Release Notes for Engine Pack 9.4.3

Engine Pack 9.4.3 includes, right out of the box, improved queries for PLSQL and C-Sharp.

RPG is now included in Engine Pack 9.4.3 with new and improved queries, improved support, and more features.

Scala support availability continues to be delivered as a Technology Preview. CxSAST 9.4.3 includes new and improved queries, with a new set of features.

To run scans using the Technology Preview version, set the new support flag, USE_NEW_SCALA, in the [CxDB].[Config].[CxEngineConfigurationKeysMeta] table to true.

Only project files with the .scala file extension determine that the project will be scanned for Scala files. The .conf file extension (used for Scala HOCON) is no longer a criteria for scanning Scala projects.

Beginning with CxSAST 9.4.3, the .conf configuration files will no longer be included in the LOC (lines of code) count of a scan. Therefore, even without any change in the project’s source code, a project scanned with CxSAST 9.4.3 might result in less LOC than a previous version of CxSAST. However, the .conf files will still be parsed and interpreted as in the previous versions.

Swift support is available as a Technology Preview in CxSAST 9.4.3.

To use the new language support, do the following:

Two new queries added for Java language to prevent the Trojan Source vulnerability:

A new preset is available in CxSAST 9.4.3 for Korean Security Standards, called the MOIS (KISA) Software Secure Coding 2021 from the Ministry of the Interior and Safety (MOIS) and Korea Internet & Security Agency (KISA).

Two new presets are available for C++ language:

Where the number of DOM Objects are displayed in the log, the log line now will be labeled Resolving (instead of “Unspecified”).