The first major release in 2017, Lucent Sky AVM 4.5 formally introduces our second-generation source code analysis engine and third-generation remediation engine. These two engine upgrades are based on 5 months of engineering effort, and will enhance the scalability, compatibility and reliability of scans across all supported technology stacks.

The second-generation code analysis engine has been available as a preview feature since the last release, while the third-generation remediation engine is new to this release. Starting with v4.5, scans will use the new source code analysis engine and the new remediation engine by default, while previous generation engines are available in legacy mode.

Updates in Lucent Sky AVM 4.5 include:

• Second-generation source code analysis engine - The second-generation source code analysis engine is an overhaul of the source code flow analysis engine and the contextual analysis engine. The second-generation engine analyzes over 12 times more source code information than the previous engine. This allows for greatly improved accuracy in source code analysis, contextual analysis and the resulting remediation. However, a temporary downside is that a typical scan will now take about 10-20% additional time to complete. We expect the performance to gradually improve over the next few releases.
• Third-generation remediation engine - We redesigned Lucent Sky AVM’s remediation engine to take advantage of the vast amount of information generated by the 2nd-generation remediation engine. Because the remediation engine has much more information to analyze and base on to remediate vulnerabilities, Instant Fixes should be available to more results and with higher confidence score. Additionally, the mitigation stage should take 15-20% less time due to algorithm improvements.
• Migration to .NET Framework 4.7 and Win32 long path support - The server components of Lucent Sky AVM was migrated to .NET Framework 4.7. In addition to the performance and reliability improvements brought by .NET Framework 4.7, Lucent Sky AVM now supports Win32 long path (i.e. paths longer than 260 characters) when running on Windows Server 2016. To enable Win32 long path support on your Lucent Sky AVM servers, contact Lucent Sky support. You can also learn more about .NET Framework 4.6.2 and Win32 long path support at this excellent post by Microsoft’s Jeremy Kuhne.
• CLI and IDE plug-in updates - The CLI has been updated to support user management features. The Visual Studio extension and Eclipse plug-in also received updates related to server-side updates on v4.5.
• Rule package update - Rule package for .NET, Android, iOS, Java and PHP have been updated to support additional vulnerability types.

Updating to 4.5

If you are using Lucent Sky AVM Enterprise, Standard or Test Edition (either on-premise or cloud) and have an active subscription or maintenance agreement, you can update to Lucent Sky AVM 4.5 immediately. Our support team will reach out to you shortly to schedule an update. If you are using Lucent Sky AVM On-Demand, your server will be updated to Lucent Sky AVM 4.5 in the next few days.