release-4.8.8

CloudDefenseAI · May 29, 2024 · 3ce00aa · 3ce00aa
1 parent 8ac03b9
commit 3ce00aa
Show file tree

Hide file tree

Showing 6 changed files with 33 additions and 15 deletions.
diff --git a/charts/cdefense/Chart.yaml b/charts/cdefense/Chart.yaml
@@ -13,9 +13,9 @@ type: application
 # This is the chart version. This version number should be incremented each time you make changes
 # to the chart and its templates, including the app version.
 # Versions are expected to follow Semantic Versioning (https://semver.org/)
-version: 4.8.7
+version: 4.8.8
 # This is the version number of the application being deployed. This version number should be
 # incremented each time you make changes to the application. Versions are not expected to
 # follow Semantic Versioning. They should reflect the version the application is using.
 # It is recommended to use it with quotes.
-appVersion: "4.8.7"
+appVersion: "4.8.8"
diff --git a/charts/cdefense/templates/api/config.yaml b/charts/cdefense/templates/api/config.yaml
@@ -26,4 +26,6 @@ data:
   AWS_SCAN_S3_BUCKET: {{ .Values.api.logs.bucket }}
   VULNERABILITY_SCRAPER_SERVICE_HOST: {{ .Values.api.vuln.host}}
   MAX_SCAN_PER_USER: "10"
-  ONLINE_SCAN_POOL_SIZE: "20"
+  ONLINE_SCAN_POOL_SIZE: "20"
+  CDEFENSE_BACKEND_URL: "http://newapi"
+  CLOUDDEFENSE_NEWAPI_BASE_URL: https://{{ .Values.hostname }}/
diff --git a/charts/cdefense/templates/api/deployment.yaml b/charts/cdefense/templates/api/deployment.yaml
@@ -278,6 +278,11 @@ spec:
             configMapKeyRef:
               name: scan-server-config
               key: ONLINE_SCAN_POOL_SIZE
+        - name: CDEFENSE_BACKEND_URL
+          valueFrom:
+            configMapKeyRef:
+              name: scan-server-config
+              key: CDEFENSE_BACKEND_URL
         ports:
         - containerPort: 8080
         livenessProbe:

diff --git a/charts/cdefense/templates/newapi/deployment.yaml b/charts/cdefense/templates/newapi/deployment.yaml
@@ -60,6 +60,11 @@ spec:
             configMapKeyRef:
                 name: cdefense-config
                 key: OUTSIDE
+        - name: CLOUDDEFENSE_BASE_URL
+          valueFrom:
+            configMapKeyRef:
+                name: scan-server-config
+                key: CLOUDDEFENSE_NEWAPI_BASE_URL
         ports:
         - containerPort: 8080
         livenessProbe:

diff --git a/charts/cdefense/values.yaml b/charts/cdefense/values.yaml
@@ -1,4 +1,4 @@
-version: "release-4.8.7"
+version: "release-4.8.8"
 domain: clouddefenseai.com
 hostname: cdefense.clouddefenseai.com
 
@@ -105,7 +105,7 @@ api:
   nodeSelector: cdefense
   tolerations: []
   image: cdefense/scan-api
-  version: "4.8.7.5"
+  version: "release-4.8.8"
   service:
     type: NodePort
     ports:
@@ -200,7 +200,7 @@ web:
   tolerations: []
   replicas: 1
   image: cdefense/webconsole
-  version: "release-4.8.7"
+  version: "release-4.8.8"
   service:
     type: NodePort
     ports:

diff --git a/release.md b/release.md
@@ -1,13 +1,19 @@
-Release Date : 04.05.2024
-Release Notes : 4.8.7
+Release Date : 29.05.2024
+Release Notes : 4.8.8
 
 New feature list:
-1) Team admin to have access to delete applications: We have now provided access to team admin to delete applications.
-2) Access to delete an excluded path for Team Admin: We have now provided access to team admin to delete an excluded path.
-3) Added email notification update to show which branch was scanned: Added scanned branch information under scan email notification.
+1) Delta Scan:
+2) Application team assignment: We have now provided application team assignment mechanism based on team pseudonym.
+3) Automatic Jira ticket creation: We have provided automatic Jira ticket creation for the new detected vulnerabilities, configurable to enable/disable at severities level.
+4) Recommendation/Solution under vulnerability report: We have provided recommendations under the CTO report.
+5) Multi select False Positive and Allowed list: We have added ability to select multiple vulnerabilities to mark as false positive and add to allowed list.
+6) DevSecOps configure with OKTA: We have provided SSO integration with OKTA. 
+7) Jira ticket having alert back to the vulnerability and show latest status: We have added a link back under the Jira ticket to have link back to the vulnerability for which it was created.
+8) Show "Age" of a vulnerability: We have added age detail, day wise to show the age of a vulnerability when it was first detected under CTO report.
+9) User to be able to request to add directories for exclusion: Added new interface that allows admins to manage your teammate's requests for excluding file-paths.
 
 Improvements:
-1) Fixed allowed list in branches: We have made the allowed list to apply to all branches once it is marked for one.
-2) Fixed branch view: Fixed the branch view to show the Protected branches correctly.
-3) Fixed new vulnerabilities identified the next day: We have fixed the new vulnerabilities identified in the subsequent scan. The new vulnerabilities get highlighted with a "New" label.
-4) Merged SAST and DAST/API rules tabs on Global Rules Management page into one.
+1) Application Page Refactor: We have refactored our Application page, adding branches and pull requests view on the expansion of the application from list. By clicking on the link icon next to the application name, users can navigate directly to the specific source. Additionally, users can now filter to view only branches or pull requests by using the buttons located below the application name.
+2) Fixed GitHub group name not coming for the repo name.
+3) Scan steps handling asynchronously, removing the bottle-neck for running multiple scans concurrently.
+4) Fixed list of UI issues.