New Features - Enhancements

We added a bunch of new features to our products.

Static Reviewer

v5.00.10

Desktop

  • Windows and Linux native versions based on .NET Core 5

  • Multilingual version: English, Italian, Spanish, Simplified Chinese and Russian. Translation kit is available

  • Configurable Source Code Editor: gedit, Notepad++, Sublime Text, Visual Studio Code, PSPad and others

  • Enhanced What If feature in Risk Indicators

  • Configurable Remediation Staff for Risk Indicators

 

  • New Risk Indicators (to be purchased separately)

ISO 5055

Green Software

Cloud-Ready

  • Force FP: Force import from CSV in case of desynchronized False Positives (too many changes on source code and in source folders)

  • Set as FP on Condition: Mark as False Positives all Findings based on pattern

  • New button ‘Open Source Code Folder’

  • Integration to Quality Reviewer Effort Estimation module (to be purchased separately)

  • Integration to SecureFlag live training platform (to be purchased separately)

Command Line Interface (CLI)

CLI’s new features are used by Desktop, Docker, IDE plugins and CI/CD plugins too.

  • Enhanced CLI: new arguments for SRCheck. New commands SRRulesAMR, SRExclusionsAMR, SRParamsAMR. New commands for IDE Plugins.

  • New Findings: ISO 5055, Green Software, Cloud-Ready, Resilience (to be purchased separately). They can be audited both in Desktop and Team Reviewer

  • Support for CWE 4.8

  • Support for PCI-DSS v.4.0 in Reports

SCA Reviewer

v5.00.10

Desktop

  • Multilingual version: English, Italian, Spanish, Simplified Chinese and Russian. Translation kit is available

  • Import Results from any third-party tool support CodeDX JSON format

  • Custom Blacklists, both for Licenses and Libraries, controlled by the User

  • New Scan Policies for Outdated Libraries, Discontinued Libraries, Malware Detection, Ransomware Detection

  • Offline Mode (no Internet connection is required, Vulnerabilities DB can be updated in a different machine and transferred to the local machine via internal network)

  • New Filters in Findings:

  • New SBOM in the Report

Command Line Interface (CLI)

CLI’s new features are used by Desktop, Docker and CI/CD plugins too.

  • New scanning engine, written in GO

  • Offline Mode: Vulnerability DB can downloaded by another machine in the local network. No internet connection is needed.

  • Malware and Ransomware detection

Dynamic Reviewer

v5.00.10

  • New Web UI, based on Team Reviewer, inheriting Performances, Scalability, Monitoring, Logging and Multi-Tenancy

  • Dynamic Reviewer findings directly managed by Team Reviewer

  • Docker version, portable to any host

Team Reviewer

v5

  • Multi-Tenant enhancements

  • Enhanced User Groups hierarchy

  • New SAST Server Plugin, SCA Server Plugin, DAST Server Plugin (to be purchased separately)

  • Remote SAST scanning support for IDE plugins (to be purchased separately)

  • New Risk Indicators: ISO 5055, Cloud-Ready, Green Software (to be purchased separately)

  • Code Alerting System (CAS) (to be purchased separately)

  • CAS Update Framework (to be purchased separately)

  • Integration to SecureFlag live training platform (to be purchased separately)

COPYRIGHT (C) 2014-2022 SECURITY REVIEWER SRL. ALL RIGHTS RESERVED.

COPYRIGHT (C) 2014-2022 SECURITY REVIEWER SRL. ALL RIGHTS RESERVED.