Anchore Enterprise Release Notes - Version 4.9.2

Anchore Enterprise v4.9.2

Anchore Enterprise release v4.9.2 contains targeted fixes.
No database upgrade is needed.

Upcoming Enterprise v5.0.0 Announcements

Enterprise Service Updates

Fixes

  • Improved the efficiency of Vulnerability Scans. Slower scan time has been linked to the policy-engine service hitting Out of Memory conditions under increased load.
  • Fixed the Tag Drift Policy Gate which was failing on images analyzed by Enterprise v4.9.0 or later.
  • Restored the Runtime Inventory Image TTL setting which keeps only the most recent set of inventory per namespace.
  • Improved the memory profile and reduced memory usage for all the services of Anchore Enterprise.
  • V2 API Fixes
    • POST /v2/images - prevent deprecated fields from being accepted in the V2 API
    • GET /v2/images/{image_digest}/check - returns both the overall final_action, which includes the result of the allow/deny lists, as well as the policy_action of the policy rule evaluation.
    • GET /v2/subscriptions - when the subscription_type is repo_update, now returns the subscription_value data in the V2 API format.
    • POST /v2/subscriptions - when the subscription_type is repo_update, prevents non-valid json to be added via the subscription_value data.
    • GET /v2/subscriptions/{subscription_id} - when the subscription_type is repo_update, now returns the subscription_value data in the V2 API format.
    • PUT /v2/subscriptions/{subscription_id} - when the subscription_type is repo_update, prevents non-valid json to be added via the subscription_value data.
    • Evaluation Details field of Policy Evaluations will contain a policy_action field. This field represents the policy result before applying image allow/deny lists
ComponentRecommended Version
Enterprisev4.9.2
Enterprise UIv4.9.0
Engine Helm Chartv1.28.1
AnchoreCTL (V1 API Compatible)v1.8.0
AnchoreCTL (V2 API Compatible)v4.9.0
anchore-k8s-inventoryv1.1.1
anchore-ecs-inventoryv1.2.0
KAI (Deprecated)v0.5.0
Kubernetes Admission Controllerv0.4.0
REM - Remote Execution Manager (Deprecated)v0.1.10
Harbor Scanner Adapterv1.2.0
Jenkins Pluginv1.1.0
Last modified November 16, 2023