dex, risk-score, gateway, email-security

kodster28 · kodster28 · commit 94b27f7c630f · 2025-04-24T13:32:41.000-05:00
diff --git a/src/content/docs/cloudflare-one/changelog/dex.mdx b/src/content/docs/cloudflare-one/changelog/dex.mdx
@@ -1,19 +1,42 @@
 ---
 pcx_content_type: changelog
 title: Digital Experience Monitoring
-release_notes_file_name:
-  - dex
 head:
   - tag: title
     content: Digital Experience Monitoring Changelog
 description: Review recent changes to Digital Experience Monitoring.
-
 ---
 
-import { ProductReleaseNotes, Render } from "~/components"
+import { ProductChangelog } from "~/components";
+
+{/* <!-- All changelog entries live in src/content/changelogs/dex/. */}
+
+<ProductChangelog product="dex" hideEntry="2024-06-16-cloudflare-one" />
+
+## 2025-01-24
+
+**IP visibility**
+
+[IP visibility](/cloudflare-one/insights/dex/ip-visibility/) enables admins to inspect the different IP addresses associated with an end-user device. IP types available for review on the Cloudflare dashboard include: the device's private IP, the public IP assigned to the device by the ISP, and the router's (that the device is connected to) private IP.
+
+## 2024-12-19
+
+**Remote captures**
+
+Admins can now collect packet captures (PCAPs) and WARP diagnostic logs from end-user devices. For more information, refer to [Remote captures](/cloudflare-one/insights/dex/remote-captures/).
+
+## 2024-05-20
+
+**Last seen ISP**
+
+Admins can view the last ISP seen for a device by going to **My Team** > **Devices**. Requires setting up a [traceroute test](/cloudflare-one/insights/dex/tests/traceroute/).
+
+## 2024-05-13
 
-<Render file="changelog-note" />
+**DEX alerts**
 
-{/* <!-- All changelog entries live in src/content/changelogs/dex.yaml. For more details, refer to https://developers.cloudflare.com/style-guide/documentation-content-strategy/content-types/changelog/#yaml-file --> */}
+Admins can now set [DEX alerts](/cloudflare-one/insights/dex/notifications/) using [Cloudflare Notifications](/notifications/). Three new DEX alert types:
 
-<ProductReleaseNotes />
+- Device connectivity anomaly
+- Test latency
+- Test low availability
diff --git a/src/content/docs/cloudflare-one/changelog/email-security.mdx b/src/content/docs/cloudflare-one/changelog/email-security.mdx
@@ -1,15 +1,31 @@
 ---
 pcx_content_type: changelog
 title: Email Security
-release_notes_file_name:
-  - email-security
-
 ---
 
-import { ProductReleaseNotes, Render } from "~/components"
+import { ProductChangelog } from "~/components";
+
+{/* <!-- All changelog entries live in src/content/changelogs/email-security/. */}
+
+<ProductChangelog
+	product="email-security"
+	hideEntry="2024-06-16-cloudflare-one"
+/>
+
+## 2024-12-19
+
+**Email Security expanded folder scanning**
+
+Microsoft 365 customers can now choose to scan all folders or just the inbox when deploying via the Graph API.
+
+## 2024-08-06
+
+**Email Security is live**
+
+Email Security is now live under Zero Trust.
 
-<Render file="changelog-note" />
+## 2024-08-06
 
-{/* <!-- Actual content lives in /src/content/release-notes/email-security.yaml. Update the file there for new entries to appear here. For more details, refer to https://developers.cloudflare.com/style-guide/documentation-content-strategy/content-types/changelog/#yaml-file --> */}
+**Microsoft Graph API deployment.**
 
-<ProductReleaseNotes />
+Customers using Microsoft Office 365 can set up Email Security via Microsoft Graph API.
diff --git a/src/content/docs/cloudflare-one/changelog/gateway.mdx b/src/content/docs/cloudflare-one/changelog/gateway.mdx
@@ -1,19 +1,86 @@
 ---
 pcx_content_type: changelog
 title: Gateway
-release_notes_file_name:
-  - gateway
 head:
   - tag: title
     content: Gateway Changelog
 description: Review recent changes to Cloudflare Gateway.
-
 ---
 
