Release notes-Release 100042

Release notes-Release 100042

February 27, 2022

Endpoint 

Enhancements

Enhanced support for Remediation and Blocking:

  • For Linux, the capability to add new firewall rules for IP-based remediation and IP-based blocking.
  • For macOS, support to quarantine hosts.
  • The Timeout field is now made optional to run remediation scripts. The default timeout is four seconds.
  • Capability to modify an active blocking policy profile:
    • Swap an old policy with a new policy
    • Clone a blocking policy
    • Change LOG actions to ALLOW or BLOCK
    • Version support for the modified policy validation
  • An option to enable or disable Enhanced confirmation for remediation on the Configuration page.

For more information, see Remediations and Blocking.

Platform 

Enhancements

Deprecated the following reports, dashboards, and query packs with better alternatives:

DeprecatedAlternative
ReportsCIS independent LinuxHost compliance dashboard
CIS independent Linux for a single hostHost compliance dashboard
Compliance dashboardDedicated compliance dashboards for host, container, and cloud
Dashboardsuptycs_fim_dashboardFIM dashboard
uptycs_mac_dashboardMac health dashboard
uptycs_mac_edrMac health dashboard
uptycs_mitre_dashboardDetections
uptycs_overviewOverview dashboard
Query Packsvulners-ports-certificatesCompliance checks
cis_independent_linuxCompliance checks
appleCompliance checks
uptycs-osx-attacksCompliance checks
uptk8sCompliance checks
soc2Compliance checks
pciCompliance checks
mac_health_checkCompliance checks
win2012Compliance checks
fed_rampCompliance checks
linux_health_checkCompliance checks
win2012_demoCompliance checks

API 

Added/enhanced the following APIs. For more information, see the API Documentation.

APIDescription
/container/images/vulnerabilitiesDisplays latest vulnerabilities for the specified image.
/container/image/infoDisplays container image metadata.
/container/images/ignoredDisplays ignored vulnerabilities for the specified image.
/container/image/vulnerabilities/countsDisplays duplicate vulnerabilities counts.
/container/images/deployment/detailsDisplays deployed images details.
/container/images/packages/totalCountDisplays total package counts for the specified image.
/diskScansView, create, update, and delete disk scan configurations.

Resolved Issues 

  • An issue with scheduled queries delivery where DNS was returning IPv6 addresses is now resolved.