Changelog

Subscribe to Steampipe changelog via RSS or join #changelog on our Slack community to stay updated on everything we ship.

Changelog image

GCP Compliance mod v0.26 - Added new controls to All Controls benchmark

mod

Dependencies

  • GCP plugin v0.49.0 or higher is now required. (#143)

Enhancements

  • Added 5 new controls to the All Controls benchmark across the following services: (#143)
    • App Engine
    • Cloud Run
    • Kubernetes

AWS Compliance mod v0.87 - Added 11 new controls to All Controls benchmark

mod

Dependencies

  • AWS plugin v0.131.0 or higher is now required. (#747)

Enhancements

  • Added 11 new controls to the All Controls benchmark across the following services: (#747)
    • API Gateway
    • DMS
    • EMR
    • MQ
    • VPC

Bug fixes

  • Fixed the foundational_security_ssm_2 control to correctly evaluate results when patches are not applicable for SSM managed EC2 instances. (#761)

Scaleway plugin v0.11.1 - Fixed typo in `scaleway_billing_consumption` table docs

plugin

Bug fixes

  • Fixed the typo in the scaleway_billing_consumption table docs to use consumption instead of consumtion. (#80)

Scaleway plugin v0.11.0 - Add tables scaleway_account_project and scaleway_billing_consumption

plugin

Wiz plugin v0.3.0 - Fixed service_tickets column in wiz_issue table and improved the plugin error message for invalid config arguments

plugin

Enhancements

  • Improved the plugin error message when invalid credentials are set in the wiz.spc file. (#23)

Bug fixes

  • Fixed the service_tickets column in wiz_issue table by removing the action subfield from the ServiceTickets field in the GraphQL response since it was no longer available. (#24 #25) (Thanks @sycophantic for the contribution!)

Terraform AWS Compliance mod v0.24 - Removed duplicate control rds_db_cluster_encrypted_with_kms_cmk

mod

Bug fixes

  • Removed duplicate control rds_db_cluster_encrypted_with_kms_cmk. (#105)

Kubernetes Insights mod v0.6 - Removed duplicate node service_account

mod

Bug fixes

  • Removed duplicate node service_account. (#56)

GitHub plugin v0.39.1 - Fixed pipeline column of github_workflow table to correctly return data instead of an error

plugin

Bug fixes

  • Fixed the pipeline column of the github_workflow table to correctly return data instead of an error. (#388)
  • Fixed the example query in the docs/index.md file by replacing the stargazers_count column with stargazer_count. (#397)

AWS plugin v0.131.0 - Added aws_api_gateway_method, aws_dms_certificate, aws_emr_security_configuration, aws_iot_thing, aws_organizations_organizational_unit, aws_ssmincidents_response_plan, aws_trusted_advisor_check_summary tables

plugin

What's new?

Bug fixes

  • Fixed aws_sfn_state_machine_execution_history table to handle pagination and ignore errors for expired execution history. (#1934) (Thanks @pdecat for the contribution!)
  • Fixed the aws_health_affected_entity table to correctly return data instead of an interface conversion error. (#2072)

Terraform Enterprise plugin v0.7.0 - Added tfe_project table

plugin

Prometheus plugin v0.6.2 - Fixed the plugin initialization error by returning only the static tables when invalid config parameters were set for dynamic tables

plugin

Bug fixes

  • Fixed the plugin initialization error by returning only the static tables when invalid config parameters were set for dynamic tables. #39

Steampipe CLI v0.21.7 - Fixed variables not being reloaded after file watch event

cli

Bug fixes

  • Fixed variables not being reloaded after the file watch event. (#4123)
  • Fixed mod file being left invalid after mod uninstall. (#4124)

AWS Compliance mod v0.86 - Added CIS v3.0.0 benchmark

mod

v0.86 [2024-02-08]

What's new?

  • Added CIS v3.0.0 benchmark (steampipe check benchmark.cis_v300). (#755)

Datadog plugin v0.8.0 - Fixed pagination in the datadog_monitor table to correctly return data instead of an error

plugin

Bug fixes

  • Fixed pagination in the datadog_monitor table to correctly return data instead of an error. (#48) (Thanks @mdb for the contribution!)

Steampipe CLI v0.21.6 - Fixed error when running Steampipe from home directory

cli

Bug fixes

  • Fixed HomeDirectoryModfileCheck returning false positive, causing errors when executing steampipe out of the home directory. (#4118)

Guardrails plugin v0.16.0 - Updated all the tables to fetch the column data using hydrate functions to optimize the API calls and increase query speed when querying specific columns

plugin

Enhancements

  • Updated all the tables to fetch the column data using hydrate functions to optimize the API calls and increase query speed when querying specific columns. (#30)

Steampipe CLI v0.21.5 - Fixed interactive entry of missing variable values and variable validation.

cli

Bug fixes

  • Fixed UI freeze when prompting for workspace variables. (#4105)
  • Fixed dependency variable validation - it was failing if dependency variable value was set in the vars file. (#4110)

OCI Compliance mod v0.11 - Added CIS v2.0.0 benchmark

mod

Dependencies

  • OCI plugin v0.35.0 or higher is now required. (#83)

What's new?

  • Added CIS v2.0.0 benchmark (steampipe check benchmark.cis_v200). (#80)

GCP plugin v0.49.0 - Added gcp_app_engine_application and gcp_compute_machine_image tables

plugin

Databricks plugin v0.4.0 - Added support for OAuth authentication mechanism

plugin

What's new?

  • Added OAuth config support to provide users the ability to set OAuth secret client ID and OAuth secret value of a service principal. For more information, please see Databricks plugin configuration. (#6) (Thanks @rinzool for the contribution!)
  • Added Config object to directly pass credentials to the client. (#10)

Azure plugin v0.54.0 - Added azure_api_management_backend, azure_consumption_usage and azure_monitor_log_profile tables

plugin

AWS plugin v0.130.0 - Optimized aws_cloudwatch_log_stream and aws_ssm_inventory table's query performance by adding new optional key qual columns

plugin

Enhancements

  • Optimized aws_cloudwatch_log_stream table's query performance by adding descending, log_group_name, log_stream_name_prefix and order_by new optional key qual columns. (#1951)
  • Optimized aws_ssm_inventory table's query performance by adding new optional key qual columns such as filter_key, filter_value, network_attribute_key, network_attribute_value, etc. (#1980)

Bug fixes

  • Fixed aws_cloudwatch_log_group table key column to be globally unique by filtering the results by region. (#1976)
  • Removed duplicate memoizing of getCommonColumns function from aws_s3_multi_region_access_point and aws_ec2_launch_template tables.(#2065)
  • Fixed error for column type_name in table aws_ssm_inventory_entry. (#1980)
  • Added the missing rate-limiter tags for aws_s3_bucket table's GetBucketLocation hydrate function to optimize query performance. (#2066)

Guardrails plugin v0.15.0 - Added guardrails_query table

plugin

Azure Compliance mod v0.40 - Added new controls to All Controls benchmark

mod

Dependencies

  • Azure plugin v0.53.0 or higher is now required. (#242)

Enhancements

  • Added 41 new controls to the All Controls benchmark across the following services: (#234 #233)
    • Active Directory
    • App Service
    • Batch
    • Compute
    • Container Instance
    • Key Vault
    • Kubernetes Service
    • Network
    • Recovery Service
    • Service Bus
    • Storage

Bug fixes

  • Fixed the description of CIS_v150_2_1_9 control. (#238) (Thanks @sfunkernw for the contribution!)

