Implemented

🤖 Peer Reviewer Assistant: We're bringing tighter security before you go live! This complementary feature adds comments directly to your pull requests with alerts and actionable recommendations, having scanned your would-be contribution with SAST and SCA. This way, it helps reviewers to assess risk before code is merged.

Currently available for Azure DevOps and GitLab integrations. Advanced plan exclusive.

📚 New documentation site is live: All Knowledge Base articles have been migrated to docs.fluidattacks.com. The new website gives us more configuration options that result in a more comfortable browsing experience.

☑️ Prevent accidental rejection of access invitations: We added an extra confirmation step to the platform's invitation flow. This avoids accidental rejections caused by automated email link scanning.

⚠️ Cost warning when changing branches: When you modify branches from a repository in the Scope section, you'll now see a warning and checkboxes clarifying that this action can impact the cost of the service.

Upcoming deprecations

🐳 Docker image scanning: Read the rationale here.

Key info:

• Final deprecation date: March 31
• No action required.

☁️ CSPM (AWS, Azure, GCP): Read the rationale here.

Key info:

• Final deprecation date: March 31
• No action required.

📱 Move now from APK to MAST image: Our mobile app testing image was named "apk," but it also tests .ipa files. Of course, this confused you. We renamed it to MAST (meaning mobile application security testing), in line with industry terminology. Start using the new image from here, as the old one will be deprecated.

Key info:

• Final deprecation date: April 30
• Use MAST image instead of APK image.

Additional information

🤝 New sub-processors: As part of our commitment to transparency in customer data management, we want to inform you that we have engaged new sub-processors. We added Rudol and Logfire, and removed Langchain. For a full picture, visit our Trust Center.

🍪 Cookie policy update: We've expanded our cookie policy. Check it out and reach out to help@fluidattacks.com if you have questions.

⚠️Fluid Attacks call notice⚠️

Our sales team may be calling your team members to offer them onboarding and adoption of new features on our platform. This is a reliable procedure in which we will never seek to discuss your software's vulnerabilities. However, if you have any questions, please contact us at help@fluidattacks.com.

✨Your review would take only 10-15 minutes✨

Share your opinions on our AppSec solution on Gartner Peer Insights and earn a $25 gift card! Your feedback helps others make informed decisions and shapes the future of application security. Just follow this link! Remember your review can also be in Spanish.