Had a sprint focused on new integration SDK and new integrations. In the past two weeks, our dev team made 160+ commits to the new integration sdk and data model, plus 250+ commits across 14 integrations!
See Integrations section below for more details.
Also, see an important update on an AWS entity class label change below.
Lots of improvements made to the Graph Viewer!
- Introducing a new tree mode to the graph viewer for a cleaner, more organized graph view. Toggle between tree / cluster mode using the graph viewer mode control icon shown below.
- Added auto-grouping of graph nodes of the same type, and a list view to scroll through each item in the group. Select an item in the list to see its detailed properties.
- Added ring decoration to Finding and Vulnerability entity nodes to show a colored ring/border based on severity.
Improved pie chart layout in Insights dashboards. Also made long list in legend scrollable.
New public facing JupiterOne Questions site.
Added toggle button to expand/collapse all sections in a selected compliance standard or questionnaire.
Improved version history diff of security policies and procedures document text.
SDK and Data Model
New and greatly improved Integration SDK v2 to make developing new integrations much simpler:
Released JupiterOne Data Model schemas to GitHub:
Initial release of 10 new integrations (beta)
Updates to AWS, Azure, and other existing integrations
- Added ingestion of
aws_vpn_gatewayin a VPC
- Analyze EBS snapshots to determine
Try these two new questions:
- Are there EBS snapshots shared with other accounts?
- Are there EBS snapshots shared publicly?
Updated relationship mappings between
ACM Service, and other
aws_route53_record(alias records) entities.
Added mapping of several saved AWS queries/questions to PCI DSS standard requirements
Tweaked queries in question "Which IAM policies in addition to "AdministratorAccess" allow full admin access to any and all resources?" to include separate queries/sections for
Fixed IAM policy parsing to set
aws_route53_zoneclass will be
aws_route53_recordclass will be
Important: Please update your queries in saved questions and/or alert rules accordingly.
- Added ingestion of
Added ingestion of Cosmos DB resources:
Added ingestion of more Storage resources:
Added Key Vault resources:
azure_storage_*_service, as appropriate based on improved configuration analysis.
azure_managed_disk.encryptedbased on presence of
Several bug fixes.
Improvements and bug fixes in GitHub, Bitbucket, and Carbon Black integrations.
Released beta version of JupiterOne Terraform Provider:
This allows users to write terraform code to describe and provision jupiterone questions (saved queries) and alert rules, similar to how you use terraform code to provision AWS resources. We plan to add resources to describe compliance standards, groups, SAML clients, and more in the future.
Added support to publish policies to Confluence in
security-policy-buildervia the command
psp publish --confluenceto
security-policy-builder; plus several minor bug fixes.
Improved policy and procedure templates to better handle HIPAA related statements conditionally.
Fixed issue with setting chart number color when condition equals to
Fixed a couple of UI issues with the onboarding wizard.