.0 Release

ThreatMapper 1.3.0 is a feature release, with a number of enhancements and fixes:

New Features

• Secret Scanning: Scan containers and host filesystems, looking for possible unprotected secrets such as access tokens, keys and passwords.
• SBOM Generation: Generate and export runtime SBOMs (Software Bill of Materials) from running workloads and hosts.
• Updated Vulnerability Scanning: using Anchore syft and grype.
• Attack Path Visualization: improved visualization identifes and classifies more attack path types

Upgrading to ThreatMapper 1.3

Please note that versions of the sensor agent prior to the 1.3 release will not interoperate with the ThreatMapper 1.3 management console, due to the architectural changes in SBOM generation and vulnerability scanning. To upgrade from an earlier ThreatMapper release:

• Update the Management Console to version 1.3.0
• Update sensor deployments to version 1.3.0

Please see the documentation for more information.

Full Changelog: https://github.com/deepfence/ThreatMapper/commits/v1.3.0

v1.2.0

ThreatMapper 1.2.0 Release

ThreatMapper 1.2.0 is a feature release, with a number of enhancements and fixes:

New Features

• Attack Path visualization: using analysis of network traffic, the Attack Path visualisation identifies vulnerable workloads that are open to internet traffic, even when they are behind multiple layers of proxies.
• Support for AWS Fargate workloads: ThreatMapper sensor agents may be deployed as sidecars to AWS Fargate workloads.
• Integration with Google Chronicle: push events, alerts and scan results to Google Chronicle for archiving and analysis.

Major Enhancements

• Improved 'most exploitable vulnerability' calculation: applying more weight to proximity to the attack surface and to active network connections, to better prioritize workloads at greater risk.
• Broader support for Kubernetes and containerd: a number of updates addresses issues where manual and automated scans of Kubernetes/containerd-hosted containers would fail.
• Enhancements to registry scans: including support for AWS ECR target account role ARN, better feedback on progress, and support for tag-based filtering of artifacts.
• Multiple UI and user experience improvements: the ability to invite users to the Management Console without the need to configure an email relay, and more metadata reported against containers and other workloads so you can more easily identify them.

Full Changelog: https://github.com/deepfence/ThreatMapper/commits/v1.2.0