OpsMx
OpsMx
OpsMx
  • Home
  • Overview
    • OpsMx Intelligent Software Delivery (ISD) Platform - Spinnaker
      • Overview
      • Orchestration Module - OpsMx Enterprise for Spinnaker (OES)
        • OES Features
          • Automated Workflows
          • Multi-cloud Deployments
          • Safe-Deployment strategies
          • Scalable & Extensible
        • OES Concepts
          • Application Management
          • Application Deployment
      • Data and Intelligence Module - Autopilot
        • Overview
        • Observability
        • Audit and Traceability
        • Continuous Compliance - Policy
          • Policy - Overview
  • Operator Manual
    • Installation and Configuration
      • Quick Installation
        • ISD v4.0
        • ISD v4.0.1
        • ISD v4.0.2
        • ISD v4.0.3
        • ISD v4.0.4
      • Standard Installation
        • ISD v4.0
          • GitOps Based Installation
        • ISD v4.0.1
          • GitOps Based Installation
        • ISD v4.0.2
          • GitOps Based Installation
        • ISD v4.0.3
          • GitOps Based Installation
        • ISD v4.0.4
          • GitOps Based Installation
        • ISD v4.0.4.1
          • GitOps Based Installation
          • Instructions to Update the Parameters in value.yaml
        • ISD v4.0.4.2
          • GitOps Based Installation
          • Enabling Pipeline Insights and Stage Insights in ISD
        • ISD v4.0.4.3
          • GitOps Based Installation
          • Enabling Pipeline Insights and Stage Insights in ISD
          • Instructions to Update the Parameters in value.yaml
        • ISD v2024.06.00
          • GitOps Based Installation
        • ISD v2024.12.00
          • GitOps Based Installation
        • ISD v2025.03.00
          • Enabling Pipeline Insights or Deployment Insights or Stage Insights in ISD
          • GitOps Based Installation
      • Environment setup for OpsMx ISD
      • ISD On-Prem POV Infrastructure requirements
      • ISD On-Prem Production Infrastructure requirements
      • Stormdriver Installation
    • Access Management
      • User Role
      • Feature Visibility
    • SlackOps Interactive Notification
  • User Guide
    • Dashboard
      • Application Dashboard
      • Application Service View
    • Manage Application
      • Create an Application
      • Configure an Application
      • Delete an Application
    • Manage Pipelines
      • Create a Pipeline
      • Add Stage
      • Add Trigger
      • Edit Pipeline
      • Run Pipeline
      • Rename Pipeline
      • Delete Pipeline
      • Disable Pipeline
      • Lock Pipeline
      • View and Restore Pipeline
      • Pipeline level RBAC
      • Add Intelligent Gates to the Pipeline
        • Approval Gate
        • Verification Gate
        • Test Verification Gate
        • Policy Gate
      • Execute pipelines (Run deployments)
        • Rolling Restart for EKS manifest
        • Deployment to Kubernetes namespace with Manifest file
        • Deployment to Kubernetes namespace with Git based Manifest
        • Manual Approval before deployment
        • Blue/Green deployment using Manifest
        • Helm based deployment to Kubernetes namespace
    • Approvals
    • Policy Evaluation
    • Verification History
    • Infrastructure
      • Cluster
    • Integrations
      • Available Integrations
        • Artifact
        • CI
        • Governance
        • Monitoring Tools
        • Notifications
        • Policy
        • SAST/DAST
        • Pub/Sub Subscription Name
        • Verification
      • Used Integrations
        • Artifact
        • SAST / DAST
        • Monitoring Tools
    • Pipeline Templates
    • Cloud Targets
      • Create a new Cloud Target account
      • Cloud Target account operations
    • Environment Mapping
    • Custom Stages
      • ServiceNow
      • Pipeline Promotion
      • JIRA
      • Update PR
      • Custom notification
      • ServiceDesk
      • Ansible
      • Terraform
      • Ansible AWX
    • OpsMx Agent
      • Agent Overview
      • Agent Creation
      • Agent Service Configuration
      • Agent Installation
      • Delete an Agent
      • Agent and Controller Version Compatibility
    • Verification
    • CD Integration
    • Informed Approval
      • Overview
      • Artifactory
      • Bitbucket
      • Bitbucket Server
      • GITHUB
      • Bamboo
      • Jenkins
      • JIRA
      • ServiceNow
      • Aquawave
      • HCL AppScan
      • JFrog Xray
      • Prisma Cloud
      • SonarQube
      • Verification
    • Manage Policy
      • Create Policy
      • Edit Policy
      • Delete Policy
    • Continuous Verification
      • Overview
      • Templates
        • Log Template
        • Metric Template
      • Log Analysis
        • Events and Clusters
        • Cardinality consideration of Error Events
        • Interpreting the cluster graph
        • Interpreting the score
        • Perceived Risk and Sensitivity
        • Canary Threshold Calibration
        • Info-Cluster Scoring
      • Metric Analysis
      • Test Verification
      • Scoring Algorithms
        • Canary Scoring
        • Autonomous Scoring
        • Definite Scoring
        • Comprehensive Scoring
      • Enable integration into CI/CD pipelines
        • Integrate with CI/CD
        • Integrate with Jenkins
      • Continuous Verification Report Details
    • Unified logs report to track issues
    • Observability Plugin
    • Audit
      • Pipeline Execution
      • Pipeline Audit
      • Policy Audit
      • User Audit
    • Insights
      • Delivery Insights
      • Usage Insights
      • Pipeline Insights
      • User Insights
      • Stage Insights
      • Deployment Insights
  • Release Notes
    • OpsMx Enterprise for Spinnaker
      • OES Release Notes for Spinnaker Version v1.33.3
      • OES Release Notes for Spinnaker Version v1.30.1
    • ISD 4.0.x Release Notes
    • OES 3.9.X Release Notes
    • OES 3.8.X Release Notes
    • OES 3.7.X Release Notes
    • OES 3.6.X Release Notes
    • OES 3.5.X Release Notes
    • OES 3.4.X Release Notes
    • OES 3.3.X Release Notes
    • OES 3.2.X Release Notes
    • OES 3.1.X Release Notes
    • OES 3.0.X Release Notes
  • Additional Resources
    • Configuration Changes for 2025.03.00
      • Configuration changes for Opentelemetry with ISD
      • Configuration changes for Kafka Addition
      • Configuration changes for Secure Redis
      • Configuration changes to Disable Auto Pilot
      • Configuration changes for Custom Environment Mapping from Pipeline Name
    • Configuration Changes to Enable / Disable Insights Pages
    • Multi Spinnaker
    • API Reference
    • OpsMx Argo Sandbox Guide
    • Code Labs
      • Red Hat Certified Spinnaker Operator
      • How to Integrate Vault with Spinnaker
      • How to Create Terraform Custom Job in Spinnaker
      • How to Create Terraform Webhook Stage in Spinnaker
      • How to Create Ansible Custom Job in Spinnaker
      • How to set up Mutual TLS (mTLS) Authentication for Spinnaker Services
      • SSH
      • X.509
    • FAQs
    • Glossary
    • Previous releases
      • ISD 3.12
        • OpsMx Intelligent Software Delivery Platform
          • Overview
          • ISD Architecture
            • ISD Deployment Architecture
          • ISD Installation
            • ISD Installation Configuration
            • Helm Chart based installation
            • ISD Installation on OpenShift
            • ISD Installation Guide
            • Routing Web URLs to ISD services
            • ISD On-Prem POV Infrastructure requirements
            • ISD - Commonly used Commands
            • ISD Service Catalogue
            • Environment setup for OpsMx ISD
          • Life Cycle Management
          • OpsMx ISD Setup
            • Applications
              • Add Applications
              • Services and Pipelines
                • Overview
                • Add services and pipelines
                • Multiple services
              • Group Permissions
              • Edit Applications
              • Delete Application
            • Integrations
              • Available Integrations
            • Spinnaker Setup
            • Cloud Providers
              • Add new cloud provider account
              • Cloud provider account operations
            • OpsMx Agent
              • Agent Overview
              • Agent Installation
              • Agent Service Configuration
              • Agent Service Credentials
              • Agent Service Type
              • Delete an Agent
        • Orchestration Module - OpsMx Enterprise for Spinnaker (OES)
          • OES Features
