[6.28.3.5] - 2025-11-11
Fixed
Fix AWS max evidence to collect option not being honored
CrowdStrike:
Fixed an issue that was causing failures
Fixed an issue causing inaccurate results
Fixed error handling of incident command
[6.28.3.0] - 2025-11-07
Fixed
- Fix AWS control status mapping to use 'In Remediation' instead of 'Not Implemented'
Added
- QRadar SIEM integration skeleton with CLI commands for syncing security events, findings, and assets from IBM QRadar. Includes test connection functionality to validate QRadar instance connectivity.
[6.28.2.0] - 2025-11-05
Added
- Vulnerabilities connector additions:
- Logic to only populate the latest version of CVSS scores
- CVE ID suffix to the Issue title
- Issue Due date calculations and overrideable defaults based on issue severity
Fixed
- Assets being deduped outside the provided SSP ID throughout various commands
- Pieces of evidence not being processed and uploaded during AWS Audit Manager
- Incorrect operation counts in Scanner Integration logging outputs
- AWS Fixes:
- Enhanced framework-aware status mapping for control implementations
- control implementation status updates on subsequent runs & improved logging
- control pass/fail determination for AWS Audit Manager compliance sync
[6.28.0.0] - 2025-10-29
Added
- Filter validation when translating asset filters to vulnerability filters in the Vulnerability connector
- Multiple AWS integrations: CloudTrail, CloudWatch, GuardDuty, IAM, KMS, S3, SSM, Config Compliance and sync_compliance
Changed
- Improved performance in scanner integration during issue lookup indexing
Fixed
- Scanner integration KeyError for NotAssigned severity in due_date_handler (added default 364-day timeline)
[6.26.8.0] - 2025-10-28
Changed
- SSP Author
- Migrated to a job-based processing approach with significant improvements to scalability and performance
- Jobs can be saved and retrieved for later review
- Responses improved for professionalism and linguistic nuance
- Response Automation
- Confidence scores now reflect the strength of contextual information used to answer questions
- Job list includes real-time status updates
- Expanded to use questionnaires and policies as information sources
- Job submission details now display sources used
- Responses improved for professionalism and linguistic nuance
- Context searching made slightly less restrictive for greater flexibility and broader response discovery
- Implemented model parameter tuning to better align generated responses with retrieved context information
- AI Generator workflow UI clarifies that a questionnaire response instance ID is required as input
Fixed
- Response Automation search fields in job list and sources list work correctly
- UI improvements and minor fixes in Response Automation
- Policy Templates save correctly when uploaded through the UI
[6.26.7.0] - 2025-10-28
Changed
- Minimized the amount of logs generated in Automation Manager
Fixed
- Hidden service account expiration no longer causes service disruption
- Using the search bar in Automation Manager no longer disrupts integrations
- Updating a secret now correctly filters secrets for the selected job
- Red outline no longer appears on optional fields after being populated
- Fetching names for a security plan no longer changes the selected SSP for subsequent inputs
- Integration count now updates correctly when using the search bar
- Intermittent “Automation Container Connection Error” pop-up in Automation Manager eliminated
- Download button for job logs now functions correctly
- Tooltip messages now display properly on fields
- Export Builder can now create tables of controls with required data