What Changed
Fixed Logic App deployment failure in the Blacklens Attack Surface Management connector by removing an unsupported “outputs” parameter from the Validate_JSON ParseJson action’s secureData configuration.
Security Impact (Visibility & Fidelity)
Deployments of Blacklens ASM connector version 3.0.1 and earlier failed during ARM template deployment with InvalidSecureDataConfiguration error — the connector was non-functional and provided zero threat intelligence ingestion for affected deployments. Organizations running the broken version had a complete blind spot for external attack surface monitoring data from blacklens.io.
The fix restores the ability to deploy and ingest Blacklens attack surface alerts, penetration testing findings, and vulnerability intelligence into Microsoft Sentinel. This addresses a follow-up issue to PR #13946 which fixed a similar configuration error on a different Logic App action.
Affected Files
Solutions/Blacklens/Data Connectors/deployment/azuredeploy_blacklens.json
(packaging artefacts: 3.0.2.zip, ReleaseNotes.md, SolutionMetadata.json, Solution_Blacklens.json, mainTemplate.json)