            • Automated Workflows
            • Multi-cloud Deployments
            • Safe-Deployment strategies
            • Scalable & Extensible
          • OES Concepts
            • Application Management
            • Application Deployment
          • Feature Configuration
            • Application Management
              • Create an Application
              • Configure an Application
              • Delete an Application
            • Pipeline Management
              • Create a Pipeline
              • Add a Stage
              • Add a Trigger
              • Run a Pipeline
              • Pipeline with Parameter
              • Disable a Pipeline
              • Delete a pipeline
              • Edit a Pipeline
              • View and Restore Pipeline
              • Lock a Pipeline
              • Rename a Pipeline
            • Add Trigger Support
            • Configure Artifact Support
              • Google Cloud Storage
              • GitHub
              • GitHub Artifacts Spinnaker
              • GitLab
              • HTTP
            • Configure the Image Bakery
              • Overview
              • Google Compute Engine
            • Secure Spinnaker
              • Secure Spinnaker Installation
              • Authentication
                • Overview
                • SSL
                • Methods
                  • OAuth 2.0
                  • SAML
                  • LDAP
              • Authorization
                • Overview
                • User Role Providers
                  • Google Group
                  • GitHub Teams
                  • LDAP
                  • SAML
                • Service Account
            • Add CI System
              • Overview and Compatible List of CI Systems by Spinnaker
              • Steps to Configure CI Systems
                • Google Cloud Build
                • Jenkins
                • Travis CI
                • Wercker
            • Enable Monitoring
              • Steps to Setup Supported Monitoring Tools
                • Promethues and Grafana
                • Promethues and Kubernetes
            • List of Custom Stages
              • ServiceNow
              • Pipeline Promotion
              • JIRA
              • Update PR
              • Custom notification
              • ServiceDesk
              • Ansible
              • Terraform
            • SlackOps Interactive Notification
            • How to Setup Replication for Minio Storage Service on Openshift
        • Data and Intelligence Module - Autopilot
          • Overview
          • Installing Autopilot
          • Observability
            • Overview
            • Application Dashboard
            • Application Service View
          • Audit and Traceability
            • Overview
            • Application Audit
              • Pipeline Execution
              • Pipeline
              • Policy Audit
          • Insights
            • Delivery Insights
            • Usage Insights
          • Informed Approval
            • Overview
            • Artifactory
            • Bitbucket
            • Bitbucket Server
            • GITHUB
            • Bamboo
            • Jenkins
            • JIRA
            • ServiceNow
            • Aqua Wave
            • HCL AppScan
            • JFrog Xray
            • Prisma Cloud
            • SonarQube
            • Autopilot
          • Continuous Security
            • Audit Trail
            • Access Management
          • Continuous Compliance - Policy
            • Policy Management - Overview
            • Static Policies
            • Runtime Policies
          • Continuous Verification
            • Overview
            • Analysis Setup
              • Templates
                • Log Template
                • Metric Template
            • Log Analysis
              • Events & Clusters
              • Cardinality consideration of Error Events
              • Interpreting the cluster graph
              • Interpreting the score
              • Perceived Risk and Sensitivity
              • Canary Threshold Calibration
              • Contextual Clustering
              • Info-Cluster Scoring
            • Metric Analysis
            • AppDynamics Verification
              • Using AppDynamics Provider for verification
            • Test Verification
              • Analyze Test runs
            • Scoring Algorithms
              • Canary Scoring
              • Autonomous Scoring
              • Definite Scoring
              • Comprehensive Scoring
            • Enable integration into CI/CD pipelines
              • Integrate with CI/CD
              • Integrate with Jenkins
            • Report Details
            • Supervised Learning
        • Quickstart Guide
          • Contents
          • Quick ISD Installation
            • ISD/Spinnaker (OES) 3.12 Quick Installation
            • Helm based Installation
          • Setup & Configure ISD product
            • ISD Installation Configuration
            • Routing Web URLs to ISD services
            • ISD On-Prem POV Infrastructure requirements
          • Manage Applications
            • Create an Application
            • Configure an Application
            • Delete an Application
          • Manage Pipelines
            • Create a Pipeline
            • Edit a Pipeline
            • Add Intelligent Gates to the Pipeline
              • Add Approval Gate
              • Add Verification Gate
              • Add Test Verification Gate
              • Add Policy Gate
            • Run deployments (Execute pipelines)
              • Deployment to Kubernetes namespace with Manifest file
              • Deployment to Kubernetes namespace with Git based Manifest
              • Manual Approval before deployment
              • Blue/Green deployment using Manifest
              • Helm based deployment to Kubernetes namespace
          • Configure Integrations
            • Add Integrations
            • Edit and Delete Integrations
          • Manage Deployment Accounts
            • Add Deployment Accounts
            • Edit Deployment Accounts
            • Delete Deployment Accounts
          • Manage Policy
            • Create Policy
            • Edit Policy
            • Delete Policy
          • Configure & Setup Spinnaker with ISD
          • Agent Configuration
            • Add a New Agent
            • Configure an Agent
            • Delete an Agent
        • Trial User Guide
          • User Guide
          • SaaS Trial Usage: Instruction Video
          • Copy of Trial User Guide
        • Codelabs
          • Red Hat Certified Spinnaker Operator
          • How to Integrate Vault with Spinnaker
          • How to Create Terraform Custom Job in Spinnaker
          • How to Create Terraform Webhook Stage in Spinnaker
          • How to Create Ansible Custom Job in Spinnaker
          • How to set up Mutual TLS (mTLS) Authentication for Spinnaker Services
          • SSH
          • X.509
        • API Reference
        • FAQs
        • Glossary
        • Release Notes
          • ISD 3.12.x Release Notes
          • ISD 3.11.x Release Notes
          • ISD 3.10.x Release Notes
          • OES 3.9.X Release Notes
          • OES 3.8.X Release Notes
          • OES 3.7.X Release Notes
          • OES 3.6.X Release Notes
          • OES 3.5.X Release Notes
          • OES 3.4.X Release Notes
          • OES 3.3.X Release Notes
          • OES 3.2.X Release Notes
          • OES 3.1.X Release Notes
          • OES 3.0.X Release Notes
        • Upgrade
          • Upgrade from 3.11.x to 3.12.x
          • Upgrade from 3.11.x to 3.11.2
          • Upgrade from 3.11.x to 3.11.1
          • Upgrade from 3.10.x to 3.11
          • Upgrade from 3.9.x to 3.10
          • Upgrade from 3.9.x to 3.9.5
          • Upgrading to OES 3.7
      • ISD 3.10
        • OpsMx Intelligent Software Delivery Platform
          • Overview
          • ISD Architecture
            • ISD Deployment Architecture
          • ISD Installation
            • ISD Installation Configuration
            • Helm Chart based installation - Detailed
            • ISD Installation on OpenShift
          • Life Cycle Management
          • OpsMx ISD Setup
            • Applications
              • Add Applications
              • Services and Pipelines
                • Overview
                • Add services and pipelines
                • Multiple services
              • Group Permissions
              • Edit Applications
              • Delete Application
            • Integrations
              • Available Integrations
            • Spinnaker Setup
            • Cloud Providers
