August 16th, 2025
Wiz Sync Compliance:
Creating issues when not compliant
Creating assessments and adding controls to affected controls in RegScale
PowerPoint (.pptx) and Word Documents (.docx) when uploading files to RegScale
Updated Wiz integration to classify Assets as Hardware based on asset type in addition to technology deployment model
Issue with AWS Security Hub integration where it was failing to find assets from findings
August 14th, 2025
Additional Export Builder Templates
Memory management improvements when using Export Builder
Component roles are now incorporated into Appendix A control rollups
Improved export mapping depth
Count of open issues displayed is incorrect on Status Boards under certain circumstances
Component Status Board shows No Data for Compliance History
Count of Components displayed on SSP Dashboard is incorrect under certain circumstances
Formatting issues in Appendix A
Unable to set roles at the component control level
Export Builder uses partial name instead of full name for contact information under certain circumstances
Export Builder missing "Service" (ports/protocols)
Affected Control field on some forms is using a custom field type instead of the default field type
August 12th, 2025
Support for out of the box templates that can be bundled with the platform
Memory management improvements when using Export Builder
August 11th, 2025
Users can now input a questionniare ID outside those present within the current SSP when using RegML Author to draft an SSP
FedRAMP KSIs can be imported as a catalog
Components now has a System Roles tab
ASVS 5.0 Catalog now available
Users can now manually select specific threat scenarios to apply in Risk Assessment Builder instead of applying an entire Threat Model
Users can now create Requests as child records of Assessments, Projects, Security Plans, Supply Chain, and Components as well as view Requests
Users can now create a new Risk from the Risk Workspace
Expanded risk configuration options
Control implementation exports enriched
Issues linked to risks do not appear on the Managing Risk > Issues tab or the Risk Assessment flow
Formatting issues in Control Builder
When an LOI fails during an LOI assessment, user can save without completing required fields
Scrolling issues on Control Implementation > Mappings tab
Updates to questionnaire instance due dates via the API do not work
Risks cannot be edited until a risk assessment is completed
OSCAL SSP cannot be exported under certain conditions
Export options for SSPs incorrectly presented under certain conditions
OSCAL catalog exports missing data
OSCAL SSP exports missing controls
OSCAL catalog validation fails
OSCAL SSP export validation fails
OSCAL profile export mixes casing of control IDs
OSCAL SSP does not export Information Types
OSCAL does not export System Roles
OSCAL SSP export metadata missing Party Information
AI WYSIWYG button missing styling
Controls cannot be added to an SSP under certain conditions
Questionnaire file uploader missing close button
Policy Parameters would display an error incorrectly under certain circumstances
Retroactive dates cannot be set on Evidence Records
When building an SSP, certain UI elements reflect incorrect control counts
Risk Assessment averages can display poorly
Risk Assessment Financial Impact does not calculate under certain circumstances
Setting the Implementation Status of a Control on a Component updates or resets Parts
Drag and Drop for Workflow Steps is not functional
Current Risk field in Risk Assessment can display an unexpected value under certain circumstances
Various UI fixes, updates, and accessibility improvements throughout the platform
Internal improvements throughout the platform
August 8th, 2025
Enhanced integration override logic to support Aqua dateFirstDetected field mapping
branch parameter to SonarCloud integration to filter issues on a specific branch
Added support for on-prem SonarQube deployments in the SonarCloud integration using the sonarUrl in init.yaml
Updated all FlatFileImporter integrations to use IntegrationAsset and IntegrationFinding instances to follow the ScannerIntegration implementations
Issues not closing during Qualys flat file import
Errors when running jobs in Automation Manager
August 4th, 2025
Parts are now created when a control implementation is created
Various UI spacing, size, and input validation feedback issues
Dependency updates for security
The "Other" filter on a Security Plan's Control Status page does not filter as expected
Regressions in specific exports
Response Automation Save button does not work
August 1st, 2025
Additional logging statements to the Defender export_resources command
New variable useMilestones, when set to true, milestones will be created on issues when they are created, closed, or reopened when using ScannerIntegration
Wiz newly added finding types:
secrets
network exposure
end of life
external attack surface
external access
New RegScale models:
Classification
Cryptography
Milestone
Team
Wiz performance improvements:
Improved performance when processing Wiz assets & findings
Improved logging for findings and asset sync
Typo for aoId attribute in the SecurityPlans RegScale model
July 31st, 2025
Issue during secret decryption
July 31st, 2025
The API endpoint api/vulnerability/groupByCve now supports components
The FedRAMP POA&M Export now includes a Configuration Findings tab
eMASS POA&M Exports in .xlsm format sometimes hang on generation
eMASS POA&M Exports contain an extraneous ".1" in Column D (Controls)
Access codes not accepted for completing questionnaires
July 29th, 2025
Charts in Report Builder can be grouped by week, month, quarter, or year when grouping a date field.