Skip to main content

Upcoming Multi-Tenant Version | 3.32

Multi-Tenant release date: February 23, 2025

Warning

The content and dates of these Release Notes are provisional and subject to change.

All new features, enhancements, and resolved issues will be available upon version deployment in the multi-tenant environment unless explicitly stated otherwise in the respective section's sub-heading.

New features and enhancements

IaC Security Presets

Improve the accuracy of IaC Security scan results by creating IaC Security Presets - sets of queries that allow you to triage findings based on the core capabilities of the IaC Security scanner.

With preset management, you can easily create and manage custom or predefined presets, tailoring security scans to their specific needs.

Support for Repo URLs in Zip File Scans

The Repository Insights API now supports repo URLs for Zip file scan scenarios, extending coverage beyond Integrated Repo (SCM) and direct Repo URL scans. This enhancement provides AppSec managers with deeper insights into repository activity, including Lines of Code (LOC) and the number of scanned files, enabling more precise scan preset customization.

Light Queries

Light Queries have been introduced to enhance accuracy and efficiency in vulnerability detection. These queries focus on identifying the most relevant security risks, streamlining the triage process, and delivering faster, more precise scan results.

A new setting for Light Queries has been added to the Account and Project pages, allowing users to easily enable this optimized detection approach.

Resolved issues

  • DAST incorrectly detected legitimate files as hidden vulnerabilities.

  • The viewerLink for the SAST scan report in JSON format was incorrect.

  • SCA Resolver error.

  • Slowness in loading filters on the main Scans page.

  • When multiple results shared the same similarity ID and two of them were selected to add a note, the note was duplicated across all results with the same similarity ID.

  • Scan execution was encountering issues due to DOM-related errors.

  • The error "Clone succeeded, but checkout failed" occurred.

  • The report was not displaying IaC results for a specific project.

  • The project import status was not displayed when the repository was not included in the initial list.

  • A display-related issue occurred on the Code Repository page in Project Settings.

  • The Project overview page became distorted when the repository name was too long.

  • Old vulnerabilities were reported in the latest Redis Docker image.

  • There was a discrepancy in vulnerabilities between RedHat UBI 8 and UBI 9.

  • Drilling down into KPIs to view results triggered a 504 Gateway Timeout error.

  • A false positive was detected for "openssl 3.0.7".

  • A false positive was detected for a "jq" package.

  • A zip could be scanned via CLI but not via the UI.

  • Container Security was showing no results on the Scan Summary page, despite results being present.

  • The Project report included non-exploitable results even when the filter excluded them.

  • All scans finished with partial status due to SCM Azure project settings.

  • The Feedback App failed to retrieve additional fields due to a gRPC message size limitation (exceeding the maximum size of 10,485,760 bytes).

  • Filters were not working in Containers.

  • The OAuth Client UI regenerated the secret when pressing Enter in any field.

  • It was not possible to fetch the list of existing tags when creating a new project with a manual scan.

  • A CSV report from KPI was ignoring the tag filter.

  • Project Report generation failure.

  • Adding a note was resetting the state for the result API.

  • Opening an SCA result resulted in a "Cannot read null properties (read 'toLowerCase')" error.

  • KICS timeout was causing an error when fetching sources.

  • In the API endpoint sast-results-predicates, adding a note to a SAST finding causes the state to revert to the default value.

  • The IaC results page got stuck in an infinite loading loop.

  • Error in commit transaction: failed to save SCA scan results.

  • The resolution was failing when parsing the Poetry dependency output.

  • SAST results sync issue due to large-sized object.

  • Export service could not download a 500k file.

  • The Private Packages overview tab kept loading endlessly.

  • The scan runner was unable to download the scan file because the pre-signed URL expired before the scan starts.

  • An error occurred when generating a Projects report.

In this section: