Community
Questions Library
Docs
Blog
Events
Swag
Github
Slack
JupiterOne
Discussions
Release Notes
Contact Us
JupiterOne 2019.35 Release - AskJ1 Community
<main> <article class="userContent"> <p>2019-12-10</p> <h2 data-id="new-features">New Features</h2> <ul><li><p>Exciting new capabilities added to <strong>alert rules</strong>, including:</p> <ul><li>Added <strong>mapping and templating capability</strong> in alert rules that allows<br> detailed data from alerts to be used in alert actions.</li> </ul></li> </ul><blockquote class="UserQuote blockquote"><div class="QuoteText blockquote-content"> <p class="blockquote-line">For example, if multiple S3 buckets were part of an alert, you can add the</p> </div></blockquote> <pre class="code codeBlock" spellcheck="false" tabindex="0">bucket name and other details of each bucket to the email body or the description of a Jira ticket. See more details in the [Operation Templating](../docs/schemas/alert-rule.md#operationtemplating) section of the [alert rule schema](../docs/schemas/alert-rule.md). </pre> <ul><li><p>Added <strong>webhook</strong> support to alert action. For example:</p> <pre class="code codeBlock" spellcheck="false" tabindex="0">```json "actions": [ { "targetValue": "HIGH", "type": "SET_PROPERTY", "targetProperty": "alertLevel" }, { "headers": { "Authorization": "Bearer abc" }, "endpoint": "<a href="https://my-site.com/my-route" rel="nofollow">https://my-site.com/my-route</a>", "type": "WEBHOOK", "method": "POST", "body": { "one": 1, "two": 2 } } ] ``` </pre></li> <li><p>Simplified <strong>JavaScript-like syntax</strong> for rule conditions.</p> <pre class="code codeBlock" spellcheck="false" tabindex="0">_Before:_ ```json "condition": [ "AND", [ "queries.query0.total", "!=", 0 ] ] ``` _Now:_ ```json "condition": "{{queries.query0.total != 0}}" ``` </pre> <p>For more information on these new capabilities and how to configure, see<br><a rel="nofollow" href="../docs/schemas/alert-rule.md">alert rule schema</a>.</p> <ul><li>Added <strong>visual indicators of alert rule actions</strong> to the UI.</li> </ul><p><img src="https://us.v-cdn.net/6035534/uploads/KNTLEZ86E6AX/alerts-rules-action-badges.png" alt="alert-rule-action-badges" class="embedImage-img importedEmbed-img"></img></p> <ul><li><strong>Alert trend histogram</strong> is now displayed with relatively scaled bar height<br> and supports greater number of data points.</li> </ul><p><img src="https://us.v-cdn.net/6035534/uploads/KUP67V07LK7G/alerts-trend-relative-scale.png" alt="alert-trend" class="embedImage-img importedEmbed-img"></img></p> <ul><li>New <strong>Filter Selection</strong> modal for <strong>Vulnerability Findings</strong> view that<br> supports applying multiple filters on <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">type</code>, <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">severity</code>, and <code class="code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline code codeInline" spellcheck="false" tabindex="0">source account</code><br> of vulnerability findings.</li> </ul><p><img src="https://us.v-cdn.net/6035534/uploads/49NDFRLW0NRB/alerts-findings-filter.png" alt="vuln-findings-filter" class="embedImage-img importedEmbed-img"></img></p></li> </ul><h2 data-id="integrations-and-power-ups">Integrations (and "Power Ups")</h2> <ul><li><p>Upgraded <strong>J1 Endpoint Compliance Agent to Stethoscope v4</strong>, which adds<br> support for required application auditing policy.</p> <p>See details <a rel="nofollow" href="../guides/endpoint-compliance-agent-v4.md">here</a>.</p></li> </ul><h2 data-id="improvements-and-bug-fixes">Improvements and Bug Fixes</h2> <ul><li><p>Significant load time performance improvement to the Asset Inventory view.</p></li> <li><p>When an entity is selected in query results that opens up the property panel,<br> the property panel now auto expands the view height as needed.</p></li> <li><p>Performance and scalability improvements to integration pipeline</p></li> <li><p>Various other backend improvements</p></li> </ul> </article> </main>