AWS Compliance mod v0.85 - Removed iam_root_user_virtual_mfa control and replaced iam_account_password_policy_strong with iam_account_password_policy_strong_min_reuse_24 control

mod

Breaking changes

  • Removed the iam_root_user_virtual_mfa control since it is not recommended as good practice. (#743)
  • Replaced iam_account_password_policy_strong with iam_account_password_policy_strong_min_reuse_24 in the GDPR, FFIEC and CISA Cyber Essentials benchmarks to align more accurately with the requirements specified in the AWS Config rules. (#739)

Bug fixes

  • Updated the dashboard image to correctly list all the 25 benchmarks. (#748)

OCI plugin v0.35.0 - Added oci_identity_db_credential table

plugin

Terraform AWS Compliance mod v0.23 - Added new controls across Simple Email Service and VPC benchmarks

mod

What's new?

  • Added the following controls across Simple Email Service and VPC benchmarks. (#88 #102)
    • ses_configuration_set_tls_enforced
    • vpc_security_group_restrict_ingress_rdp_all
    • vpc_security_group_restrict_ingress_ssh_all

Steampipe CLI v0.21.4 - Fixed schema cloning for tables with LTREE columns

cli

Bug fixes

  • Fixed schema clone function failing if table has an LTREE column. (#4079)
  • Maintained the order of execution when running multiple queries in batch mode. (#3728)
  • Fixed issue where using any meta-command would load connection state even if not required. (#3614)
  • Fixed issue where plugin version file back-filling would write versions.json to the CWD if the plugin folder is not found. (#4073)
  • Simplified and fixed available port check. (#4030)

WHOIS plugin v0.11.0 - Added rdap_domain table

plugin

Terraform GCP Compliance mod v0.12 - Added control kubernetes_cluster_no_cluster_level_node_pool to Kubernetes benchmark

mod

What's new?

  • Added the kubernetes_cluster_no_cluster_level_node_pool control to the Kubernetes benchmark. (#53)

OCI plugin v0.34.0 - Added oci_identity_domain and oci_database_cloud_vm_cluster tables and snapshot_time and snapshot_type columns to table oci_file_storage_snapshot

plugin

Kubernetes plugin v0.27.0 - Added annotations columns on all CRD resources and updated API version for table kubernetes_horizontal_pod_autoscaler

plugin

Enhancements

  • Added the annotations columns on all CRD resources. (#202)
  • Updated the API version for table kubernetes_horizontal_pod_autoscaler. (#190)

GCP plugin v0.48.0 - Added gcp_cloud_asset table and fixed addons_config network_config and network_policy column of gcp_kubernetes_cluster table to correctly return data instead of null

plugin

What's new?

Enhancements

  • Added column iam_policy to gcp_cloud_run_service table. (#531)
  • Optimized the gcp_logging_log_entry table result or result timing by applying a timestamp filter. (#508)
  • Added the json_payload, proto_payload, metadata, resource, operation, and tags columns to gcp_logging_log_entry table. (#508)

Bug fixes

  • Fixed the addons_config, network_config and network_policy column of gcp_kubernetes_cluster table to correctly return data instead of null. (#530)
  • Fixed the end_time column of the gcp_sql_backup table to return null instead of an error when end time is unavailable for a SQL backup. (#534)
  • Fixed the enqueued_time, start_time and window_start_time columns of the gcp_sql_backup table to return null instead of an error when timestamp is unavailable for a SQL backup. (#536)

Azure plugin v0.53.0 - Added audit_policy column to azure_sql_database and azure_sql_server tables and fixed table azure_key_vault_secret to correctly return data when keyvault name is in camel-case

plugin

Enhancements

  • Added the audit_policy column to azure_sql_database and azure_sql_server tables. (#711)
  • Added the webhooks column to azure_container_registry table. (#710)
  • Added the disable_local_auth and status columns to azure_servicebus_namespace table. (#715)

Bug fixes

  • Fixed the azure_key_vault_secret table to correctly return data when keyvault name is in camel-case. (#638)

AWS Thrifty mod v0.27 - Fixed low_iops_ebs_volumes control to now suggest converting io1 and io2 volumes to GP3 volumes when the base IOPS is less than 16000 instead of 3000

mod

Bug fixes

  • Fixed the low_iops_ebs_volumes control to now suggest converting io1 and io2 volumes to GP3 volumes, when the base IOPS is less than 16000 instead of 3000. (#167)

AWS plugin v0.129.0 - Added aws_servicecatalog_provisioned_product table and temporarily removed aws_organizations_organizational_unit table due to LTREE column issue

plugin

What's new?

Enhancements

  • Added deletion_protection_enabled column to aws_dynamodb_table table. (#2049)

Bug fixes

  • Fixed default page size in aws_organizations_account table. (#2058)
  • Fixed processor_features column in aws_rds_db_instance not returning data when default value is set. (#2028)
  • Temporarily removed aws_organizations_organizational_unit table due to LTREE column issue. (#2058)

DigitalOcean Thrifty mod v0.6 - Added input variables to allow different thresholds to be passed in Droplet, Database, Block Storage and Kubernetes services

mod

AWS plugin v0.128.0 - Added aws_cloudtrail_lookup_event, aws_organizations_organizational_unit, aws_organizations_root, and aws_sns_subscription tables

plugin

AWS Well Architected mod v0.10 - Updated tags to use risk instead of severity to eliminate duplicate column names in output files

mod

Bug fixes

  • Updated the tags to use risk instead of severity to eliminate duplicate column names in output files. (#41)

Terraform Azure Compliance mod v0.12 - Added new controls for Container Registry and Instance services

mod

What's new?

  • Added the following controls across the benchmarks: (#51)
    • container_instance_container_group_secure_environment_variable
    • container_registry_zone_redundant_enabled

AWS plugin v0.127.0 - Added aws_appsync_graphql_api and aws_mq_broker tables and fixed custom HTTP client to allow buildable settings through env var options such as AWS_CA_BUNDLE

plugin

What's new?

