mondoohq · tas50 · Oct 30, 2024 · Oct 28, 2024 · Oct 29, 2024 · Oct 29, 2024
diff --git a/docs/mql/resources/os-pack/asset.md b/docs/mql/resources/os-pack/asset.md
@@ -13,3 +13,4 @@ displayed_sidebar: MQL
 | ------------------- | ------------------ | -------------------------------------------------------------------------------------------------- |
 | cpes                | &#91;&#93;core.cpe | Common Platform Enumeration (CPE) for the asset                                                    |
 | vulnerabilityReport | dict               | Advisory & vulnerability report, Deprecated; will be removed in version 12.0, use vulnmgmt instead |
+| purl                | string             | Platform URL in the Package URL format, That's a URL as alternative to the CPE format              |
diff --git a/package.json b/package.json
@@ -15,7 +15,7 @@
     "write-heading-ids": "docusaurus write-heading-ids"
   },
   "dependencies": {
-    "@algolia/client-search": "^5.10.2",
+    "@algolia/client-search": "^5.11.0",
     "@docusaurus/core": "^3.5.2",
     "@docusaurus/plugin-client-redirects": "^3.5.2",
     "@docusaurus/preset-classic": "^3.5.2",

diff --git a/releases/2024-10-29-mondoo-11.28-is-out.md b/releases/2024-10-29-mondoo-11.28-is-out.md
@@ -0,0 +1,95 @@
+---
+slug: mondoo-11.28-is-out/
+title: Mondoo 11.28 is out!
+description: Announcing the 11.28 release of Mondoo with Azure DevOps ticketing, policy scoring configuration, updated policies, and more!
+authors: [tim, chip]
+image: /img/releases/2024-10-29-mondoo-11.28-is-out/azure_devops_case.png
+tags: [release, mondoo]
+---
+
+## 🥳 Mondoo 11.28 is out! This release includes Azure DevOps ticketing, policy scoring configuration, updated policies, and more!
+
+Get this release: [Installation Docs](https://mondoo.com/docs/cnspec/) | [Package Downloads](https://releases.mondoo.com/cnspec/) | [Docker Container](https://hub.docker.com/r/mondoo/cnspec)
+
+---
+
+## 🎉 NEW FEATURES
+
+### Create Azure DevOps issues from Mondoo
+
+Mondoo now supports creating remediation tickets in Azure DevOps. This option joins our existing support for ticketing with Jira, Zendesk, GitHub, GitLab, and email.
+
+Mondoo can create tickets in these external systems and update them as it detects changes. When all the findings are remediated, Mondoo can automatically close tickets. When previously resolved findings regress, Mondoo can automatically open new cases to track remediation.
+
+![Cases in Azure DevOps](/img/releases/2024-10-29-mondoo-11.28-is-out/azure_devops_case.png)
+
+### Policy scoring weight configuration
+
+Configure how Mondoo scores your policies with a newly redesigned policies page. The new policies page makes it easier to enable or disable a policy, share that policy with colleagues, and now to modify how that policy is scored. Select the scale icon from the top of any policies page to display five new scoring options.
+
+![Scoring](/img/releases/2024-10-29-mondoo-11.28-is-out/scoring.png)
+
+Learn more about scoring systems in the [Mondoo documentation](https://mondoo.com/docs/platform/security/customize/score/).
+
+## 🧹 IMPROVEMENTS
+
+### Updated CIS Windows benchmark policies
+
+Secure critical Windows servers with the latest CIS recommendations for Windows 2016 and 2019:
+
+- CIS Windows Server 2016 benchmark 3.0.0
+- CIS Windows Server 2019 benchmark 3.0.1
+
+### Creation and scan details for integrations
+
+Integration detail pages now expose creation and scan information to help with understand and troubleshooting integrations
+
+- Creation date
+- Last modification date
+- Last successful scan date
+- Last attempted scan date
+
+![Integration details](/img/releases/2024-10-29-mondoo-11.28-is-out/integration_details.png)
+
+### Windows on Arm packages
+
+Secure Arm-based workstations and servers with Windows Mondoo packages for Arm.
+
+### Fedora 41 support
+
+Mondoo now detects Fedora 41 servers, workstations, and containers including EOL and package CVE support.
+
+### Simplified policy property editing
+
+You can now modify policy property values directly on the policies page at Security -> Policies, making it easier to customize policies to your needs.
+
+![Editing properties](/img/releases/2024-10-29-mondoo-11.28-is-out/properties.png)
+
+### Resource updates
+
+#### asset
+
+- New `purl` field
+
+#### aws.ec2.instance
+
+- New `iamInstanceProfile` field using the new `aws.iam.instanceProfile` resource
+
+#### aws.iam
+
+- New `instanceProfiles` field using the new `aws.iam.instanceProfile` resource
+
+## 🐛 BUG FIXES AND UPDATES
+
+- Fix formatting on sample commands in the workstation integration setup page.
+- Detect CVEs on recent VMware vCenter releases.
+- Improve password expiration checks in Windows policies.
+- Fix a failure loading the AWS integration details page with certain configuration options enabled.
+- Identify new M4 iMacs in the asset overview.
+- Improve the icon for uploading custom frameworks, policies, and query packs.
+- Fix package detection on the latest releases of openSUSE/SLES.
+- Use the asset name defined in inventory files when scanning assets over SSH.
+- Fix command line help for the Azure provider not showing all available flags.
+- Fix a failure scanning Microsoft 365.
+- Fix some AWS resources not fetching tags properly.
+- Don't show the filter search bar on the Policies page when there are no enabled policies.
diff --git a/static/img/releases/2024-10-29-mondoo-11.28-is-out/azure_devops_case.png b/static/img/releases/2024-10-29-mondoo-11.28-is-out/azure_devops_case.png
diff --git a/static/img/releases/2024-10-29-mondoo-11.28-is-out/integration_details.png b/static/img/releases/2024-10-29-mondoo-11.28-is-out/integration_details.png
diff --git a/static/img/releases/2024-10-29-mondoo-11.28-is-out/properties.png b/static/img/releases/2024-10-29-mondoo-11.28-is-out/properties.png
diff --git a/static/img/releases/2024-10-29-mondoo-11.28-is-out/scoring.png b/static/img/releases/2024-10-29-mondoo-11.28-is-out/scoring.png
diff --git a/yarn.lock b/yarn.lock
@@ -75,10 +75,10 @@
     "@algolia/requester-common" "4.24.0"
     "@algolia/transporter" "4.24.0"
 
