We added a bunch of new features to our products.

Static Reviewer

v5.01.02

Desktop

• Windows and Linux native versions based on .NET Core 5

• Multilingual version: English, Italian, Spanish, Simplified Chinese and Russian. Translation kit is available

• Scan Rules: 90+ new Rules for ABAP programming language, 50+ new Rules for JAVA, 30+ new Rules for .NET

• Support for Business SAP Pages, LUA, and Perl programming languages

• Configurable Source Code Editor: Added Atom support. Ggedit, Notepad++, Sublime Text, Visual Studio Code, PSPad and others.

• Tags field was added to Version-Engagement

• Analyses can be searched by Application-Product, Auditor, and Tag

• Settings can be filtered by Severity

• Suppress Files feature has been enhanced

• Enhanced compatibility checks during Incremental Analysis

• Enhanced What If feature in Risk Indicators

• Configurable Remediation Staff for Risk Indicators

• New Risk Indicators (to be purchased separately)

ISO 5055

Green Software

Cloud-Ready

• Force FP: Automated Force FP feature

• Set as FP on Condition: Mark as False Positives all Findings based on pattern

• New button ‘Open Source Code Folder’

• Integration to Quality Reviewer Effort Estimation module (to be purchased separately)

• Integration to SecureFlag live training platform (to be purchased separately)

Command Line Interface (CLI)

CLI’s new features are used by Desktop, Docker, IDE plugins and CI/CD plugins too.

• Enhanced CLI: new arguments for SRCheck. New commands SRRulesAMR, SRExclusionsAMR, SRParamsAMR. New commands for IDE Plugins.

• New Findings: ISO 5055, Green Software, Cloud-Ready, Resilience (to be purchased separately). They can be audited both in Desktop and Team Reviewer

• Support for CWE 4.9

• Support for PCI-DSS v.4.0 in Reports

SCA Reviewer

v5.00.10

Desktop

• Multilingual version: English, Italian, Spanish, Simplified Chinese and Russian. Translation kit is available

• Import Results from any third-party tool support CodeDX JSON format

• Custom Blacklists, both for Licenses and Libraries, controlled by the User

• New Scan Policies for Outdated Libraries, Discontinued Libraries, Malware Detection, Ransomware Detection

• Offline Mode (no Internet connection is required, Vulnerabilities DB can be updated in a different machine and transferred to the local machine via internal network)

• New Filters in Findings:

• New SBOM in the Report

Command Line Interface (CLI)

CLI’s new features are used by Desktop, Docker and CI/CD plugins too.

• New scanning engine, written in GO

• Offline Mode: Vulnerability DB can downloaded by another machine in the local network. No internet connection is needed.

• Malware and Ransomware detection

Dynamic Reviewer

v5.00.10

• New Web UI, based on Team Reviewer, inheriting Performances, Scalability, Monitoring, Logging and Multi-Tenancy

• Dynamic Reviewer findings directly managed by Team Reviewer

• Docker version, portable to any host

Team Reviewer

v5

• Multi-Tenant enhancements

• Enhanced User Groups hierarchy

• New SAST Server Plugin, SCA Server Plugin, DAST Server Plugin (to be purchased separately)

• Remote SAST scanning support for IDE plugins (to be purchased separately)

• New Risk Indicators: ISO 5055, Cloud-Ready, Green Software (to be purchased separately)

• Code Alerting System (CAS) (to be purchased separately)

• CAS Update Framework (to be purchased separately)

• Integration to SecureFlag live training platform (to be purchased separately)

COPYRIGHT (C) 2014-2022 SECURITY REVIEWER SRL. ALL RIGHTS RESERVED.