              • Add new cloud provider account
              • Cloud provider account operations
            • OpsMx Agent
              • Agent Overview
              • Agent Installation
              • Agent Service Configuration
              • Agent Service Credentials
              • Agent Service Type
              • Deleting an Agent
        • Orchestration Module - OpsMx Enterprise for Spinnaker (OES)
          • Overview
            • Automated Workflows
            • Multi-cloud Deployments
            • Safe-Deployment strategies
            • Scalable & Extensible
          • Additional Feature Configuration
            • Configure Artifact Support
              • Overview
              • Google Cloud Storage
              • GitHub
              • GitHub Artifacts Spinnaker
              • GitLab
              • HTTP
            • Configure the Image Bakery
              • Overview
              • Google Compute Engine
            • Secure Spinnaker
              • Secure Spinnaker Installation
              • Authentication
                • Overview
                • SSL
                • Methods
                  • OAuth 2.0
                  • SAML
                  • LDAP
                  • X.509
              • Authorization
                • Overview
                • User Role Providers
                  • Google Group
                  • GitHub Teams
                  • LDAP
                  • SAML
                • Service Account
            • Setup Triggers
              • Google Cloud Pub/Sub
              • GitHub WebHook
            • Add CI System
              • Overview and Compatible List of CI Systems by Spinnaker
              • Steps to Configure CI Systems
                • Google Cloud Build
                • Jenkins
                • Travis CI
                • Wercker
            • Enable Monitoring
              • Overview
              • Steps to Setup Supported Monitoring Tools
                • Datadog
                • Promethues and Grafana
                • Promethues and Kubernetes
                • Stackdriver
            • Steps to Setup Canary Support
            • Additional Features Setup
              • Productionize Spinnaker
                • Overview
                • Configure Caching
                  • Configure Scaling
                    • Steps to Scale Orca
                    • Steps to Scale Clouddriver
                  • Configure Persistence
                    • Steps to Setup Set up Orca to use SQL
                  • Steps to Externalize Redis
                  • Steps to Configure Spinnaker’s Usage for Redis
              • Configure Notifications
                • Email
                • HipChat
                • Slack
                • SMS via Twilio
              • Configure User Data(Metadata)
            • Configure Script Stage
            • How to Setup Replication for Minio Storage Service on Openshift
        • Data and Intelligence Module - Autopilot
          • Overview
          • Installing Autopilot
          • Observability
            • Overview
            • Application Dashboard
            • Application Service View
          • Audit and Traceability
            • Overview
            • Application Audit
              • Pipeline Execution
              • Pipeline Changes
            • Policy Audit
          • Insights
            • Overview
            • Delivery Insights
            • Usage Insights
          • Informed Approval
            • Overview
            • JIRA
            • GIT
            • JENKINS
            • AUTOPILOT
            • SONARQUBE
          • Continuous Security
            • Overview
            • Security
            • Access Management
          • Continuous Compliance - Policy
            • Policy Management - Overview
            • Static Policies
            • Runtime Policies
          • Continuous Verification
            • Overview
            • Analysis Setup
              • Templates
                • Log Template
                • Metric Template
            • Log Analysis
              • Events & Clusters
              • Cardinality consideration of Error Events
              • Interpreting the cluster graph
              • Interpreting the score
              • Perceived Risk and Sensitivity
              • Canary Threshold Calibration
              • Contextual Clustering
              • Info-Cluster Scoring
            • Metric Analysis
            • Test Verification
              • Analyze Test runs
            • Scoring Algorithms
              • Canary Scoring
              • Definite Scoring
              • Comprehensive Scoring
              • Autonomous Scoring
            • Enable integration into CI/CD pipelines
              • Integrate with CI/CD
              • Integrate with Jenkins
              • Integrate with Spinnaker (ACA and Canary)
            • Report Details
            • Supervised Learning
      • Spinnaker
        • Spinnaker Concepts
        • Spinnaker Architecture
        • Spinnaker Installation
        • Spinnaker Application
        • Spinnaker Pipeline
        • Cloud & Storage Providers
        • Continuous Integration Providers
        • Trigger Support
        • Authentication and Authorization
        • Caching Agents
        • Configure Caching Agents
        • Configure Slack notifications
        • Integrate Jira with Spinnaker
        • Continuous Deployment to Kubernetes using GitHub triggered Spinnaker pipelines
        • Configure GitHub OAuth
        • Add CI System
          • Overview and Compatible List of CI Systems by Spinnaker
          • Steps to Configure CI Systems
            • Google Cloud Build
            • Jenkins
            • Travis CI
            • Wercker
    • Spinnaker Reference
      • Spinnaker Concepts
      • Spinnaker Architecture
      • Spinnaker Installation
        • Halyard Installation
        • Configure cloud provider
        • Choose your Environment
          • Local Git installation
        • Configure Storage Service
        • Deploy Spinnaker
      • Spinnaker Application
      • Spinnaker Pipeline
      • Cloud & Storage Providers
      • Continuous Integration Providers
      • Trigger Support
      • Authentication and Authorization
      • Caching Agents
      • Configure Caching Agents
      • Configure Slack notifications
      • Integrate Jira with Spinnaker
      • Continuous Deployment to Kubernetes using GitHub triggered Spinnaker pipelines
      • Configure GitHub OAuth
    • Troubleshooting
      • Troubleshooting ISD GitOps Installation Issues
    • Rollback Instructions
      • Revert the GitHub Commit
    • Database
      • Periodic Backup and Recovery of ISD DB
      • Periodic Cleanup of Historic Data in ISD Database
    • Upgrade
      • Upgrade to 2025.03.00
      • Upgrade to 2024.12.00
      • Upgrade to 2024.06.00
      • Upgrade 4.0.3.1 to 4.0.4.3
      • Upgrade from 4.0.4.1 to 4.0.4.2
      • Upgrade from 4.0.4 to 4.0.4.1
      • Upgrade from 4.0.3 to 4.0.4
      • Upgrade from 4.0.3 to 4.0.3.1
      • Upgrade from 4.0.2 to 4.0.3
      • Upgrade from 3.12.x to 4.0.3
        • Changes from 3.12 to 4.0.3 branch
      • Upgrade from 4.0.1 to 4.0.2
      • Upgrade from 3.12.x to 4.0.2
      • Upgrade from 3.12.x to 4.0
      • Upgrade from 3.11.x to 3.12.x
      • Upgrade from 3.11 to 3.11.x
      • Upgrade from 3.10.x to 3.11
      • Upgrade from 3.9.x to 3.10
      • Upgrade from 3.9.x to 3.9.5
      • Upgrading to OES 3.7
  • OpsMx Intelligent Software Delivery (ISD) Platform - Argo
    • Overview
    • Intelligent Software Delivery (ISD) for Argo
    • OpsMx Enterprise for Argo(OEA)
    • Getting Started
      • Platform Installation
      • Getting started with Automated Analysis
      • Automated Analysis User Guide
      • Trial Sandbox User Guide
    • Operator Manual
      • ISD-Argo Standard Installation
        • ISD-Argo Installation with Argo CD and Argo Rollouts
        • ISD-Argo Platform Standard Installation
        • Additional Argo Installation
      • Access Management
      • Configure Authentication Providers through ISD UI
      • Slack Interactive Notification
    • User Guide
      • Application Dashboard
      • Manage Application
        • Create Application
        • Edit Application
        • Sync Application
        • Deploy Application
        • Sync Application Status
        • History and Rollback
        • Refresh Application
        • Delete Application
      • Delivery Verification
        • OpsMx Provider Configmap
        • Templates
          • Create Log Template in ISD UI
          • Create Metric Template in ISD UI