-"@algolia/client-common@5.10.2":
-  version "5.10.2"
-  resolved "https://registry.yarnpkg.com/@algolia/client-common/-/client-common-5.10.2.tgz#20d5059e954e4eabaf87684daef8c91491c0ffae"
-  integrity sha512-eE4OaTlb5KZdCehWmDARq2KEmMF7DEeFLjKqFDcZNb56k1DMSsa9zCQRXZMovlf2AXLsx0A/1q+SGAEgzF7G3w==
+"@algolia/client-common@5.11.0":
+  version "5.11.0"
+  resolved "https://registry.yarnpkg.com/@algolia/client-common/-/client-common-5.11.0.tgz#cb9a3e7c3045a32a1ca286eb41d1f14e66f3f06e"
+  integrity sha512-6LAAQxMoxzYf3wk7HKee4YFNYYq56ifKz6g7JWAY2HGya20KQmDec2pQ8t4C90kUvGk69o8RVpHWoeT/wfBXbw==
 
 "@algolia/[email protected]":
   version "4.24.0"
@@ -98,15 +98,15 @@
     "@algolia/requester-common" "4.24.0"
     "@algolia/transporter" "4.24.0"
 
-"@algolia/client-search@^5.10.2":
-  version "5.10.2"
-  resolved "https://registry.yarnpkg.com/@algolia/client-search/-/client-search-5.10.2.tgz#c834aeec8829521bef78e0b2768576a566153aa9"
-  integrity sha512-rGX8uil2uvPycFgtS9Fzwvh4tgKvfFWG5RIh3E77W42HrO66bykCf9jHqhIIlCxdDJih1PuUqBYZIkIAAoSkww==
+"@algolia/client-search@^5.11.0":
+  version "5.11.0"
+  resolved "https://registry.yarnpkg.com/@algolia/client-search/-/client-search-5.11.0.tgz#4f0e7db8a72b80cc9072a5800b0f4aa5a4cdb625"
+  integrity sha512-jP94/rojiSzUTilBqPQSfidNw8KZzzKkkrUL4kPeukTqpkZdWLB0W7OtDcqOLd4vBA7FXkEFGiRaj3WQemyLhw==
   dependencies:
-    "@algolia/client-common" "5.10.2"
-    "@algolia/requester-browser-xhr" "5.10.2"
-    "@algolia/requester-fetch" "5.10.2"
-    "@algolia/requester-node-http" "5.10.2"
+    "@algolia/client-common" "5.11.0"
+    "@algolia/requester-browser-xhr" "5.11.0"
+    "@algolia/requester-fetch" "5.11.0"
+    "@algolia/requester-node-http" "5.11.0"
 
 "@algolia/events@^4.0.1":
   version "4.0.1"
@@ -149,24 +149,24 @@
   dependencies:
     "@algolia/requester-common" "4.24.0"
 
