Product Roadmap

Last updated 5 months ago

2019

Considered

  • Implement PDF report format

  • Improve memory utilization of SDK data collection and aggregation

  • Integrate with the Eclipse integrated development environment

  • Integrate with the IntelliJ integrated development environment

  • Integrate with the Jenkins build server as a configurable plugin

  • Support security testing of one or more of the following programming languages

    • C/C++

    • C#.NET

    • Golang

    • Ruby

    • Rust

    • Swift

In Progress

  • Support security testing of the Python programming language (ALPHA) (Q1)

    • Support running under CPython versions 2 and 3

    • Support testing for the following vulnerability classes:

      • Cross-Site Scripting (XSS)

      • SQL Injection (SQLi)

      • XML External Entities (XXE)

  • Enhanced security testing of the JavaScript programming language (Q2)

    • Add support for NodeJS version 11

    • Support testing for all vulnerability classes in the knowledgebase at the time of writing

    • Create all necessary documentation

  • Enhanced security testing of the Java programming language (Q2)

    • Improve performance of weaving process

    • Triage vulnerabilities and reduce false positives

    • Support the "JNDI Injection" vulnerability class

    • Address additional user provided feedback along the way

Completed

  • N/A

2018

Completed

  • Integrate with the Visual Studio Code integrated development environment (ALPHA) (Q4)

    • Run security assessments

    • Import security assessments

    • Triage security assessments

    • Create all necessary documentation

  • Support security testing of the JavaScript programming language (ALPHA) (Q4)

    • Support running under NodeJS versions 8 and 10

    • Support testing for the following vulnerability classes:

      • Cross-Site Scripting (XSS)

      • SQL Injection (SQLi)

      • XML External Entities (XXE)

  • Support security testing of the Java programming language (BETA) (Q3)

    • Support running under Java Virtual Machine (JVM) versions 8, 9, 10, 11

    • Support testing for all vulnerability classes in the knowledgebase at the time of writing

    • Create all necessary documentation

‚Äč