          • Create Log Template in Git
          • Create Metric Template in Git
        • Analysis Template
        • Deployments
        • Analysis History
        • Log Analysis
        • Metric Analysis
        • Interval Analysis
        • Scoring Algorithms
          • Canary Scoring
          • Autonomous Scoring
          • Definite Scoring
          • Comprehensive Scoring
        • Argo Rollouts analysis with ISD and NewRelic
        • Argo Rollouts analysis with ISD and Prometheus
        • Argo Rollouts analysis with ISD and Stackdriver
        • Argo Rollouts analysis with ISD and Elasticsearch
        • Deployments
      • Integrations
        • Available Integrations
      • Notification
      • Argo CD Integration
        • Argo CD Integration with ISD
        • Mapping of host URL with agent-grpc service
      • Insights
      • Audit
        • Deployments Audit
        • System Audit
      • Opsmx Agent
        • Agent Overview
        • Agent Creation
        • Agent Configuration and Installation
        • Edit and Delete Agent
    • Release Notes
      • ISD 4.1 - Release Notes (ISD for Argo)
    • Additional Resources
      • Troubleshooting
        • Troubleshooting ISD Argo Installation Issues
        • Troubleshooting connectivity issues between Argo CD and ISD
      • Upgrade
        • Upgrade ISD-Argo with Argo CD and Argo Rollouts from v4.1.2 to v4.1.3
        • Upgrade ISD-Argo Platform from v4.1.2 to v4.1.3
        • Upgrade ISD-Argo with Argo CD and Argo Rollouts from v4.1.1 to v4.1.2
        • Upgrade ISD-Argo Platform from v4.1.1 to v4.1.2
        • Upgrade Additional Argo from v4.1.1 to v4.1.2
      • Configuration Changes
        • Configuration Changes for 2025.04.00
        • Configuration Changes for 2025.01.00
        • Configuration Changes for 2024.08.00
          • Configuration for System Audit
          • Configuration for Notification
        • Configuration Changes for 4.1.9
        • Configuration Changes for 4.1.8
        • Steps to Generate Token for Agent/Controller v5.x
        • SAML 2 Configuration
        • Controller and Agent Changes for 4.1.7
      • Configuring Application Synchronization (Refresh) Duration
      • Environment setup for ISD-Argo
      • Create API token in Argo CD
      • Create new account for Argo CD with API key and RBAC permissions
      • ISD agent-grpc external IP
      • Previous releases
        • Install Instructions: ISD-Argo v4.1.2
          • ISD-Argo Installation with Argo CD and Argo Rollouts
          • ISD-Argo Platform Standard Installation
          • Additional Argo Installation
        • ISD-Argo v4.1.1
          • Overview
          • Intelligent Software Delivery (ISD) for Argo
          • OpsMx Enterprise for Argo(OEA)
          • Getting Started
            • ISD-Argo Quick Installation
          • Operator Manual
            • Installation and Configuration
              • Installation via curl command
                • ISD-Argo Full Installation via curl command
                • Autopilot Installation via curl command
                • Worker OEA Installation via curl command
              • ISD-Argo Standard Installation
                • ISD-Argo Full Installation
                • ISD-Argo Rollouts Installation
                • Autopilot Installation
                • Worker OEA Installation
              • ISD-Argo On-Prem POV Infrastructure Requirements
              • ISD-Argo On-Prem Production Infrastructure Requirements
              • Environment setup for ISD-Argo
              • Mapping of host URL with agent-grpc service
            • Access Management
            • Slack Interactive Notification
          • User Guide
            • Application Dashboard
            • Manage Application
              • Create Application
              • Edit Application
              • Sync Application
              • Deploy Application
              • Sync Application Status
              • History and Rollback
              • Refresh Application
              • Delete Application
            • Delivery Verification
              • OpsMx Provider Configmap
              • Templates
                • Create Log Template in ISD UI
                • Create Metric Template in ISD UI
                • Create Log Template in Git
                • Create Metric Template in Git
              • Analysis Template
              • Analysis History
              • Log Analysis
              • Metric Analysis
              • Interval Analysis
              • Scoring Algorithms
                • Canary Scoring
                • Autonomous Scoring
                • Definite Scoring
                • Comprehensive Scoring
            • Integrations
              • Available Integrations
            • CD Integration
            • Insights
            • Deployments Audit
            • Opsmx Agent
              • Agent Overview
              • Agent Creation
              • Agent Configuration and Installation
              • Edit and Delete Agent
      • Best Practices for setting up Verification
      • Worker OEA Installation
  • OpsMx Delivery Shield Platform
    • Delivery Shield Overview
    • Getting Started
      • Delivery Shield Feature Overview
      • Installing Delivery Shield
      • Integration with Kubernetes Cluster
        • Integrating Kube Detector
        • Enable Deployment Firewall in Target Clusters
      • Integrating Registry in Delivery Shield
        • ACR
        • ECR
        • GCR
      • Integrating CI and CD tools in Delivery Shield
        • GitHub
        • GitLab
        • Bitbucket
        • Jenkins
        • ArgoCD
        • Spinnaker
        • Quay
        • Docker
        • Google Artifact Registry
        • JFrog Artifactory
        • Sysdig
      • Integrating Security Scanning tools in Delivery Shield
        • Grype
        • VirusTotal
        • Kubescape
        • Snyk
        • Trivy
        • Semgrep
        • Codacy
        • Sonarqube
        • ZAP
        • JFrog Xray
      • Integrating Cloud Service Providers in Delivery Shield
        • AWS
        • ScouteSuite
      • Integrating Other tools in Delivery Shield
        • ChatGPT
        • Slack
        • JIRA
        • MobSF
        • TFsec
        • Custom Policy Source
      • Support Matrix
    • User Guide
      • View Security Posture
        • Organization Security Posture
        • Application Security Posture
          • View Version History
          • Context Graph
        • View Open Security Issues
        • View Current Deployments
        • View Deployment History
      • Manage Policies
        • Global Policies
        • Application Policies
      • Vulnerability Management
      • License Scan
      • Artifact Security
        • Deployed Artifacts
        • Generated Artifacts
        • Plugin Artifacts
        • Mobile Artifacts
      • Global Risk Management
        • OSS Risk
        • Cloud Security
          • Compute
          • Network
          • Security
      • Adhoc Scan
      • Managing Audit
        • Exceptions
      • Deployment Firewall
      • Delivery Bill of Materials (DBOM)
      • Software Bill of Materials (SBOM)
      • Compare Environments using Smart Diff
      • Manage Teams and Access
      • Managing Clusters
      • Compliance Automation
        • NIST 800-53
        • FedRAMP
        • OpenSSF ScoreCard
        • OWASP Top 10 CI CD Security Risks
        • NSA CISA Top 10
        • MITRE-ATT&CK
        • CIS Benchmark Kubernetes
      • AI Powered Features
        • Rules Genie
        • Security Issues Genie
    • Release Notes
    • Additional Resources
      • Whitelisting API Calls for Self-Hosted Delivery Shield
Powered by GitBook
On this page
  • Introduction
  • Version 2025.02.0
  • Features:
  • Enhancements:
  • Fixed Issues:
  • Version 2025.01.0
  • Features:
  • Enhancements:
  • Version 2024.11.0
  • Features:
  • Enhancements:
  • Fixed Issues:
  • Version 2024.10.0
  • Features:
  • Enhancements:
  • Fixed Issues:
  • Version 2024.9.0
  • Features:
  • Enhancements:
  • Version 2024.8.0
  • Features:
  • Enhancements:
  • Version 2024.7.0
  • Features:
  • Enhancements:
  • Version 2024.6.0
  • Features:
  • Enhancements:
  • Version 2024.5.0
  • Features:
  • Enhancements:
  • Bug Fixes
  • Version 2024.4.0
  • Features:
  • Enhancements:
  • Bug Fixes
  • Version 2024.3.0
  • Features:
  • Enhancements:
  • Version 2024.2.0
  • Features
  • Enhancements
  • Version 2023.11.0
  • Features
  • Enhancements
  • Version 2023.10.0
  • Features
  • Enhancements
  • Version 2023.9.0
  • Features
  • Enhancements
  • Version 2023.8.0
  • Features