Enhancements

  • Added storage_throughput column to aws_rds_db_instance table. (#2010) (Thanks @toddwh50 for the contribution!)
  • Added layers column to aws_lambda_function table. (#2008) (Thanks @icaliskanoglu for the contribution!)
  • Added tags column to aws_backup_recovery_point and aws_backup_vault tables. (#2033)

Bug fixes

  • Custom HTTP client should allow buildable settings through env var options such as AWS_CA_BUNDLE. (#2044)
  • Fixed MaxItems in aws_iam_policy and aws_iam_policy_attachment tables to use 1000 instead of 100 to avoid unnecessary API calls. (#2025) (#2026)

IBM Compliance mod v0.7 - Updated controls to use the latest query format

mod

Enhancements

  • Updated the controls to reference their query using query = rather than sql =. (#25)

Azure insights mod v0.14 - Fixed broken network_subnet_to_network_virtual_network edge of relationship graph in sql_server_detail dashboard page to correctly reference network_subnets_for_sql_server query

mod

Bug fixes

  • Fixed the broken network_subnet_to_network_virtual_network edge of the relationship graph in the sql_server_detail dashboard page to correctly reference the network_subnets_for_sql_server query. (#118)

Azure Compliance mod v0.39 - Fixed kubernetes_cluster_upgraded_with_non_vulnerable_version query to correctly check if a Kubernetes cluster is using an outdated software version

mod

Bug fixes

  • Fixed the kubernetes_cluster_upgraded_with_non_vulnerable_version query to correctly check if a Kubernetes cluster is using an outdated software version. (#235)

ServiceNow plugin v0.3.1 - Fixed plugin to return only static tables instead of an error when the objects config argument is not set or credentials are not set correctly

plugin

Bug fixes

  • Fixed the plugin to return only static tables instead of an error when the objects config argument is not set or the plugin credentials are not set correctly. (#26)

Reddit plugin v0.5.0 - Added reddit_my_saved_post and reddit_my_saved_comment tables

plugin

Steampipe CLI v0.21.3 - Fixed incorrect row count in timing output for aggregator connections, set connection state to error if plugin load fails

cli

Whats new

  • Allow using pprof on FDW when STEAMPIPE_FDW_PPROF environment variable is set. (#368)

Bug fixes

  • Set connection state to error if plugin load fails. (#4043)
  • Fixes incorrect row count in timing output for aggregator connections. (#402)
  • OpenTelemetry metric names must only contain [A-Za-z0-9_.-]. (#369)
  • Maintain the order of execution when running multiple queries in batch mode. (#3728)

GCP Compliance mod v0.25 - Added new controls to All Controls benchmark

mod

Enhancements

  • Added 61 new controls to the All Controls benchmark across the following services: (#140)
    • CloudFunctions
    • Compute
    • KMS
    • Kubernetes
    • Project
    • SQL
    • Storage

AWS Compliance mod v0.84 - Added new controls to All Controls benchmark

mod

Enhancements

  • Added 50 new controls to the All Controls benchmark across the following services: (#736)
    • ACM
    • CloudFront
    • CloudTrail
    • Config
    • DocumentDB
    • EC2
    • ECS
    • EKS
    • ElastiCache
    • ELB
    • EMR
    • Kinesis
    • RDS
    • Redshift
    • S3
    • SNS
    • SQS
    • SSM
    • VPC

SAP BTP plugin v0.0.2 - Initial plugin release

plugin

AWS plugin v0.126.0 - Updated the plugin to enhance DNS management and reduce connection floods for more stable and efficient queries

plugin

Enhancements

  • Updated the plugin to use a shared, optimized HTTP client that enhances DNS management and reduces connection floods for more stable and efficient queries. (#2036)

AWS plugin v0.125.0 - Updated the plugin to build the netgo package only for Darwin systems

plugin

Enhancements

  • Updated the plugin's .goreleaser file to build the netgo package only for Darwin systems. (#2029)

Postgres FDW, SQLite extension and export CLI engines for 114 plugins

plugin

114 plugins have been updated to include the following changes:

What's new?

Dependencies

  • Recompiled with steampipe-plugin-sdk v5.8.0 that includes plugin server encapsulation for in-process and GRPC usage, adding Steampipe Plugin SDK version to _ctx column, and fixing connection and potential divide-by-zero bugs.

Steampipe CLI v0.21.2 - Added `steampipe_plugin_column` introspection table to the `steampipe_internal` schema

cli

Whats new

  • Added steampipe_plugin_column introspection table to the steampipe_internal schema. (#4003)

Bug fixes

  • Fixed issue where a query would return 'null' for an empty result set when output is set to json. (#3955)
  • Fixed custom registries bugs.
  • Clean up apt temporary files in Dockerfile.

Fly plugin v0.2.2 - Fixed plugin to correctly return results when environment variables are only used for authentication

plugin

Bug fixes

  • Fixed the plugin to correctly return results when environment variables are only used for authentication. (#21)

Consul plugin v0.1.2 - Fixed invalid Go module path of the plugin

plugin

Bug fixes

  • Fixed the invalid Go module path of the plugin. (#15)

Pipes plugin v0.12.2 - Fixed invalid Go module path of the plugin

plugin

Bug fixes

  • Fixed the invalid Go module path of the plugin. (#20)

Nomad plugin v0.1.2 - Fixed invalid Go module path of the plugin

plugin

Bug fixes

  • Fixed the invalid Go module path of the plugin. (#13)

New Relic plugin v0.1.2 - Fixed invalid Go module path of the plugin

plugin

Bug fixes

  • Fixed the invalid Go module path of the plugin. (#43)

Mastodon plugin v0.1.2 - Fixed invalid Go module path of the plugin

plugin

Bug fixes

  • Fixed the invalid Go module path of the plugin. (#36)

Linear plugin v0.1.2 - Fixed invalid Go module path of the plugin

plugin

Bug fixes

  • Fixed the invalid Go module path of the plugin. (#20)

Hibp plugin v0.4.2 - Fixed invalid Go module path of the plugin

plugin

Bug fixes

  • Fixed the invalid Go module path of the plugin. (#26)

Github plugin v0.38.0 - Added github_repository_sbom table and updated tables to include support for dynamic GraphQL queries

plugin

What's new?

Enhancements

  • Updated the following tables to include support for dynamic GraphQL queries:
    • github_my_star (#369)
    • github_stargazer (#370)
    • github_tag (#371)
    • github_rate_limit (#368)
    • github_community_profile (#367)
    • github_license (#366)
    • github_organization_member (#364)
    • github_team_member (#364)
    • github_user (#364)
    • github_my_team (#363)
    • github_team (#363)
    • github_commit (#362)
    • github_my_organization (#361)
    • github_organization (#361)
    • github_organization_external_identity (#361)
    • github_branch (#360)
    • github_branch_protection (#360)
    • github_repository_collaborator (#365)
    • github_repository_deployment (#365)
    • github_repository_environment (#365)
    • github_repository_vulnerability_alert (#365)
    • github_issue (#359)
    • github_issue_comment (#359)
    • github_pull_request (#359)
    • github_pull_request_comment (#359)
    • github_pull_request_review (#359)

Crowdstrike plugin v0.3.2 - Fixed invalid Go module path of the plugin

plugin

Bug fixes

  • Fixed the invalid Go module path of the plugin. (#27)

Semgrep plugin v0.0.1 - Initial plugin release

plugin

Terraform GCP mod v0.11 - Added new controls across BigQuery, Bigtable, and Spanner services

mod

What's new?

