ASIM Parser CI Workflows Fixed: File-Not-Found Errors Were Silently Skipping All Parser Tests

The ASIM parser schema and data ingestion test workflows were failing to read parser YAML and sample data files at runtime due to broken URL-based file access; this fix switches to local filesystem reads, restoring test coverage for all modified ASIM parsers. Read More →

ZeroFox Threat Intelligence: Marketplace Packaging Fix Restores Customer Access

Critical solution ID mismatch prevented customers from installing ZeroFox Threat Intelligence connector from marketplace. Read More →

ASIM Template Validation: Reliability Fix for Flaky Test Results and Performance Optimization

ASIM parser validation workflow updated to use local repository files instead of raw GitHub URLs, fixing malformed URL issues causing test failures. Read More →

Imperva Cloud WAF: Critical Parsing Fix Restores Visibility for Complex Events

Imperva Cloud WAF connector switched to CommonEventFormatTransformer, fixing data ingestion failures for logs containing embedded quotes and pipes in CEF events. Read More →

Cisco ETD: Migration to Message Event Logs API with Enhanced Email Security Visibility

Labeled P0 — assess deployment or pipeline breakage risk explicitly. Complete connector overhaul migrates to new Message Event Logs REST API providing enhanced email visibility beyond convicted messages. Read More →

Bitdefender GravityZone Parser: Critical Fix for Network Sandboxing Event Parsing Failure

ASIM parser for Bitdefender GravityZone was failing due to missing type cast, preventing ingestion of network sandboxing alerts. Read More →

Pathlock TDnR Connector: Critical JSON Fix Restores Deployment Capability

Invalid JSON in Pathlock TDnR connector definition blocked deployment via strict parsers — critical fix for P0 issue. Read More →

Cisco Meraki Parser: Critical Self-Reference Recursion Fixed After v3.0.5 Packaging Error

Restores Cisco Meraki parser functionality by fixing table reference error that caused recursive failure and broke all downstream queries. Read More →

Vaikora Connector: Zero Data Ingestion Fixed After DCR Stream Mapping Failure

Critical fix restores Vaikora AI agent behavioral data after complete ingestion failure caused by DCR stream column mismatch. Read More →

Lookout Connector: Critical Data Loss Fix for Mobile Threat Event Identifiers

Lookout Mobile Risk API v2 connector was silently dropping unique event identifiers (oid field), breaking all downstream correlation in detections and workbooks. Read More →

Check Point ASIM NetworkSession Parser: DeviceVendor Field Matching Fix

Check Point firewall ASIM parser updated to handle both “Check Point” and “CheckPoint” DeviceVendor field values, fixing parsing failures introduced in PR #12056. Read More →

BeyondTrust PM Cloud: Function App Reliability Fix Prevents Timeout on Large Event Backlogs

Critical fix prevents BeyondTrust PM Cloud Function App timer functions from hanging when processing large event backlogs, restoring data ingestion reliability. Read More →

42Crunch API Protection: Critical Migration from Legacy HTTP Collector to CCF Push Connector

Migration addresses deprecated HTTP Data Collector API by implementing CCF OAuth2/Entra ID ingestion — deployments on legacy connector face imminent data loss. Read More →

Microsoft Entra ID OAuth Consent Query: Fixing Zero-Result Bug in High-Risk Permission Detection

Corrects broken hunting query that returned no results due to incorrect property name filter. Read More →

Fortinet FortiGate Playbook: Function App Authentication Security Hardening

Playbook Function App authentication level upgraded from anonymous to function-level to close security exposure. Read More →

Function App Security: Access Control Hardening Across Multiple Data Connectors

Function keys now required for HTTP-triggered functions in Zoom, Zscaler, FortiGate, Cofense, Illumio, and Infoblox connectors—removing anonymous access vulnerability. Read More →

Abnormal Security CCF Connector: Critical Fix Restores Email Threat Detection After Complete Ingestion Failure

Fixes DCR transform errors, table deployment issues, and stream routing that prevented all data ingestion from Abnormal Security’s CCF Push connector since v3.0.0 launch. Read More →

Vaikora Azure Security Center: Microsoft Marketplace Certification Fix

Reverts solution ID to match Partner Center offer name after Marketplace certification failure under policy 300.4.1.1. Read More →

Recorded Future Identity Playbook: ARM Template Deploy Failure Fixed

Fixes broken deployment of RFI-confirm-EntraID-risky-user playbook that failed with InvalidTemplate error due to stale action references. Read More →

Cyjax Connector: Security and Code Quality Fixes Applied

Addressed lint issues, package vulnerabilities, and code vulnerabilities in Cyjax threat intelligence connector. Read More →