Skip to content

Release notes

Release notes
  • Version: 4.0.0
  • Build number: 11404
  • Release date: 2023-07-10
  • Agent version: 4.0.0.11404
  • Collector version: 4.0.0.11404

Highlights

Remediation AI (Beta)

Enhancing remediation support is a focal point in this release, with the introduction of Remediation AI. This innovative feature, currently in Beta, leverages the power of ChatGPT to provide remediation advice based on vulnerability information, operating system, and vendor advisories. Key benefits include:

  1. Step-by-step Remediation Instructions: Remediation AI is capable of generating clear and actionable advice, guiding users through the remediation process.
  2. Operational Risk Insights: Insights about potential operational risks associated with each vulnerability can be gleaned.

It's important to note that this feature is in its Beta phase, and discretion is advised during use. No PII is included in the process, and data privacy is ensured by masking any data used.

AI remediation support
Issue list > Issue page

Enhanced Asset Fields

Nanitor, being a comprehensive asset inventory management tool, collects extensive information on monitored assets. This update extends asset management capabilities by allowing for the addition and management of fields such as 'Asset owner', 'Maintainer', 'Mobile device managment' and 'Physical location' to describe asset properties. These columns are hidden by default and can be added from the list in the Customize view menu. This enhancement enables:

  1. Improved Asset Management: With more descriptive fields, asset management becomes more effective.
  2. Device Ownership: An owner can be assigned to each device.

Additional details

New Features

  • Benchmark for SQL server 2022 implemented.
  • Remediation AI advice feature introduced.
  • Mapping of configuration issues to ISO 27001:2022 implemented.
  • Bulk move of collected assets between collectors enabled.
  • Improved filter for Collector screen added.
  • Payment handling for Nanitor Cloud (SaaS) implemented.
  • Asset fields expanded to include properties: Owner, Location, etc.
  • Bulk unarchive action for projects enabled.
  • Bulk authorization & deauthorization for rogue assets enabled.
  • Selected row highlighting added in "Issues" page.
  • "Compliance Frameworks" added to the issue.
  • Whitelisting status filter for "Software Title" items added.

Tasks

  • Agent tests for benchmarks and vulnerability checks initiated prior to release.
  • User Guide site updated to new design and launched: docs.nanitor.com.
  • Entries added for operating_systems centosstream, oracleserver, almalinux.

Improvements

  • Corrected Agent installation version display.
  • Tomcat benchmark renamed to indicate Linux system specificity.
  • Windows Agent Install has been improved.
  • Nanitor agent version number inconsistencies resolved.
  • 'Compliance frameworks' added to the issue details.
  • Supported CIS version is now viewable in the UI.
  • Nanitor agent can now modify its server URL on command.
  • Domain role on Windows assets can be viewed in asset detail view.
  • Minor changes made to 'Assign project' action in the benchmark rule window.
  • Network discovery now includes a reverse DNS lookup for hostname identification.
  • Baseline filter changed to multiselect.
  • Project Inventory now includes archive and unarchive bulk action.
  • Forensics added for ECL based AIX benchmarks.
  • Entries mechanism for un-monitored devices in Active Directory Discovery updated.
  • Various interface and user experience improvements.

Bug Fixes

  • Resolved issue with MS SQL Server 2016 - Level 1 - Database Engine baseline score.
  • Corrected software publisher assets/vulnerabilities display.
  • Resolved issue with Debian benchmark reporting failing rules without output.
  • Fixed asset count display when navigating from project inventory.
  • Fixed issue with collector last activity state not updating.
  • Resolved asset inventory PDF export issue.
  • Fixed issue with software title display.
  • Corrected issue with "Rogue" devices impacting the health score.
  • Several false positives addressed and resolved.
  • Resolved issues with user password flow, access rules, and project creation modal.
  • Fixed issues with asset and user count displays in "Assets" and "Users" widgets.
  • Addressed issue with Signup URL in newly installed Self Hosted clients.
  • Corrected rogue device count on compliance report page.
  • Fixed mismatch in "Devices missing label" and "Devices pending archival confirmation" counts.

Helpful articles

How to perform manual upgrade on self-hosted servers