Qualys VM Knowledge Base solution now includes a Codeless Connector Framework (CCF) implementation for automated vulnerability data ingestion alongside the existing legacy connector. Read More →

TheHive CCF connector promoted to General Availability with improved custom fields processing, removing preview limitations for security incident management workflows. Read More →

Critical data fidelity fix restores missing AlertOriginalStatus field in Microsoft Defender XDR ASIM AlertEvent parser, resolving alert status visibility gap. Read More →

Microsoft Security Copilot solution v3.0.2 transitions from preview to GA with connector availability status updated. Read More →

Detection authoring guidelines now require validation of connectorId values against the official repository allowlist to prevent invalid connector references. Read More →

Added configurable RiskScoreThreshold parameter to prevent low-risk IOCs from generating incident comments. Read More →

Resolved ARM TTK validation error by parameterizing hardcoded SessionId reference in deployment template. Read More →

BitSight solution publishing restored after solution ID metadata correction. Read More →

Microsoft removed the explicit SecurityAdmin requirement from the A365 Observability connector, but GlobalAdmin — the highest privilege level in Azure AD — is still required. This is not a reduction in required privilege. Read More →

Imperva Cloud WAF CCF connector migrates from private preview custom tables to public preview standard tables. Read More →

Code hygiene fix removes redundant null values from CCF connector configuration. Read More →

Fixed Policy 300.4.1.1 violation by securing credential parameters in the Cyren-SentinelOne threat intelligence integration Playbook. Read More →

Tenable VM vulnerability parser now extracts CVSS 4.0 vector components and VPR v2 threat intelligence previously unmapped from ingested vulnerability scans. Read More →

Version increment from 3.0.0 to 3.1.0 to enable Partner Center to detect previously submitted fixes including pagination improvements and branding updates. Read More →

Fixes field mapping inconsistencies in Corelight aggregation parsers that caused data loss and adds aggregation filtering to the Data Explorer workbook. Read More →

Partner Center certification blocker resolved with single bracket correction in ARM deployment template. Read More →

New analytic rules target jailbreak attempts, external access, plugin tampering, and file upload disabling - covering major AI security attack vectors. Read More →

Google Workspace Reports CCF connector exits preview status with updated OAuth configuration guidance. Read More →

blacklens.io Attack Surface Management platform now available in Content Hub with webhook-based alert ingestion and automated incident creation. Read More →

Version bump to 1.0.6 for Anomalous Single Factor Sign-in detection rule with no logic changes. Read More →