HomeGuidesChangelog
Changelog
Back to All

CLI 6.29.6.1

January 15th, 2026

[6.29.6.1] - 2026-01-15

Added

  • Batch operations now correctly send isPublic field to server, fixing RBAC visibility issues on newly created issues and vulnerabilities
  • Batch retry logic automatically retries failed batches individually to prevent data loss
  • FedRAMP test method defaults (Examine, Interview, Test) now automatically loaded from OSCAL catalogs into control test plans
    • New testMethod field on ControlTestPlan model with validation for valid test methods
    • OSCAL catalog parser extracts test methods from FedRAMP High Rev5 baselines
    • CLI command for importing test method mappings
    • Catalog import process automatically populates test method defaults during updates
  • CausalAnalysis model implementation with complete getList endpoint and CRUD functionality for root cause analysis tracking
  • Airflow DAG for OpenText WebInspect scanner integration

Fixed

  • API URL construction for http:// domains broken by eMASS integration changes
  • QRadar compliance assessment now creates issues by default
  • QRadar POAM creation for failed assessments now properly populates all required fields
    • Description field uses HTML formatting instead of unformatted Markdown text
    • Related Controls field populated with comma-separated control IDs
    • Asset Identifier field populated with AWS Account ID
    • Recommended Actions field populated with HTML-formatted remediation steps
    • Date First Detected field populated with current date
    • POA&M Comments field populated with assessment metadata including date first detected
  • eMASS XML import now uses standard RegScale model patterns for creating Issues and SecurityPlans
  • DNS name validation added to vulnerability creation to prevent API rejection of invalid DNS formats
  • Prisma Cloud CLI commands ImportError preventing access to authenticate, sync_hosts, sync_images, and sync_sbom commands
  • Qualys integration
    • Policy import now correctly extracts title and metadata from FO API export format (TITLE vs policyName fields)
  • Assessment Details formatting now displays correctly without excessive whitespace and empty tables across all compliance integrations
    • Fixed systemic HTML rendering issue in base ComplianceIntegration class and all derived integrations
    • Removed literal newline characters () from HTML description generation that broke table and list rendering
    • AWS Audit Manager, AWS Config, GuardDuty, IAM, KMS, Org, and evidence generators now render HTML properly
    • QRadar Query Events assessments now display HTML tables and sections correctly
    • GCP compliance assessments now render without whitespace corruption
    • "Failed Resources" tables and other HTML content now display all data correctly in UI
    • Affects 15+ integration files with consistent fix pattern
  • Prisma Cloud SBOM tar.gz extraction security enhancements
    • Added archive format validation before extraction to prevent corrupted file processing
    • Implemented resource consumption limits (1GB file size, 10,000 member count) for zip bomb protection
    • Enhanced path traversal protection with comprehensive validation
    • Added symbolic and hard link filtering to prevent symlink attacks
    • Python 3.12+ data filter support with fallback for older versions
    • Refactored extraction logic into focused helper functions reducing cognitive complexity from 20 to <15
    • Added NOSONAR suppression for validation function with detailed security explanation
    • fixed cicd flow issue

Changed

  • Increased batch sizes from 100 to 1000 for assets, issues, and vulnerabilities for improved sync performance
  • Removed http.client dependency from eMASS client configuration to eliminate CVE-2025-13836 association
  • PDF text extraction now uses pypdfium2 (Chrome PDFium engine) for improved performance and reliability
  • Trivy, Grype, OpenText, Snyk, and Veracode scanner commands now use and options instead of and (breaking change)
  • Airflow DAGs for Trivy and Grype updated to use and parameters
  • S3 access for scanner integrations now supports config credentials (awsAccessKey, awsSecretKey, awsRegion) when AWS profile is unavailable
  • Code formatting migrated from black to ruff for faster formatting and linting
  • Build system modernized to use pyproject.toml exclusively, removing setup.py dependency
  • eMASS API client now uses httpx instead of urllib3 for improved performance and modern HTTP handling
  • QRadar API client migrated from requests/urllib3 to httpx for improved performance and modern HTTP handling