This article includes a list the new features and bug fixes that are included in Lucent Sky AVM 4.8, as well as known issues of this release.
For more information about this release, visit the blog post Lucent Sky AVM 4.8 released.
Updates in Lucent Sky AVM 4.8
-
Context-aware remediation suggestions - in this release, we continue to polish the newly introduced remediation suggestion features for vulnerabilities of insecure design. Notable improvements including accuracy related to encryption and information leakage vulnerabilities and performance of generating remediation suggestions for very large code base.
-
Reporting - support the use of an XSL template to generate an HTML report from the XML report. Additionally, remediation suggestions are now included in the XML report.
-
Analysis engines - the methods of logging files scanned by the analysis engines were streamlined.
-
Custom runtime - several compatibility issues that caused certain custom runtimes not being used by the Java compiler were addressed.
-
Application Protection Library - the Application Protection Library for .NET now required .NET Framework 3.5 (up from 2.0).
-
Minor improvements and bug fixes - minor improvements and bug fixes were done to the Web UI
List of fixes included in Lucent Sky AVM 4.8
There is no fix included in Lucent Sky AVM 4.8.
Known issues of Lucent Sky AVM 4.8
IDE plug-ins are unable to include Application Protection Library to a project after a scan
On new installations of IDE plug-ins, such as Visual Studio extensions and Eclipse plug-in, are unable to include Application Protection Library to a project after a scan. This is due to that starting with v4.7, the CLI no longer include copies of Application Protection Library binaries.
To workaround this issue, download the Application Protection Library binaries from a Lucent Sky AVM server running v4.8, and place them under the Resources\APL directory of the CLI. This issue is expected to be resolved in Lucent Sky AVM 5.1.
The path to results in some ASP applications are only shown partially on the web UI and report
This issue is expected to be resolved in Lucent Sky AVM 5.0