Was this helpful?

  1. OpsMx Delivery Shield Platform

Release Notes

Introduction

Software supply chain attacks are on the rise and have become a critical concern for all organizations. The modern software delivery pipelines have become increasingly complex, and the threat landscape is continuously evolving. Therefore, a unified and proactive approach to security, risk management, and governance across the software delivery lifecycle is essential.

OpsMx Delivery Shield is a solution that focuses on monitoring, alerting, preventing, and resolving security threats and vulnerabilities across the software delivery lifecycle. It seamlessly integrates with your DevOps ecosystem to gather and evaluate information against a set of secure software delivery practices and frameworks. This ensures that insecure application versions do not get released. The solution also keeps track of all actions, people, and process metadata related to software development, thereby enabling enterprises to meet their compliance requirements with ease.

Version 2025.02.0

Features:

  • SysDig Integration - SysDig is integrated in SSD, to identify security risks, including vulnerabilities, misconfigurations, insecure identities, and other critical risk factors, ensuring enhanced protection and safeguarding modern deployments.

  • Adhoc Scan - A new feature, Adhoc Scan, is introduced to run scans on source code and image repositories based on user configurations before deployment.

  • Insights Metrics - A new feature, Insights, is introduced to provide a comprehensive overview of SSD scan activities. This page displays key metrics, including:

    • Scan Activity Overview:

      • Active scans count

      • Completed scans count

      • Failed scans count

    • Source Code Repository Scans

      • Active repository scan count

      • Completed repository scan count

      • Failed repository scan count

    • Additional Insights

      • Number of newly discovered repositories

      • CI/Build events received count

Enhancements:

  • A download button is added to the Security Issues page to download the CSV and Json files.