-import { ProductReleaseNotes, Render } from "~/components"
+import { ProductChangelog } from "~/components";
+
+{/* <!-- All changelog entries live in src/content/changelogs/gateway/. */}
+
+<ProductChangelog product="gateway" hideEntry="2024-06-16-cloudflare-one" />
+
+## 2025-02-12
+
+**Upload/Download File Size selectors for HTTP policies**
+
+Gateway and DLP users can now create HTTP policies with the [Download and Upload File Size (MiB)](/cloudflare-one/policies/gateway/http-policies/#download-and-upload-file-size) traffic selectors. This update allows users to block uploads or downloads based on file size.
+
+## 2025-02-02
+
+**The default global Cloudflare root certificate expired on 2025-02-02 at 16:05 UTC**
+
+If you installed the default Cloudflare certificate before 2024-10-17, you must generate a new certificate and activate it for your Zero Trust organization to avoid inspection errors. Refer to [Troubleshooting](/cloudflare-one/faq/troubleshooting/#as-of-february-2-2025-my-end-user-devices-browser-is-returning-a-your-connection-is-not-private-warning) for instructions and troubleshooting steps.
+
+## 2025-01-08
+
+**Bring your own resolver IP (BYOIP) for DNS locations**
+
+Enterprise users can now [provide an IP address](/cloudflare-one/connections/connect-devices/agentless/dns/locations/dns-resolver-ips/#bring-your-own-dns-resolver-ip) for a private DNS resolver to use with [DNS locations](/cloudflare-one/connections/connect-devices/agentless/dns/locations/). Gateway supports bringing your own IPv4 and IPv6 addresses.
+
+## 2024-11-20
+
+**Category filtering in the network policy builder**
+
+Gateway users can now create network policies with the [Content Categories](/cloudflare-one/policies/gateway/network-policies/#content-categories) and [Security Risks](/cloudflare-one/policies/gateway/network-policies/#security-risks) traffic selectors. This update simplifies malicious traffic blocking and streamlines network monitoring for improved security management.
+
+## 2024-10-17
+
+**Per-account Cloudflare root certificate**
+
+Gateway users can now generate [unique root CAs](/cloudflare-one/connections/connect-devices/user-side-certificates/) for their Zero Trust account. Both generated certificate and custom certificate users must [activate a root certificate](/cloudflare-one/connections/connect-devices/user-side-certificates/#activate-a-root-certificate) to use it for inspection. Per-account certificates replace the default Cloudflare certificate, which is set to expire on 2025-02-02.
+
+## 2024-10-10
+
+**Time-based policy duration**
+
+Gateway now offers [time-based DNS policy duration](/cloudflare-one/policies/gateway/dns-policies/timed-policies/#time-based-policy-duration). With policy duration, you can configure a duration of time for a policy to turn on or set an exact date and time to turn a policy off.
+
+## 2024-10-04
+
+**Expanded Gateway log fields**
+
+Gateway now offers new fields in [activity logs](/cloudflare-one/insights/logs/gateway-logs/) for DNS, network, and HTTP policies to provide greater insight into your users' traffic routed through Gateway.
+
+## 2024-09-30
+
+**File sandboxing**
+
+Gateway users on Enterprise plans can create HTTP policies with [file sandboxing](/cloudflare-one/policies/gateway/http-policies/file-sandboxing/) to quarantine previously unseen files downloaded by your users and scan them for malware.
+
+## 2024-07-30
+
+**UK NCSC indicator feed publicly available in Gateway**
+
+Gateway users on any plan can now use the [PDNS threat intelligence feed](/security-center/indicator-feeds/#publicly-available-feeds) provided by the UK National Cyber Security Centre (NCSC) in DNS policies.
+
+## 2024-07-14
+
+**Gateway DNS filter non-authenticated queries**
+
+Gateway users can now select which endpoints to use for a given DNS location. Available endpoints include IPv4, IPv6, DNS over HTTPS (DoH), and DNS over TLS (DoT). Users can protect each configured endpoint by specifying allowed source networks. Additionally, for the DoH endpoint, users can filter traffic based on source networks and/or authenticate user identity tokens.
+
+## 2024-06-25
+
+**Gateway DNS policy setting to ignore CNAME category matches**
+
+Gateway now offers the ability to selectively ignore CNAME domain categories in DNS policies via the [**Ignore CNAME domain categories** setting](/cloudflare-one/policies/gateway/domain-categories/#ignore-cname-domain-categories) in the policy builder and the [`ignore_cname_category_matches` setting](/api/resources/zero_trust/subresources/gateway/subresources/rules/methods/create/) in the API.
 
-<Render file="changelog-note" />
+## 2024-04-05
 
-{/* <!-- All changelog entries live in src/content/changelogs/gateway.yaml. For more details, refer to https://developers.cloudflare.com/style-guide/documentation-content-strategy/content-types/changelog/#yaml-file --> */}
+**Gateway file type control improvements**
 
-<ProductReleaseNotes />
+Gateway now offers a more extensive, categorized [list of files](/cloudflare-one/policies/gateway/http-policies/#download-and-upload-file-types) to control uploads and downloads.
diff --git a/src/content/docs/cloudflare-one/changelog/risk-score.mdx b/src/content/docs/cloudflare-one/changelog/risk-score.mdx
@@ -1,19 +1,20 @@
 ---
 pcx_content_type: changelog
 title: Risk score
-release_notes_file_name:
-  - risk-score
 head:
   - tag: title
     content: Risk score Changelog
 description: Review recent changes to Cloudflare Zero Trust user risk scoring.
-
 ---
 
-import { ProductReleaseNotes, Render } from "~/components"
+import { ProductChangelog } from "~/components";
+
+{/* <!-- All changelog entries live in src/content/changelogs/risk-score/. */}
+
+<ProductChangelog product="risk-score" hideEntry="2024-06-16-cloudflare-one" />
 
-<Render file="changelog-note" />
+## 2024-06-14
 
-{/* <!-- All changelog entries live in src/content/changelogs/risk-score.yaml. For more details, refer to https://developers.cloudflare.com/style-guide/documentation-content-strategy/content-types/changelog/#yaml-file --> */}
+**SentinelOne signal ingestion**
 
-<ProductReleaseNotes />
+You can now configure a [predefined risk behavior](/cloudflare-one/insights/risk-score/#predefined-risk-behaviors) to evaluate user risk score using device posture attributes from the [SentinelOne integration](/cloudflare-one/identity/devices/service-providers/sentinelone/).
