Lucent Sky AVM 4.2 is a feature update. This release includes the second-generation source code analysis engine, which allows improved analysis performance. This is the first of a total three phases of the new source code analysis engine, with additional capabilities and improvements scheduled to be added over the next two releases. Additionally, a new encoding detection algorithm, regionally-customized identification rules and bug fixes are also included in this release.
Lucent Sky AVM 4.1.1 is a maintenance release. This release is focused on improvements on the CLI, web UI and IDE plug-ins. Also included are CLEAR Engine improvements on PHP mitigation, as well as several bug fixes on compilation and report generation.
Lucent Sky AVM 4.1 is a release that focuses on efficiency and aim to streamline new features and capabilities introduced in v4. Notable changes including Intelligent Analysis and additional asynchronous methods in CLI and Web UI.
Last Thursday Cloudflare disclosed on a bug in Cloudflare's parser that caused data flowing through Cloudflare's network to be leaked onto the Internet. The bug has been dubbed "Cloudbleed" and has received extensive coverage. As a Cloudflare customer, Lucent Sky's security team sprang into action to evaluate Cloudbleed's impact on Lucent Sky services and customers' data. After investigation, we were able to confirm that no cloud-based Lucent Sky AVM servers were impacted by Cloudbleed, while no sensitive data on lucentsky.com websites were leaked.
Lucent Sky AVM 4.0.1 is the first maintenance release of Lucent Sky AVM 4, including planned features that were not included in v4.0, hotfixes, as well as bringing support for Windows Server 2016 and MSBuild 15.
Lucent Sky AVM 4 is the first major release of 2017, bringing a new mitigation engine with enhanced coverage and accuracy. Also included is support for three new technology stacks - C/C++, Swift and Active Server Pages.
Lucent Sky AVM 3.9.1 is the maintenance release, focusing on ironing out several issues in the previous release. Improvements include fine-tuning the 3rd generation mitigation engine, support of identifying and remediating Trust Boundary Violation issues, and a bug fix to the Java analysis engine.
Lucent Sky AVM 3.9 is the second milestone release as we get ready for the next major update - Lucent Sky AVM 4. In this release we continue to improve the third generation mitigation engine, available to customers who are in the Lucent Sky AVM Preview Program. Some of these improvements were also implemented to the current mitigation engine to improve its mitigation efficiency. In addition, the network stack of CLEAR Engine, the Web UI and IDE plug-ins were also updated.
Lucent Sky AVM 3.8 is the first milestone release as we get ready for the next major update - Lucent Sky AVM 4. At the core of this milestone release is a preview of the third generation of the mitigation engine. Built on Lucent Sky's proprietary mitigation technology, the new mitigation engine is expected to expand the types of vulnerabilities that can be automatically remediated and enhance the accuracy and precision of the remediation, while increasing the performance and memory management when mitigating applications with a large number of vulnerabilities. As a preview, the third generation mitigation engine is available in Lucent Sky AVM 3.8 to participants of the Lucent Sky AVM Preview Program, and can be enabled or disabled per-server, per-application or per-scan. If you haven't joined the Lucent Sky AVM Preview Program, you can learn more about it. In addition to the preview, improvements to the current mitigation engine and new vulnerability vector classifications were also included in Lucent Sky AVM 3.8.
As the second part of a series of performance-focused updates, Lucent Sky AVM 3.7 brings performance improvements to the analysis engine. Improved caching and parallel processing algorithms were added to the contextual analysis engine, and analysis performance will be noticeably improved on most applications. Web UI also received several improvements, such as result suppression functionalities and source code archive validation.