Release notes¶
Main events¶
Convenience and features
2026-Q1• The dashboard is now more compact.
• Added information about the identified technologies during the scan of the target.
• The target details page now includes a tab that displays the list of scans for this target.
• Added the ability to exclude issues from subsequent scans
• Added the ability to view scan module logs via the dashboard.
• Added scan status history.
• Added the ability to exclude specific modules or module groups when starting a scan using the fuchsiactl console client.
• Added the experimental automatic login module.
• Added support for Astra Linux 1.8.
All‑around improvements
2025• Dashboard:
◦ Added bulk scan deletion.
◦ Scan details are now organized into tabs.
◦ Added target details.
◦ Added progress of scanning modules.
◦ Added the ability to use the DirBuster during scanning.
◦ Added target authentication control mechanisms.
• PDF report generator:
◦ Accelerated report generation.
◦ Added multilanguage support.
◦ Added short report generation.
• Server part:
◦ Updated the URL validation.
◦ Added the ability to view scan module logs via the API.
• Scanner:
◦ Added an authentication update mechanism using a browser script.
◦ Added modules: GraphQL endpoint detection module, HAR endpoint import module.
◦ Now scanner detects:
‣ Untrusted data deserialization in PHP;
‣ Stored XSS vulnerabilities;
‣ Issues described by extended Nuclei templates.
◦ Added support for the TLS protocol in gRPC communication with the fuchsiactl console client.
◦ Added scan module version output and partial log download.
◦ Added anomaly checker support.
◦ Added the ability to identify technologies used by the target.
◦ Scan module security has been enhanced with additional checks and error prevention methods.
• Added support for Debian version 12 (“bookworm”).
Expanding the capabilities of the dashboard
2024• Released the first version of the PDF report generator and added the ability to generate reports from the dashboard.
• Added the ability to set authentication parameters for targets.
• Expanded the target settings.
• Added issue details.
• Added an authentication data update mechanism.
• Added the ability to pause scans.
• Added the scan creation wizard with the ability to select the modules for scanning.
• Added a severity trend graph and an issues pie chart to the overview page of the dashboard.
• The scanner is now able to detect file upload vulnerabilities.
Registration in the Unified Register of Russian Software
2023• Released the first version of SolidPoint Compose.
• Released the first version of the dashboard, which includes more data about the scan result and allows you to create and edit targets.
• Added a session validity check.
• Added page deduplication, improved endpoint deduplication.
• The scanner is now able to detect new types of vulnerabilities: Path Traversal, shell-injection, SSTI.
• Improved detection of SQL injection by adding new types of checks.
Start of the dashboard development
2022• New features: user token generation, in-app authentication, and viewing pages with scan results.
• Added support for basic authentication methods for the targets.
• Added a dirbuster for the static web crawling module.
• Added a dynamic web crawling, integration with the SolidWall WAF and an OpenAPI specification import modules.
• The scanner is now able to detect issues described by Nuclei signatures, insecure credentials, XXE, DOM XSS.
• Improved CSPP detection by implementing dynamic analysis.
New modules
2021• The scanner is now able to detect issues described by Powby2 signatures, controlled serialized data, Client-Side Prototype Pollution, insecure deserialization in Java and Reflected XSS.
First Release of the scanner based on Fuchsia technology
2020• The first release also includes two new modules: SQL and NoSQL injection scanners.
First steps
2019• Start of the development of the static web crawling and client-side JavaScript code analysis modules.