Implemented

👌🏼 Centralized report download: No more download confusion! We've organized a dedicated area on our platform for all downloadable files. Just click the new "Downloads" button on the right side of the top bar to see everything you've downloaded in the last 12 hours. This convenient menu lets you check download progress and easily re-download any files you need. Currently, you'll find your vulnerability reports (executive and technical) there. We'll be adding SBOMs and other key platform resources to this download area soon!

📡 Reachability analysis: We've enhanced our automated tool to help you better understand the impact of vulnerabilities within your software supply chain. Our new "reachability module" examines the dependencies listed in the Supply chain section to determine if a reported security issue is an actual vulnerability that can be exploited in your applications. This analysis helps you prioritize and address the most critical issues first. With the latest upgrade, this module can assess Java components or dependencies.

Upcoming

⛳ Prioritized vulnerabilities table: Boost your vulnerability management efficiency with our upcoming prioritization feature! Each group will soon have a dedicated section listing the top 50 vulnerabilities by priority score, complete with location, assigned personnel, treatment status, and reporting date. This streamlined view will enable your team to quickly identify and address the most critical issues, ensuring their remediation efforts are aligned with your organization's policies.

📊 EPSS percentage column: To help you prioritize vulnerabilities, we'll add an EPSS percentage (Exploit Prediction Scoring System) column to the main table in the Supply chain section. This percentage shows how likely it is that a vulnerability in any of your direct dependencies will be exploited. A higher percentage means a higher likelihood of exploitation.

🧩 Overhauled Jira integration: We're enhancing our platform's integration with Jira to provide a smoother, more efficient way to manage our reports directly within your Jira environment. This improved compatibility with Jira will allow you to centralize your security posture management and streamline your workflows.

💥 Reachability as a prioritization criterion: Although the "Reachable" tag currently appears in the Supply chain section to identify confirmed exploitable vulnerabilities, it doesn't yet sufficiently influence their prioritization for remediation. Recognizing the importance of reachability, we will soon add it as a selectable prioritization criterion within the Priority section of your organization's policies in the platform.

✨Have 10-15 minutes to spare?✨

Share your opinions on our AppSec solution on Gartner Peer Insights and earn a $25 gift card! Your feedback helps others make informed decisions and shapes the future of application security. Just follow this link!