  • Added the following controls across the benchmarks: (#49)
    • bigquery_table_deletion_protection_enabled
    • bigtable_instance_deletion_protection_enabled
    • spanner_database_deletion_protection_enabled
    • spanner_database_drop_protection_enabled

Terraform Azure mod v0.11 - Added new controls across App Service, Event Hub, Kubernetes, Redis and SQL services

mod

What's new?

  • Added the following controls across the benchmarks: (#47)
    • appservice_environment_zone_redundant_enabled
    • appservice_function_app_public_access_disabled
    • appservice_plan_zone_redundant
    • appservice_web_app_public_access_disabled
    • eventhub_namespace_uses_latest_tls_version
    • eventhub_namespace_zone_redundant
    • kubernetes_cluster_critical_pods_on_system_nodes
    • kubernetes_cluster_os_disk_ephemeral
    • redis_cache_standard_replication_enabled
    • sql_database_ledger_enabled
    • sql_database_zone_redundant_enabled

Terraform AWS mod v0.22 - Added new controls across DocumentDB, Lambda, and Neptune services

mod

What's new?

  • Added the following controls across the benchmarks: (#98)
    • docdb_cluster_backup_retention_period_7
    • lambda_permission_restricted_service_permission
    • neptune_cluster_backup_retention_period_7
    • neptune_cluster_copy_tags_to_snapshot_enabled
    • neptune_cluster_iam_authentication_enabled

AWS Insights mod v0.17 - Fixed index doc by removing unsupported images

mod

Bug fixes

  • Fixed the index doc by removing unsupported images. (#334)

AWS Compliance mod v0.83 - Added new controls to All Controls benchmark

mod

Enhancements

  • Added the following controls to the All Controls benchmark: (#733)
    • api_gateway_rest_api_public_endpoint_with_authorizer
    • dlm_ebs_snapshot_lifecycle_policy_enabled
    • docdb_cluster_instance_encryption_at_rest_enabled
    • ebs_volume_snapshot_exists
    • elasticache_cluster_no_public_subnet
    • iam_role_no_administrator_access_policy_attached
    • iam_user_access_key_unused_45
    • iam_user_console_access_unused_45
    • neptune_db_cluster_no_public_subnet

AWS Insights mod v0.16 - Fixed missing closing tag in index doc

mod

Bug fixes

  • Fixed missing closing tag in index doc. (#331)

Azure Compliance mod v0.38 - Fixed Azure Active Directory and Azure IAM queries to remove duplicate benchmark results

mod

Bug fixes

  • Fixed ad_guest_user_reviewed_monthly, iam_deprecated_account_with_owner_roles, iam_external_user_with_read_permission, iam_external_user_with_write_permission, iam_user_not_allowed_to_create_security_group and iam_user_not_allowed_to_register_application queries to remove duplicate benchmark results. (#228)

Hubspot plugin v0.0.2 - Fixed plugin brand colour

plugin

Bug fixes

  • Fixed the plugin brand colour.

Hubspot plugin v0.0.1 - Initial plugin release

plugin

Kubernetes plugin v0.25.2 - Fixed the plugin to pass the namespace qualifier to the kubernetes API client

plugin

Bug fixes

  • Fixed the plugin to pass the namespace qualifier to the kubernetes API client when querying namespace scoped resources. (#181) (Thanks @pdecat for the contribution!!)

Github plugin v0.37.1 - Fixed GetConfig of github_team_repository table to include support for dynamic GraphQL queries

plugin

Bug fixes

  • Fixed the GetConfig of github_team_repository table to include support for dynamic GraphQL queries. (#379)
  • Fixed the example queries in github_commit doc file. (#377)
  • Fixed the example queries in github_search_issue doc file to filter out results from the API. (#378)

GCP plugin v0.46.0 - Added gcp_aiplatform_endpoints table, and fixed retention_policy column of gcp_storage_bucket table

plugin

What's new?

Bug fixes

  • Fixed the retention_policy column of gcp_storage_bucket table to correctly return data instead of null. (#502)

AWS plugin v0.123.0 - Added aws_lambda_event_source_mapping table, and added resource_record_set_limit column to aws_route53_zone table

plugin

Jira plugin v0.13.0 - Added new tables, new columns to existing tables, and fixed bugs

plugin

What's new?

Enhancements

  • Added the properties column to jira_project table. (#105)

Bug fixes

  • Fixed typo in the docs/index.md file. (#102) (Thanks @adrfrank for the contribution!)
  • Fixed the jira_issue table by enhancing case insensitivity support for the status column. (#90)

Microsoft365 Compliance mod v0.9 - Added CIS v3.0.0 benchmark

mod

What's new?

  • Added CIS v3.0.0 benchmark (steampipe check benchmark.cis_v300). (#57)

Linkedin plugin v0.4.0 - Removed tables using the search API that no longer work due to API limitations

plugin

Breaking Changes

  • Removed the following tables using the search API that no longer work due to API limitations. These tables will be added back if functionality can be restored.
    • linkedin_company_employee
    • linkedin_company_past_employee
    • linkedin_connection
    • linkedin_search_company
    • linkedin_search_profile

GCP Compliance mod v0.24 - Fixed compute_firewall_allow_tcp_connections_proxied_by_iap query to correctly include all the ports and source IP ranges

mod

Bug fixes

  • Fixed the compute_firewall_allow_tcp_connections_proxied_by_iap query to correctly include all the ports and source IP ranges. (#128) (Thanks @saisirishreddy for the contribution!)

Steampipe Plugin SDK v5.8.0 - Add support for running the plugin in-process.

sdk

What's new?

  • Encapsulate plugin server so it is possible to use it in-process as well as via GRPC. (#719)
  • Add steampipe field to _ctx column, containing sdk version. (#712)

Bug fixes

  • Remove plugin has no connections error when deleting and then re-adding a connection. (#725)
  • Fix potential divide by zero bug when setting cache size

Net Insights mod v0.6 - Added dns_mx_dmarc_record_enabled control to dns_mx_best_practices benchmark

mod

Enhancements

  • Added the dns_mx_dmarc_record_enabled control to the dns_mx_best_practices benchmark. (#20)

Bug fixes

  • Fixed dashboard localhost URLs in README and index doc. (#23)

Github plugin v0.37.0 - Added run_started_at column to github_actions_repository_workflow_run table

plugin

Enhancements

  • Added the run_started_at column to github_actions_repository_workflow_run table. (#358) (Thanks @mridang for the contribution!)

