Skip to main content

JetBrains Plugin - Changelog

The following table lists of improvements and bug fixes have been implemented for the JetBrains plugin with the relevant version release.

Plugin Version

Release Date

CLI Version and Key Updates

Improvements

Bug Fixes

2.2.4

Jan 28, 2025

2.3.12

  • We now show a warning message if the user initiates a scan and the name of the repo doesn't match the name of the selected Checkmarx One project.

2.2.3

Dec 17, 2024

2.3.7

  • Added the ability to create a new branch in the Checkmarx project when you run a scan from the IDE.

2.2.2

Dec 04, 2024

2.3.6

  • General improvements and bug fixes

2.2.1

Nov 20, 2024

2.3.5

  • General improvements and bug fixes

2.2.0

Nov 11, 2024

2.3.3

  • Added the AI Secure Coding Assistant (ASCA). The ASCA scanner is a lightweight scan engine that runs in the background as you work in JetBrains. Whenever you edit a file in JetBrains the ASCA scanner automatically scans that file.

    ASCA also provides customized prompts to get remediated code from Copilot. For more info about ASCA in JetBrains, see here.

2.1.6

Oct 22, 2024

2.3.1

  • General improvements and bug fixes

2.1.5

Oct 11, 2024

2.3.0

  • General improvements and bug fixes

2.1.4

Sep 9, 2024

2.2.5

  • General improvements and bug fixes

2.1.0

Sep 4, 2024

2.2.5

  • General improvements and bug fixes

2.0.16

Aug 29, 2024

2.2.5

  • General improvements and bug fixes

2.0.15

June 20, 2024

2.1.5

  • General improvements and bug fixes

2.0.14

May 20, 2024

2.1.2

  • The CLI that this plugin is based on is now signed with the Checkmarx digital signature, indicating that this is an official Checkmarx product. This enables communication from this plugin to bypass firewalls on Windows computers that previously blocked the unsigned CLI.

2.0.13

May 8, 2024

2.1.0

  • General improvements and bug fixes.

2.0.12

Apr 11, 2024

2.0.72

  • Changed mismatch warning behavior.

2.0.11

Jun 2, 2023

2.0.47

  • We now create nightly pre-release versions of this extension whenever we merge new code. Users have the option to update automatically to the latest pre-release version or to update only when a new release version is published. To learn how to install pre-release versions, see Automatic Updates - Releases Versions and Pre-Release Versions.

2.0.10

Apr 21, 2023

2.0.45

  • Updated dependencies

2.0.9

Apr 12, 2023

2.0.44

  • All references to AST (other than the name of the plugin) have been changed to use the new product name "Checkmarx One".

  • Fixed tooltip for Additional parameters so that link points to new documentation portal.

2.0.8

Dec 13, 2022

2.0.37

  • Fixed issue that SCA Additional Knowledge link had been causing errors when no link was available.

2.0.7

Nov 22, 2022

2.0.35

General improvements and bug fixes

2.0.6

Nov 14, 2022

2.0.34

  • The "Code samples" tab was renamed "Remediation Examples".

2.0.5

Oct 25, 2022

2.0.31

  • You can now initiate scans directly from your IDE. This empowers developers to identify vulnerabilities and remediate them as they code. This feature is currently supported for VS Code and JetBrains. This feature needs to be enabled for your organization's account by a Checkmarx admin user under Account Settings.

    You can run a new scan on an existing Checkmarx project by simply clicking on the "play" button in the Checkmarx panel. A Checkmarx scan runs on the files in your current workspace.

  • In the Checkmarx AST settings, there is now a field for adding additional params. This can be used to manually submit the base url and tenant name (in case there is a problem extracting them from the API Key) or to add global params such as --debug or --proxy. To learn more about CLI params, see Checkmarx One CLI Commands.

  • We have simplified the integration procedure for IDE plugins. It is no longer required to enter the Base URL or Tenant Name of your Checkmarx One account. Now, you just enter your API Key, and we extract all of the relevant account info from that Key.

2.0.4

Sep 13, 2022

2.0.27

  • In the SAST results viewer, we added new tabs with additional info about each vulnerability.

    • Learn More - Gives detailed information about the the nature of the risk and its causes, as well as remediation recommendations.

    • Code Samples - Shows a sample of code that is subject to this vulnerability, followed by a remediated version of that code.

  • In the SCA results viewer -

    • Enriched the data that is shown, and improved the display.

    • Added an automatic remediation button that enables users to automatically replace a vulnerable package version with a non-vulnerable version of that package.

      Tip

      This feature is currently supported only for NPM and only for direct dependencies.

2.0.3

Apr 13, 2022

2.0.16

  • Added option to group results by file name.

  • Fixed issue that retrieving SCA results was causing an error.

2.0.2

Mar 30, 2022

  • Added links to the relevant Codebashing lessons.

  • Added support for JetBrains’ Android Studio IDE.

2.0.1

Mar 7, 2022

2.0.13

  • Automatically selects the latest scan once a project and branch have been selected.

  • Added ability to filter results by vulnerability state.

2.0.0

Jan 28, 2022

2.0.10

  • Added ability to triage results directly from the IDE console

  • Added a brief description for SAST vulnerabilities

  • Updated UI elements to reflect the new Checkmarx branding (e.g., logo)

  • General UI improvements

0.0.5

Nov 3, 2021

2.0.4

  • Updated CLI to version 2.0.4

  • Added buttons in the sidebar of the Checkmarx pane to filter vulnerabilities by severity

  • Fixed issue when opening a JetBrains project that doesn’t have a repository

0.0.1

Sep 24, 2021

  • Import Checkmarx One scan results into your IDE

  • Show results from all scan types (SAST, SCA, and KICS)

  • Group and filter results

  • Navigate from results directly to the vulnerable code in the editor

  • Vulnerable code is highlighted in the editor

In this section: