Skip to content

Releases: cartography-cncf/cartography

0.13.0

14 Nov 18:36
@achantavy achantavy
0.13.0
b16d91d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.13.0
  • Fix positional argument bug in SAML mapping
  • Add ELBv2 support
  • Update Python requirement to 3.6
  • Map GSuiteUsers to Human nodes
Assets 2
Loading

0.12.0

06 Nov 18:42
@achantavy achantavy
0.12.0
5a9034d
Compare
Choose a tag to compare
0.12.0
  • Add Okta intel module.
  • Map Okta groups to AWS roles and add Okta application reply URIs.
Assets 2
Loading

0.11.0

18 Oct 17:54
@achantavy achantavy
0.11.0
ab90760
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.11.0
  • Change supported version of Neo4j from 3.2 to 3.5.
  • Change AWS EC2 intel module to consume query results during ingestion.
  • Remove using of old Neo4j driver API.
  • Include projectnumber when loading GCP projects.
  • Add interesting fields to RDS databases.
  • Update incorrect Neo4j index - remove :Principal and add :AWSPrincipal.
  • Fix bug in GSuite intel module which could cause partial data ingestion.
  • Fix syntax error in Travis file.
  • Ingest Google Cloud buckets.
Assets 2
Loading

0.10.0

30 Sep 22:46
@ecdavis ecdavis
0.10.0
bf7793e
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.10.0
  • Added GSuite intel module.
  • Fixed CRXcavator intel module to ingest all extension data.
  • Fixed incorrect linking of AWS users to groups.
  • Fixed incorrect 'lastupdated' field on AWS VPC peering relationships.
Assets 2
Loading

0.9.0

19 Aug 21:57
@achantavy achantavy
0.9.0
cf7c79c
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.9.0
  • Added new lines to end of test files for Drift Detection tests are no longer inconsistent
  • Drift Detection: refactored reporting to use lists instead of dicts to maintain result order
  • Move GCP unit tests to tests/unit/cartography/intel
  • Add support for AWS EC2 key pairs
  • Fixed issue #123 - logic bug in import crxcavator extensions
  • Sorted collect values in boltstatementrecords to enforce consistency with each database pull
Assets 2
Loading

0.8.0

05 Aug 17:21
@achantavy achantavy
0.8.0
e8f1728
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.8.0
  • Added pre-commit linting
  • Drift detection: allow add_shortcuts() to have shortcuts as arguments
  • Fixed #49 - Warn and return None when a NoSuchBucket error is caught from get_bucket_acl()
  • Added CRXcavator intel module to ingest Chrome extension data
  • Fixed #104 - Drift Detection CLI failed occasionally
  • Fixed #99 - improved how AWS ELBs are determined to be internet exposed
  • IAM: fixed UnboundLocalError and added support for AWS IAM Federated Principals
  • Added Drift Detection feature to track graph changes over time
Assets 2
Loading

0.7.0

13 Jun 22:01
@achantavy achantavy
0.7.0
563bbfd
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.7.0
  • GCP instances that are exposed to the internet via firewall rules are now marked with exposed_internet: True
Assets 2
Loading

0.6.0

11 Jun 20:12
@thomashli thomashli
0.6.0
b2a25f0
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.6.0
  • Add GCP firewalls, firewall allow and deny rules, network tags, connect firewall rules to IP ranges, GCP VPCs, subnets, network interfaces, NIC access configs
  • Use partial_uri as unique identifier on GCP instances
  • Add AWSPrincipal nodes to represent the root identity of each AWS account being synced
  • Fix IAM statement parsing bug which would cause single-statement policies to crash sync
  • Use policyuniverse to parse IAM statements and find role assumption permissions
  • Ingest Global Secondary Indexes and more DynamoDB properties
  • Change relationship between AWSPrincipal and AWSRole nodes to clarify the distinction between trust and permission relationships
  • Add AWSPrincipal label to AWSRole nodes
  • Integration tests are now configurable
Assets 2
Loading

0.5.0

23 May 22:16
@achantavy achantavy
0.5.0
8dfcdf7
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.5.0
  • Ingest Google Cloud Platform organizations, projects, folders, and compute instance objects.
Assets 2
Loading

0.4.0

02 May 22:15
@ecdavis ecdavis
0.4.0
9da0dff
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
0.4.0
  • Added (:AWSRole)-[:STS_ASSUMEROLE_ALLOW]->(:AWSRole) relationship ingestion.
  • Fixed #60
Assets 2
Loading