Changelog
Back to All

RegScale 6.31.1.1

June 5th, 2026

[6.31.1.0] 06-05-2026

Changes & Enhancements

Workflow & Issue Management

  • Added validation to ensure FedRAMP High AU-2 requirements are properly enforced, helping organizations maintain compliance with audit logging and event monitoring expectations.
  • Introduced new vulnerability creation workflows within the Vulnerability Service and Issue Service, providing a more flexible and extensible foundation for future vulnerability management enhancements.
  • Added support Issue Workflows, enabling workflow capabilities similar to SSP Approval Workflows.
  • Improved issue creation behavior during STIG CKL imports to provide greater control over how imported findings are managed.
  • Enhanced issue workflow record linking to improve navigation and traceability between related records.

Questionnaire & Planning Improvements

  • Expanded Questionnaire support by adding additional entity types, including User, Facility, and Organization, for improved data collection and relationship management.
  • Added the ability to update Security Plans directly from Questionnaire responses, streamlining assessment and documentation workflows.

Security & Infrastructure

  • Hardened TCP Syslog/TLS processing to improve secure log transport and reliability.
  • Improved TLS connection handling for TCP Syslog integrations by ensuring TLS is always required when configured, regardless of SysLogTCPUseTls override settings.
  • Replaced a synchronous proxy HTTP implementation with an in-process background execution model, improving performance and reducing residual Server-Side Request Forgery (SSRF) exposure.

Fixes

Issue & Vulnerability Management

  • Resolved an issue where the First Seen Date was not being populated on issues generated from vulnerability imports.
  • Fixed an issue preventing the GetUserByUsername endpoint from functioning correctly when administrator credentials were used.
  • Corrected malformed links generated by Issue Workflow records, ensuring users are directed to the appropriate records.

Questionnaire

  • Fixed issues affecting Questionnaire entity handling and improved overall reliability when working with User, Facility, and Organization records.

Imports & Integrations

  • Corrected STIG CKL import behavior that could result in unintended issue creation during import processes.