Current Multi-Tenant Version | 3.46

Project creation at the tenant level now includes automatic assignment of the project creator and improved group selection. When a project is created, the creator is automatically associated with it (without a specific role) to ensure ongoing access.

For group assignment, users can select from their own groups and sub-groups, while those with the new assign-project-all-groups permission can assign any group. This preserves backward compatibility with the previous model and ensures existing users retain their current capabilities. The update simplifies project setup, guarantees creator access, and provides more controlled and transparent group assignment.

Download the latest version here.

Users must now have the send-report-email permission to send reports by email. If a user does not have this permission, the option to send reports to email recipients will not appear in the report configuration UI. Additionally, any attempt to submit the action through the API without this permission will result in an error message.

The solution previously named AI Protection has been renamed to Checkmarx One Assist. This update applies across the BO UI (tenant creation, edit, and license pages), database, and license configuration. Existing tenant licenses and packages have been updated, with Checkmarx One Assist now available as an add-on for all packages.

DAST environment settings now include an Advanced Settings option, allowing users to override default parameters for authentication and scans. This enhancement provides more flexibility in configuring environments, enabling greater control over scan behavior and improving the user experience by supporting customization beyond default settings.

As part of this update, users can also define custom headers to be sent with every request, both during authentication tests and scans. The UI for adding headers follows the same design as the custom headers option in the authentication tab. This capability is available for both web applications and APIs.

The Applications page and table has been redesigned, is easier to use and organize, and includes more features. You can view your applications and sort and filter them, add or remove their associated environments and projects, and group them by business criticality or risk score. After organizing your table, you can export it in two primary formats: a CSV file containing the full table data or an SBOM report. You can also create an Application Report, a detailed list of all open vulnerabilities in the application.

A new permission, override-policy-management, has been introduced under the Policy Management category. It allows evaluation of Override Policy Management. The permission is available to the following roles: ast-admin, manage-policy-management.

A new Groups endpoint has been added as a replacement for the Keycloak endpoint. It returns data in a valid JSON format and supports pagination and filtering. The response includes count, filteredCount, and groups. Access is restricted: users who are group managers can only retrieve the groups they manage.