Consolidated page of all release notes for Container Vulnerability Response from Vancouver to Xanadu.
How to use this page
To help you prepare for your upgrade, we have combined the cross-family Container Vulnerability Response release notes onto one page. Read this summary of the new features, changes, and updated information for your product from Vancouver to Xanadu.
Tip: If there were no updates for a release notes section in a certain family release, we included a short note for your reference. For example, if a product did not have any updates in Tokyo, the row says "No updates for this release."
Important information for upgrading Container Vulnerability Response to Xanadu
Before you upgrade to Xanadu, review these pre- and post-upgrade tasks and complete the tasks as needed.
| Release |
Release notes |
Vancouver |
No updates for this release. |
Washington DC |
No updates for this release. |
Xanadu |
No updates for this release. |
New features
Between your current release family and Xanadu, new features were introduced for Container Vulnerability Response.
| Release |
Release notes |
Vancouver |
- Viewing the dashboards in Vulnerability Manager Workspace
- Starting with v2.1 of Container Vulnerability Response, the Container Vulnerability Response and Prisma Cloud Compute integration run status dashboards are available in the Next Experience UI from Vulnerability Manager Workspace.
- Configuring fields to receive information on common vulnerabilities and exposures (CVEs)
- Starting from v2.1 of Container Vulnerability Response, when the Vulnerability Response Integration with Palo Alto Networks Prisma Cloud Compute is run, the fields Exploit exists and Remediation notes are populated with the details obtained from Prisma to provide
information on the CVEs. In addition, you can configure the fields that must get updated during the execution.
- Requesting an extension for a deferred container vulnerable item
- Starting with version v2.2.3 of Container Vulnerability Response, you can request an extension for a deferred exception rule before the due date.
- Extension of a deferred extension rule
- Starting with version v2.2.3 of Container Vulnerability Response, you can request an extension for a deferred extension rule before the due date.
- Extension of deferred remediation task
- Starting with version v2.2.3 of Container Vulnerability Response, you can request an extension for a deferred remediation task before the due date.
- Accessing only the container vulnerable items assigned to you and your group with the exception approver
role
- For the exception approver role, sn_vul_container.exception_approver, the granular role, sn_vul_container.read_all, has been removed so that you can access the container vulnerable items and remediation tasks assigned to you
and your group only.
- Adding the work notes for a deferred container vulnerable item
- Starting from 2.3 of Container Vulnerability Response, you can add the relevant information in the Work Notes field for a deferred container vulnerable item also.
- Quick start tests for Container Vulnerability Response
After upgrades and deployments of new applications or integrations, run quick start tests to verify that Container Vulnerability Response works as expected. If you customized Container Vulnerability Response, copy the quick start tests and configure them for your customizations. |
Washington DC |
|
Xanadu |
- New Properties module
- Starting with v2.11.3 of Container Vulnerability Response, a new Properties module has been added to the navigation menu under the Administration section. This module enables direct modification of the
values, offering a user-friendly method to manage and update system properties directly from the interface.
- Create auto-close rules for Container Vulnerability Response
- Starting with v2.11.3 of Container Vulnerability Response, define auto-close rules with advanced conditions to automatically close older or stale CVITs based on defined filter criteria on container vulnerabilities.
- Customize the calculation of Age and Age closed parameters of a container vulnerable item
- Starting with v2.11.3 of Container Vulnerability Response, the Age and Age Closed durations of a Container Vulnerable Item can be configured to be calculated from the date in the Created, Opened, or First Found fields.
- Open the search results in the Vulnerability Manager Workspace or IT Remediation Workspace rather than the Classic UI
- Starting with v24.0.6 of Vulnerability Response, automatically open your search results in the Vulnerability Manager Workspace or IT Remediation Workspace rather than the Classic UI, by adjusting the application scope in the unified navigation bar to Vulnerability Manager Workspace or IT Remediation Workspace respectively. These application scopes are available to you based on your assigned role.
- Vulnerability Manager Workspace access to the sn_vul_container.read_all role
- Starting with v24.0.6 of Vulnerability Response, as a user with the sn_vul_container.read_all role, you can view the container vulnerable items in the Vulnerability Manager Workspace.
- IT Remediation Workspace access to the sn_vul_container.read_assigned role
- Starting with v24.0.6 of Vulnerability Response, as a user with the sn_vul_container.read_assigned role, you can view the container vulnerable items assigned to you and your assignment groups in the IT Remediation Workspace and remediate them.
- Navigate to the List page in the Vulnerability Manager Workspace or IT Remediation Workspace by selecting the links from the All menu
- Starting with v24.0.6 of Vulnerability Response, when you enable the 'sn_vul_cmn_ws.navigate_to_workspace' system property, selecting predefined filter links in the Container Vulnerability Response module from the 'All' menu will automatically
open these links in the List page in the Vulnerability Manager Workspace or IT Remediation Workspace based on your role.
- Hide the record count on the lists in the Vulnerability Manager Workspace and IT Remediation Workspace
- Starting with v24.0.6 of Vulnerability Response, you can hide the record count on the lists in the List page of the Vulnerability Manager Workspace and IT Remediation Workspace, by adding the table names to the glide.ui.list.seismic.omit.count system property.