  • Performance fixes are done in the Security Issue and Vulnerabilities pages to improve the response time of the APIs.

  • Improvements are made in the Helm Chart and Deployment Structures to increase scalability.

  • As part of CI event, SSD is enhanced to receive location of source code and filter Snyk results based on source code identifiers.

  • Improvements have been made to the Github actions workflow.

  • Vulnerabilities identified through CSPM policies can now be added to the exception list, preventing them from generating alerts.

Fixed Issues:

  • Resources are not being populated in the Global Risk Management page during CSPM scans.

  • Inconsistency in the vulnerability popup when accessed via Vulnerabilities page and from the Policy violation page.

Version 2025.01.0

Features:

  • JFrog Xray Integration - JFrog Xray is integrated in SSD to retrieve artifact scan data. JFrog Xray analyzes the artifacts uploaded to the JFrog Artifactory. Through this integration, SSD is able to fetch the SBOM (Software Bill of Materials) and scan results of the artifact from JFrog Xray and store the data in the Dgraph database.

Enhancements:

  • The context graph is enhanced to display the Network Map information for the selected service.

  • In the API-Powered Remediation option, CVE/CWE details are retrieved from the NVD database hosted in SSD and provided as contextual prompts to ChatGPT.

  • The Open Source and third party tools database is upgraded to latest.

  • The JIRA ticket resolution has been enhanced to be bi-directional. If the ticket is resolved and closed in the JIRA application then the ticket created in the alert is resolved and closed by default.

Version 2024.11.0

Features:

  • MobSF Integration for Static and Dynamic Scans - MobSF is now integrated with SSD, enabling static and dynamic security scans for mobile applications. This includes penetration testing, malware analysis, and privacy assessments.

  • TFsec Integration for Terraform Security - SSD now supports TFsec to scan and manage infrastructure and deployments using Terraform scripts, enhancing security compliance in Infrastructure as Code (IaC).

  • CI Data Collection Scanning Support in Jenkins Plugin - The Jenkins plugin now supports source code scanning by installing scanning tools as Command-Line Interfaces (CLIs) within the Tool-Chain container. This allows Go programs to execute security scans directly on the application's source code.

    Additionally, a Go-based CLI has been developed to seamlessly integrate scanning tools into the CI pipeline, improving automation and security coverage.

    Key Benefits:

    • Platform Independence: Compatible across different environments.

    • Optional SCM Tool Credentials: Removes the need for storing repository credentials in specific configurations.

    • Optimized Resource Utilization: Reduces the load on the Tool-Chain service, enhancing CI/CD efficiency.

    These enhancements strengthen security and improve the efficiency of source code scanning in Jenkins-based CI pipelines.

  • Multi-Account Support and RBAC for Integrators - SSD introduces Multi-Account Support and Role-Based Access Control (RBAC) for integrators, improving security and access management.

    Key Enhancements:

    • Restricted Account Access: Only authorized teams can access specific accounts, preventing unauthorized usage.

    • Controlled Integrator Visibility: Integrators are visible only within assigned accounts, ensuring a secure and streamlined user experience.Multi-Account Support and Role-Based Access Control (RBAC) for integrators is introduced in this release, ensuring enhanced security and access management.

  • ScoutSuite Integration for CSPM with Cloud Custodian - SSD now integrates ScoutSuite with Cloud Custodian to perform comprehensive Cloud Security Posture Management (CSPM). This enables security scanning of public cloud infrastructure, ensuring compliance and risk mitigation.

  • Helm Chart Scanning in SSD - SSD now supports Helm Chart pre-deployment security scanning. This feature detects vulnerabilities and can generate alerts or block insecure deployments using the Deployment Firewall, along with security tools like Trivy and Snyk.

Enhancements:

  • Deployment History Graphs are now displayed using D3 charts instead of FusionCharts, improving visualization and performance.

  • Added a new Vulnerability Enrichment grid to the Vulnerability page. This grid displays Exploitation, Automatable, and Technical Impact insights for vulnerabilities.

  • Jenkins plugin scan results are now displayed by default in SSD. Previously, users had to manually enable or disable this option.

Fixed Issues:

The following issues are fixed in this release:

  • "No Data to Validate" error in ZAP integrator when Username and Password fields were empty, in ZAP integrator.

  • Smart Search in the Artifact Security Page failed to load filtered results for multi-select values in the Artifact Security page.

  • Artifact count display issue on the Artifact Security Page. Previously, it incorrectly displayed zero.

  • Path traversal vulnerability in the DAST scan report.

Version 2024.10.0

Features:

  • Global Exception Creation Feature - A new feature has been introduced in the Alert Summary popup, enabling the creation of global exceptions. Users with admin permissions can now create global-level exceptions. Once created, these exceptions will be logged and displayed on the Audit page for tracking and review.

  • Enhanced CI/CD Workflows: Multi-Artifact Discovery Support - The Jenkins plugin for SSD now supports sending build and deployment events for multiple image artifacts and binary artifacts in a single job, expanding CI/CD workflow capabilities.

    Key Enhancements:

    • Multiple image artifact support.

    • Binary artifact support for non-image artifacts.

  • Expanded Registry Support: Scan Docker Images on GCR & ACR - This release adds support for:

    - Google Container Registry (GCR): Identify vulnerabilities in Docker images

    - Azure Container Registry (ACR): Detects security risks in container images.

  • Open Source Risk Management Analysis - A new feature is added that focuses on helping the customer evaluate the risk status of the various open-source components within their software projects. Detailed insights and assessments of the findings are displayed on the OSS Risk page for better visibility and management.

  • Jenkins Plugins Risk Assessment through the Enabled Plugins - A new feature is added to identify all plugins installed on a customer's Jenkins system and assess their risk levels based on detailed vulnerability profiles.

    Key Enhancements:

    • Actionable policies will be created based on the derived data.

    • The data will be incorporated into the build section of the DBOM for comprehensive risk representation.

Enhancements:

  • Optimised Policies Update Workflow page for improved performance and responsiveness.

Fixed Issues:

The following issues are fixed in this release:

  • Integration passwords and tokens are now properly encrypted when saved.

  • Role-Based Access Control (RBAC) now correctly handles team selection changes.

  • Smart search hierarchy is introduced in the ‘Vulnerability’ feature.

  • Inconsistencies in the data displayed across different views within the product.

  • Optimization of the performance of the Stage Graph API in the artifact page by replacing individual deployment queries for each artifact with a bulk query to retrieve stages for all artifacts simultaneously.

  • License data is not displayed in the SBOM popup; however, the licenses are visible in the downloaded SBOM file.

