23.2.22 Release Notes

📘

Required Permissions - Reference

InsightCloudSec has updated our approach to documenting all permissions. Permissions are provided in a single location and updated with each release.

23.2.22 and all future releases will include a reference section at the end of the release notes page with links to individual policy files.

InsightCloudSec Software Release Notice - 23.2.22 Release

Release Highlights (23.2.22)

InsightCloudSec is pleased to announce Release 23.2.22. This release includes 11 bug fixes.

• Contact us through the unified Customer Support Portal with any questions.

📘

Self-Hosted Deployment Updates (23.2.22)

Release availability for self-hosted customers is Thursday, February 23, 2023. If you’re interested in learning more about becoming a hosted customer, reach out through our Customer Support Portal.

Our latest Terraform template (static files and modules) can be found here: https://s3.amazonaws.com/get.divvycloud.com/prodserv/divvycloud-prodserv-tf/example-usage/aws/release/divvycloud-tf-release.zip

Bug Fixes (23.2.22)

• Precluded possible performance degradation with Bot action Modify Volume by including a new option to automatically calculated the desired throughput when migrating from gp2 to gp3 volumes. [ENG-23922]

• Fixed a bug where tags were not included in the action Send Email Summary With Detailed CSVs. [ENG-23917]

• Fixed a bug where the author of Custom Insights was not displayed in the resource property panel. [ENG-23915]

• Fixed a bug where AWS ECR scan on push capabilities were improperly calculated when region wide scanning was enabled. [ENG-23862]

• Fixed a bug in the column heading order in the Organization Utilization report. [ENG-23843]

• Fixed an error with the AWS:NetworkAddressGroupHarvester that was being raised when the Prefix List ID could not be found. We now pass on this error, preventing the harvest from failing. [ENG-23824]

• Fixed a bug that prevented the deletion of API GatewayV2 resources. [ENG-23755]

• Fixed an issue where some Bot runs were duplicated after a Bot was reconfigured. [ENG-23614]

• Improved performance when viewing Cloud Scopes from the Insights page. [ENG-23604]

• Removed duplicated threat finding tab in the Layered Context resource panel. [ENG-23539]

• Fixed an issue within the AWS ServiceControlPolicyHarvester, which was failing when the follow on calls to describe the policy and list the policy targets were being throttled. [ENG-23446]

Reference: Required Policies & Permissions

📘

Policies required for individual CSPs are as follows:

Alibaba Cloud

• Read Only Policy

AWS

• Commercial
  • Managed Read Only Supplement Policy
  • Customer-Managed Read Only Policy
    • Part 1
    • Part 2
    • Part 3
  • Commercial Power User Policy
• GovCloud
  • Read Only Policy
    • Part 1
    • Part 2
  • Power User Policy

Azure

• Commercial
  • Custom Reader User Role
  • Power User Role
  • Reader Plus User Role
• GovCloud
  • Custom Reader User Role
  • Power User Role

GCP

• For GCP, since permissions are tied to APIs there is no policy file to maintain. Refer to our list of Recommended APIs that is maintained as part of our GCP coverage.

Oracle Cloud Infrastructure

• Power User Policy
• Read Only Policy

For any questions or concerns, as usual, reach out to us through your CSM, or the Customer Support Portal.