Sections in this category

2021.82 Release

October 22, 2021

New Features and Improvements

  • You can now view multiple assets in the entity drawer if you used multiple assets for constructing a query result. You can view all the properties in the entity drawer of each entity referenced in the RETURN clause.

  • "Allowlist" has replaced "whitelist" in the resource management powerup.

Integrations

AWS

  • Added new properties to resources:
Entity Properties
aws_iam_saml_provider samlMetadataDocument

  • Fixed an issue with the active property being set to both a
    true and a false value for some aws_account entities.

  • New questions added to the Questions Library:

    • Which S3 buckets have Server Access logging enabled?

    • Which S3 buckets have any logging enabled?

Azure

  • Added new properties to resources:
Entity Properties
azure_sql_server vaRecurringScansEnabled
azure_sql_server vaStoragePath
azure_sql_server vaEmailSubscriptionAdmins
azure_sql_server vaEmails
azure_web_app, azure_function_app authEnabled
azure_web_app, azure_function_app httpsOnly
azure_web_app, azure_function_app minTlsVersion
azure_web_app, azure_function_app clientCertEnabled
azure_web_app, azure_function_app principalId
azure_web_app, azure_function_app phpVersion
azure_web_app, azure_function_app pythonVersion
azure_web_app, azure_function_app javaVersion
azure_web_app, azure_function_app nodeVersion
azure_web_app, azure_function_app http20Enabled
azure_web_app, azure_function_app ftpsState

  • New questions added to the Questions Library:

    • Is Advanced Threat Protection (ATP) enabled for Azure SQL servers?

    • Is Vulnerability Assessment (VA) enabled for Azure SQL servers?

    • Is the "Periodic Recurring Scans" setting enabled for Azure SQL server Vulnerability Assessments (VA)?

    • Is Vulnerability Assessment (VA) sending scan reports for Azure SQL servers?

    • Is Vulnerability Assessment (VA) sending scan reports to admins and subscription owners for Azure SQL servers?

    • Is app service authentication enabled for all Azure app services?

    • Are all Azure Web Apps redirecting HTTP traffic to HTTPS?

    • Are all Azure Web Apps using latest version of TLS encryption?

    • Are all Azure Web Apps requiring the client certificates?

    • Do Azure Web Apps have the "Register with Azure Active Directory" setting enabled?

    • Are all Azure Web Apps using PHP's latest version?

    • Are all Azure Web Apps using Python's latest version?

    • Are all Azure Web Apps using Java's latest version?

    • Are all Azure Web Apps using HTTP's latest version?

    • Are all Azure Web Apps FTP deployments disabled?

  • Fetching Azure app authorization settings requires that you add additional permissions to the custom role Microsoft.Web/sites/config/list/Action.

GitHub

  • Added support for ingesting the following new entities:
Resources Entity _type Entity _class
GitHub Issue github_issue Issue

  • Added support for ingesting the following new relationships:
Source Entity _type Relationship _class Target Entity _type
github_repo HAS github_issue
github_user CREATED github_issue
github_user ASSIGNED github_issue

  • Added new properties to resources:
Entity Properties
github_repo forkingAllowed

  • Fetching the github_issue entity requires that your GitHub organization admin grants the J1 GitHub app the issues:read permission. Without this permission, this data is not imported but other GitHub entities continue to be ingested.

  • Enhanced ingestion performance.

  • Improved ingestion consistency and user job log error messaging.

BambooHR

  • Added new properties to resources:

    Entity Properties
    bamboohr_employee hireDate
    bamboohr_employee terminationDate

CrowdStrike

  • Improved the resiliency of the integration to respect rate limit responses from CrowdStrike.

Google Cloud

  • Fixed bugs that prevented J1 from ingesting the full set of gooogle_iam_role and google_iam_binding entities in some circumstances.

Qualys

  • Fixed an issue that prevented the integration from collecting the full set of qualys_host_finding entities.
🔝

Was this article helpful?

0 out of 0 found this helpful