July 12, 2022
Welcome to Lucent Sky AVM version 2206 MR. This release includes improvements for the binary, source code, and dependency analysis engines, and performance improvements for real-time intelligence and the remediation engine. It also comes with improvements on the CLI and the Web UI, and support for new security standards such as CWE 4.7. To learn more about this release, visit Lucent Sky AVM version 2206 release notes.
The binary analysis engine now provides more accurate vector information for vulnerabilities in JDK applications. The source code analysis engine for C# and VB.NET received compatibility improvements for .NET 6.0 applications. The dependency analysis engine has improved support for iOS and Ruby applications.
The remediation engine received performance improvements for third-party report importation. Fixing vulnerabilities from a third-party SAST report is up to 35% faster.
The CLI and the Web UI now support uploading a source code directory (instead of a source code archive file) when creating a new scan. In addition, when creating a new application or scan, the CLI will automatically generate an ID if not supplied in the arguments.
CWE 4.7 and OWASP API Security Top 10 are now supported. In addition, CWE Top 25 has been split into 2019, 2020, and 2021.
If you are using Lucent Sky AVM Enterprise or Standard Edition (either on-premise or cloud) and have an active subscription, you can update to 2206 MR immediately. Our support team will reach out to you shortly to schedule an update. If you are using Lucent Sky AVM On-Demand, your server will be updated to 2206 MR in the next few days.