- Wiz sync_compliance command not creating milestones on issue creation
- Updated expired Kendo UI license for UBI and Rocky deployments
- Logic to verify --include_tags are provided when using --exclude_tags to match Qualys API requirements
- Organization and project parameter to SonarCloud integration to filter the issues returned from SonarCloud/Qube
- Qualys Total Cloud integration:
- Errors when providing --include_tags or --exclude_tags parameters
- Logging messages and progress bars
- FedRAMP Appendix A import and data mappings
- Logging in Wiz Policy Compliance sync that showed incorrect counts
- Wiz Policy Compliance sync create/update logic
- Search in Module navigation menu
- External Mapping drilldown
- Risk Effectiveness chart
- SBOM version comparison
- Evidence Status workspace
- Expand/Collapse for right navigation panel
- Subsystem counts at top of forms
- NERC/CIP catalog
- View service account roles
- Continuous Monitoring recurrence wizard
- Parts now paginate in Control Builder
- Control titles truncated in Lightning Assessments
- Updated "Create New" experience
- SSO tab moved to IAM panel
- Added bottom action button in Questionnaire Builder
- Rich text editors updated to latest version
- Paging added to Cyber Hygiene
- RegML Auditor charts show last 25 runs
- Continuous Monitoring progress section restyled
- Workflow analytics integrated into Workflow Designer
- Property edits now tracked in history
- Search dropdown component updated
- Questionnaire response width adjusted
- SSP Scorecard shows correct number of Parts
- News Feed activities load correctly
- Task Data Extensions work as expected
- RegML Auditor import functions properly
- Lightning Assessment dates display correctly
- Continuous Monitoring evidence modal works properly
- Questionnaire avatars display correctly
- returns all users
- Text overflow issues resolved
- Access roles updated and aligned with documentation
- Risk module search works correctly
- Wiz Sync Compliance:
- Creating issues when not compliant
- Creating assessments and adding controls to affected controls in RegScale
- PowerPoint (.pptx) and Word Documents (.docx) when uploading files to RegScale
- Updated Wiz integration to classify Assets as Hardware based on asset type in addition to technology deployment model
- Issue with AWS Security Hub integration where it was failing to find assets from findings
- Additional Export Builder Templates
- Memory management improvements when using Export Builder
- Component roles are now incorporated into Appendix A control rollups
- Improved export mapping depth
- Count of open issues displayed is incorrect on Status Boards under certain circumstances
- Component Status Board shows No Data for Compliance History
- Count of Components displayed on SSP Dashboard is incorrect under certain circumstances
- Formatting issues in Appendix A
- Unable to set roles at the component control level
- Export Builder uses partial name instead of full name for contact information under certain circumstances
- Export Builder missing "Service" (ports/protocols)
- Affected Control field on some forms is using a custom field type instead of the default field type
- Support for out of the box templates that can be bundled with the platform
- Memory management improvements when using Export Builder
- Users can now input a questionniare ID outside those present within the current SSP when using RegML Author to draft an SSP
- FedRAMP KSIs can be imported as a catalog
- Components now has a System Roles tab
- ASVS 5.0 Catalog now available
- Users can now manually select specific threat scenarios to apply in Risk Assessment Builder instead of applying an entire Threat Model
- Users can now create Requests as child records of Assessments, Projects, Security Plans, Supply Chain, and Components as well as view Requests
- Users can now create a new Risk from the Risk Workspace
- Expanded risk configuration options
- Control implementation exports enriched
- Issues linked to risks do not appear on the Managing Risk > Issues tab or the Risk Assessment flow
- Formatting issues in Control Builder
- When an LOI fails during an LOI assessment, user can save without completing required fields
- Scrolling issues on Control Implementation > Mappings tab
- Updates to questionnaire instance due dates via the API do not work
- Risks cannot be edited until a risk assessment is completed
- OSCAL SSP cannot be exported under certain conditions
- Export options for SSPs incorrectly presented under certain conditions
- OSCAL catalog exports missing data
- OSCAL SSP exports missing controls
- OSCAL catalog validation fails
- OSCAL SSP export validation fails
- OSCAL profile export mixes casing of control IDs
- OSCAL SSP does not export Information Types
- OSCAL does not export System Roles
- OSCAL SSP export metadata missing Party Information
- AI WYSIWYG button missing styling
- Controls cannot be added to an SSP under certain conditions
- Questionnaire file uploader missing close button
- Policy Parameters would display an error incorrectly under certain circumstances
- Retroactive dates cannot be set on Evidence Records
- When building an SSP, certain UI elements reflect incorrect control counts
- Risk Assessment averages can display poorly
- Risk Assessment Financial Impact does not calculate under certain circumstances
- Setting the Implementation Status of a Control on a Component updates or resets Parts
- Drag and Drop for Workflow Steps is not functional
- Current Risk field in Risk Assessment can display an unexpected value under certain circumstances
- Various UI fixes, updates, and accessibility improvements throughout the platform
- Internal improvements throughout the platform
- Enhanced integration override logic to support Aqua dateFirstDetected field mapping
- branch parameter to SonarCloud integration to filter issues on a specific branch
- Added support for on-prem SonarQube deployments in the SonarCloud integration using the sonarUrl in init.yaml
- Updated all FlatFileImporter integrations to use IntegrationAsset and IntegrationFinding instances to follow the ScannerIntegration implementations
- Issues not closing during Qualys flat file import
- Errors when running jobs in Automation Manager
- Parts are now created when a control implementation is created
- Various UI spacing, size, and input validation feedback issues
- Dependency updates for security
- The "Other" filter on a Security Plan's Control Status page does not filter as expected
- Regressions in specific exports
- Response Automation Save button does not work
