Skip to main content

Releases of April 2022

New features and improvements

Status	Description
Release of April 15
NEW	Non-exploitable findings no longer count for threshold.
NEW	Selecting Project & Branch in the VS IDE now defaults to the latest scan. The latest scan is highlighted in the scan and labeled accordingly.
NEW	The design of the First Login and Password Reset emails that Checkmarx sends to users has been adjusted to reflect the new branding.
NEW	Users are now able to cancel scans in Checkmarx One when jobs are canceled in the CI/CD tool.
NEW	The Jenkins plugin is now able to handle job cancel events and allows canceling a running scan.
NEW	To make it easier for users to understand why a scan launched via CLI failed, a detailed error message in a human readable context is now displayed.
NEW	The Visual Studio Code plugin is now also compatible with the Visual Studio integrated development environment for building .NET apps.

CLI and Plugins Release of April 2022

During March, we a new CLI version, containing important updates and improvements. We also released new plugins that use the new CLI version and contain additional improvements.

New CLI Versions

Improvements and Bug Fixes 2.0.16

Status	Item	Description
UPDATED	Ignore Not Exploitable	SAST and KICS vulnerabilities for which the state has been set as “Not Exploitable” are no longer included in the vulnerabilities counts in the results summary.
UPDATED	Sarif output	Added additional details to sarif output.
FIXED	Timezone	The time returned for “Created At” is now given according to the local timezone where the scan was run.

Improvements and Bug Fixes 2.0.15

Status	Item	Description
UPDATED	contributor count	The `user-count` utility was renamed as `contributor-count`. Also, username was added to the `--debug` logs. See contributor-count
UPDATED	contributor count	Added a utility command to determine the number of unique contributing developers for the past 90 days for BitBucket, Azure DevOps and Gitlab repos. See bitbucket , azure , azure

Improvements and Bug Fixes 2.0.14

Status	Item	Description
NEW	contributor count	Created a utility command to determine the number of unique contributing developers for the past 90 days for GitHub repos. See github
NEW	Codebashing Links	Added a new command `./cx results codebashing [flags]` for retrieving a link to the relevant Codebashing lesson for a vulnerability. See results codebashing

CI/CD Plugins

In April we released the following CI/CD plugin versions. These plugin versions use CLI version 2.0.16.

Azure DevOps Plugin - Version 2.0.6
Github Action - Version 2.0.4
TeamCity Plugin - Version 2.0.10
Jenkins Plugin - V2.0.9-261.vfd1a_e1162900

General Updates

Status	Item	Platform	Description
NEW	SCA resolver	All	Added new `--sca-resolver-params` flag to the `scan create` command. See documentation here.
UPDATED	Cancel scan	All	When a job is canceled in the CI/CD platform (e.g. Jenkins pipeline), Checkmarx will now cancel the Checkmarx One scan as well.
FIXED	Proxy connection	Azure DevOps	Fixed problems with proxy connection.
FIXED	Branch name	GitHub Action	The branch name is now shown correctly for Pull requests.

CI/CD Plugin Quick Links

Get Latest Version from Marketplace	Changelog	Documentation
Azure DevOps - Marketplace	Azure DevOps Plugin - Changelog	Checkmarx One Azure DevOps Plugin
GitHub Action - Marketplace	GitHub Actions - Changelog	Checkmarx One GitHub Actions
TeamCity - Marketplace	TeamCity Plugin - Changelog	Checkmarx One TeamCity Plugin
Jenkins - Marketplace	Jenkins Plugin - Change Log	Checkmarx One Jenkins Plugin

IDE Plugins

In April we released the following IDE plugin versions. These plugin versions use CLI version 2.0.16.

Visual Studio Code - Version 2.0.2
JetBrains - Version 2.0.3
Eclipse Plugin - Version 2.0.3

Links to install latest plugin versions from marketplace:

General Updates

Status	Item	Platform	Description
NEW	Codebashing	All	Added links to the relevant Codebashing lessons.
UPDATED	Ignore Not Exploitable	All	SAST and KICS vulnerabilities for which the state has been set as “Not Exploitable” are no longer included in the vulnerabilities counts in the results summary.
UPDATED	Auto-select scan results	Eclipse	Automatically shows results for the latest scan of the project and branch that is currently open in the IDE.
UPDATED	Support non-git users	VS Code	Added support for users that don’t have git installed.
UPDATED	Support for Android Code	JetBrains	Added support for JetBrains’ Android Studio IDE.
UPDATED	Group by file	JetBrains	Added option to group results by file name.
FIXED	Result details	Eclipse	Fixed problems loading result details when user clicks on several nodes in the tree structure in quick succession.

IDE Plugin Quick Links

Get Latest Version from Marketplace	Changelog	Documentation
Visual Studio Code - Marketplace	VS Code Extension - Changelog	Checkmarx One Visual Studio Code Extension (Plugin)
Visual Studio - Marketplace	Visual Studio Plugin - Changelog	Checkmarx One Visual Studio Extension (Plugin)
JetBrains - Marketplace	JetBrains Plugin - Changelog	Checkmarx One JetBrains Plugin
Eclipse - Marketplace	Eclipse Plugin - Changelog	Checkmarx One Eclipse Plugin

In this section:

Was this helpful?

Would you like to provide feedback? Just click here to suggest edits.