CloudBees is pleased to announce the newest CloudBees Compliance release. You can find specific information about this release in the following sections:
New features
The following new features are introduced as part of this release:
- Qualys Web Application Scanning (WAS) integration
-
CloudBees Compliance now integrates with Qualys Web Application Scanning (WAS), allowing you to securely configure, trigger, and monitor vulnerability scans. Scan results are imported and mapped to CloudBees Compliance’s security model, enabling automated risk detection and streamlined compliance.
- Notifications for new High and Very High severity findings
-
CloudBees Compliance now sends email alerts when new High or Very High severity findings are detected in published releases or production environments, helping you respond quickly to critical security risks.
- Notifications for findings that breach SLA
-
CloudBees Compliance users and stakeholders will now receive email notifications when a finding breaches its SLA, helping you take timely action to address unresolved risks and maintain compliance.
- Swagger documentation service
-
A new service has been added to show the Swagger documentation for external apis. Users can now access the Swagger documentation for external APIs at
https://<installation-domain-name>/swagger.
Feature enhancements
The following feature enhancements have been made as part of this release:
- UX Uplift for Account Journeys
-
The UX has been uplifted for the following account journeys, making them more intuitive, efficient, and user-friendly:
-
GitHub
-
Nexus
-
- Simplified application attribute setup
-
Application attributes now only need to be completed for essential fields, simplifying and expediting application onboarding.
- scc-scanner renamed
-
The plugin
scc-scannerhas been renamed toplugin-scc, as part of an initiative to standardize plugin names.