Mondoo 5.13.0 is out!

Back to releases

🥳 mondoo 5.13.0 is out!

🎉 NEW FEATURES

DNS resource

This release includes a new resource to make DNS queries to allow testing against DNS records.

JavaScriptCopy
dns("mondoo.com").records {
  type
  rdata
}

JavaScriptCopy
dns.records: [
  0: {
    type: "TXT"
    rdata: [
      0: "google-site-verification=BJHy4ONNsxrKr7Vtz3g6Y-dJDAOZ3S0PLFdqKVZv6To"
      1: "v=DMARC1; p=none; rua=mailto:postmaster@mondoo.com, mailto:dmarc@mondoo.com; sp=none; pct=100; adkim=r; aspf=r"
      2: "v=spf1 include:_spf.google.com include:_spf.salesforce.com include:amazonses.com include:mail.zendesk.com  ~all"
    ]
  }
  1: {
    type: "SOA"
    rdata: [
      0: "ns-cloud-c1.googledomains.com. cloud-dns-hostmaster.google.com. 1 21600 3600 259200 300"
    ]
  }
  2: {
    type: "MX"
    rdata: [
      0: "10 alt3.aspmx.l.google.com."
      1: "5 alt2.aspmx.l.google.com."
      2: "1 aspmx.l.google.com."
      3: "10 alt4.aspmx.l.google.com."
      4: "5 alt1.aspmx.l.google.com."
    ]
  }
  3: {
    type: "NS"
    rdata: [
      0: "ns-cloud-c2.googledomains.com."
      1: "ns-cloud-c3.googledomains.com."
      2: "ns-cloud-c1.googledomains.com."
      3: "ns-cloud-c4.googledomains.com."
    ]
  }
  4: {
    type: "A"
    rdata: [
      0: "76.223.34.124"
      1: "13.248.160.137"
    ]
  }
]

CVE View through the CLI

In this release, we're introducing a new command to get a view of CVEs affecting a space:

mondoo vuln list //captain.api.mondoo.app/spaces/test-infallible-taussig-796596

🧹 IMPROVEMENTS

• Improved query error handling
• Introduce a new certificate.expiresIn field to get the remaining time !1680
• The mount resource is now supported for file system based scans through /etc/fstab

⚠️ BREAKING CHANGES:

• The certificate resources has the following breaking changes:
  1. renamed hashs field to fingerprints
  2. use camelCase for certificate fields