April 30th, 2025
Method to User model to get users by role
AssessmentResult model
Data types for contractValue, fundedAmount, and actualCosts on the SupplyChain regscale_model
Multiple import errors on regscale_models
Missing closed_count attribute
TypeError during the Tenable IO sync_assets and sync_findings commands
Error in save_to_json method when outputting the file name
April 29th, 2025
New version of Supplier Performance Risk System (SPRS) report for CMMC security plans
Includes rollups by family
New preview for inherited controls and component controls
Related catalogs lineage information for profiles on a SSP
Display caption for table views
Header for Business Risk view in a Risk Assessment to include Inherent Risk label
Removed links being displayed in small footer
Display large number of items on horizontal axis in Risk Scorecard
Formatting in Risk Assessment header
Console errors in SSP Control Scorecard
Bad null checks
Removed write to read-only value
Formatting on Inheritance Checkbox in Control Builder
Display of RegScale logo in RegML Explainer
Sorting of Controls for a SSP with CMMC
Table header and titles for Lineage inside SSP
Console errors on navigation in the Lineage page
Detail display button for Framework Gap Report
Updating SPRS report to Report Builder
CISO Dashboard
Risk now display the correct values
Chart rendering for Fix Problems
Pie chart color corrected
Improved load time on the page and corrected console errors
Default password to be changed is no longer checked in the browser
Formatting on Global Admin Panel
Seeding behavior for new Module Reports
Applied routine dependency upgrades to enhance security and stability
April 27th, 2025
Import error when using the Group regscale_model
April 25th, 2025
RegML Extractor relevance score threshold for improved performance
User permissions for Case and Change Roles to enable updating tasks
April 25th, 2025
Option to process STIG assets and vulnerabilities to a Component
Improved error handling when encountering errors while uploading files to RegScale
Improved performance in Qualys Total Cloud integration
Tenable SC to use jsonl scanner integration to reduce overhead and increase performance
Tenable IO and SC directory and commands to use variables and follow design pattern
Application class being prematurely initialized causing unnecessary overhead
Tenable SC integration not honoring config minimum severity in init.yaml
April 20th, 2025
New Cyber Hygiene Report to easily view most risky components
Rollup vulnerability data by component
Rollup security check data to show posture and calculate overall system posture
Rollup by issue
Rollup metrics for size and quantity of data in the database
Parent information included in risk rollup
Layout of security checks to make most relevant data display first
Password generator to always meet app requirements
Relationships between risk records to display correctly and include the correct identifier
Prevent running RegML Auditor when there is no data present
Can add new tests when there are no existing tests in the catalog
Vulnerability modal displays in dark mode
Layout of vulnerability data
Calculation of security check percentage is now correct
Removed soft deleted data from rollup status board
April 18th, 2025
SSP validation to the Nessus and Burp flat file imports
EDR/Endpoint connector in Automation Manager
Prevent sending Authorization headers for validateToken endpoint in API requests
April 18th, 2025
Background scheduled task to automate database index maintenance
Database index defragmentation across multiple tables for improved performance
April 17th, 2025
Introduced the Report Builder role for additional access granularity to report builder
Modified the Project Status field on the Projects listing page to display as a string
Eliminated the requirement for Control Source in the Control Implementations module
Ensured that LOI-compliant calculations no longer include the N/A status
Corrected the display of the Evidence Scorecard in the Policies Module ensuring it accurately shows evidence
Improved dark mode display
Evidence Scorecard
Project Scorecard
Enabled users to clear the Date Completed field in the Data Calls module
Enhanced the functionality of the Security Plan Status Board ensuring that search works correctly
Corrected the rendering of drop-downs
Ensured that FedRAMP SAR Export completes the container web and database sections accurately
Return expected 400 response code for missing field in POST or PUT to softwareInventory
Corrected the control status and originations for FedRAMP CIS/CRM exports when using compliance settings
Ensured that Control Implementations are sorted correctly on the Security Plan scorecards
Changed to an Edit prefix in the Compliance Settings header when editing existing settings
Prevented users from deleting RegScale-provided Compliance Settings
Implemented Swagger updates when new APIs are added to the system
Populated the Parent ID when creating new Continuous Monitoring records
Tailored exports corrections
Consistent font
Fixed large image sizes
Duplicated Implementation Statement
Spacing after Implementation Statement
Including additional data from the platform
Strengthened the form upgrade logic to prevent upgrades from hiding fields
Restored the paragraph formatting for the Control Implementation statement
Enhanced the functionality of the Questionnaire role ensuring it works as expected
Returning results when selecting All Time in Reports
Report titles working with custom labels
Respecting role permissions when navigating to Reports
Populating data calls by owner and status date dropdown in Reports
Performance issue for finalizing Continuous Monitoring Plan with a large number of controls
Check to prevent error response when pulling control implementation with bad data
April 11th, 2025
MasterAssessment model to RegScale Models
.msg file type support when uploading files to RegScale EDR Connector type which adds the ability to ingest EDR data from multiple integrations like CrowdStrike, Microsoft Defender, Malwarebytes and future integrations via
Counting informational findings when processing vulnerabilities during
Using the sslVerify from init.yaml or environment variable: to DuroSuite and Sicura API calls
Better authentication errors with Tenable SC and Vulnerability Management (IO)
Required fields on SupplyChain model to match RegScale model
Improved performance when analyzing issues for closure during
Multiple warning messages when was set to false in the file or environment variable
Error when counting vulnerabilities during Tenable SAP import
Error parsing vulnerabilities during OpenText import
Progress bars not behaving correctly during the SAP and SysDig flat file imports
Errors during Tenable SAP and Tenable SysDig integration
recommendations from the Risk model
