CloudBees is pleased to announce the newest CloudBees Compliance release. You can find specific information about this release in the following sections:
New features
The following new features are introduced as part of this release:
- New document type management
-
Users with the Admin role can now create and manage document types with checklists and role-based approvals. Admins can also map document types to specific hierarchy levels, including organization, application, and version, for precise scope control.
Approval and visibility are automatically enforced based on the defined roles and hierarchy.
- CloudBees Compliance plugin development toolkit for external partners
-
A self-contained SDK with sample plugins and detailed documentation now enables partners to build CloudBees Compliance plugins independently, without relying on proprietary CloudBees code. The toolkit defines clear plugin contracts, structures, and lifecycle hooks for seamless integration.
- Integrated OpenTelemetry (OTEL) for end-to-end scan traceability
-
CloudBees Compliance now adds OTEL tracing to key scan execution stages, propagating trace context across services and including trace IDs in logs and selected API responses. This allows DevOps teams to visualize scan workflows in the Grafana cluster installation using the Tempo data source, correlate logs with traces, and identify performance bottlenecks faster.
Feature enhancements
The following feature enhancements have been made as part of this release:
- Migration to relational evidence store
-
Data for the following organizational insights has been migrated to the relational evidence store to support improved scalability and performance:
-
Top 10 Applications by Open Findings
-
Top 10 Applications by Compliance Rating
-
Top 10 Applications by Risk Acceptances Due in 30 Days
-
Top 10 Organizations by Compliance Rating
-
Top 10 Issues by Age
-
Top 10 Issues by Occurrence
-
Standard Conformity
-
| CloudBees recommends performing an organization scan after deployment, to ensure the organization dashboard is populated with appropriate data. |
- Added option to restore RBAC role scopes to default settings
-
Users with the System admin role can revert scope permissions to their original installation state, either for the current role, or for all roles. This ensures quick rollback of role-based access to default UI and API scopes, removing any custom configurations.
- Enhanced membership view for organization administrators
-
Administrators of organizations can now distinguish between direct and inherited memberships, using new filters and columns. A new Inherited from column displays the source organization for inherited roles, and the UI disables role modifications for inherited entries to preserve integrity.