Changelog October 18th

October 18, 2024
Return to Changelogs

API Risk Scoring

A new API Risk Scoring system has been added to the FireTail platform, which evaluates APIs based on open findings and their severity, assigning a risk score to each API. Scores are divided into four bands: critical (80-100), high (60-80), medium (40-60), and low (below 40). A log based scale ensures that higher-severity findings have a significantly greater impact on the overall risk score.

Incident policies

  • New filters for incident policies have been added, allowing policies to now also be applied to specific findings, or type of finding. Available finding types include API design, actions-based, log-based, and cloud configuration-based findings.
  • Incident policies have been added to the search endpoint, with autocomplete on fields.

Findings

  • New CSPM (Cloud Security Posture Management) findings have been added to the platform, allowing for the discovery of potential security issues related to AWS AppSync and AWS API Gateway. The following findings are now available:
    • API Gateway Stage Missing WAF
    • AppSync Introspection Endpoint Enabled
    • AppSync GraphQL API Missing WAF
    • AppSync GraphQL API Query Depth Limit High
    • AppSync GraphQL API Query Depth Limit Not Set
    • AppSync GraphQL API Resolver Count Limit High
    • AppSync GraphQL API Resolver Count Limit Not Set
    • AppSync GraphQL API Authentication Using API Keys

APIs

Additional details added to AWS API items. Details now include information such as

  • WAF Settings
  • Authentication Type
  • Current Resolver Count
  • Additional Authentication Types
  • Current Query Depth
  • Introspection

Event Codes 

New event codes have been added. These have also been added to the actions system:

  • AWS_API_GATEWAY_V1:STAGES_WAF_CHANGED
  • AWS_APPSYNC_API:RESOLVER_COUNT_LIMIT_CHANGED
  • AWS_APPSYNC_API:QUERY_DEPTH_LIMIT_CHANGED
  • AWS_APPSYNC_API:INTROSPECTION_CONFIG_CHANGED
  • AWS_APPSYNC_API:ADDITIONAL_AUTH_TYPES_CHANGED

Kubernetes

  • Support added for Kubernetes ingress controllers that use Nginx.

Java

  • Added support for Java using the LLM to build complete OpenAPI definitions.

Bug Fixes

General bug fixes made throughout the FireTail platform.