Skip to main content

Releases of April 2022

New features and improvements

Status

Description

Release of April 15

NEW

Non-exploitable findings no longer count for threshold.

NEW

Selecting Project & Branch in the VS IDE now defaults to the latest scan. The latest scan is highlighted in the scan and labeled accordingly.

NEW

The design of the First Login and Password Reset emails that Checkmarx sends to users has been adjusted to reflect the new branding.

NEW

Users are now able to cancel scans in Checkmarx One when jobs are canceled in the CI/CD tool.

NEW

The Jenkins plugin is now able to handle job cancel events and allows canceling a running scan.

NEW

To make it easier for users to understand why a scan launched via CLI failed, a detailed error message in a human readable context is now displayed.

NEW

The Visual Studio Code plugin is now also compatible with the Visual Studio integrated development environment for building .NET apps.

CLI and Plugins Release of April 2022

During March, we a new CLI version, containing important updates and improvements. We also released new plugins that use the new CLI version and contain additional improvements.

New CLI Versions

Improvements and Bug Fixes 2.0.16

Status

Item

Description

UPDATED

Ignore Not Exploitable

SAST and KICS vulnerabilities for which the state has been set as “Not Exploitable” are no longer included in the vulnerabilities counts in the results summary.

UPDATED

Sarif output

Added additional details to sarif output.

FIXED

Timezone

The time returned for “Created At” is now given according to the local timezone where the scan was run.

Improvements and Bug Fixes 2.0.15

Status

Item

Description

UPDATED

contributor count

The user-count utility was renamed as contributor-count. Also, username was added to the --debug logs. See contributor-count

UPDATED

contributor count

Added a utility command to determine the number of unique contributing developers for the past 90 days for BitBucket, Azure DevOps and Gitlab repos. See bitbucket , azure , azure

Improvements and Bug Fixes 2.0.14

Status

Item

Description

NEW

contributor count

Created a utility command to determine the number of unique contributing developers for the past 90 days for GitHub repos. See github

NEW

Codebashing Links

Added a new command ./cx results codebashing [flags] for retrieving a link to the relevant Codebashing lesson for a vulnerability. See results codebashing

CI/CD Plugins

In April we released the following CI/CD plugin versions. These plugin versions use CLI version 2.0.16.

General Updates

Status

Item

Platform

Description

NEW

SCA resolver

All

Added new --sca-resolver-params flag to the scan create command. See documentation here.

UPDATED

Cancel scan

All

When a job is canceled in the CI/CD platform (e.g. Jenkins pipeline), Checkmarx will now cancel the Checkmarx One scan as well.

FIXED

Proxy connection

Azure DevOps

Fixed problems with proxy connection.

FIXED

Branch name

GitHub Action

The branch name is now shown correctly for Pull requests.

IDE Plugins

In April we released the following IDE plugin versions. These plugin versions use CLI version 2.0.16.

Links to install latest plugin versions from marketplace:

General Updates

Status

Item

Platform

Description

NEW

Codebashing

All

Added links to the relevant Codebashing lessons.

UPDATED

Ignore Not Exploitable

All

SAST and KICS vulnerabilities for which the state has been set as “Not Exploitable” are no longer included in the vulnerabilities counts in the results summary.

UPDATED

Auto-select scan results

Eclipse

Automatically shows results for the latest scan of the project and branch that is currently open in the IDE.

UPDATED

Support non-git users

VS Code

Added support for users that don’t have git installed.

UPDATED

Support for Android Code

JetBrains

Added support for JetBrains’ Android Studio IDE.

UPDATED

Group by file

JetBrains

Added option to group results by file name.

FIXED

Result details

Eclipse

Fixed problems loading result details when user clicks on several nodes in the tree structure in quick succession.