BlogOpen a Ticket
Changelog
Start typing to search…
Back to All

Invicti ASPM Release v1.109 27th Jan, 2026

20 days ago by Ali Köse

Invicti ASPM v1.109 is ready!

New Features:

  • An Assign To option has been added to Issue Criteria rules, allowing rules to be activated for specific users only.
  • Qwietᴬᴵ SAST integration is now available.
  • A native integration for JFrog SCA is now available. Previously, this integration was supported only via import.

Improvements:

  • The performance of Dependency Check when using an NVD Token has been improved. To further enhance performance, the Use Cache option is now enabled by default.
  • The AI models available in Pentest AI selection have been reorganized. The model used for Google Gemini has been updated.
  • System filters have been updated. In addition to adding missing filters, several existing filters have been improved.
  • The Sysdig integration has been refactored. Hash calculation algorithms have been updated.
  • The algorithm used to fetch branches in GitHub Enterprise has been improved. By retrieving data in larger batches, rate limit issues have been mitigated.
  • The SBOM endpoint in API v3 now operates only on projects that the token owner has permission to access.
  • Mapping algorithms for CSPM scanners have been enhanced.
  • Reachability Analysis has been introduced for the OSV Scanner, along with the addition of License Extraction support.
  • Search algorithms on GitLab have been improved.

Bug Fixes:

  • Alignment issues in the Descriptions of Invicti vulnerabilities have been fixed.
  • An issue where the AWS Inspector region was not displayed correctly has been fixed.
  • An issue preventing Automation Rules from being saved when the save button was clicked multiple times during creation has been fixed.
  • An issue where emails were sent to users not included in the recipient list has been fixed.
  • An issue causing Asset Management list pagination to break active asset filters when Per Page was set to 30 or higher has been fixed.
  • Vulnerability filtering issues in Group View have been resolved, where excluded flags (such as CVSS > 5) were still displayed.
  • The scan execution flow has been improved to prevent scans from remaining stuck in the Analyze phase after reaching the configured maximum scan duration.
  • An Out of Memory issue in the Calendar view has been fixed. Additionally, scan duration values in exported scan CSV files have been corrected to match the data shown on the dashboard.
  • An issue where deduplicated Qualys scans appeared during configuration but did not execute or appear in scan lists has been fixed.
  • An issue related to the data structure of the Project ID in Coverity has been fixed.