JupiterOne January 2025 Release
Application
Enhancements and Features
Search Functionality Improvements: The search bar has been enhanced with new editors for both question and rule editors, improving user experience and functionality.
Dashboard Configuration: The dashboard configuration has been moved to a modal for better organization, allowing users to manage settings more efficiently. Additionally, users can now specify custom categories for dashboards, enhancing categorization flexibility.
Bug Fixes
Alert and Rule Totals Consistency: Resolved inconsistencies between alert totals and jupiterone_rule_alert totals, ensuring accurate reporting and user confidence in the system.
Query Builder Improvements: Fixed issues related to missing types in the query builder, enhancing the overall functionality and user experience.
Export Job Error Handling: Addressed errors encountered during export jobs for specific assets, ensuring smoother operations and better error messaging.
User Experience Improvements
- Header and Navigation Enhancements: Improved the header and navigation elements within the web dashboards, making them more intuitive and user-friendly.
These updates collectively enhance the application's functionality, improve user experience, and ensure a more robust and reliable system for all users.
Platform
Integration and Rule Enhancements
- Integration rules have been successfully transitioned to IGM rules, enhancing the overall integration framework.
- The data catalog has been replaced to optimize query suggestions and autocomplete functionalities, allowing for the removal of unnecessary data processing jobs and clusters.
Performance Improvements
- A new task has been implemented to assess the performance of Unified Device queries across different environments, ensuring consistent performance and addressing timeout issues.
Bug Fixes and Resolutions
- Resolved issues related to unexpected query result counts and query timeouts, enhancing the reliability of the query engine.
Unified Device Rollout
- The Unified Device feature has been enabled for all environments and new customers, streamlining the onboarding process.
- Documentation for Unified Devices has been updated to reflect recent changes and improvements, ensuring users have access to the latest information.
These updates collectively enhance the functionality, performance, and reliability of the graph project, ensuring a better experience for users and stakeholders.
Integrations
Integration Enhancements
AWS
- Resolved integration errors related to AWS, specifically addressing failures in jobs fetching Kinesis streams. This improvement enhances the reliability of the integration, ensuring smoother operations.
- Fixed issues with the integration for querying software information on AWS EC2 instances. The resolution involved clarifying IAM role permissions necessary for successful queries, improving the overall functionality of the integration.
- Addressed multiple integration job failures in the production environment. The fixes included resolving errors related to fetching CloudWatch events and managing duplicate keys in resource relationships, which enhances the stability of the integration.
- Fixed a bug related to the handling of trust relationships with external AWS accounts, ensuring proper integration functionality.
CrowdStrike
- Improved the integration to handle multiple tenants effectively, ensuring that the number of workstations reported aligns with the actual data in the CrowdStrike environment.
ServiceNow
- Added the capability to exclude specific user types during the integration process, allowing for more tailored data ingestion based on customer needs.
Qualys
- Resolved issues with the integration not pulling in host findings from Qualys, ensuring that vulnerabilities are accurately reflected in the system.
Trellix
- Fixed issues with the integration not ingesting all devices and groups, addressing permission errors that previously limited data retrieval.
BigID
- Resolved an issue where the
regionproperty was not displaying correctly for thebigid_datasourcetype in the BigID integration.
Snyk
- Promoted 'coordinates' fields to properties in the Snyk integration, enhancing vulnerability prioritization capabilities.
New Integrations
- Tenable.io: Added support for integrating with Tenable.io, allowing users to pull in host data effectively.
- Microsoft Endpoint Defender: Introduced a new integration to enhance endpoint security visibility.
- CB Defense: Added integration to provide insights into endpoint security measures.
- Palo Alto: New integration added to enhance network security monitoring capabilities.
- Cisco Endpoint: Introduced integration to improve visibility into Cisco endpoint security.
Bug Fixes
- Resolved various bugs across integrations, including issues with duplicate asset creation in SimpleMDM, incorrect mapping in AWS Route53 records, and failures in integration jobs across multiple platforms.
- Addressed specific errors related to API calls in integrations, ensuring that error handling is robust and informative for users.
These enhancements and fixes collectively improve the reliability, functionality, and user experience of the integrations, ensuring that customers can leverage the full capabilities of the JupiterOne platform.
Content
Monitoring Enhancements
- A new rule has been added to the Integration Monitoring pack to enhance the monitoring capabilities. This rule allows users to identify integration failures more effectively.
Managed Questions and Compliance Updates
- The questions in the AWS integration have been updated with new questions aligned with the CIS AWS Foundations 2.0 standard, ensuring compliance with the latest requirements.
- New questions have been created for the Lansweeper integration, focusing on host activity, IP range compliance, operating system types, and user statuses. These questions will help users gain better insights into their Lansweeper environments.
Documentation Improvements
- A new documentation page has been created for Alert Rule Packs, providing release notes and details similar to the platform's release notes.
- Documentation for the Terraform method related to Custom File Transfer has been added, including best practices and comparisons with other methods like APIs and scripting.
General Enhancements
- Cleaned up the tagging system for managed questions to ensure uniformity and consistency across the platform.
These updates enhance the overall functionality and usability of the integrations, ensuring users have access to the latest compliance standards and improved monitoring capabilities.