Release/

May 2025

Features
Highlights

Aptori Safe Mode – Active Runtime Monitoring for GRC

Aptori Safe Mode introduces non-intrusive, active runtime monitoring that continuously assesses application behavior in production to surface real-world risks relevant to Governance, Risk, and Compliance (GRC).

Configurable Data Exposure Analyzer

With the Configurable Data Exposure Analyzer, you define the rules—Aptori enforces them, catching every instance of sensitive data exposure before it reaches production

GitLab Integration with AI-Powered Security

Secure your GitLab workflow end-to-end: auto-sync your repos, run hook-triggered scans on every MR, and get instant AI-powered security answers with //Aptori—all without leaving GitLab

Patterns – Custom Field & Value Rules for Smarter Testing

With Patterns, you tailor Aptori’s testing to your data model—generate the right inputs and sniff out leaks that generic scanners miss.

Release Notes

2025.5.2

New Features

  • GitLab Integration
    With Aptori’s GitLab Integration, you secure your code where it lives. Set it up once and let the AI Security Engineer guard every merge request, answer your security questions on demand, and keep your team moving at developer speed.
  • Patterns
    Use Patterns to tailor Aptori’s testing to your unique data model—generate the right inputs and detect sensitive data leaks that generic scanners miss.
  • Configurable Data Exposure Analyzer
    With the Configurable Data Exposure Analyzer, you define the rules—Aptori enforces them, catching every instance of sensitive data exposure before it reaches production.

Enhancements

  • Issue Report: Show Fault-ID
    The Issues Report now includes the Fault-ID for each issue, improving traceability and diagnostics.
  • Run Results: Tool Version Display
    The Run Results page now displays the version number of the tool used, helping teams track scan configurations more effectively.

2025.5.1

New Features

  • Safe Mode
    Introduces non-intrusive, active runtime monitoring that continuously assesses application behavior in production to surface real-world risks without disrupting normal operations.
  • Exhaustive Mode
    A new mode that tests all fields in SSRF and Injection analyzers, providing deeper and broader security coverage.
  • Sift CLI: --test-profile Flag
    Added a new CLI flag --test-profile to the Sift run command, allowing users to override the Test Profile specified in the configuration for greater flexibility.

Bug Fixes

  • Risk Count Refresh Fix
    Fixed an issue where Risk Counts on the Run Results page were not updating correctly after scans.
  • Web Application Scroll Fix
    Addressed a bug that caused the web application to stall in certain cases due to issues with infinite scroll behavior.