What's new in AppScan on Cloud
Discover upcoming and recently added features.
Updates: AppScan on Cloud announcements, including advance notice
of planned changes and scheduled maintenance that might affect your
workflow, can be found on AppScan News. To be
notified when there is an announcement, you can subscribe to AppScan
News.
Translations: If you are
reading this page in translation, please be aware that it may not
include the latest additions. To see the latest version of this
page, switch to the English version, using the "Change Language"
option at the top right of the menu bar.
New on April 1, 2025
SAST updates:
- Updates to rules.
New on March 30, 2025
- Dynamic analysis (DAST):
- Test Policies tab is now added under Organization. Here, you can manage your test policies and upload a custom policy that you created in AppScan Standard or AppScan Enterprise.
- Policies tab under Organization is now renamed as Compliance policies.
New on March 27, 2025
- IAST for Kubernetes (1.0.5)
- Dependencies update
- Fix container privileges
- Fix Windows installation
- Install script can get registry name as a parameter, for customers using private registry.
New on March 17, 2025
- Dynamic analysis (DAST):
- Azure OpenAI configuration enhances accuracy by reducing false positives to improve test results.
- Software Composition Analysis (SCA):
- SBOM (Software Bill of Materials) reports, which have been available in our platform’s UI, are now accessible via the Swagger API.
- Platform improvements:
- Report customization: Personalize your reports with your brand identity by easily adding your company logo and creating custom headers and footers.
- Custom policies: Issues can now be filtered based on technology, along with the other filtering options that were already available.
New on March 11, 2025
SAST updates:
- Static analysis client updated to 8.0.1628.
- Bug fix from version 8.0.1623: File paths for files at the root of a Git repository are now relative file paths.
New on March 05, 2025
- New IAST .NET agent (1.13.1)
- Performance improvements.
- Reduced frequency of heartbeat communication to AppScan on Cloud when the agent is disabled.
- Enhanced algorithm for merging similar issues.
New on March 3, 2025
- Static analysis client updated to 8.0.1623.
- Support for .NET 9.
New on February 28, 2025
- DAST engine update: Dynamic Analysis engine updated to AppScan Standard version 10.8.0. See AppScan Standard Fix List.
New on February 02, 2025
- Dynamic analysis (DAST):
- API testing: AppScan on Cloud provides a native workflow for automatic scanning based on the OpenAPI specification file, with improved configuration capabilities and enhanced coverage.
- Compliance Reports and Policies:
- New compliance reports:
- [EU] Digital Operational Resilience Act (DORA)
- OWASP Application Security Verification Standard
- Updated compliance reports:
- [US] DISA's Application Security and Development STIG. V6R1
- New compliance reports:
- Support for EXD file: When you upload a traffic recording for "Explore with Guidance", you can now import the EXD file generated by AppScan Standard or AppScan Dynamic Analysis Client (ADAC).
- Support to import scan files, including the results, without running the scan in AppScan on Cloud. This option is only available through the API.
- Integrations updates
- A new JetBrains Android Studio plugin lets you secure your Android apps early through seamless code analysis.
New on January 20, 2025
- Static analysis client updated to 8.0.1616.
- Client-only update.
- Removed stage in the path for SCA Java archives.
New on January 10, 2025
- Static analysis client updated to 8.0.1612.
- Client-only update.
- Java archives now properly extracted for Software Composition Analysis (SCA) in source code-only mode.