HomeGuidesAPI ReferenceChangelog
Changelog

[6.21.1.0] - 2025-08-15

Added

  • Wiz Sync Compliance:
    • Creating issues when not compliant
    • Creating assessments and adding controls to affected controls in RegScale
  • PowerPoint (.pptx) and Word Documents (.docx) when uploading files to RegScale

Changed

  • Updated Wiz integration to classify Assets as Hardware based on asset type in addition to technology deployment model

Fixed

  • Issue with AWS Security Hub integration where it was failing to find assets from findings

[6.23.2.0] - 2025-08-14

Added

  • Additional Export Builder Templates

Changed

  • Memory management improvements when using Export Builder
  • Component roles are now incorporated into Appendix A control rollups
  • Improved export mapping depth

Fixed

  • Count of open issues displayed is incorrect on Status Boards under certain circumstances
  • Component Status Board shows No Data for Compliance History
  • Count of Components displayed on SSP Dashboard is incorrect under certain circumstances
  • Formatting issues in Appendix A
  • Unable to set roles at the component control level
  • Export Builder uses partial name instead of full name for contact information under certain circumstances
  • Export Builder missing "Service" (ports/protocols)
  • Affected Control field on some forms is using a custom field type instead of the default field type

[6.23.1.0] - 2025-08-12

Added

  • Support for out of the box templates that can be bundled with the platform

Changed

  • Memory management improvements when using Export Builder

[6.23.0.0] - 2025-08-11

Added

  • Users can now input a questionniare ID outside those present within the current SSP when using RegML Author to draft an SSP
  • FedRAMP KSIs can be imported as a catalog
  • Components now has a System Roles tab
  • ASVS 5.0 Catalog now available
  • Users can now manually select specific threat scenarios to apply in Risk Assessment Builder instead of applying an entire Threat Model
  • Users can now create Requests as child records of Assessments, Projects, Security Plans, Supply Chain, and Components as well as view Requests
  • Users can now create a new Risk from the Risk Workspace

Changed

  • Expanded risk configuration options
  • Control implementation exports enriched

Fixed

  • Issues linked to risks do not appear on the Managing Risk > Issues tab or the Risk Assessment flow
  • Formatting issues in Control Builder
  • When an LOI fails during an LOI assessment, user can save without completing required fields
  • Scrolling issues on Control Implementation > Mappings tab
  • Updates to questionnaire instance due dates via the API do not work
  • Risks cannot be edited until a risk assessment is completed
  • OSCAL SSP cannot be exported under certain conditions
  • Export options for SSPs incorrectly presented under certain conditions
  • OSCAL catalog exports missing data
  • OSCAL SSP exports missing controls
  • OSCAL catalog validation fails
  • OSCAL SSP export validation fails
  • OSCAL profile export mixes casing of control IDs
  • OSCAL SSP does not export Information Types
  • OSCAL does not export System Roles
  • OSCAL SSP export metadata missing Party Information
  • AI WYSIWYG button missing styling
  • Controls cannot be added to an SSP under certain conditions
  • Questionnaire file uploader missing close button
  • Policy Parameters would display an error incorrectly under certain circumstances
  • Retroactive dates cannot be set on Evidence Records
  • When building an SSP, certain UI elements reflect incorrect control counts
  • Risk Assessment averages can display poorly
  • Risk Assessment Financial Impact does not calculate under certain circumstances
  • Setting the Implementation Status of a Control on a Component updates or resets Parts
  • Drag and Drop for Workflow Steps is not functional
  • Current Risk field in Risk Assessment can display an unexpected value under certain circumstances
  • Various UI fixes, updates, and accessibility improvements throughout the platform
  • Internal improvements throughout the platform

[6.21.0.0] - 2025-08-08

Added

  • Enhanced integration override logic to support Aqua dateFirstDetected field mapping
  • branch parameter to SonarCloud integration to filter issues on a specific branch
  • Added support for on-prem SonarQube deployments in the SonarCloud integration using the sonarUrl in init.yaml

Changed

  • Updated all FlatFileImporter integrations to use IntegrationAsset and IntegrationFinding instances to follow the ScannerIntegration implementations

Fixed

  • Issues not closing during Qualys flat file import
  • Errors when running jobs in Automation Manager

[6.22.5.0] - 2025-08-04

Changed

  • Parts are now created when a control implementation is created

Fixed

  • Various UI spacing, size, and input validation feedback issues
  • Dependency updates for security
  • The "Other" filter on a Security Plan's Control Status page does not filter as expected
  • Regressions in specific exports
  • Response Automation Save button does not work

[6.20.10.0] - 2025-08-01

Added

  • Additional logging statements to the Defender export_resources command
  • New variable useMilestones, when set to true, milestones will be created on issues when they are created, closed, or reopened when using ScannerIntegration
  • Wiz newly added finding types:
    • secrets
    • network exposure
    • end of life
    • external attack surface
    • external access
  • New RegScale models:
    • Classification
    • Cryptography
    • Milestone
    • Team

Changed

  • Wiz performance improvements:
    • Improved performance when processing Wiz assets & findings
    • Improved logging for findings and asset sync

Fixed

  • Typo for aoId attribute in the SecurityPlans RegScale model

[6.20.9.1] - 2025-07-31

Fixed

  • Issue during secret decryption

[6.22.4.0] - 2025-07-31

Added

  • The API endpoint api/vulnerability/groupByCve now supports components

Changed

  • The FedRAMP POA&M Export now includes a Configuration Findings tab

Fixed

  • eMASS POA&M Exports in .xlsm format sometimes hang on generation
  • eMASS POA&M Exports contain an extraneous ".1" in Column D (Controls)
  • Access codes not accepted for completing questionnaires

[6.22.3.0] - 2025-07-29

Added

  • Charts in Report Builder can be grouped by week, month, quarter, or year when grouping a date field.