AWS plugin v0.122.0 - Added new tables and new columns to existing tables

plugin

GCP Compliance mod v0.23 - Added new All Controls benchmark

mod

What's new?_

  • Added the new All Controls benchmark (steampipe check benchmark.all_controls). This new benchmark includes 109 service-specific controls. (#127)

Updated plugin dependency section of 25 mods to use min_version instead of version

plugin
  • Updated the plugin dependency section of the following mods to use min_version instead of version:
    • Alicloud Insights
    • AWS Insights
    • AWS Tags
    • Azure Insights
    • Digitalocean Insights
    • Docker Compliance
    • GCP Insights
    • GCP Labels
    • Github Compliance
    • Github Insights
    • Gitlab Insights
    • Hackernews Insights
    • IBM Insights
    • Kubernetes Insights
    • Microsoft 365 Compliance
    • OCI Compliance
    • OCI Insights
    • OCI Thrifty
    • Snowflake Compliance
    • Tailscale Compliance
    • Terraform AWS Compliance
    • Terraform Azure Compliance
    • Terraform GCP Compliance
    • Terraform OCI Compliance
    • Turbot Guardrails Insights

Kubernetes Compliance mod v0.17 - Updated docs to include correct links and fixed queries to cast data to a boolean format

mod

Breaking changes

  • Updated the plugin dependency section of the mod to use min_version instead of version. (#82)

Bug fixes

  • Updated the docs to include the correct links for the nsa_cisa_v1 benchmark. (#80) (Thanks @aniketh-varma for the contribution!)
  • Fixed the following queries to cast the data to boolean format. (#79)
    • cronjob_container_privilege_disabled
    • cronjob_host_network_access_disabled
    • cronjob_hostpid_hostipc_sharing_disabled
    • cronjob_immutable_container_filesystem
    • cronjob_non_root_container
    • daemonset_container_privilege_disabled
    • daemonset_host_network_access_disabled
    • daemonset_hostpid_hostipc_sharing_disabled
    • daemonset_immutable_container_filesystem
    • daemonset_non_root_container
    • deployment_container_privilege_disabled
    • deployment_host_network_access_disabled
    • deployment_hostpid_hostipc_sharing_disabled
    • deployment_immutable_container_filesystem
    • deployment_non_root_container
    • job_container_privilege_disabled
    • job_host_network_access_disabled
    • job_hostpid_hostipc_sharing_disabled
    • job_immutable_container_filesystem
    • job_non_root_container
    • pod_container_privilege_disabled
    • pod_immutable_container_filesystem
    • pod_non_root_container
    • pod_service_account_token_enabled
    • pod_template_container_privilege_disabled
    • pod_template_immutable_container_filesystem
    • replicaset_container_privilege_disabled
    • replicaset_host_network_access_disabled
    • replicaset_hostpid_hostipc_sharing_disabled
    • replicaset_immutable_container_filesystem
    • replicaset_non_root_container
    • replication_controller_container_privilege_disabled
    • replication_controller_host_network_access_disabled
    • replication_controller_hostpid_hostipc_sharing_disabled
    • replication_controller_immutable_container_filesystem
    • replication_controller_non_root_container
    • statefulset_container_privilege_disabled
    • statefulset_host_network_access_disabled
    • statefulset_hostpid_hostipc_sharing_disabled
    • statefulset_immutable_container_filesystem
    • statefulset_non_root_container

GCP Compliance mod v0.22 - Fixed kms_key_separation_of_duties_enforced query to ensure that separation of duties is enforced while assigning KMS-related roles to users

mod

Breaking changes

  • Updated the plugin dependency section of the mod to use min_version instead of version. (#130)

Bug fixes

  • Fixed the kms_key_separation_of_duties_enforced query to ensure that separation of duties is enforced while assigning KMS-related roles to users. (#132)

Azure Compliance mod v0.37 - Fixed compute_vm_tcp_udp_access_restricted_internet query

mod

Breaking changes

  • Updated the plugin dependency section of the mod to use min_version instead of version. (#222)

Bug fixes

  • Fixed the compute_vm_tcp_udp_access_restricted_internet query to ensure internet-facing virtual machines are protected with network security groups. (#224)

AWS Well Architected mod v0.9 - Updated the plugin dependency section of the mod to use min_version instead of version

mod

Breaking changes

  • Updated the plugin dependency section of the mod to use min_version instead of version. (#34)

Bug fixes

  • Fixed the README and index docs to correctly reference the well_architected_framework_security benchmark. (#25)

AWS Thrifty mod v0.26 - Renamed control lambda_function_with_graviton2 to lambda_function_with_graviton

mod

Breaking changes

  • Updated the plugin dependency section of the mod to use min_version instead of version. (#161)
  • Renamed the control lambda_function_with_graviton2 to lambda_function_with_graviton in order to maintain consistency. (#158) (Thanks @bluedoors for the contribution!)

AWS Perimeter mod v0.7 - Updated the plugin dependency section of the mod to use min_version instead of version

mod

Breaking changes

  • Updated the plugin dependency section of the mod to use min_version instead of version. (#45)

Bug fixes

  • Fixed the README to include correct links to the benchmarks. (#47) (Thanks @vil02 for the contribution!)

AWS Compliance mod v0.82 - Added glue_connection_ssl_enabled and vpc_peering_connection_route_table_least_privilege controls to All Controls benchmark

mod

Breaking changes

  • Updated the plugin dependency section of the mod to use min_version instead of version. (#728)

Enhancements

  • Added the following controls to the All Controls benchmark: (#727)
    • glue_connection_ssl_enabled
    • vpc_peering_connection_route_table_least_privilege

AWS plugin v0.121.1 - Resolved intermittent retention of expired credentials in connection cache

plugin

Bug fixes

  • Fixed the description of the name column in aws_organizations_account table. (#1947) (Thanks @badideasforsale for the contribution!)

Dependencies

  • Recompiled plugin with steampipe-plugin-sdk v5.6.3 which addresses the issue of expired credentials being intermittently retained in the connection cache. (#1956)

Steampipe Plugin SDK v5.6.3 - Fixed intermittent expired credentials

sdk

Bug fixes

  • Fixed expired credentials sometimes being left in the connection cache. Update connection cache to use a backing store per connection, rather than a shared backing store. (#699)

Azure plugin v0.51.0 - Added azure_alert_management, azure_databricks_workspace, azure_monitor_activity_log_event, and azure_recovery_services_backup_job tables

plugin

Linkedin plugin v0.3.0 - Added contact_info column to linkedin_profile table

plugin

Enhancements

  • Added the contact_info column to linkedin_profile table. (#5)

GitHub plugin v0.36.1 - Fixed required quals for github_issue and github_pull_request tables

plugin

Bug fixes

  • Fixed the required quals of github_issue and github_pull_request tables to correctly return data instead of an error. (#355)

GitHub plugin v0.36.0 - Optimized GraphQL queries for issue and pull request tables

plugin

What's new

  • Updated github_issue, github_my_issue, github_pull_request, github_search_issue, and github_search_pull_request tables to only include nested and user permission columns in GraphQL request when requested. This should result in faster queries and large scale queries completing more consistently. (#342)

Vanta plugin v0.3.2 - Fixed vanta_computer table queries failing

plugin

Bug fixes

  • Fixed vanta_computer table queries failing due to inclusion of deprecated API field requiresLocationServices in fetchDomainEndpoints query. (#19) (Thanks @eric-glb for the contribution!)

