This release contains the following improvements and fixed issues for KoP:

Latest Versions
  • KLA:  master.1819.p690.q13407
  • Engine: master.p690.q13407.a1912.i654
  • KOP: 2.8.2412.0

[2024-12-04] Change Log

Improvements

  • Kiuwan has implemented the rule “Improper Neutralization of Special Elements used in an SQL Command” for ASP.NET
  • Implementation of a new security rule for Kiuwan to identify Remote Code Execution (RCE) vulnerabilities in JavaScript codebases
  • Improved detection of potential security vulnerabilities related to XSS in JSP files
  • Kiuwan Code Analyzer now tags the  OWASP Top 10 appropriately
  • Improved performance of PHP analysis

Bugs

  • Rule OPT.SWIFT.MAINTAINABILITY.UnusedLocalVar has been updated to detect local variable usage properly
  • A typo affecting the rule OPT.CPP.SEC.PathTraversal and the use of ‘realpath’ has been resolved
  • Kiuwan now reports a vulnerability for OPT.JAVASCRIPT.TooMuchOriginsAllowed rule when ‘.setHeader’ is called from an express object
  • Custom models using the “Avoid using functions with too many parameters” rule now work correctly after setting new configurations
  • Kiuwan no longer displays a parsing error when encountering “MAP USING MAP” in Natural language source code


[2024-10-30] Change Log

Bugs

  • API Endpoint GET /analysis/list response body now includes “analyzedFolder” field in response body
  • Mute Defects API endpoint no longer returns a 500 error code
  • Downloading a PDF Components report now works as expected
  • Granted permissions for a user are no longer removed when management feature values are not provided in the update user API Call
  • Kiuwan Local Analyzer allows you to select Java Source code up to version 17
  • No labels