v25.10.0 - 15 Oct 2025
New update: WebLogic support, SEM secret integration, API improvements, and fixes for scan errors, auto-updates, and security reports
New feature
- Added WebLogic support for JAVA Shark sensor
- The Secrets screen now supports selecting and referencing secrets from SEM integrations in addition to manually entered name–value pairs. This allows more secure and centralized secret management
Improvements
- Replaced old POST deletion methods with standard DELETE endpoints for a more consistent API. The POST endpoints are now deprecated – please update your integrations.
Resolved issues
- Corrected a typo in the Ivanti RCE CVE-2024-21887 report template
- Improved detection of CSP directives
- Resolved containerized Agents being stuck during auto-updates
- Fixed “Unable to Load Scan Session” and “Unable to Find Scan Files” errors
- Corrected discrepancies in Roles permission counts
- Enabled Agent auto-updater to use encrypted proxy credentials from
appsettings.json
- Added RegEx validation to prevent invalid patterns causing scan failures
- Fixed Intel instance assignment issue for On-Prem Cloud Provider