Sentry plugin v0.2.0 - Sentry base URL can now be configured

plugin

What's new?

  • The Sentry base URL can now be set through the base_url config argument or SENTRY_URL environment variable. (#11) (Thanks @beudbeud for the contribution!)

Prometheus plugin v0.5.0 - Added support for PROMETHEUS_URL environment variable

plugin

What's new?

  • The Prometheus address (address) can now be set with the PROMETHEUS_URL environment variable. (#23) (Thanks @beudbeud for the contribution!)

Azure Compliance mod v0.36 - Fixed README to include correct benchmark reference

mod

Bug fixes

  • Fixed README to include correct reference to the All Controls benchmark. (#218) (Thanks @vil02 for the contribution!)

AWS Compliance mod v0.81 - Added controls for Athena and IAM services

mod

Enhancements

  • Added the following controls to the All Controls benchmark: (#722)
    • athena_workgroup_enforce_configuration_enabled
    • iam_inline_policy_no_administrative_privileges

Bug fixes

  • Fixed README to include correct reference to the All Controls benchmark. (#721) (Thanks @vil02 for the contribution!)
  • Fixed typos in several compliance control descriptions. (#719) (Thanks @pdecat for the contribution!)

AWS plugin v0.121.0 - Improved documentation for AWS IAM role table

plugin

Enhancements

  • Improved documentation and descriptions for the aws_iam_role table. (#1940)
  • Replaced uses of rand.Seed with latest rand.NewSource. (#1933)

AWS Insights mod v0.14 - Added new dashboard and query docs

mod

Enhancements

  • Added additional dashboard and query docs and updated metadata descriptions in docs. (#323)

Terraform Azure Compliance mod v0.9 - Added 11 new controls

mod

What's new?

  • Added 11 new controls across the benchmarks for the following services: (#39)
    • Application Gateway
    • Automation
    • Cognitive Search
    • Compute
    • Frontdoor
    • Network
    • PostgreSQL

AWS plugin v0.120.2 - Removed unnecessary error retry logic and added UnknownError as retryable error

plugin

Bug fixes

  • Removed custom plugin level retryer which was unnecessary as the plugin already uses the AWS SDK retryer. (#1932)
  • The plugin now retries errors with the error code UnknownError. These are often thrown by services like SNS when performing a large number of requests. (#1932)

Resolved nil pointer reference errors related to implicit hydrate configurations across 94 plugins

plugin

Kubernetes Compliance mod v0.16 - Fixed queries to correctly return data for connection_name and tags dimensions

mod

Bug fixes

  • Fixed queries to correctly return data for connection_name and tags dimensions instead of an error. (#73)

Github Compliance mod v0.5 - Updated 10 queries to use url as the resource column

mod

Enhancements

  • Updated the following queries to use url as the resource column: (#35)
    • default_branch_all_build_steps_as_code
    • default_branch_pipeline_locks_external_dependencies_for_build_process
    • default_branch_pipeline_must_have_jobs_with_sbom_generation
    • default_branch_pipelines_scan_for_vulnerabilities
    • default_branch_pipelines_scanners_set_to_prevent_sensitive_data
    • org_member_mfa_enabled
    • repo_inactive_members_review
    • repo_deletion_limited_to_trusted_users
    • repo_issue_deletion_limited_to_trusted_users
    • repo_webhook_package_registery_security_settings_enabled

GCP plugin v0.45.0 - Added gcp_artifact_registry_repository and gcp_cloud_run_service tables

plugin

Fixed nil pointer reference errors for implicit hydrate configs for 21 plugins

plugin

The following 21 Turbot Steampipe plugins have been updated to use steampipe-plugin-sdk v5.6.2, which prevents nil pointer reference errors for implicit hydrate configs:

  • Alibaba Cloud
  • AWS CloudFormation
  • Azure
  • Azure Active Directory
  • CSV
  • DigitalOcean
  • Docker
  • Docker Hub
  • Exec
  • GCP
  • GitHub
  • IBM Cloud
  • Jira
  • Microsoft 365
  • Net
  • Okta
  • OpenShift
  • Oracle Cloud Infrastructure
  • Salesforce
  • Turbot Pipes
  • Zoom

Terraform plugin v0.10.0 - Added address, attributes, and attributes_std columns to terraform_resource table

plugin

Breaking changes

  • Removed instances column from terraform_resource table. (#64)
  • All arguments and lifecycle columns now return null instead of {} if empty. (#64)

Enhancements

  • Added address, attributes, and attributes_std columns to terraform_resource table. (#64)

Bug fixes

  • Fixed the start_line, end_line and source column values in the terraform_resource table to return correct values regardless of file indentation. (#64)
  • Fixed the plugin to check all files even if a non-existent file name is provided in any file_paths config arg. (#67)

Terraform OCI Compliance mod v0.6 - Updated the queries to use attributes_std and address columns from the terraform_resource table for better support of terraform state files

mod

Enhancements

  • Updated the queries to use the attributes_std and address columns from the terraform_resource table instead of arguments, type and name columns for better support of terraform state files. (#34)

Dependencies

  • Terraform plugin v0.10.0 or higher is now required. (#34)

Terraform GCP Compliance mod v0.9 - Updated the queries to use attributes_std and address columns from the terraform_resource table for better support of terraform state files

mod

Enhancements

  • Updated the queries to use the attributes_std and address columns from the terraform_resource table instead of arguments, type and name columns for better support of terraform state files. (#42)

Dependencies

  • Terraform plugin v0.10.0 or higher is now required. (#42)

Terraform Azure Compliance mod v0.8 - Updated the queries to use attributes_std and address columns from the terraform_resource table for better support of terraform state files

mod

Enhancements

  • Updated the queries to use the attributes_std and address columns from the terraform_resource table instead of arguments, type and name columns for better support of terraform state files. (#35)

Dependencies

  • Terraform plugin v0.10.0 or higher is now required. (#35)

Terraform AWS Compliance mod v0.20 - Updated the queries to use attributes_std and address columns from the terraform_resource table for better support of terraform state files

mod

Enhancements

  • Updated the queries to use the attributes_std and address columns from the terraform_resource table instead of arguments, type and name columns for better support of terraform state files. (#90)

Dependencies

  • Terraform plugin v0.10.0 or higher is now required. (#90)

Kubernetes plugin v0.25.1 - Fixed plugin crash due to invalid definition of manifest_file_paths config argument

plugin

Bug fixes

  • Fixed the plugin to prevent crashes when source_types config argument contains manifest but manifest_file_paths is not defined. (#177)

Kubernetes Compliance mod v0.15 - Added 39 new controls

mod

What's new?

