Release Notes 2023.1.0

New features and enhancements in Seeker 2023.1.0.

Usability improvements

The Seeker web UI layout has been redesigned for better usability:

  • The main menu panel on the left side has become leaner to allow more space for the content area.
  • The menu options are now displayed as icons, their labels visible as tooltips.
  • There are fewer options in the main menu, as the Web APIs, Help, and User menu options have moved to the top toolbar.

Related Information: Seeker Web UI, Working with Projects, Configure Profile and Preferences

Vulnerability handling has been improved by the following:

  • The Vulnerabilities page is now available from the Project page and displays only vulnerabilities for the current project. The global Vulnerabilities page is still available from the main menu, but you can optionally hide it and access vulnerabilities only from the Project page.
  • You can now bulk-update all vulnerabilities in a project with no limit of the number of vulnerabilities.
Related Information: Working with Vulnerabilities

Agents

The Seeker Agents have been enhanced with the following features:

Technologies Features
Java, .NET Core, .NET Framework, Node.js, Python Seeker now performs cross-project tracking of unsafe data stored in object-relational mapping (ORM) tools or frameworks. For example, a vulnerability can be detected when a microservice uses unsafe data stored in a database by another microservice.
All You can now instruct Seeker to enable or disable a Seeker Agent using a custom environment variable defined in the SEEKER_ENABLED_LOOKUP_ENV_VAR_NAME and SEEKER_ENABLED_LOOKUP_ENV_VAR_VALUE variables.

Related Information: Advanced Agent Settings

Java
  • Support for applications using the Jakarta EE9 APIs.
  • You can now use the environmental variable SEEKER_AGENT_OUTGOING_CALL_EXCLUSION to instruct the Agents not to modify outgoing requests for certain URLs.

    Related Information: Advanced Agent Settings
Node.js As of this release, support for Node.js 10.x by the Agent is deprecated, and will be removed in one of the future releases.
PHP The instructions in the Connect Agent Wizard for the PHP Agent have been revised for clarity.
Python The API documentation, collected by Seeker from your Python applications using the flask-smorest framework, is now available from the Endpoint Risk dashboard.

Documentation

The new Troubleshooting Guide aims to help you resolve various issues that you might experience while setting up and running Seeker. This guide is directly available as part of the Seeker documentation, and will evolve incrementally with each release to cover more and more areas. The first installment covers the common application performance and Agent connection issues.

Related Information: Troubleshooting