This update introduces a series of new features related to the IDE, Jira integration, OXO, and many improvements to the platform.

📄 PCAP files exposed in the IDE.

• Designed for security teams looking to push the analysis even deeper, now you can download all raw PCAP for your mobile full scan.

  

🤖 Open Source

• Binaries for the OXO scanning orchestrator are available with every new release for Ubuntu, macOS, and Windows.

  

• Added agent key shortcuts: Instead of

oxo scan run --agent agent/ostorlab/nmap ip 8.8.8.8

You can now simply run:

oxo scan run --agent nmap ip 8.8.8.8

Or

oxo scan run --agent @your-org/nmap ip 8.8.8.8

• Added support for scanning Network ranges and IP addresses in the cloud runtime.

oxo scan --runtime=cloud run -g network_agent_group.yaml ip  8.8.8.8/30

📑 Jira custom fields mapping

• If you have Jira integration enabled on Ostorlab, you can now map custom fields from your tickets with Ostorlab fields.

  

• Syncing the fields and values can be done from your JIRA project to Ostorlab and vice-versa.

🕸️ Attack surface refinements

• Added ability to edit potential nodes, specifying a custom potential owner.

🔬 XSS detection

• Improvements to postMessage XSS detection, adding detection of XSS in complex data objects.

🐞 Bug Fixes

• Fixed segregation and excluded unreliable rules in the VirusTotal agent.
• Addressed ecosystem confusion for outdated dependencies detection.