-"@algolia/requester-browser-xhr@5.10.2":
-  version "5.10.2"
-  resolved "https://registry.yarnpkg.com/@algolia/requester-browser-xhr/-/requester-browser-xhr-5.10.2.tgz#1548b762f7c34675a26d32118031ceb3cc3a8265"
-  integrity sha512-gzlfE/H05ggDiEWNi8WaDSRhpE5X8rD1JqYKPPeM31JRI3TutQIKAk3MSUsa1bHM/Di56r2Gm6L1g3ZlZv2ETA==
+"@algolia/requester-browser-xhr@5.11.0":
+  version "5.11.0"
+  resolved "https://registry.yarnpkg.com/@algolia/requester-browser-xhr/-/requester-browser-xhr-5.11.0.tgz#d15f6f84128f61b3b8c62012269a466db79f6dcf"
+  integrity sha512-koy3lcWUrtUUfmMaDV/7zvZA7WGCFuBM+9t6KUfz93NTOmP6nQ6zcvAD66G0E1uapzj0S5Z6CA6Nd0Q5nVetcg==
   dependencies:
-    "@algolia/client-common" "5.10.2"
+    "@algolia/client-common" "5.11.0"
 
 "@algolia/[email protected]":
   version "4.24.0"
   resolved "https://registry.yarnpkg.com/@algolia/requester-common/-/requester-common-4.24.0.tgz#1c60c198031f48fcdb9e34c4057a3ea987b9a436"
   integrity sha512-k3CXJ2OVnvgE3HMwcojpvY6d9kgKMPRxs/kVohrwF5WMr2fnqojnycZkxPoEg+bXm8fi5BBfFmOqgYztRtHsQA==
 
-"@algolia/requester-fetch@5.10.2":
-  version "5.10.2"
-  resolved "https://registry.yarnpkg.com/@algolia/requester-fetch/-/requester-fetch-5.10.2.tgz#4e5a72d751251a036991d17dd818d12fec0bd6d3"
-  integrity sha512-Q27ciW9WRdq3pUITVlxpHIwe9QWOe+oPvgs8Z+gsv8vMkwXnLfANvSgeZCyQgx3SqzUPzhel0ozVq7Qoh8xIkg==
+"@algolia/requester-fetch@5.11.0":
+  version "5.11.0"
+  resolved "https://registry.yarnpkg.com/@algolia/requester-fetch/-/requester-fetch-5.11.0.tgz#b4c7fe6e0b53d8ff097d643b1459e2bb45258723"
+  integrity sha512-kuQGSBfDwSW0uXT0GqbwEsvQNDwmgsw2gZp1TG+IR61TExHmnL1nqgsoAIrxV86O2uXlwtrkrBDW0qDbGW4BHg==
   dependencies:
-    "@algolia/client-common" "5.10.2"
+    "@algolia/client-common" "5.11.0"
 
 "@algolia/[email protected]":
   version "4.24.0"
@@ -175,12 +175,12 @@
   dependencies:
     "@algolia/requester-common" "4.24.0"
 
-"@algolia/requester-node-http@5.10.2":
-  version "5.10.2"
-  resolved "https://registry.yarnpkg.com/@algolia/requester-node-http/-/requester-node-http-5.10.2.tgz#269c9ce6395eaf056cfe8f9266d0bd7ed5ab9136"
-  integrity sha512-WMUQ4iFhNnQXC4F1Yj51x8tgIvq5h8jtTLMBs7LbMiW6JhnLHfBVl7IVk6X1fZJO5YcvXW051HN8aFlfAb5QEw==
+"@algolia/requester-node-http@5.11.0":
+  version "5.11.0"
+  resolved "https://registry.yarnpkg.com/@algolia/requester-node-http/-/requester-node-http-5.11.0.tgz#143939cea758ebab6a6edea9d1b8d57eaf8603ed"
+  integrity sha512-7XiZuTbLmPQM5zIIEqqABU1rvpN61+qSaMPfPAiB1hhARno8Ak6/GddR1OaRTPmV/GA72AQknxYocCqUxemwzg==
   dependencies:
-    "@algolia/client-common" "5.10.2"
+    "@algolia/client-common" "5.11.0"
 
 "@algolia/[email protected]":
   version "4.24.0"
@@ -2092,9 +2092,9 @@
     "@types/node" "*"
 
