ASIM AssetEntity Schema: EntitySource Enumeration and EntityOriginalSource Added
ASIM AssetEntity schema now enforces cloud platform enumeration and adds source traceability field. Read More →
Changelog
Alibaba Cloud Networking: Missing Data Stream Visualization Restored
UI graph charts for WAF and API Gateway data streams were broken in the connector interface since v3.0.0 launch. Read More →
Check Point Smart Defense: ASIM NetworkSession Parser Expands Threat Prevention Visibility
New ASIM NetworkSession parser adds Check Point Smart Defense logs to normalized threat monitoring and detection coverage. Read More →
Claroty Analytic Rule: Critical Typo Fix Restores Threat Detection Logic
Fixed critical typo in Claroty threat detection rule where “Treat” was incorrectly used instead of “Threat” in both rule name and KQL logic. Read More →
Netskope Secure Web Gateway Solution: New Detection Coverage for Cloud Application Visibility
New Netskope solution adds 10 detections for web transaction monitoring including impossible travel, excessive downloads, shadow IT detection, and data exfiltration patterns. Read More →
Proofpoint TAP and POD Connectors: User-Agent Header Added for Solution Version Tracking
Proofpoint connectors now send user-agent headers with solution package version information for improved API request identification. Read More →
SAP Data Connector: Docker Image Integrity Verification Added to Deployment Scripts
SAP deployment scripts now verify Docker image digest integrity to prevent container supply chain attacks during installation. Read More →
Trellix Solution Enters GA: Production Ready for Cyberthreat Detection
Trellix solution transitioned from preview to GA status, now production-ready for deployment. Read More →
Visa Threat Intelligence Solution: Packaging Metadata Corrected
Fixed missing connector information in deployment template and updated solution tier to Partner status. Read More →
Qualys VM: CCF Connector Adds Vulnerability Intelligence Stream
Qualys VM Knowledge Base solution now includes a Codeless Connector Framework (CCF) implementation for automated vulnerability data ingestion alongside the existing legacy connector. Read More →
TheHive Connector: Production-Ready with Enhanced Custom Fields Mapping
TheHive CCF connector promoted to General Availability with improved custom fields processing, removing preview limitations for security incident management workflows. Read More →
ASIM AlertEvent Parser: Microsoft Defender XDR Missing AlertOriginalStatus Field Restored
Critical data fidelity fix restores missing AlertOriginalStatus field in Microsoft Defender XDR ASIM AlertEvent parser, resolving alert status visibility gap. Read More →
Microsoft Security Copilot Solution Released to General Availability
Microsoft Security Copilot solution v3.0.2 transitions from preview to GA with connector availability status updated. Read More →
Detection Template Validation: connectorId Enforcement Added to Review Process
Detection authoring guidelines now require validation of connectorId values against the official repository allowlist to prevent invalid connector references. Read More →
Recorded Future: IOC Enrichment Noise Reduction via Risk Score Thresholding
Added configurable RiskScoreThreshold parameter to prevent low-risk IOCs from generating incident comments. Read More →
Okta Single Sign-On: ARM Template Compliance Fix for SessionId Variable
Resolved ARM TTK validation error by parameterizing hardcoded SessionId reference in deployment template. Read More →
BitSight Solution: Metadata Fix for Content Hub Publishing Issue
BitSight solution publishing restored after solution ID metadata correction. Read More →
Microsoft A365 Observability Connector: Explicit SecurityAdmin Requirement Removed
Microsoft removed the explicit SecurityAdmin requirement from the A365 Observability connector, but GlobalAdmin — the highest privilege level in Azure AD — is still required. This is not a reduction in required privilege. Read More →
Imperva Cloud WAF: Production Ready CCF Connector with Standard Tables
Imperva Cloud WAF CCF connector migrates from private preview custom tables to public preview standard tables. Read More →
SentinelOne Connector: Template Cleanup for JSON Schema Compliance
Code hygiene fix removes redundant null values from CCF connector configuration. Read More →