Release Notes - 11th Mar 2026

Add additional info when Retesting is completed

As a user, I now have access to the “Vulnerability detection history” timeline view, where a new entry is added every time my vulnerability is re-detected by an assessment.

Make Discard Vulnerability Notes more visible in the platform and reporting

As a user, I want discard notes to be displayed in the user interface and in reports, and I want to update the discard note for already discarded vulnerabilities.

Add an Event on updates to superuser notes field

As a user, I would like to be able to receive event notifications for super user notes.

Add “PT to be completed by” field to asset creation workflow

As a user, I want to add a pentest target due date to assets

Post Authentication Stabilization option

As a user, I want to be able to define post authentication stabilization options in authentication workflows

MFA QR Code Scanning - Use webcam to scan QR Code

As a user, I want to scan a QR code image to auto-populate OTP MFA details in the shared credentials form.

MFA QR Code Scanning - Upload QR Code

As a user, I want to upload a QR code image to auto-populate OTP MFA details in the shared credentials form.

Legacy Credential Migration - Migrate All Users to SharedCredentials

As a user, I want all my credentials migrated to SharedCredentials, with unclear ones marked Legacy, so that scans continue without disruption and no data is lost.

Bug report - Enable scanning not available in asset configuration.

As a user, I want to enable scanning from the asset configuration page, so that I can initiate properly configure scans

Bug report - Bulk asset update can cause all assets to move to current users organization

As a user, when bulk finalize onboarding assets I do not want the asset’s organization IDs to be updated to the current users organization ID.

Bug report - licence suggestion active licence

As a user, I want licence suggestions to update correctly when the associated licence has been renewed, expired or upgraded.

Bug report - Restrict users from changing their email address if they are using it for MFA

As a user, I do not want to be able to update my email address if it is set as the MFA option for my account.

Bug report - Viewing pause schedule details of those assigned as default for a number of Org can result in rate-limit exceptions

As a user, when I’m navigating the pause schedules I do not want to receive a rate limit error.

Bug report - When filters are applied on some pages, modify an entry, filter fields still visible but list no longer filtered

As a user, I want the filters to remain present on the index pages (Pause Schedule, Organization, Shared Credential) after an update is made.

Bug report - Creator of shared credential being sent in notification instead of shared credential owner.

As a user, I want the user who assigned the shared credential to an asset to be noted in notifications, not the creator of the shared credential.

Shared Credentials - Add ability to filter by assigned asset on the new Credentials page

As a user, I want to be able to filter shared credentials by assigned assets on the shared credentials page.

Shared Credentials - Deleting an asset that is assigned with shared credentials whether through an automated test or a pentest throws an error, but the asset still gets deleted.

As a user, I do not want to receive an error when deleting an asset with an assigned shared credential.

Shared Credentials - Opening the modal always lands on Scan Configuration -> Penetration Test -> Authentication

As a user, when opening the shared credential modal on asset details page, I always want it to start in the Automated Assessment section.

Shared Credentials - missing tooltips for all credential fields

As a user, I want tooltips for all of the shared credential fields.

Shared Credentials - adding credentials to an asset, toast confirms success, not visible until reloaded.

As a user, I want a newly assigned shared credential to appear immediately in the Configure Scanning wizard, so that I don’t have to reload the page to see it.

Asset Credentials - modify associated credentials attempts are rejected, need to remove then assign rejected credential

As a user configuring asset authentication, I want selecting a different credential to replace the current one in one flow, so that I can update credentials without hitting avoidable app-layer limit errors.

Shared Credentials - Oauth: The edit function in OAuth is not working and is returning a 400 status code.

As a user, I want to edit OAuth credentials without receiving a 400 error, so that I can reliably save credential updates.

Shared Credentials - create and modify requests without direct permission or inheriting role throws a vague exception, not bubbling up the returned response message

As a user, I want permission errors for shared credential create/update to show the API message, so that I understand exactly which permission is missing.

Asset Credentials - no confirmation step on delete requests for Session Verification Indicators, inconsistent with other functionality

As a user, I want a confirmation prompt before deleting a Session Verification Indicator, so that I can avoid accidental deletions.

Shared Credentials - Add option to retain some of the legacy credential fields as an annotation.

As a user migrating legacy credentials, I want to append metadata fields (scope, role, login URL) to the credential description instead of creating unnecessary form fields, so that informational data is preserved without cluttering the credential with non-functional fields.

Shared Credentials - auth asset, no creds, blocker raised, creds added to asset, blocker only cleared after refresh

As a user, I want the asset blockers to auto-refresh when I (un)assign shared credentials.

Shared Credentials - Updating Scan Config modal to show ‘Close’ instead of ‘Continue’ on the last item and disable/hide the ‘back’ button on the top item.

As a user, in the wizard, I want the back button to be hidden at the beginning, and a close button to appear at the end.

Asset credentials - selecting credential to view, it seems if not on first page, fails to load, shows first entry instead

Fix issue where deep-linking a credential that’s not on the first page would not work

Shared Credentials - new created instance details are not visible if sort order dictates it isnt on first page of list presented

Fix issue where newly created resources were inserted by sort order, causing them to sometimes disappear from view

Shared Credentials - Legacy credentials migrated, see several instances with an associated asset but no asset shown when looking to view details.

As a user, I want the associated asset count shown on a shared credential to match the assets I actually see when I click through, so that the UI is not misleading.

Shared Credentials - Add all datapoint filters to user credential page

As a user, I want to filter credentials by all available datapoints so that I can quickly find the credentials I need.

Shared Credentials - When selecting filtering criteria in the modal and clicking on ‘Created At’, it navigates back to the Configure Scanning page and throws an exception when ‘Created At → In the Last’ is selected

As a user managing authentication workflows, I want datetime filters in the Select Credential modal to work correctly, so that I can filter credentials by creation and update date without crashes or the modal unexpectedly closing.