  • Context Graph links on the Demo Server are broken, impacting navigation.

Version 2024.9.0

Features:

  • OWASP ZAP DAST Tool Integration - Delivery Shield now supports OWASP ZAP DAST tool, thus enhancing the ability to assess the security posture of applications in their operational state by actively testing it for vulnerabilities. By evaluating applications in real time, the DAST tool provides security assurance by identifying potential vulnerabilities that might otherwise go unnoticed.

Enhancements:

  • Performance improvements have been implemented across various pages including Security Issues, Vulnerabilities and Artifact Security as listed below:

    • Alerts Graphs in Security Issue Page

    • Alerts Page Smart Search

    • Alerts Page Listing

    • Vulnerability Page Smart Search

    • Vulnerability Page Listing

    • Policies Update Workflow

    • Exceptions add-on to alerts

    • Exceptions add-on to vulnerabilities

    • Most Frequent Security Issues

    • Artifact Security Page Listing

    • Trivy Image scans

Version 2024.8.0

Features:

  • Application Versions Tracking - Delivery Shield now allows tracking of application versions. Users can tag artifacts with application and version information, enabling application stack visibility in the dashboard. It also supports continuous scanning and uniform artifact presentation.

  • Delta Cloning - Delivery Shield enables efficient processing of large monorepos by cloning only the changed files thus improving the performance and reducing operational issues.

  • Support for K8s and Non-K8s Deployments on the same instance - Delivery Shield now supports managing both Kubernetes and non-Kubernetes deployments within a single SSD instance. This feature simplifies deployment management and enhances flexibility.

  • Importing CVE Suppression List - Delivery Shield enables users to import lists of suppressed CVEs or non-fixable CVEs and also supports CSV file uploads and UI filtering.

  • Jira Plugin Automation - To track the high-priority security issues found through Delivery Shield, Jira tickets can be created. With this release, one can automate the Jira creation relieving the user from manual task. With this automation with Jira, the security incident management is streamlined.

  • Exception Workflows and Approval Process - Delivery Shield has now introduced a workflow for processing security exceptions. The approval processes are enabled and the security incident management is enhanced.

Enhancements:

  • CVE Prioritization - The CVE prioritization column is enhanced to display the correct severity of the vulnerabilities.

  • Vulnerability Prioritization Graph - The Y-axis in the Vulnerability Prioritization graph is changed to Priority instead of EPSS to improve the visualization of the priority information.

  • OSV and NVD - The Vulnerability Report is enhanced to cover data from multiple vulnerability databases such as Integrated Open Source Vulnerability (OSV), National Vulnerability Database (NVD) and GHSA (GitHub Security Advisory) to improve the performance of the generated reports.

  • Alert Popup - The alert popup is enhanced to include relevant metadata to make it more actionable.

  • Jenkins Plugin - Token-based authentication is implemented in Jenkins plugin to enhance security for API access.

Version 2024.7.0

Features:

  • Bitbucket Pipelines Integration - Delivery Shield now supports Bitbucket Pipelines as a CI tool. It can receive build events from Bitbucket Pipelines, performing security scans on both the build pipeline and the artifacts produced.

  • Codacy Integration - Delivery Shield integrates with Codacy to gather source code scan results. These results are evaluated against secure software delivery policies and are factored into the application’s overall security score.

Enhancements:

  • Jenkins Plugin Enhancements - The Delivery Shield Jenkins plugin now supports Jenkins jobs that produce JAR and WAR files. It can detect, scan, and continuously monitor these files built by Jenkins.

  • License and Vulnerability data in SBOM - The Software Bill of Materials (SBOM) generated by Delivery Shield now includes license and vulnerability data for each component, enhancing transparency and security insights.

  • POST API Mode for SonarQube - SonarQube scan results can now be posted to Delivery Shield via an API, in addition to the previous fetch-based mechanism for greater efficiency.

Version 2024.6.0

Features:

  • License Scanning - Delivery Shield now scans your code repositories and build artifacts (including images and packages) to detect third-party libraries and their associated licenses. It identifies the use of restricted license categories and flags them as security issues.

  • Sneak SAST Integration - Delivery Shield integrates with Snyk SAST to collect source code scan results. These results are evaluated against secure software delivery policies and are factored into the overall application security score.

  • Virus Total Integration - Delivery Shield detects URLs in your codebase and build pipelines, using VirusTotal to flag any malicious URLs.

  • ECR Integration - Delivery Shield now supports Amazon ECR as an artifact storage solution. It can fetch artifacts from ECR and perform security scans on them.

Enhancements:

  • AI-powered Remediation Enhancements - The AI-powered remediation now includes the ability to generate recommendations for upgrading insecure dependencies and suggest alternatives to vulnerable libraries.

  • Scanning Status - A new status, Scanning is introduced across multiple pages to clearly indicate when a security scan is in progress.

  • DBOM enhancements - The Delivery Bill of Materials (DBOM) is streamlined by reducing the number of subcategories under each stage, making it easier to navigate and manage.

Version 2024.5.0

Features:

  • Vulnerability Prioritisation - Delivery Shield now can prioritize vulnerabilities using an algorithm that takes into account parameters such as exploitability, severity, and KEV Database.

  • Deduplication - Delivery Shield now can deduplicate vulnerabilities and security issues, allowing security teams to better focus on resolving these issues. In the alert detail popup, a new section called "Show Impacted Components" has been added. This section enables users to view the complete list of Accounts, Applications, Artifacts, and Services affected by a vulnerability.

  • Artifact Security - The new artifact security feature displays a list of all artifacts auto-discovered by Delivery Shield, along with their security status. It also allows viewing the lifecycle of these artifacts and downloading security scan results related to them.

  • JIRA Integration - User can create a JIRA ticket directly from the alert details screen, which will include all relevant information for developers to track and resolve the issue.

  • GitHub Actions Integration - Delivery Shield now supports GitHub Actions as a CI tool. It can receive build events from GitHub Actions to run security analysis of the build pipeline as well as the produced images.

  • Cluster Management - The new Clusters page enables users to connect their Kubernetes clusters to Delivery Shield, allowing Delivery Shield to continually monitor the security posture of the connected clusters and send alerts when necessary.

Enhancements:

  • The App level policies are now listed based on the tools used in that application context. Users have to deal with only the policies required by the selected application.

Bug Fixes

  • The policy page performance issues have been resolved.

Version 2024.4.0

Features:

  • Vulnerability scanning for Debian packages - Delivery Shield can now detect vulnerabilities in Debian packages.

