CloudBees is pleased to announce the newest CloudBees Compliance release. You can find specific information about this release in the following sections:
New features
The following new features are introduced as part of this release:
- CasC-based enhancements
-
The following additional Configuration as Code (CasC) capabilities have been added:
-
Targeted asset linking to applications: Teams can now define specific assets, for example GitHub repositories or JFrog binaries, and use CasC to link them directly to applications, reducing setup errors and improving traceability.
-
Environment-specific profile mapping: Use CasC to assign profile identifiers to application environments, enabling more granular control and automated scan alignment. Identifiers include, for example, branch, tag, commit, and version.
-
- TruffleHog plugin integration
-
TruffleHog has been integrated with CloudBees Compliance, enabling seamless detection and management of secrets within code repositories. This integration automates secret-scanning workflows, enhances security insights, and simplifies configuration directly through the CloudBees Compliance plugin marketplace.
Feature enhancements
The following feature enhancements have been made as part of this release:
- Event-based notification preferences
-
Users can now toggle notification preferences for individual event types, giving more granular control over the alerts they receive. This enhancement replaces the global toggle with user-specified notification settings for improved relevance and customization.
- Paginated integration for Bitbucket and Artifactory
-
Pagination has been implemented for Bitbucket and JFrog Artifactory account journeys to handle large datasets efficiently. This enhancement ensures the UI remains responsive even for applications with hundreds of repositories or artifacts.