deepfence/ThreatMapper v2.1.0

on GitHub

What's Changed

• ISSUE-1700: Fixing vulnerability scans for registry without credential by @varunsharma0286 in #1701
• Show details of resources from posture scan result by @milan-deepfence in #1698
• #1694 Adding Most Exploitable Vuln xlsx pdf report by @saurabh2253 in #1699
• Download most exploitable vulnerabilities by @milan-deepfence in #1702
• Fix static check lints on server & bootstrapper by @noboruma in #1704
• Fix static check lints on worker by @noboruma in #1705
• Adjust column width by @milan-deepfence in #1707
• send root benchmark instead of multiple parent benchmarks by @gnmahanth in #1703
• fix: non messaging integration not sending full report by @ibreakthecloud in #1706
• Cloud resource table sort by posture scan status by @milan-deepfence in #1715
• tweak worker concurrency, option to configure concurrency from env by @gnmahanth in #1716
• ISSUE-1913-2: Changes to support custom scheduled jobs by @varunsharma0286 in #1714
• add asynq cli to worker container by @gnmahanth in #1718
• Show expand collapse state on graph nodes tooltip by @manV in #1708
• UI: Attack path graph resizes on dashboard page & link to posture from dashboard by @milan-deepfence in #1710
• backoff for 15 mins for integration failures by @ibreakthecloud in #1717
• feat: Option to specify queues processed by worker by @gnmahanth in #1719
• file upload function handle existing file overwrite by @gnmahanth in #1720
• Remove column from AWS security hub table by @milan-deepfence in #1721
• UI: Support to add and delete schedule jobs by @milan-deepfence in #1709
• fix: convert unix time to utc time string in xlsx reports by @gnmahanth in #1722
• Fix missing padding in posture tables by @milan-deepfence in #1724
• ISSUE-1592: Adding support for priority scans by @varunsharma0286 in #1723
• fix: make kafka broker metadataloader less verbose by @gnmahanth in #1728
• Fix issue when docker image id is shorter than 12 characters by @ramanan-ravi in #1729
• Added priority scan option by @milan-deepfence in #1725
• [arm64] architecture aware agent build by @tomaszjonak in #1727
• Error message retrieve from api response by @milan-deepfence in #1731
• Improvement on upgrade mechanism by @noboruma in #1732
• Compile fluent-bit plugins with go1.20 by @noboruma in #1735
• Add auto update on patch & add version memo by @noboruma in #1736
• Add manual agent tarball upload by @noboruma in #1738
• Use self hosted runner & add get agent version API by @noboruma in #1739
• Integration with ChatGPT by @ramanan-ravi in #1734
• Generative AI Integration UI by @manV in #1737
• ISSUE-1847: Adding scripts and documenting the steps for neo4j backup/restore by @varunsharma0286 in #1740
• Fix empty metadata struct in api docs by @noboruma in #1741
• Compress s3 data by @saurabh2253 in #1660
• Easy understandable for existence of compare scan results by @milan-deepfence in #1742
• ISSUE-2015-1: Fixing the timestamp for notifications, panic in server and compilation by @varunsharma0286 in #1748
• Bring back api doc fix by @noboruma in #1751
• [CI] golang linter configuration + bootstrapper fixes by @tomaszjonak in #1743
• [deps] update compliance version by @tomaszjonak in #1758
• ISSUE-2023: Sending notifications to specific integrations by @varunsharma0286 in #1764
• Fix registry sync status when it was just added by @ramanan-ravi in #1763
• LLM integration UI improvements, Bedrock integration by @manV in #1756
• Add integration with Amazon Bedrock by @ramanan-ravi in #1760
• fix missing results in linux compliance scan by @gnmahanth in #1767
• Add async job to bulk delete scan instead of http sync delete by @gnmahanth in #1768
• Corrected advanced filters integration for compliance by @milan-deepfence in #1765