 "@types/node@*":
-  version "22.8.1"
-  resolved "https://registry.yarnpkg.com/@types/node/-/node-22.8.1.tgz#b39d4b98165e2ae792ce213f610c7c6108ccfa16"
-  integrity sha512-k6Gi8Yyo8EtrNtkHXutUu2corfDf9su95VYVP10aGYMMROM6SAItZi0w1XszA6RtWTHSVp5OeFof37w0IEqCQg==
+  version "22.8.4"
+  resolved "https://registry.yarnpkg.com/@types/node/-/node-22.8.4.tgz#ab754f7ac52e1fe74174f761c5b03acaf06da0dc"
+  integrity sha512-SpNNxkftTJOPk0oN+y2bIqurEXHTA2AOZ3EJDDKeJ5VzkvvORSvmQXGQarcOzWV1ac7DCaPBEdMDxBsM+d8jWw==
   dependencies:
     undici-types "~6.19.8"
 
@@ -2817,9 +2817,9 @@ caniuse-api@^3.0.0:
     lodash.uniq "^4.5.0"
 
 caniuse-lite@^1.0.0, caniuse-lite@^1.0.30001646, caniuse-lite@^1.0.30001669:
-  version "1.0.30001673"
-  resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001673.tgz#5aa291557af1c71340e809987367410aab7a5a9e"
-  integrity sha512-WTrjUCSMp3LYX0nE12ECkV0a+e6LC85E0Auz75555/qr78Oc8YWhEPNfDd6SHdtlCMSzqtuXY0uyEMNRcsKpKw==
+  version "1.0.30001674"
+  resolved "https://registry.yarnpkg.com/caniuse-lite/-/caniuse-lite-1.0.30001674.tgz#eb200a716c3e796d33d30b9c8890517a72f862c8"
+  integrity sha512-jOsKlZVRnzfhLojb+Ykb+gyUSp9Xb57So+fAiFlLzzTKpqg8xxSav0e40c8/4F/v9N8QSvrRRaLeVzQbLqomYw==
 
 ccount@^2.0.0:
   version "2.0.1"
@@ -3600,9 +3600,9 @@ [email protected]:
   integrity sha512-WMwm9LhRUo+WUaRN+vRuETqG89IgZphVSNkdFgeb6sS/E4OrDIN7t48CAewSHXc6C8lefD8KKfr5vY61brQlow==
 
 electron-to-chromium@^1.5.41:
-  version "1.5.47"
-  resolved "https://registry.yarnpkg.com/electron-to-chromium/-/electron-to-chromium-1.5.47.tgz#ef0751bc19b28be8ee44cd8405309de3bf3b20c7"
-  integrity sha512-zS5Yer0MOYw4rtK2iq43cJagHZ8sXN0jDHDKzB+86gSBSAI4v07S97mcq+Gs2vclAxSh1j7vOAHxSVgduiiuVQ==
+  version "1.5.49"
+  resolved "https://registry.yarnpkg.com/electron-to-chromium/-/electron-to-chromium-1.5.49.tgz#9358f514ab6eeed809a8689f4b39ea5114ae729c"
+  integrity sha512-ZXfs1Of8fDb6z7WEYZjXpgIRF6MEu8JdeGA0A40aZq6OQbS+eJpnnV49epZRna2DU/YsEjSQuGtQPPtvt6J65A==
 
 emoji-regex@^8.0.0:
   version "8.0.0"
@@ -5423,15 +5423,16 @@ mdast-util-to-hast@^13.0.0:
     vfile "^6.0.0"
 
 mdast-util-to-markdown@^2.0.0:
-  version "2.1.0"
-  resolved "https://registry.yarnpkg.com/mdast-util-to-markdown/-/mdast-util-to-markdown-2.1.0.tgz#9813f1d6e0cdaac7c244ec8c6dabfdb2102ea2b4"
-  integrity sha512-SR2VnIEdVNCJbP6y7kVTJgPLifdr8WEU440fQec7qHoHOUz/oJ2jmNRqdDQ3rbiStOXb2mCDGTuwsK5OPUgYlQ==
+  version "2.1.1"
+  resolved "https://registry.yarnpkg.com/mdast-util-to-markdown/-/mdast-util-to-markdown-2.1.1.tgz#6fdb72cd54ee4e6745e138db003609978a322e94"
+  integrity sha512-OrkcCoqAkEg9b1ykXBrA0ehRc8H4fGU/03cACmW2xXzau1+dIdS+qJugh1Cqex3hMumSBgSE/5pc7uqP12nLAw==
   dependencies:
     "@types/mdast" "^4.0.0"
     "@types/unist" "^3.0.0"
     longest-streak "^3.0.0"
     mdast-util-phrasing "^4.0.0"
     mdast-util-to-string "^4.0.0"
+    micromark-util-classify-character "^2.0.0"
     micromark-util-decode-string "^2.0.0"
     unist-util-visit "^5.0.0"
     zwitch "^2.0.0"