  • Support for the Spinnaker Bake Stage - Delivery Shield can process events emitted by the Spinnaker image bake stage to analyze the composition of a machine image.

  • Support for Machine Image Deployments - Delivery Shield now detects and performs scans on machine image-based deployments executed via Spinnaker, providing support for machine image deployments.

  • Agentless Kubernetes Scans - kube-detector is the Delivery Shield component used to scan Kubernetes clusters. It can now perform scans without running an agent in the cluster.

  • BitBucket Integration - The new Bitbucket integration enables Delivery Shield to retrieve metadata about the source code repository and perform security scans to produce reports such as the OpenSSF Scorecard.

Enhancements:

  • Support for running multiple kube-detector instances along with Delivery Shield is now available, allowing them to point to different Kubernetes clusters.

  • NamespacesToAllow and NamespacesToIgnore fields in the kube-detector configuration allow users to specify the set of namespaces to watch and ignore, respectively.

Bug Fixes

  • Minor bug fixes.

Version 2024.3.0

Features:

  • Organization Structure and RBAC - A new three-tier organizational structure is introduced in this release that enables customers to manage their applications across various business units and teams using a single Delivery Shield instance. Additionally, it offers an enhanced Role-Based Access Control system for better control over the user permissions.

  • Kubernetes Discovery - Deploy Shield detects changes in a Kubernetes cluster and enforces security policies through agent-based resource discovery.

Enhancements:

  • UX enhancements.

  • Minor bug fixes.

Version 2024.2.0

Features

  • Non-Blocking mode - Delivery Shield can be used in a non-blocking mode by disabling the deployment firewall feature, that is best suited for lower environments like Development and QA. This mode doesn't block deployments but evaluates policies and generates security alerts.

  • New integrations

    • Integration with Gitlab to collect source code metadata, Git security posture checks, and generate an OpenSSF Scorecard.

    • Integration with Jfrog Artifactory to fetch images and run security scans.

    • Integration with Snyk to run Security scans and fetch reports.

  • Support for Non-Kubernetes deployments - It is now possible to conduct security scans on Amazon ECS deployments using Delivery Shield.

  • UI For managing Delivery Shield Integrations - A new page named Integrations is added to the Config menu. This page enables users to integrate and manage Delivery Shield with their preferred DevOps tools.

Enhancements

  • Enhanced Navigation Experience - The navigation structure is revamped and new menu items are added, to support additional use cases and personas.

Version 2023.11.0

Features

  • Policy as Code and GitOps - Users can transform security policies into code, store them in a Git repository, and periodically synchronize them with Delivery Shield.

  • Helm Charts Security - Delivery Shield has introduced support for Helm chart scanning. This feature enables the identification of misconfigurations and security issues within the Helm charts.

Enhancements

  • Improved workflow for Integrating Jenkins with Delivery Shield.

  • Users can now perform bulk actions on the Rules Configuration page by selecting multiple rules and modifying them simultaneously.

  • The Delivery Bill of Materials (DBOM) page has been improved with better labelling and grouping of information.

Version 2023.10.0

Features

  • Kubernetes Hardening Analysis

    • CIS Benchmark analysis for Kubernetes clusters - Delivery Shield automatically evaluates connected clusters for CIS Benchmark compliance using 200+ predefined deployment firewall rules. Kubernetes posture-related alerts and suggestions are available on the Manage Alerts Page.

    • Additionally, it allows for the assessment of your clusters according to the guidelines provided by NSA-CISA and MITRE ATT&CK.

  • Jenkins Integration - Delivery Shield now supports Jenkins as a build and deployment tool, gathering information to improve security posture through alerts and recommendations.

  • Deployment History Timeline - The application status page now displays cluster deployments as a timeline graph, providing an audit trail and historical view of changes to cluster security posture.

  • Vulnerability Report - The application status page now displays vulnerability reports for both the application and service.

Enhancements

  • Added support for user-defined tags for deployment firewall rules, allowing users to group rules based on the custom logic.

  • Expanded the functionality of the smart search feature to include the alerts and vulnerabilities report page.

  • Added the ability to distinguish between alerts on the current and the old versions of running applications.

Version 2023.9.0

Features

  • Deployment Firewall - The Kubernetes cluster can now automatically block insecure application versions from being deployed by running an admission control mechanism. This decision-making is powered by Delivery Shield's security analysis and data collection throughout the software delivery lifecycle.

  • New SAST Integrations - Delivery Shield can now mandate SAST scans during software development, analyze reports to provide suggestions, and update the application's risk status by connecting to SonarQube and Semgrep.

  • Smart Search - The ability to discover vulnerabilities, images, and other components across all applications allows for easier identification of newly found vulnerabilities within existing applications.

  • OpenSSF Scorecard Integration - Connected git repositories will receive an OpenSSF scorecard with security posture alerts and suggestions accessible on the Manage Alerts Page.

  • NIST and FedRAMP Compliance Automation - Delivery Shield now includes prebuilt policies for NIST 800-53 and FedRAMP compliance, with suggestions for fixing issues and achieving 100% compliance.

  • Rules Genie - A new AI assistant that creates custom deployment firewall rules based on business requirements.

  • Alerts Genie - A new AI assistant that helps understand security alerts and recommends solutions.

Enhancements

  • Application level Smart Diff and Application DBOM - Users can now perform Smart Diff at the application level and view the Delivery bill of materials for the entire application version.

  • Search and filtering options - In the Alerts Management and Rules Configuration pages, you can access additional search and filtering options.

Version 2023.8.0

Features

  • Ability to collect software delivery data from Git, Jenkins, Spinnaker, Kubernetes, and Aqua Trivy.

  • Supply chain dashboard - Helps you to view the organization-level security posture, applications and their risk status and security alerts.

  • Application status page - Displays the security status, active vulnerabilities, and alerts of the running services.

  • Alerts Management - Ability to track and resolve security alerts across environments with Delivery Shield suggestions.

  • SBOM - Generate software bill of materials for the deployed images.

  • DBOM - The Delivery Bill of Actions and Materials is a comprehensive report that offers complete visibility of the software development process, from coding to deployment. It keeps track of crucial information such as tools used, actions taken, artifacts produced, and security checks performed during the software delivery process. This report serves as a valuable tool to monitor and optimize software development.

  • Smart Diff - Helps you to dry run code promotion from one environment to another. By doing so, you can compare the services that run in different environments in terms of their security status, active alerts, vulnerabilities, and dependencies. This helps you understand the impact that a new version of a service may have when deployed to production.

  • Slack Integration - Ability to share alerts to Slack channels.

PreviousSecurity Issues GenieNextAdditional Resources

Last updated 1 month ago

Was this helpful?