Uncategorized

Truyo Product Release version 6.11.0

Upcoming Features:

  1. Risk Register (11737):
    • Implementation of a Risk Register feature to systematically manage and assess organizational risks.
  2. AI Governance Feature (12092,11643,12103):
    • Introduction of an AI governance superlative setting, offering advanced control and customization options.
    • Introduction of a dedicated AI scanning landing page with enhanced capabilities.
    • Ability to survey employees on usage of AI
    • Supports multiple AI frameworks including NIST, EU, and Biden Executive Order
  3. Email SMTP Settings Tab (12102):
    • Reorganization of Email SMTP settings, now accessible through their dedicated tab in the configuration section.

Security Updates:

  • CORS Trusting Arbitrary Origin and ACAC (11899):
    • Addressed the issue of Cross-Origin Resource Sharing (CORS) trusting arbitrary origin and Access-Control-Allow-Credentials (ACAC) vulnerabilities.
  • CORS Misconfiguration (11891):
    • Resolved the CORS misconfiguration, ensuring a more secure system.

Security Patch:

  • No security patches are included in this release.

Infrastructure Update:

  • No infrastructure updates are included in this release.

Bug Fixes:

  1. XMLHttpRequest Issue with Cookie Plugin (12172):
    • Resolved the XMLHttpRequest issue preventing the loading of the cookie plugin due to access control checks.
  2. Default Population of Cookie Banner Local Storage Key (12203):
    • Fixed the issue where the cookie banner was populating the truyoConsentOptOut local storage key by default.
  3. Cookie Banner Topic Rename (12168):
    • Addressed the topic rename issue in the cookie banner for improved clarity and consistency.

Hot Fixes (Version 6.10.0):

  • Delete Subscription Topic Failure (90):
    • Fixed the error causing the failure of deleting a subscription topic.
  • Cookie plugin not backwards compatible for launching popup dialog (12222)

Upcoming Features:

  1. Infrastructure Upgrade: Upcoming upgrades for components such as Spring Cloud, Spring Boot, JDK, Swagger/JUNIT, and related elements are set to improve performance and security.
  2. Assessment Improvements:
    • SSP Generation for CMMC (Cybersecurity Maturity Model Certification).
    • DOD Scoring for CMMC Assessments.
    • Data Mapping Enhancements.
  3. Email Template Editor: An advanced template editing and viewing feature for email templates will be introduced, enabling tailored communications.
  4. Verification Questions Enhancement: The verification question system will be fortified, offering different questions based on request type, origin, and attributes. Support for conditional questions, answer formatting, and required fields will be included.
  5. Data Privacy Assessment Editor: Organizations will gain the ability to customize assessment questions within the Data Privacy Assessment module, enabling tailored evaluations.
  6. Enabling AI governance feature to scan source code repositories, structured content, unstructured content and emails for presence of AI

For release note questions please reach out to support@truyo.com