Skip to content

Release notes

Main events

Expanding the capabilities of the dashboard

2025-Q3

• Added target authentication control mechanisms to the dashboard.
• Added a details page with general information about each target.
• Added progress of scanning modules.
• Added support for the TLS protocol in gRPC communication with the fuchsiactl console client.
• Added a HAR endpoint import module.
• Updated the Docker base images from Debian Bullseye to Debian Bookworm.

Improving the user experience

2025-H1

• Added support for Debian version 12 (“bookworm”).
• Improved the PDF report generator: accelerated report generation, added multilanguage support and short report generation.
• Expanded the capabilities of the dashboard: added the ability to use the DirBuster during scanning, improved the scan details page.
• Completely updated the URL validation.
• Added the ability to view scan module logs via the API.
• Added an authentication update mechanism using a browser script to the scanner.
• Added a GraphQL endpoint detection module.
• The scanner is now able to detect untrusted data deserialization in PHP and Stored XSS vulnerabilities.

Expanding the capabilities of the dashboard

2024

• Released the first version of the PDF report generator and added the ability to generate reports from the dashboard.
• Added the ability to set authentication parameters for targets.
• Expanded the target settings.
• Added issue details.
• Added an authentication data update mechanism.
• Added the ability to pause scans.
• Added the scan creation wizard with the ability to select the modules for scanning.
• Added a severity trend graph and an issues pie chart to the overview page of the dashboard.
• The scanner is now able to detect file upload vulnerabilities.

Registration in the Unified Register of Russian Software

2023

• Released the first version of SolidPoint Compose.
• Released the first version of the dashboard, which includes more data about the scan result and allows you to create and edit targets.
• Added a session validity check.
• Added page deduplication, improved endpoint deduplication.
• The scanner is now able to detect new types of vulnerabilities: Path Traversal, shell-injection, SSTI.
• Improved detection of SQL injection by adding new types of checks.

Start of the dashboard development

2022

• New features: user token generation, in-app authentication, and viewing pages with scan results.
• Added support for basic authentication methods for the targets.
• Added a dirbuster for the static web crawling module.
• Added a dynamic web crawling, integration with the SolidWall WAF and an OpenAPI specification import modules.
• The scanner is now able to detect issues described by Nuclei signatures, insecure credentials, XXE, DOM XSS.
• Improved CSPP detection by implementing dynamic analysis.

New modules

2021

• The scanner is now able to detect issues described by Powby2 signatures, controlled serialized data, Client-Side Prototype Pollution, insecure deserialization in Java and Reflected XSS.

First Release of the scanner based on Fuchsia technology

2020

• The first release also includes two new modules: SQL and NoSQL injection scanners.

First steps

2019

• Start of the development of the static web crawling and client-side JavaScript code analysis modules.