Releases: checkmarx-ltd/VisualStudio
Release_9.00.31
Below issues/enhancement completed
- Added support for SAST critical severity (for above SAST 9.6 version).
- Added Support for Mandatory comments functionality based on SAST configuration for NE(Not Exploitable), PNE( Proposed Not Exploitable), and all states.
- Supports Visual Studio 2022 LTSC version 17.10.4.
- Supports Visual Studio 2019 version 16.11.38.
- Added support for PMA (Pixel-based Multi-Anchor) optimize rendering for screens with different pixel densities.
- Fixed an issue while login with SSO.
Release_9.00.27
Below issues/enhancement completed
- Fixed an issue that caused a project to be unbound anytime you right-click different project scopes.
- Fixed an issue that caused zip files to fail to upload due to the source folder hierarchy using the VS plugin.
- Fixed an issue where Not Exploitable fails to load in a result state option even if the user has permission.
- Fixed an issue where the vulnerability short description failed to load when the language was not English and displayed a message if the vulnerability description was unavailable in the same language.
- Fixed an issue that displays the wrong vulnerability short description when using a language other than English in SAST.
- Fixed a UI issue on the project bind list search box and close icon on Windows 10.
- Added support to disable or enable server-side certification validation in the CxVSPlugin.conf file.
- Fixed an issue for public projects where you could not create a public scan within the same project if the first scan is private.
Release_9.00.22
Below issues/enhancement completed
- Supports Visual Studio 2022 LTSC version 17.4.6.
- Supports Visual Studio 2019 version 16.11.25.
- Added support making comment mandatory while changing result state based on flag configured in SAST.
- Fixed issue that window for Show Vulnerability Description should open in embedded browser instead of external browser.
- Added validation for Authentication Type username_password to display error in case of invalid credentials.
- Added a filter to search project using project name from project list during bind project operation.
- Improved view for Bind Project screen to display project list with a configurable number of projects with default value 100.
- Updated CxViewer result page to display Short description and code bashing link.
- Updated Checkmarx logo in Login ,Add/Edit comment, and Query Description screen.
Release_9.00.10
• Added Visual Studio 2022 support for CxViewerPlugin.
• Below issues are fixed
1. Occurrence of transparent login page in VM.
2. Grey screen loading while authenticating with SAST 9.2 installed server.
3. Invalid redirect URL while using TLS enabled CxSAST URL.
Release_9.00.9
- Implemented web interaction to achieve form based login and SAML 2.0 based login.
Release_9.00.8
1, Implemented username+password authentication dialog for native login. This is useful workaround for environments where embedded browser does not work because of security restrictions.
2. Token expiration logic is fixed
WebView2-Upgraded
This version contains WebView control upgraded from earlier pre-release to the actual released control.
WebView2/Edge Login
This version of the extension uses Edge instead of IE to handle login actions. This isn't merged with the main branch because it rely's on a canary version of Edge to operate correctly. The required version of edge needs to be at least version 88 and the current release is 87. In order to successfully use this extension you must install the canary version of Edge and make it the default browser on your system. This requirement will change as Edge version 88 becomes standard around December 2020.