Skip to main content

2025

January

Highlights: AutoFix improvements, SBOM location, expanded finding details, archive applications, Apex (Beta) support, PL/SQL (Beta) support, Ruby (Beta) GitHub workflow demo

  • AutoFix improvements
    • AutoFix pull requests now provide richer content in the description, such as test cases, attack payloads, and more.
    • If the GitHub token has expired or is not valid, users will see a message in the AutoFix tab alerting them of the issue. The Settings page will also indicate whether or not a token is valid.
    • A second fix is now available as an option for the user in case the primary fix does not provide the expected result.
  • SBOM location: in the findings list (OSS only), users can now see the location or name of the application's package manifest that is importing or including the dependency.
  • Expanded finding details: when viewing a finding's details, users can now switch to a stacked column view. This allows a user to focus on one section at a time and make use of the entire width of the page to see, for example, AutoFix suggestions without needing to scroll horizontally.
  • Archive applications: preZero now allows the option to archive and restore applications. When an application is archived, results are not included in search results, summaries, reports, etc. Archived applications cannot be analyzed. A list of archived applications can be seen under the Archived tab in the Applications page.
  • Apex (Beta) support: Apex (from Salesforce) is now supported via a third party scanner. Results are aggregated and available on the preZero dashboard. The Qwiet AI Security Team continues to add rules to improve results.
  • PL/SQL (Beta) support: Qwiet preZero now supports the PL/SQL language via a third party scanner. Results are aggregated and available on the preZero dashboard. The Qwiet AI Security Team continues to add rules to improve results.
  • Ruby (Beta) GitHub workflow demo: Ruby is now available in the Workflow Setup as a demo.