- Enable automatic refresh for the Home page dashboard in the Vulnerability Manager Workspace
- Starting with v24.0.6 of Vulnerability Response, when creating and editing filters on the Container Vulnerabilities tab on the Home page of the Vulnerability Manager Workspace, you can configure the widgets to automatically refresh. Otherwise, you can manually refresh the widgets by selecting the Refresh button on the Container Vulnerabilities
tab.
- Re-evaluating remediation properties for all records in the Vulnerability Manager Workspace
- Starting with v24.0.6 of Vulnerability Response, you can evaluate the remediation properties for all the Container Vulnerable Items from the Container Vulnerable Items list by selecting the All items in the Record
selection field of the Re-evaluate remediation properties modal in the Vulnerability Manager Workspace.
- Re-evaluate the remediation properties for container vulnerable items in the Vulnerability Manager Workspace
- Select the container vulnerable items conditionally for reevaluating the following remediation properties in Vulnerability Manager Workspace:
- Assignments
- Remediation tasks
- Remediation target date
- Exceptions (Vulnerability Response v24.0.6)
- Risk score
- Enhanced processing performance of scheduled job
- The Rollup container vulnerable item values to vulnerability and group scheduled job is enhanced to create background jobs with multithreading capabilities. This upgrade involves segmenting the job into
several smaller child jobs, which are executed either in parallel or concurrently. This modification enables processing of multiple records simultaneously, thus significantly speeding up the overall task.
- for Container Vulnerability Response
-
After upgrades and deployments of new applications or integrations, run quick start tests to verify that Container Vulnerability Response works as expected. If you customized Container Vulnerability Response, copy the quick start tests and configure them for your customizations.
- Vulnerability Response Prisma Registry Integration
- Now you can ingest the static image findings obtained from the Prisma registry scan into the ServiceNow Container Vulnerability Response.
|
Changes
Between your current release family and Xanadu, some changes were made to existing Container Vulnerability Response features.
| Release |
Release notes |
Vancouver |
No updates for this release. |
Washington DC |
No updates for this release. |
Xanadu |
|
Removed
Between your current release family and Xanadu, some Container Vulnerability Response features or functionality were removed.
| Release |
Release notes |
Vancouver |
No updates for this release. |
Washington DC |
No updates for this release. |
Xanadu |
The Close button has been removed for a remediation task in the classic UI, Vulnerability Manager Workspace, and IT Remediation Workspace.
|
Deprecations
Between your current release family and Xanadu, some Container Vulnerability Response features or functionality were deprecated.
| Release |
Release notes |
Vancouver |
No updates for this release. |
Washington DC |
No updates for this release. |
Xanadu |
No updates for this release. |
Activation information
Review information on how to activate Container Vulnerability Response.
| Release |
Release notes |
Vancouver |
Install Container Vulnerability Response by requesting it from the ServiceNow Store. Visit the ServiceNow Store website to view all the available apps
and for information about submitting requests to the store. For cumulative release notes
information for all released apps, see the ServiceNow Store version history release
notes.
|
Washington DC |
Install Container Vulnerability Response by requesting it from the ServiceNow Store. Visit the ServiceNow Store website to view all the available apps and for information about submitting requests to the store. For cumulative release notes information for all released apps, see the ServiceNow Store version history release notes.
|
Xanadu |
No updates for this release. |
Additional requirements
If any additional requirements were introduced or changed for Container Vulnerability Response we have noted them here.
| Release |
Release notes |
Vancouver |
No updates for this release. |
Washington DC |
No updates for this release. |
Xanadu |
No updates for this release. |
Browser requirements
If any specific browser requirements were introduced or changed for Container Vulnerability Response we have noted them here.
| Release |
Release notes |
Vancouver |
No updates for this release. |
Washington DC |
No updates for this release. |
Xanadu |
No updates for this release. |
Accessibility information
Review details on accessibility information for Container Vulnerability Response, such as specific requirements or compliance levels.
| Release |
Release notes |
Vancouver |
No updates for this release. |
Washington DC |
No updates for this release. |
Xanadu |
No updates for this release. |
Localization information
If there are specific localization considerations for Container Vulnerability Response we have noted them here.
| Release |
Release notes |
Vancouver |
No updates for this release. |
Washington DC |
No updates for this release. |
Xanadu |
No updates for this release. |
Highlight information
If there are specific highlight considerations for Container Vulnerability Response we have noted them here.
| Release |
Release notes |
Vancouver |
- Remediate Container Vulnerable Items (CVITs) in Vulnerability Manager Workspace.
- View the Container Vulnerability Response and Prisma Cloud Compute (CVR) integration run status in Vulnerability Manager Workspace.
See Container Vulnerability Response for more information.
|
Washington DC |
No updates for this release. |
Xanadu |
- Reevaluate the risk score, assignments, remediation target date, exceptions, and remediation task for a specific set of container vulnerable items in Vulnerability Manager Workspace.
See Container Vulnerability Response for more information.
|