You can review this page for about information on new additions or updates to the governance policies in VMware Tanzu Hub. Security posture policy updates also apply to VMware Aria Automation for Secure Clouds, where they are referred to as rules. If you arrived at this page from the VMware Aria Automation for Secure Clouds documentation, you can return to the landing page for that product.
February 15, 2024 Policy Release
New Compliance Framework
The following compliance framework was mapped to AWS, Azure, GCP, and Kubernetes policies for the first time:
-
ISO IEC 27001, version 2022
January 16, 2024 Policy Release
Updated Compliance Frameworks
The following frameworks were mapped to controls for AWS, Azure, and Kubernetes policies for the first time:
-
CIS Amazon Elastic Kubernetes Service (EKS) Benchmark, version, 1.4.0
-
CIS Azure Kubernetes Service (AKS) Benchmark, version 1.4.0
-
CIS Kubernetes V.126 Benchmark, version 1.8.0
Per the compliance lifecycle, only the two latest versions of a compliance framework are supported at any given time. When a framework is deprecated, users can either switch to a newer version or create a custom framework to maintain the deprecated one.
