HomeGuidesChangelog
Changelog
Back to All

CLI 6.29.14.1

January 28th, 2026

[6.29.14.1] - 2026-01-28

Added

  • Tanium integration component selection support allowing sync to SSP or specific Component via and options
  • Custom CA certificate support for corporate proxy environments (Netskope, Zscaler) via config option with SSL_CERT_FILE and REQUESTS_CA_BUNDLE environment variable fallback
  • OWASP ASVS framework handler for control ID matching with CWE-based vulnerability mapping
  • CWE-to-control lookup methods in ControlMatcher for SARIF and vulnerability scan integrations
  • SentinelOne integration for syncing agents, threats, and vulnerabilities from SentinelOne Management Console
  • Unified severity mapper for consistent severity mapping across 17+ integrations
  • Asset and finding parser framework for configurable data transformation
  • Resilience patterns including circuit breaker, retry policies, and checkpoint manager
  • Observability framework with structured logging, metrics collection, and distributed tracing
  • Integration configuration manager for centralized settings management
  • Dynamic connection pool sizing that scales with thread configuration
  • Added Databricks Integration [Beta], allows for querying Databricks Catalog and importing as a json file
  • FedRAMP CIS/CRM workbook validation command () to pre-check files before import
  • SARIF compliance sync integration for mapping static analysis findings to security controls
    • New CLI command for syncing SARIF compliance data to RegScale
    • Maps SARIF findings via CWE IDs to OWASP Top 10 or NIST 800-53 controls
    • Automatically toggles control implementation status between Planned and In Remediation

Changed

  • GraphQL pagination now uses iterative approach instead of recursive for improved stability
  • FedRAMP CIS/CRM import now uses flexible column header matching with aliases for better template compatibility
  • Api class now uses thread-local singleton pattern for improved connection pool efficiency and thread safety
  • AssetCache now uses multi-field O(1) indexing for all identifier lookups instead of O(n) iteration

Fixed

  • FedRAMP CIS/CRM import performance improved with optimized control implementation loading
  • Asset lookup fallback now checks all identifier fields
  • Custom CA certificate validation now fails fast on invalid paths instead of warning and continuing
  • SARIF compliance integration now escapes HTML in user-controlled data to prevent stored XSS vulnerabilities
  • SentinelOne SSL warning suppression now scoped to client requests only, no longer affects other integrations