• Remove never scanned from scans by @milan-deepfence in #1766
• Fix inappropriate filters in create report by @milan-deepfence in #1762
• Change delete scan history message by @manV in #1769
• ISSUE-2035: Allowing same integration with different filters by @varunsharma0286 in #1772
• cloud posture masking not working by @gnmahanth in #1773
• [lint] deepfence_utils: CI def + fixes + worker/server adjustments by @tomaszjonak in #1771
• ISSUE-1744: Fixing Cloud compliance report generation by @varunsharma0286 in #1775
• Added missing node type column for custom schedule jobs by @milan-deepfence in #1774
• Added public registry checkbox by @milan-deepfence in #1770
• ISSUE-2034: Removing token_auth log from user audit logs by @varunsharma0286 in #1780
• Handle 403 error by @milan-deepfence in #1779
• Registry image listing for report creation and disabled dropdown item by @milan-deepfence in #1783
• Fix scan status by @noboruma in #1782
• ISSUE-1999: Fixing Registry Repo Filters by @varunsharma0286 in #1784
• Fix UI consistancy issues by @manV in #1781
• fix: scan diff query, update CloudCompliance node_id by @gnmahanth in #1786
• Api to delete multiple registry accounts by @ramanan-ravi in #1787
• [lint] deepfence_server: fix all warnings by @tomaszjonak in #1788
• Add fluentbit wait on server availability by @noboruma in #1791
• Base64 encode the api token by @ramanan-ravi in #1792
• For new installation show message in UI by @ibreakthecloud in #1785
• add cve_node_id to runtime sbom by @gnmahanth in #1794
• Use cve_node_id when navigating to CVE from SBOM list by @manV in #1795
• ISSUE-1744-2: Backend changes for fixing reports from integration by @varunsharma0286 in #1796
• Change account_id to node_id by @milan-deepfence in #1793
• Fix style on clear of combobox single option by @milan-deepfence in #1797
• ISSUE-1789: Adding filename and removing unused fields by @varunsharma0286 in #1798
• ISSUE-2052: Fixing diagnostic logs for fresh setup by @varunsharma0286 in #1799
• prioritize issue fields in the details side panel by @manV in #1802
• Multiple toast message in download of scan results by @milan-deepfence in #1800
• Fix item hidden when side navigation is scrollable by @manV in #1803
• Change agent upgrade server to allow multi ids by @noboruma in #1806
• Fix registry id deduplication logic by @ramanan-ravi in #1808
• Add malware info text in header by @manV in #1810
• Bulk deletion of registry and filters lost by @milan-deepfence in #1811
• UI feat agent upgrade by @milan-deepfence in #1812
• Option for user to automatically add Amazon Bedrock integrations by @ramanan-ravi in #1813
• Fix version reported by scope by @noboruma in #1814
• Add registry account search API by @noboruma in #1816
• Refactor node details panel header by @manV in #1817
• Option for user to automatically add Amazon Bedrock integrations by @ramanan-ravi in #1819
• Issue-1624: Change the unix timestamp to Human readable by @GirishCodeAlchemy in #1805
• Clean up log usage by @noboruma in #1820
• Add sender email address in user invite email by @ramanan-ravi in #1822
• UI test components by @milan-deepfence in #1815
• Improvements with navigation and filtering by @milan-deepfence in #1809
• Check scan status or account activeness before performing actions on scans or account by @milan-deepfence in #1823
• Add an option to add amazon bedrock integration automatically by @manV in #1824
• Enhance validation for ECR by @ramanan-ravi in #1825
• Fix container cpu and memory report by @noboruma in #1827
• Enhance validation for ECR by @ramanan-ravi in #1828
• fix(2060): handle hide and show field for amazon ecr by @milan-deepfence in #1829
• update node type column data for schedule jobs by @milan-deepfence in #1830
• Add backoff mechanism for crashing processes by @noboruma in #1831
