Tenable Cloud Security 2.5.2 Release Notes (2022-10-10)

Important: Tenable has announced the End of Life for Legacy Tenable Cloud Security. You can continue to access the application and receive support through September 30, 2024. Tenable recommends that you move to the current version of Cloud Security immediately. For more details, see the End of Life bulletin.

Data Export to CSV

Tenable Cloud Security now allows you to export the following reports in the CSV format:

  • Misconfigurations Report: Includes a project-wise listing of all failing policies with details. For more information, see View Misconfigurations.

  • Ignored Misconfigurations Report: Includes a project-wise listing of all ignored policies with details. For more information, see View Ignored Misconfigurations.

  • Compliance Report: You can download the following compliance reports:

    • Summary Report: Includes the summary of compliance coverage of all resources based on the last scan.

    • Detail Report: Includes compliance summary and other details, such as policy severity and status.

    For more information, see View Compliance Report.

Docker Hub cli-kubescan Builds for ARM64 and AMD64 Architectures

Tenable Cloud Security now supports the cli-kubescan container for ARM64 and AMD64 architectures.

Local Mode for Scan Results in Tenable Cloud Security CLI

Tenable Cloud Security CLI can now be configured to display scan results locally without publishing them to the cloud. Use the -test option with the accurics plan and accurics scan commands for configuring the local mode. If you use this parameter, CLI does not push the scan results to the Tenable Cloud Security web console. For more information about using this option, see Scan IaC Files in the CLI Local Mode.

User Interface Changes

  • Documentation for onboarding cloud accounts

    • The AWS onboarding instructions pane for creating a read-only role is removed and now replaced with a link to the Tenable Cloud Security documentation site.

    • User onboarding pages for Azure and GCP now include links to instructions for creating a service principal and service account, respectively, on the Tenable Cloud Security documentation site.

  • The SSO option is no longer available on the Integrations page.

Bug Fixes

Bug Fix
Fixed an issue with scans due to resources with long names.

Fixed an issue with creating pull requests for newly onboarded repositories.
Fixed an issue with rule counts when all benchmarks are displayed.
Fixed an issue with displaying the cloud account in the Policy pane of the compliance report.
Fixed an issue with the cloud account filter in the Policy pane of the compliance report.
Fixed the mismatch in policies count for a particular benchmark between Reports and Policies pages.
Fixed remediation instructions for policy ID AC_AWS_0084.

Known Issue

The compliance coverage percentage is incorrect if the same repository or cloud account is added to multiple projects.