“NSAuditor AI 0.4.5 Launches Major Enhancements with New AWS Auditing Plugins and Multi-Ship Cycle”
“NSAuditor AI 0.4.5 Launches Major Enhancements with New AWS Auditing Plugins and Multi-Ship Cycle” — NSAUDITOR AI RELEASES VERSION 0.4.5 WITH SIGNIFICANT ENH
NSAuditor AI Releases Version 0.4.5 with Significant Enhancements
NSAuditor AI has officially announced the release of version 0.4.5, which marks an important milestone in the 0.4.x release stream. This update introduces the third multi-ship cycle, delivering two parallel ship arcs in a single deployment window: EE-RT.14 v2 and EE-RT.16 v1. This dual deployment enhances the capabilities of the platform, particularly in the areas of AWS auditing.
Enhanced AWS RDS Auditor Plugin
The EE-RT.14 v2 update significantly expands the capabilities of the AWS RDS Auditor, plugin 1140. The plugin has grown from 3 substrate-evidence dimensions to an impressive 7. A notable addition is the kms:DescribeKey cross-reference path, which transforms previously UNVERIFIABLE key shapes into deterministic PASS or MEDIUM outcomes via the KeyMetadata.KeyManager. This enhancement is crucial for organizations looking to improve their key management practices and compliance with security standards.
Furthermore, plugin 1140 v2 introduces a tunable backup retention period, allowing operators to set values between 1 to 35 days. This flexibility is essential for tailoring backup strategies to specific organizational needs. Additionally, it features a public accessibility cross-plugin sister relationship with the newly introduced plugin 1170, enhancing the overall synergy between the plugins.
Introduction of AWS EC2 Security Group Perimeter Auditor
In a significant development, EE-RT.16 v1 introduces the NEW plugin 1170, the AWS EC2 Security Group (SG) Perimeter Auditor. This plugin serves as orthogonal evidence to the existing plugin 1023, the zero-trust checker. Plugin 1170 covers six audit dimensions, including both IPv4 and IPv6 ingress to 13 restricted management-data-AI-infra ports. These ports include well-known protocols such as SSH, RDP, MS SQL, MySQL, Postgres, Redis, Memcached, MongoDB, Elasticsearch, CouchDB, Docker daemon, and Kubelet API.
Additionally, the plugin audits all-protocol ingress with security group-scope suppression, public ingress to non-restricted ports marked as INFO (with walkthrough required), egress to 0.0.0.0/0, and orphan security group governance via Elastic Network Interface (ENI) cross-reference. These features enable organizations to comprehensively assess their security posture and ensure that their AWS configurations are aligned with best practices.
Strengthening IAM and Snapshot Security
In terms of security enhancements, plugin 1140 v2 now supports IAM database authentication on various supported engines, which is a critical step towards enforcing least privilege access. Additionally, the plugin allows for snapshot encryption via DescribeDBSnapshots with explicit parameters set to IncludeShared=false and IncludePublic=false, contributing to a defense-in-depth strategy that mitigates risks associated with data exposure.
Robust Performance Metrics and Confidence in Growth
This release marks the first trio-publish across the Enterprise Edition (EE), Community Edition (CE), and agent-skill in a single session. The agent-skill 0.1.11 update ends a 14-month period of stale catalog drift for users of Claude Code, Cursor, Windsurf, and VS Code Copilot. The plugin count has now increased from 17 to 18, with a full regression test yielding 4361 of 4361 green results, preserving a perfect 40-session streak.
Moreover, the coverage matrix remains unchanged, indicating 10 fully covered areas, 4 partial coverages, and 33 out-of-scope (OOS) elements. This transparency aligns with the institutional honesty per the matrix-shift discipline, reinforcing NSAuditor’s commitment to maintaining high standards in security auditing.
Conclusion
The release of NSAuditor AI version 0.4.5 reflects a confident growth narrative, further solidifying its position as a leading solution for AWS security auditing. With the enhancements made to the RDS Auditor and the introduction of the EC2 SG Perimeter Auditor, organizations can expect improved security posture and compliance capabilities in their cloud environments.
