HomeGuidesAPI ReferenceChangelog
Changelog

CLI 6.29.1.1

[6.29.1.1] - 2025-12-09

Fixed

  • fixed issue with synqly tanium vulnerability ipaddress holding both v4 and 6

CLI 6.29.1.0

[6.29.1.0] - 2025-12-08

Removed

  • Irrelevant Audit Manager Status and Evidence Count metadata from issue descriptions during AWS Security Hub integration

Fixed

  • Fix FedRAMP Appendix A page break content truncation
  • REG-18979: Fixed Qualys VMDR API URL construction causing XML parsing errors - URLs now include leading slash and trailing slash before query parameters
  • AWS Security Hub:
    • Consolidated mode now properly groups findings by plugin_id
    • AttributeError by standardizing plugin_id naming convention
    • Remediation URLs removing extra 'securityhub-' prefix that caused broken documentation links

Security

  • Routine dependency updates

RegScale 6.27.1.1

[6.27.1.1] - 2025-12-05

Fixed

  • Assessment modules with required custom fields can be updated
  • Ability to create a new Casual Analysis from an existing Issue record

RegScale 6.27.1.0

[6.27.1.0] - 2025-11-26

Added

  • Issues API
      • Bulk create issues
      • Bulk update existing issues
      • Create or update based on provided unique keys
      • Memory-efficient export of large datasets
      • Stream-process large issue batches
  • Assets API
      • Bulk create assets
      • Bulk update existing assets
      • Create or update based on unique keys
      • Memory-efficient export of large datasets
      • Stream-process large asset batches
  • Vulnerabilities API
      • Bulk create vulnerabilities
      • Stream-process vulnerability batches
      • Stream-create vulnerability mappings
  • Known Exploited Vulnerabilities (KEV) integration with CISA catalog
  • Configurable unique key fields for deduplication
  • Performance monitoring metrics for batch operations

Fixed

  • OAuth claims processing for SSO providers
  • Memory leaks in large-scale data processing
  • Security control save operations using proper change tracking

CLI 6.29.0.6

[6.29.0.6]

Fixed

  • Fixed Jira integration to use new /rest/api/3/search/jql endpoint after Atlassian deprecated /rest/api/2/search (removed Oct 31, 2024)
  • Fixed Jira integration to gracefully handle missing issue types across diverse client configurations
  • Fixed Jira authentication to properly use basic_auth for API tokens instead of OAuth token_auth

CLI 6.29.0.5

[6.29.0.5]

Fixed

  • Fixed CrowdStrike query_incidents KeyError when API response is missing expected 'resources' key
  • CSAM Integration is failing to create inheritance associations
  • SARIF Integration vulnerability severity issue.

Added

  • QRadar Integration that uses QRadar API integration

CLI 6.29.0.1

[6.29.0.1]

Fixed

  • Fixed issue with metadata api endpoint

CLI 6.29.0.0

[6.29.0.0]

Fixed

  • CSAM: Fixed inheritance bug and POA&M bug
  • SARIF: Fixed vulnerability severity mapping bug
  • Fixed a bug where Kerberos was missing from container build packages
  • Container build process improvements

Changed

  • CSAM: Fixed controlImplementations endpoint API change (get_list_by_parent returns {"items": []} format)

Fixed

  • AWS Security Hub: Fixed consolidated mode to properly group findings by GeneratorId instead of unique finding UUID, preventing duplicate issues for the same security control type
  • CSAM Integration enhancements:
    • POA&M import functionality for synchronizing CSAM POA&Ms to RegScale Issues
    • Artifacts import with automatic file downloads and attachments
    • Points of Contact (POC) mapping to RegScale users
    • Business continuity and incident response data import
    • Additional status fields (risk assessment, SSP completion, configuration management)
    • Agency-defined data items with customizable field mappings
    • New CLI command for connectivity testing
    • Enhanced SSP import with improved error handling

CLI 6.28.4.1

[6.28.4.1] - 2025-11-17

Fixed

  • vulnerability module updates to align with platform updates

RegScale 6.27.0.0

[6.27.0.0] - 2025-11-15

Added

  • Policy Generator RegML Agent for automated policy creation
  • Questionnaire Visual Rule Builder for dynamic conditional logic
  • Cost Savings analytics integrated into:
    • RegML Evidence Mapper
    • RegML Control Author
    • RegML Explainer
    • Dashboards with new cost savings visualizations
  • Search and date filters added to Scorecard filters
  • Deep linking support added to Tenant Form
  • Status column added to Supply Chain List View
  • Org field added to Components
  • Programs enhanced with KPS and hierarchical support
  • RegML Audit History Report with improved gauge interaction
  • Introduced Vulnerability Module
    • New table and list views for easier management
    • Tenant-level configuration options including SLA support
    • Assets Impacted field for improved traceability
    • Disposition column and filters on the Vulnerability Status Board
    • Issue and Bulk Action features for streamlined triage and updates
    • Vulnerability Scorecard with enhanced analytics and visualization
    • Enhanced prioritization of known exploited vulnerabilities (KEVs)
    • Task Assignment bulk action and task count synchronization
    • Corrected casing, mapping, and validation behaviors within vulnerability data
  • Templating System
    • Create/Edit form and catalog list view introduced for easy management
    • Template utilities added for SSP and Components modules
    • Parameters Builder importer added for template population
  • Report Builder support for custom fields in list-type reports

Changed

  • Questionnaire Assignment workflow and UX improved with modal enhancements and additional options
  • Grid views display loading indicators during data retrieval
  • Workbench optimized to reduce repeat API calls and unnecessary data loads
  • Security Plan and Component Status Boards optimized for faster loading
  • Risk and SSP Scorecards improved with performance tuning and loading indicators
  • RBAC indexing and composite indexes optimized for faster role-based access control
  • Authentication logging enhanced with security fingerprinting and SIEM-friendly context enrichers
  • Login startup time improved through K8s health probe and startup seeding optimizations
  • Control and Security Control modules optimized for faster performance and reduced bundle size
  • eMASS exports moved to a background service for improved reliability
  • Font and icon loading optimized to improve client performance
  • UI consistency improved across forms, notifications, accordions, and ellipsis menus
  • Risk Scorecard updated to show business metrics only when data changes
  • Ellipsis menu interactions smoothed for improved responsiveness
  • Context searching made slightly less restrictive to return more relevant information
  • Model parameter tuning implemented to better align generated responses with retrieved context

Fixed

  • Questionnaire Importer loads all sections instead of stopping after the first
  • Inactive account deactivation logic corrected to enforce expiration settings
  • Digital Signature Settings save correctly
  • Reset Password functionality restored
  • Issue Screening loads QA person correctly
  • Task Auto-Close now updates UI as expected
  • “My Controls” filter reinstated on Scorecard
  • Control Bulk Editor rebuilt and functions correctly
  • Creating child Vulnerabilities properly maps parent relationships
  • Org Create API now returns record ID
  • Labels and capitalization on Grid Views corrected
  • File subsystem progress button removed to prevent premature closing
  • Response compression fixed
  • Non-async blocking calls removed from Authentication Controller
  • Risks can now be associated with Security Plans
  • Import Threat Model loads as expected
  • Risk print report includes BIA information
  • Visual and layout issues resolved across textboxes, accordions, and labels