• (feat.) edit integrations by @ibreakthecloud in #1818
• Clean up AgentVersion by @noboruma in #1832
• UI: edit integration by @milan-deepfence in #1833
• Update install instructions by @ramanan-ravi in #1834
• Optimize & clean up scan start by @noboruma in #1835
• Fix column not displaying properly by @milan-deepfence in #1838
• Fix fluentbit startup script in kubernetes cluster agent by @ramanan-ravi in #1839
• Fix connection ingestion logic by @noboruma in #1837
• Fix missing PIDs in connection data by @noboruma in #1846
• Add pid info to short lives conn & fix conso-agent by @noboruma in #1847
• remove default password from config by @ibreakthecloud in #1821
• add warn alarm fields for compliance issues by @ibreakthecloud in #1845
• Use warn status in threat graph for posture count by @milan-deepfence in #1848
• fix cloud compliance integration by @ibreakthecloud in #1852
• fix: message format in diagnostic logs by @ibreakthecloud in #1853
• Optimize threat count queries by @noboruma in #1854
• API to refresh cloud resources by @ramanan-ravi in #1842
• added refresh cloud account by @milan-deepfence in #1843
• Minor fixes for ne04j by @shyam-dev in #1855
• Set neo4j transaction log retention policy by @ramanan-ravi in #1857
• Better error handling for Gen AI remediations by @manV in #1859
• add common labels and pod labels by @gnmahanth in #1858
• sync only dump files from neo4j backup to s3 by @gnmahanth in #1861
• Add to filter cloud resources by account id by @milan-deepfence in #1862
• Added filters of integrations in table column by @milan-deepfence in #1863
• Update dependencies by @ramanan-ravi in #1866
• Periodically delete asynq archived tasks by @ramanan-ravi in #1869
• Fix top n card title and click navigation from top n char by @milan-deepfence in #1864
• Add more page size options for table pagination by @manV in #1865
• Added data test id by @milan-deepfence in #1871
• Show only scanned assets in scan filters by @manV in #1872
• Fix incorrect behaviour of scan status filter on scan pages by @milan-deepfence in #1874
• use redis to track workload allocator counts by @gnmahanth in #1875
• Update cloud resource cleanup interval by @ramanan-ravi in #1876
• Filter by account in posture by @milan-deepfence in #1877
• backport changes from TS for ingester by @gnmahanth in #1878
• Adjust breaker logic to multi namespaces by @noboruma in #1879
• Optimize CR linking by @noboruma in #1883
• Fix posture delete scan and bulk action buttons state by @milan-deepfence in #1882
• [Breaking Change]fix volume path misconfig on neo4j by @gnmahanth in #1884
• add Prometheus metrics for server and worker by @gnmahanth in #1885
• Fix to handle severity filter based on notification type by @milan-deepfence in #1886
• Improve error handling for start scan forms by @manV in #1887
• ISSUE-2095: Adding exploitable count to the node by @varunsharma0286 in #1888
• Add logs with redis interactions by @noboruma in #1891
• Add redis startup commands & fix delete by @noboruma in #1892
• Increase redis max memory by @ramanan-ravi in #1893
• add user info in metrics by @gnmahanth in #1894
• Allow registry sync to retry on failure by @noboruma in #1897
• add asynq worker task count metrics by @gnmahanth in #1898
• ISSUE-2095-2: Fixing the logic for getting the exploitable counts by @varunsharma0286 in #1889
• Threat graph node count and page navigation by @milan-deepfence in #1890
• Asynq workload allocator by @gnmahanth in #1899
• Threat graph posture card navigation filter by @milan-deepfence in #1901
• remove notifications lock mutex (+fix panic) by @gnmahanth in #1902
• Disable telemetry by default by @ramanan-ravi in #1904
• Add data test id by @milan-deepfence in #1903
• make frequent enqueued tasks unique by @gnmahanth in #1905
