The Foundational Technical Review ('FTR') evaluates an AWS Partner's solutions against a set of AWS best practices around security, performance, and operational processes critical for customer success.  

Resmo helps you automatedly and continuously assess your compliance with this pack's controls from a variety of angles, including;

• Support level
• Backups and recovery
• Disaster recovery and more

We've added charts on Pack Detail pages, demonstrating changes over weekly, monthly, and quarterly periods. Our goal here is to help you better analyze your compliance posture and how it evolves over time. You'll be able to see the following charts:

• Compliance score over time
• Status over time

If you haven't checked yet, your Packs page has a brand new design to let you see what's what at a glance. You can quickly see the following data for each pack on your list:

• Current score
• Percentage of change compared to last week
• Pack type: Managed or custom
• Associated integrations

Now, you can find our official Bitbucket Connect app on Atlassian Marketplace for a seamless Resmo Bitbucket integration. 

See on Atlassian Marketplace

PIVOT tables in SQL queries

PIVOT helps you transform your unique data results into more meaningful table-valued expressions. For certain queries, the syntax PIVOT provides is more readable and easier to interpret than the syntax that may otherwise be specified in SELECT * FROM ... statements.

Retrieve only "values" with SELECT VALUE

• Standard SELECT statement returns a map list containing the data column information and the values in that column.

Example:

SELECT name FROM ... returns "name": "values of name" as a list of key-value map.

• SELECT VALUE, on the other hand, returns only the values within the key-value map, omitting the key.

Example:

SELECT VALUE name FROM ... returns "values of name" as a list.

We take compliance as seriously as security. 🫡  Our team has been working hard to bring you plug-and-play packs that will enhance your compliance posture without much effort. Here's the latest one:

AWS Startup Security Baseline (AWS SSB) Pack

The AWS SSB provides a set of controls as a minimum foundation for businesses to build securely on AWS while preserving agility. 

Resmo packed these controls for you so that you can start assessing the compliance of your AWS account and workloads right away.

• Get a compliance score
• Detect resources that fail to meet the controls
• See remediation suggestions
• Easily export results as HTML or PDFs from the Export tab

📣 We are working on more packs to come. Until then, stay tuned, secure, and compliant!

Compliance tab on Resource detail pages

newWe've added a Compliance tab on Resource Detail pages to help you overview compliant and non-compliant rules concerning a specific resource in one place. Take the shortest cut to overview everything you need to know in minutes! 🪄

Compliance status column

From now on, you'll see a compliance status column next to resources. This will simplify detecting non-compliant resources in birdseye view in a nickel of time.

New registration flow ✨

You ask, we deliver! We've repolished the registration flow with:

• Password validation
• Google and GitHub logos
• Create Account Page: Register as a user, then create an account for your company, defining a subdomain. Existing users can also create an account, with a maximum limit of 2 accounts per user.

Note: No account creation requirement if a user receives an invitation from an existing account.

Hover-over metrics on Rules and Resources pages 🚀 

Observing at a glance is now faster than ever. You can see the diff between the current state and last week as hover-over metrics on the Rules and Resources list pages.

We've moved all settings under a common settings page with a navigation sidebar. Our goal is to help you navigate easier in Resmo. 

You can reach settings from the upper right gear icon. Integrations quick selection is still available in the header. So keep adding your tools to get the full benefits 😊

Welcome to our last batch changelog! From now on, you'll receive more frequent and detailed updates here on our new changelog page. If you want to get updates from email or Slack, you can now subscribe to our changelog! You can also continue to get the highlight in our newsletter.  

Resources page improvements

• Travel between resources using the sidebar
• Open resource detail view as a modal for quick navigation
• Search between resources quickly using the search input in the sidebar
• See overall metrics and last visited resources in the resource summary
• Filter resources by resource group
• Open resource details directly within the rule result

Custom compliance packs

Custom packs allow you to create your compliance packs with scores, exports, and continuous checks view. They are ways to organize your compliance checks. From the beginning, our goal was to create a tool that engineers would love and can easily make customizations to suit your needs. Custom packs are a feature to help realize this goal.

Compliance packs are an area we constantly evolve and work on these days. Stay tuned for cool updates on this!

Compliance pack exports

Customers asked for a way to export their compliance reports since we introduced packs. That's helpful for reporting and keeping track of progress. We're happy to introduce export functionality to HTML and PDF format for all packs. ie. You can generate a report for your AWS CIS 1.4.0 Level 1.2 Benchmark. All you need to do is to go to the export tab and select the details you want to see in your report and click generate.

$Variables

Variables allow you to define static or dynamic constructs and use them in queries. Our goal is to write reusable queries faster. Available types include string, boolean, number, SQL query, array, and object. 

You can create new variables under settings -> variables. ie. You add a variable user, and you can type $user to refer to that construct in your queries. 

Snowflake integration

Snowflake is a very popular data platform. Resmo helps you continuously monitor and visualize your Snowflake assets, including databases and warehouses, for an unwavering cybersecurity posture. Our integration is ready with its queries & rules today!

Other updates

• Resource detail view header includes resource’s recognizable fields. ie. when you enter an S3 bucket’s detail, you see its name at the top, or when you enter an Opsgenie user’s detail view, you see its name at the top.

• GitHub email field for organization membership is added.
• Amazon Cognito is added as a resource.
• Bunch of DevOps improvements! You don't see them, but they make our product faster and more secure.