Release Announcement: SOAR v2.4.10

[PeterBengtson]

This release announces SOAR v2.4.10, delivering critical reliability improvements, enhanced auto-remediation capabilities, and resolved dependency issues for seamless global deployment.

SOAR v2.4.10: Enhanced Reliability & Build Stability

Dependency Resolution for Global Deployment

Fixed Worldwide Build Issues: Pinned versions of pandas (2.2.3) and numpy (2.1.2) to eliminate SAM build failures across different environments. This critical fix ensures consistent deployment regardless of regional PyPI repository states or local development environments.

Enhanced Data Filtering & Reporting

Weekly AI Report Improvements: The weekly AI report now intelligently filters away outdated data for renamed AWS accounts, ensuring reporting accuracy and preventing confusion when organizations restructure their account naming conventions.

Auto-Remediation Enhancements

Expanded Permission Sets: Added iam:PassRole permission to RDS.6 auto-remediation, enabling proper IAM role management during database encryption enforcement operations.

Improved Load Balancer Handling: ELB.5 auto-remediation now handles both Classic Load Balancers and Application Load Balancers with enhanced heuristics for load balancer name retrieval, accommodating AWS's inconsistent field naming across different ELB types.

Enhanced RDS Key Management: RDS.4 auto-remediation now properly uses alias/aws/rds for KMS key references, ensuring consistent encryption key management across RDS instances.

Robust Error Handling: Added ResultPath to all auto-remediation catch blocks in state machines, ensuring proper error context preservation and improved debugging capabilities.

New Auto-Remediation Coverage

DynamoDB.2 Support: Added DynamoDB.2 to the enabled auto-remediations list, expanding automated security compliance coverage to DynamoDB point-in-time recovery requirements. If you have an existing OpenSecOps SOAR installation, you may want to add "DynamoDB.2" to the list of enabled auto-remediations in the DynamoDB table remediatable-sec-hub-controls.

Enhanced Account Reassignment: Granted proper execution permissions to the AccountReassignmentPreprocessorFunction, ensuring reliable operation of the delegated finding reassignment feature introduced in v2.4.0.

Technical Improvements

Enhanced Security Context: Improved AWS utilities layer with additional exception handling for RDS remediation operations, increasing system resilience.

Impact & Benefits

• Global Deployment Reliability: Eliminated build failures that affected deployments in different regions and development environments
• Enhanced Operational Intelligence: Improved accuracy of weekly reports through intelligent data filtering
• Expanded Security Coverage: Additional auto-remediation capabilities for DynamoDB and enhanced RDS operations
• Improved System Resilience: Better error handling and state management across all auto-remediation workflows
• Cleaner Deployments: Streamlined release artifacts without development overhead

Getting Started

Update your SOAR deployment to v2.4.10 using standard deployment procedures. All enhancements activate automatically with no additional configuration required.

Upgrade Path: Direct upgrade from any v2.x version. The dependency fixes resolve build issues that may have affected previous deployment attempts.

For detailed installation and upgrade instructions, consult the OpenSecOps documentation at github.com/OpenSecOps-Org.

---

This announcement covers versions v2.4.1 through v2.4.10 released since the previous major announcement for v2.4.0 in July 2024.