• FIX-NOTIFICATION-TS: Fixing the time interval for notifications by @varunsharma0286 in #1906
• Change scan search API by @noboruma in #1896
• Typo correction by @milan-deepfence in #1908
• remove double malware scanner init in worker by @gnmahanth in #1909
• Add version upgrade gating by @noboruma in #1911
• Skip redis HSET network_map is empty by @ramanan-ravi in #1912
• Fix missing error message by @milan-deepfence in #1913
• Show resource field in posture detail modal by @manV in #1914
• Add registry account filters on scan list pages. by @manV in #1910
• Fix typo for cluster search placeholder by @milan-deepfence in #1916
• add validation in edit integration by @ibreakthecloud in #1900
• Cloud scanner diagnostic logs - delete old logs by @ramanan-ravi in #1917
• Exclude diagnostic logs from agent available workload counter by @ramanan-ravi in #1918
• ISSUE-2101: ISSUE-2101: Adding support for bulk delete of integrations by @varunsharma0286 in #1922
• Disallow deleting self account by @ramanan-ravi in #1923
• Bulk delete of integrations by @milan-deepfence in #1921
• fix cve pdf report generation failure by @gnmahanth in #1924
• Fix ui padding by @milan-deepfence in #1925
• Disable download report and show logs generated by @milan-deepfence in #1926
• Add node type in diagnostic logs list by @ramanan-ravi in #1927
• Diagnostic logs handle retry by @ramanan-ravi in #1930
• ISSUE-2084: Fixing the masking and node id for scan results by @varunsharma0286 in #1928
• Type column for agent diagnostic logs by @milan-deepfence in #1929
• Stop processing tasks when neo4j is down or backup is in progress #2115 by @gnmahanth in #1931
• refactor logs to add namespace from ctx by @gnmahanth in #1933
• Registry sync code Issue add batching and retries while inserting images (#2116) by @gnmahanth in #1934
• Bubble up error messages in integration by @ibreakthecloud in #1932
• Support downloading SBOM in SPDX and CycloneDX formats by @ramanan-ravi in #1939
• Add probe and cloud scanner update indicators by @manV in #1915
• fix TooManyRequests(429) in sync for dockerhub by @ibreakthecloud in #1940
• UI for allowing SBOM downloads in different formats by @manV in #1941
• return registry name in search registry accounts api response by @gnmahanth in #1944
• Add default value in searchable component by @milan-deepfence in #1943
• Use registry name to display on registry account filter by @manV in #1945
• Fix SPDX sbom validator issue by @ramanan-ravi in #1946
• feat: fargate using agent binaries by @ibreakthecloud in #1881
• defer cleanup to next cycle if last registry sync attempt has failed by @ibreakthecloud in #1942
• fix tracing on server & worker not disabled with flag set to false by @gnmahanth in #1948
• Optimise Neo4j contains filter query by @ramanan-ravi in #1947
• ISSUE-2036: Using node_name for container notifications by @varunsharma0286 in #1937
• Move container filter to container names list by @milan-deepfence in #1938
• Fix deadlock on ImageTag nodes by @noboruma in #1950
• fix: invalid last pushed in harbor by @ibreakthecloud in #1951
• fix: missing check if role arn is populated by @gnmahanth in #1952
• add completion api for compliance and cloudcompliance by @ibreakthecloud in #1953
• ISSUE-2121: Adding support for bulk deletion of reports by @varunsharma0286 in #1955
• Bulk delete of integration reports by @milan-deepfence in #1956
• add completion api to swagger docs by @ibreakthecloud in #1957
• Add basic filters on report downloads page by @manV in #1954
• Add Azure GCP resources to threatgraph by @jatin-baweja in #1960

New Contributors

• @tomaszjonak made their first contribution in #1727
• @GirishCodeAlchemy made their first contribution in #1805
• @shyam-dev made their first contribution in #1855

Full Changelog: v2.0.1...v2.1.0