Release Notes 2023.5.0

New features and enhancements in Seeker 2023.5.0.

Shadow API detection

Undocumented and unmanaged, shadow APIs pose a high application security threat.

Seeker can now help you identify such APIs in your applications by detecting hidden endpoints and displaying them on the Inbound Endpoint Risk page.

Related Information: View and Explore Inbound Endpoint Risk, Configure API specification.

Project membership inheritance

This new option enables all regular projects included in a composite project to inherit its membership. This significantly reduces manual user administration work for composite projects.

Related Information: Configure Project Membership Inheritance in Composite Projects

Usability improvements

Project reset and deletion are now performed asynchronously. Even when this operation takes some time behind the scenes, the resulting change in the UI will appear immediately, so you can continue working without interruption.

Agents

The Seeker Agents have been enhanced with the following features:

Technologies Features
.NET Core The .NET Core Agent now supports tracking of unsafe data transmitted across projects over gRPC streams.
Node.js

The Node.js Agent now supports:

  • Node.js 20 applications.
  • Applications running on MacOS with ARM processors (M1/M2).
Go In addition to all the other Agents, the Go Agent now supports automatic detection of endpoints declared by an application.
Python
  • The Python Agent binaries now include prebuilt binary distribution packages for MacOS with ARM processors (M1/M2).
  • The Python Agent now collects OpenAPI specifications created using the Django REST framework.

Checkers

The following vulnerability checkers have been added, enhanced, or changed:

Technologies Name New/Enhanced/Changed
.NET Core, .NET Framework, Node.js Outdated SSL Version New

Documentation

The Seeker Server Installation Guide now includes instructions how to Deploy Seeker Server Using Docker Compose.