Tag: DevSecOps

  • Puppet Security Compliance Enforcement for Windows now fixes DSC reporting issues

    Puppet Security Compliance Enforcement for Windows now fixes DSC reporting issues

    Originally posted 2026-02-25 at: https://dev.to/puppet/puppet-security-compliance-enforcement-for-windows-now-fixes-dsc-reporting-issues-1ea5 Security Compliance Enforcement (SCE) for Windows now supports the latest versions of the puppetlabs‑pwshlib dependency, including a fix for DSC reporting issues. In addition, resource names are updated to correctly reference SCE instead of the legacy CEM name. NOTE: When updating to the latest release of SCE…

  • Tutorial: How to Remediate Vulnerabilities with Puppet Enterprise Advanced Patching

    Tutorial: How to Remediate Vulnerabilities with Puppet Enterprise Advanced Patching

    This blog first appeared on 2025-08-07 at puppet.com: https://www.puppet.com/blog/vulnerability-remediation-puppet-advanced-patching The rate at which vulnerabilities are being exploited is on the rise. The VulnCheck company, which specializes in vulnerability intelligence, found that in Q1 2025, 28.3% of vulnerabilities were exploited within 1 day of CVE disclosure. Keeping your systems up to date is…

  • Security Compliance Enforcement (SCE) Version 2.4.0 for Linux is now Available!

    Security Compliance Enforcement (SCE) Version 2.4.0 for Linux is now Available!

    ✨New in this release: You can now use SCE to enforce DISA STIG controls on RHEL 9 systems. This extends the existing support for STIG compliance on RHEL 7 and 8, helping organizations meet stringent security requirements. Developed by the US Defense Information Systems Agency (DISA), the Security Technical Implementation…