ThreatMapper 1.3.0 Release
ThreatMapper 1.3.0 is a feature release, with a number of enhancements and fixes:
New Features
- Secret Scanning: Scan containers and host filesystems, looking for possible unprotected secrets such as access tokens, keys and passwords.
- SBOM Generation: Generate and export runtime SBOMs (Software Bill of Materials) from running workloads and hosts.
- Updated Vulnerability Scanning: using Anchore syft and grype.
- Attack Path Visualization: improved visualization identifes and classifies more attack path types
Upgrading to ThreatMapper 1.3
Please note that versions of the sensor agent prior to the 1.3 release will not interoperate with the ThreatMapper 1.3 management console, due to the architectural changes in SBOM generation and vulnerability scanning. To upgrade from an earlier ThreatMapper release:
- Update the Management Console to version 1.3.0
- Update sensor deployments to version 1.3.0
Please see the documentation for more information.
Full Changelog: https://github.com/deepfence/ThreatMapper/commits/v1.3.0