  • Added 39 new controls for the ClusterRoleBinding, CronJob, DaemonSet, Ingress, Job, Pod resource types to the all_controls benchmark. (#68)

AWS plugin v0.120.1 - Fixed source_account_id column of aws_securityhub_finding table and members column of aws_rds_db_cluster table to correctly return data

plugin

Bug fixes

  • Fixed the source_account_id column of aws_securityhub_finding table to correctly return data instead of null. (#1927) (Thanks @gabrielsoltz for the contribution!)
  • Fixed the members column of aws_rds_db_cluster table to correctly return data instead of null. (#1926)

Steampipe CLI v0.21.1 - Added support for the missing mod-location flag to the steampipe variable list command

cli

Bug fixes

  • Added support for the missing mod-location flag to the steampipe variable list command. (#3942)

Steampipe Plugin SDK v5.6.2 - Fixed nil pointer exception if hydrate call fails

sdk

Bug fixes

  • The initialise function is now being called for implicit hydrate configs (i.e. hydrate functions without explicit config), thereby preventing nil pointer reference errors when the hydrate function returns an error. (#683)

Steampipe CLI v0.21.0 - Add support for rate limiting, and memory limits

cli

Whats new?

  • Define rate and concurrency limits for plugin execution. (#3746)
  • Define multiple instances of a plugin version using a plugin connection config block. (#3807)
  • The maximum memory used by plugins and the CLI can now be specified either in plugin instance definitions or the new plugin options block. (#3807)
  • New introspection tables steampipe_plugin and steampipe_plugin_limiter containing all configured plugin instances and limiters. (#3746)
  • New introspection table steampipe_server_settings populated with server settings data during service startup. (#3462)
  • Running plugin install with no arguments installs all referenced plugins. (#3451)
  • New --output flag for plugin list cmd allows selection between json and table output. (#3368)
  • Each plugin directory ncontains a version.json which can be used to recompose the global plugin versions.json if it is missing or corrupt. (#3492)
  • Typing .cache in interactive prompt shows the current value of cache. (#2439)
  • Steampipe commands bypass plugin requirement check if installed plugin is locally built. (#3643)
  • New skip-config flag disables writing of default plugin config during plugin installation. (#3531, #2206)
  • Logs are now written to file instead of console. (#2916)
  • When plugin startup fails, report useful message in the CLI. (#3732)
  • Users are warned to not have mod.sp files in home directory. (#2321)
  • Updated messaging when service is started on an unavailable port. (#623)
  • Log files are rotated if the process is active across date boundaries. (#125, #3825)
  • Listen hosts may be selected when starting steampipe service. (#3505)
  • Initialisation behaviour for the sample options has been changed: always copy a sample file (default.spc.sample), but only overwrite the default.spc file with the sample content if the existing file has not been modified. (#3431)
  • Validation for the workspace profile cache settings. (#3646)
  • Support OCI registries requiring authentication. (#2819)
  • Compiled with Go 1.21. (#3763)

Bug fixes

  • Plugin manager shutdown stalling intermittently due to deadlocks. (#3818)
  • Temporary tables dropped in interactive prompt when pool connections recycled. (#3781,#3543)
  • service start was not listening on network by default. (#3593)
  • Multi line logs from plugins not rendered correctly in plugin logs. (#3678)
  • .inspect panicking for long column descriptions. (#3709)
  • Interactive prompt crashing when there is a code panic. (#3713)
  • Incorrect zsh completion instructions.
  • Steampipe should not create export files for cancelled control runs. (#3578)
  • BuildFullResourceName not validating non empty arguments. (#3601)
  • Spinner not showing when exporting check results. (#3577)
  • stdin was consumed by query command even if there are arguments. (#1985)
  • When exporting multiple benchmarks, results now merged the results into a single export. (#2380)
  • Raise warning when pseudo-resources are ignored because of named HCL resources. (#1328)
  • Database reinstalled unnecessarily if any FDW files were missing. (#2040)
  • Improved error message when steampipe fails to parse a mod definition file because mod block does not exist. (#1198)
  • Only install-dir and workspace flags should be global flags. All other flags should only apply to specific command. (#3542)
  • Passing an empty list for list variables was not working. (#2094)
  • Show deprecation warning for version field in require block of mod definition.
  • Temporary directories were not always being cleaned up after plugin commands.
  • plugin list returned nothing if no plugins were installed. (#3927)

Deprecations and migrations

  • Table steampipe_connection_state renamed to steampipe_connection
  • Removed migration and backward compatibility of data files from v0.13.0. (#3517)
  • Removed deprecated workspace-chdir flag. (#3925)
  • Migrated from cloud.steampipe.io to pipes.turbot.com. (#3724)
  • Removed support for plugins which do not support multiple connections (i.e. using SDK < v4.0.0).
  • Deprecated terminal options.

Added rate limiter support for 115 plugins

plugin

All 115 Turbot Steampipe plugins have been updated to use steampipe-plugin-sdk v5.6.1, which adds support for rate and concurrency limiters.

Limiters provide a simple, flexible interface to implement client-site rate limiting and concurrency thresholds at compile time or run time. You can use limiters to:

  • Smooth the request rate from Steampipe to reduce load on the remote API or service
  • Limit the number of parallel requests to reduce contention for client and network resources
  • Avoid hitting server limits and throttling

For more information on getting started, please see Concurrency and Rate Limiting.

Kubernetes plugin v0.24.0 - Deprecated source_type config argument (replaced by source_types)

plugin

Deprecated

  • The source_type config argument has been deprecated and will be removed in the next major version. Please use the source_types config argument instead. If both config arguments are set, source_types will take precedence. For backward compatibility, please see below for old and new value equivalents: (#167)
    • source_type = 'all': source_types = ["deployed", "helm", "manifest"]
    • source_type = 'deployed': source_types = ["deployed"]
    • source_type = 'helm': source_types = ["helm"]
    • source_type = 'manifest': source_types = ["manifest"]

What's new?

  • Added the source_types config argument, which allows specifying a combination of source types to load per connection. (#167)

Kubernetes Compliance mod v0.14 - Added 350+ new controls

mod

What's new?

  • Added 350+ new controls across all resource types to the all_controls benchmark. (#64)

Enhancements

  • Added path to default set of common_dimensions, so now any file paths will appear by default in the additional dimensions in control results. (#63)
  • Added iac category to mod definition.

Dependencies

  • Kubernetes plugin v0.23.0 or higher is now required.

Exec plugin v0.0.4 - Added stdout and stderr columns and fixed inconsistent local and remote results

plugin

Breaking changes

  • Removed the output column in the exec_command table. This column has been replaced by the stdout_output and stderr_output columns. (#13)

What's new?

