What's new

This section describes new product features and enhancements in this release, as well as deprecations and anticipated changes, where relevant.

New in HCL AppScan Standard version 10.0.4

  • Web services scan configuration wizard:
    • Revamped and improved workflow (including opening and configuring Postman and SoapUI automatically). See Wizard: Scan web services
    • External client wizard has been merged into this wizard.
  • HTTP/2 is now supported. See Advanced Configuration view.
  • Incremental scans can now be run from the command line. See Incremental scans.
  • Non-standard headers: New Headers tab in the Application Data > Result List, showing non-standard headers discovered by AppScan, that will be tested during the scan.
  • Angular support: Improved Explore stage coverage of Angular web sites.
  • AWS Cognito is now supported. See 3rd Party Authentication view.
  • AppScan Connect: AppScan Standard now seamlessly connects to AppScan on Cloud’s new EU Data Center, in addition to the US Data Center. See Welcome screen.
  • HTTP and TLS: Version settings have moved to Advanced Configuration, and are now saved per scan. See Advanced Configuration view.
  • License: Password is no longer required for cloud license and local license server licenses.

Fixes and security updates

  • Fixes and security updates are listed here.

Removed in this release

  • Generic Service Client (GSC)

Will be removed in a future release

  • Scan Expert
  • X-Force categorization in Advisories and Issue Details
  • Malware detection capability
  • Ability for user to edit advisories and fix recommendations (in Test Policy view)
  • Advisories and Fix Recommendations specific to .NET, J2EE, and PHP will no longer be included in reports, but will still appear in the UI.
  • SSL 3.0 support