Release Notes 2023.12.0

New features and enhancements in Seeker 2023.12.0.

Seeker IIS Assistant

You can now configure .NET Agents for monitoring IIS applications with the new Seeker IIS Assistant tool. The convenient native-Windows GUI of the tool makes this configuration much easier and less error-prone than manual editing of Agent configuration files.

Related Information: Configure .NET Agents Using Seeker IIS Assistant

Usability improvements

  • You can now select one or more versions of a project so that all the dashboards display by default only vulnerabilities detected in those project versions. This would greatly increase the relevance of displayed vulnerabilities.

    Related Information: Configure Project Version Management

  • You can now enable authorized users to approve vulnerability status changes in bulk. This can come in handy, for example, when a large number of vulnerabilities have been triaged to the False Positive status by a developer, but this needs approval of a security manager.

    Related Information: Perform bulk actions for selected vulnerabilities

General improvements

The Seeker server can now be installed on Linux ARM64.

Related Information: Install Using CLI: Linux/Mac OS, Deploy Seeker Server on Kubernetes

Agents

The Seeker Agents have been enhanced with the following features:

Technologies Features
.NET Core The .NET Core Agent now supports applications using the .NET Generic Host.
Node.js As of this release, the Node.js Agent supports Node.js versions 14 and higher. Versions 12.x and 13.x are no longer supported. You can still test applications written in those versions using an Agent version prior to 2023.12.0.
Go The Go Agent now supports Black Duck analysis (SCA) for Go plugins. Now you don't need to use the SEEKER_DISABLE_PROTECODE_EMBED environment variable when building a plugin. The instructions in the Connect Agent wizard have been updated accordingly.
PHP The PHP Agent now supports PHP 8.3.
Python
  • The Python Agent now supports custom tags.
  • It is now possible to configure the Python Agent by setting the PYTHONPATH environment variable. The instructions are available in the Connect Agent Wizard.

Checkers

The following vulnerability checkers have been added, enhanced, or changed:

Technologies Name New/Enhanced/Changed
All Misconfigured X-Frame-Options Header New
All Clickjacking Enhanced by improved accuracy.

This checker now takes into account the frame-ancestors CSP directive. You can configure a list of allowed frame-ancestors in the checker configuration.
All Missing XSS-Protection Header Deprecated, disabled by default for new projects.

Documentation

A new article Failure to Initialize Chained Profiler with .NET Core Agent has been added to the Troubleshooting Guide.