  • Added stdout_output and stderr_output columns to the exec_command table. (#13)
  • Added stream column to the exec_command_line table. (#13)
  • Added plugin limiter exec_global with MaxConcurrency set to 15 in an effort to reduce abuse reports due to large number of concurrent remote connections. (#13)

Bug fixes

  • Results from the exec_command table should now be consistent when using local and remote connections. (#13)

Dependencies

Docker Compliance mod v0.1 - Added CIS v1.6.0 benchmark

mod

What's new?

  • Added CIS v1.6.0 benchmark (steampipe check docker_compliance.benchmark.cis_v160). (#4)

AWS plugin v0.119.0 - Improved plugin performance on Darwin OS and added configuration_settings column to aws_elastic_beanstalk_environment table

plugin

Enhancements

  • Updated the Makefile to build the netgo package only for Darwin systems. (#1918)
  • Added the configuration_settings column to aws_elastic_beanstalk_environment table. (#1916)

Bug fixes

  • Fixed the table aws_dynamodb_backup to return nil instead of an error when backup does not exist. (#1914)

Steampipe Plugin SDK v5.6.1 - GRPC endpoint to clear connection cache

sdk

What's new?

  • SetConnectionCacheOptions, a new GRPC endpoint to clear connection cache. (#678)

OCI plugin v0.31.0 - Added column last_successful_login_time to oci_identity_user table

plugin

Enhancements

  • Added the last_successful_login_time column to oci_identity_user table. (#547)

Azuread plugin v0.13.0 - Updated azuread_user and azuread_device tables

plugin

Enhancements

  • Added the department column to azuread_user table. (#132)

Bug fixes

  • Fixed the title column in azuread_device and azuread_user tables to correctly return data instead of null. (#134)

Steampipe Plugin SDK v5.6.0 - Add support for rate limiters

sdk

What's new?

  • Define rate and concurrency limits for plugin execution. (#623)
  • Diagnostics property added to _ctx column, containing information on hydrate calls and rate limiting (enabled by setting env var STEAMPIPE_DIAGNOSTIC_LEVEL=all)
  • Support for JSONB operators in List hydrate functions. (#594)
  • Type property added to ConnectionConfig protobuf definition to determine if a connection is an aggregator. (#590)
  • When plugin startup fails, write a specially formatted string to stdout so plugin manager can parse the output and display a useful message. (#619)
  • Support for multi-line log entries. (#612)
  • Added Equals function for QualValue. (#646)

Kubernetes plugin v0.23.0 - Added kubernetes_pod_template table

plugin

Kubernetes Compliance mod v0.13 - Added 112 new controls

mod

Enhancements

  • Added 112 new controls to the All Controls benchmark for the following services: (#59)
    • CronJob
    • DaemonSet
    • Deployment
    • Job
    • Pod
    • ReplicaSet
    • ReplicationController
    • StatefulSet

Jira plugin v0.11.0 - Added support for on-premise Jira instances

plugin

What's new?

  • Added support for querying on-premise Jira instances. This can be done by setting the personal_access_token config argument in the jira.spc file. (#86) (Thanks @juandspy for the contribution!)

GitHub plugin v0.34.1 - Fixed caching for repository tables

plugin

Bug fixes

  • Empty values will no longer be cached incorrectly for the github_my_repository, github_repository, and github_search_repository tables. (#340)
  • Fixed github_team_repository table to include support for dynamic GraphQL queries. (#339)

GitHub plugin v0.34.0 - Optimized GraphQL queries for repository tables

plugin

What's new

  • Update github_my_repository, github_repository, and github_search_repository tables to only include requested columns in GraphQL request. This should result in faster queries and large scale queries completing more consistently. (#338)

Dependencies

  • Recompiled plugin with Go 1.21. (#338)

GitHub plugin v0.33.1 - Fixes for github_search_repository table

plugin

Bug fixes

  • Fixed github_search_repository table queries failing when selecting the has_downloads, has_pages, hooks, network_count, subscribers_count, or topics columns. (#337)

Terraform plugin v0.8.1 - Improved handling of null values in arguments

plugin

Bug fixes

  • Fixed the invalid memory address or nil pointer dereference errors when querying Terraform configuration or plan or state files that included null valued arguments. (#56)

Kubernetes Compliance mod v0.12 - Added 90 new controls

mod

Enhancements

  • Added 90 new controls to the All Controls benchmark for the following services: (#56)
    • CronJob
    • DaemonSet
    • Deployment
    • Job
    • Pod
    • ReplicaSet
    • ReplicationController
    • StatefulSet

Bug fixes

  • Fixed the role_with_wildcards_used control to correctly return data instead of an error. (#54)

Docker plugin v0.9.0 - Fixes for handling missing Dockerfile and Compose files

plugin

Bug fixes

  • Fixed the plugin to return nil instead of an error when the file/path specified in dockerfile_paths or docker_compose_file_paths config arguments does not exist. (#38)

AWS Compliance mod v0.80 - Added missing resource column in Glue queries

mod

Bug fixes

  • Added the missing resource column in the queries of glue_data_catalog_encryption_settings_metadata_encryption_enabled and glue_data_catalog_encryption_settings_password_encryption_enabled controls. (#715)

Guardrails plugin v0.12.0 - Added columns to guardrails_notification and guardrails_resource tables

plugin

Enhancements

  • Added the resource_object and object columns to guardrails_notification and guardrails_resource tables respectively. (#7)

CSV plugin v0.10.0 - Added missing S3 go-getter examples in docs

plugin

Bug fixes

  • Added the missing S3 go-getter examples in the docs/index.md file.

AWS plugin v0.118.1 - Fixed capacity_reservation_specification column data type in aws_ec2_instance table

plugin

Bug fixes

  • Fixed the data type of capacity_reservation_specification column of aws_ec2_instance table to be of JSON type instead of STRING. (#1903)

Terraform GCP Compliance mod v0.8 - Added new IAM control

mod

Enhancements

  • Added the iam_workload_identity_restricted control to the IAM benchmark. (#38)

Terraform AWS Compliance mod v0.19 - Updates for DMS and VPC controls

mod

Breaking changes

  • Removed the dms_s3_endpoint_encryption_in_transit_enabled control from the DMS benchmark. (#84)

Enhancements

  • Added the vpc_transfer_server_allows_only_secure_protocols control to the VPC benchmark. (#84)

Net plugin v0.10.0 - Deprecation and addition of columns to the net_certificate table

plugin

Deprecations

  • Deprecated domain column in net_certificate table, which has been replaced by the address column. Please note that the address column requires a port, e.g., github.com:443. This column will be removed in a future version. (#50)

What's new?

  • Added address column to the net_certificate table to allow specifying a port with the domain name. (#50)

Bitbucket plugin v0.6.1 - Added environment usage information to docs

plugin

Bug fixes

  • Updated the bitbucket.spc and index.md files to include details of BITBUCKET_USERNAME, BITBUCKET_PASSWORD, and BITBUCKET_API_BASE_URL environment variables. (#77)
 
Get cloud
work done.