July 8th, 2025
π New Access URL
The CybeDefend US platform is now available at: https://us.cybedefend.com
Make sure to update your bookmarks and integrations accordingly.
β οΈ Warning: Beta Version
CybeDefend v0.2 is currently in beta. Some features may still contain bugs or unexpected behavior.
If you encounter any issues, please contact us immediately through our support dashboard or the contact form.
Complete Dependency Tree Mapping: Each dependency is now tracked with its full ancestry, providing precise insight into how each component is brought into your project.
File-Level Dependency Tracing: Increased accuracy in identifying exactly which file introduces each dependency, enhancing audit and traceability.
Dependency Path Visualization: Clear, structured views of dependency hierarchies to better understand their relationships.
Transitive Dependency Detection: Automatic detection and classification of transitive (indirect) dependencies brought in by direct ones.
Development Dependency Labeling: Clear separation between production and development-only dependencies for targeted security analysis.
Customizable Scanning Parameters: Ability to filter scans by dependency type (development vs. production, direct vs. transitive), significantly improving performance for focused scans.
Universal Lockfile Support: Works with user-provided lockfiles or automatically generates them for all major package ecosystems.
Multi-Ecosystem Coverage: Automatically supports lockfile generation for 15+ package managers including npm, Cargo, Composer, Go, Poetry, NuGet, Gradle, Maven, Ruby Bundler, and more.
Intelligent Fallback Mechanisms: In case of version incompatibility or lockfile generation errors, the system gracefully falls back to base configuration files to maintain scan continuity.
Zero-Configuration Operation: Projects can be scanned without worrying about lockfiles β the system handles dependency resolution automatically and transparently.
Improved Lockfile Parsers: Significantly enhanced accuracy across all supported ecosystems:
Improved parsing for Maven, Gradle, npm, Python, Ruby, Cargo, Go, and others
Better handling of complex version specifiers and dependency relationships
More accurate resolution of aliases and redirects in dependency declarations
False Positive Reduction: Detection algorithms have been refined to reduce false positives and provide more reliable vulnerability findings.
Faster Scanning: Up to 60% speed improvement thanks to optimized parsing and data handling.
Selective Scanning: Enhanced capabilities to scan only production dependencies or skip already analyzed transitives.
Efficient Resource Utilization: Reduced memory usage during scans, allowing larger and more complex projects to be analyzed efficiently.
Interactive Dependency Tree: Explore the full dependency tree directly in the SCA interface to understand vulnerability context and impact.
Detailed Vulnerability Inspection: Enhanced visibility with clear severity indicators and affected dependency paths.
Advanced Filtering Options: Fine-grained filters to narrow down by dependency type or severity for efficient triage.
At-a-Glance Dashboard: Color-coded metrics provide a quick overview of your projectβs dependency health.
Redesigned SCA Interface: A more intuitive layout for navigating complex dependency data, reducing onboarding friction.
Faster UI Rendering: Improved frontend performance for large dependency trees without lag.
Responsive Design: Better adaptation across devices and screen sizes for a consistent user experience.
Automatic Authentication Prompt: Users are automatically prompted to authenticate when opening a folder, streamlining secure access.
Git Project Auto-Detection: Git repositories are automatically matched to existing projects in the CybeDefend workspace.
Smart Project Linking: If no matching project is found, the extension offers to create and link a new one with minimal interaction.
Team Collaboration Support: Simplified team selection when creating projects to facilitate multi-user workflows.
Flexible Configuration Options: Multiple authentication paths support various use cases including existing, new, and manually configured projects.
Faster Vulnerability Detection: Improved scan speed across all supported types (SAST, SCA, IaC).
AI-Powered Security Assistant: Upgraded AI chatbot can now help interpret SAST, SCA, and IaC issues in real time with contextual guidance.
Unified Security Coverage: Consolidated security scanning across multiple vulnerability types for complete risk assessment.
Improved Result Display: Scan results are shown directly in the IDE with a focus on readability and quick remediation.
Smart Notifications: Context-aware alerts about vulnerabilities, prioritized by severity and relevance.
Intelligent Recommendations: Proactive suggestions to improve security based on code patterns and dependency structure.
Public Image Scanning Support: Users can now scan publicly available Docker images (e.g. from Docker Hub or any compatible public registry).
System Vulnerability Detection: Detects vulnerabilities in OS packages, shared libraries, and metadata included in the image.
Integrated Results: Container analysis results are available in the same dashboard as SCA, SAST, and IaC findings.
Private Registry Support Coming Soon: Support for scanning images from private Docker registries (with authentication) is planned for an upcoming release, enabling full DevSecOps coverage.