This update introduces fixes for the Attack Surface, detection for the liblzma backdoor, and a public store for agents.

📦 Detection

• Added detection for Apple's Privacy Manifest files. A Privacy Manifest describes the data an app or third-party SDK collects and the reasons required APIs it uses. Developers are required to include it in their apps before May 1st, 2024. The detection rule checks that apps are compliant with the new requirement, and whether their implementation is secure or not.
• Added detection for Django DEBUG mode enabled.
• Added detection for leaking secrets in Web Apps.
• Added detection for liblzma backdoor.
• Added detection for CVE-2023-48788, CVE-2021-44529, CVE-2019-7256, CVE-2022-20767, CVE-2022-0412, and CVE-2024-1212.
• Improved detection for Personally Identifiable Information (PII). The rule now detects way more vulnerable methods that leak PII data. PII leaking is now also done using a static rule.
• Improved detection for Mixed content WebView settings by analyzing and detecting more dangerous WebView settings.

🤖 Open Source

• Made the OXO agent store public.

  

🐞 Bug Fixes

• Fixed confirming assets defaulting to red as the custom color.
• Fixed Android and iOS search filters not working for potential assets.
• Fixed the CVE matcher DNA to take into account the latest CVEs.