Welcome to Lucent Sky AVM version 1906 MR, the second Minor Release of the year. The main feature of this release, and its service updates, is the third-generation binary analysis engine. To learn more about this release, visit Lucent Sky AVM version 1906 release notes.

New features in 1906

Binary analysis

The third-generation binary analysis engine provides incremental improvements over the current engine, and scalability is a key focus. A new direct binary analysis mode allows pre-compiled binary files to be analyze along with their source code, without the need of building it within the scan process. Additionally, new memory management algorithms provide greatly improved analysis performance on systems with large amount of memory.

The third-generation binary analysis engine is currently in public preview and works alongside the current engine, and is available to customers in the Lucent Sky AVM Preview Program. To learn more about how to to use the new features of the third-generation binary analysis engine, or to join the Lucent Sky AVM Preview Program, visit Introducing Lucent Sky AVM Preview Program.

Weakness policies

Starting with v1906, Lucent Sky AVM will use a set of “weakness policies” to provide simplified control on what types of vulnerabilities are identified and remediated, instead of individual weakness toggles. This allow users in different industries to choose the policies that align with their regulatory requirements. Results identified and remediated by Lucent Sky AVM are still categorized by their CWE IDs, and users still have the ability to set the identification and remediation settings for individual CWE IDs.

Remediation

• Performance and stability improvements when generating the remediated source code.

Build

• .NET
  • Output file(s) of MSBuild can be specified by setting the BuildOutputPath scan argument.
  • Additional troubleshooting information is available when an .NET application failed to build.
  • When running on a non-English operating system, MSBuild and ASP.NET compilation logs are correctly displayed in the native language.
• Java
  • Performance improvements when building Java applications using Ant.
  • Performance and compatibility improvements when building Java applications using Maven.

Interfaces

• Eclipse plug-in
  • The Eclipse plug-in is updated to support weakness policies.
• Visual Studio extension
  • The Visual Studio extension is updated to support weakness policies.
• Web UI
  • Improvements to the warning broadcast in the web UI.

Issues fixed in 1906 MR

• We fixed a bug where rule package is not properly installed when CLEAR Engine setup was interrupted and resumed.

Updating to 1906 MR

If you are using Lucent Sky AVM Enterprise or Standard Edition (either on-premise or cloud) and have an active subscription, you can update to 1906 MR immediately. Our support team will reach out to you shortly to schedule an update. If you are using Lucent Sky AVM On-Demand, your server will be updated to 1906 MR in the next few days.