Changelog

New features, improvements, and fixes shipped to Scault.

v2.4.0Apr 10, 2026

DAST Scanner + Container Security

Two powerful new scan engines join the Scault platform. DAST (Dynamic Application Security Testing) crawls your running applications to find vulnerabilities like XSS and authentication flaws. Container Security scans your Docker images and Kubernetes manifests for misconfigurations and known CVEs.

newDAST scanner engine with support for authenticated crawling and custom scan profiles

newContainer Security scanner for Docker images, Dockerfiles, and Kubernetes manifests

improvedScan engine orchestrator now supports parallel execution of up to 7 scan types

improvedMicroVM boot times reduced by 40% through snapshot pre-warming

fixedResolved an issue where large monorepo scans could time out on Windows microVMs

v2.3.0Apr 3, 2026

OWASP Top 10 Dashboard

Map your security findings directly to the OWASP Top 10 categories. The new compliance dashboard provides a clear overview of where your applications stand against the most critical web application security risks, with actionable remediation guidance.

newOWASP Top 10 (2021) compliance dashboard with per-project breakdown

newAutomated finding-to-OWASP category mapping for SAST and DAST results

improvedFinding detail pages now show related OWASP and CWE references

fixedFixed incorrect severity classification for certain SCA findings

fixedResolved a UI issue where long finding titles were not properly truncated

v2.2.0Mar 25, 2026

AI Security Copilot

Introducing the AI Security Copilot, a conversational interface that helps you understand your security findings, get remediation suggestions, and explore your security posture using natural language. Ask questions like "What are my most critical vulnerabilities?" and get instant answers.

newAI Security Copilot chat interface with context-aware security Q&A

newAuto-generated fix suggestions with code diffs for common vulnerability patterns

improvedDashboard now shows a security trend graph with 30-day history

improvedNotification system supports Slack, email, and webhook channels

fixedFixed an edge case where duplicate findings could appear across scan runs

v2.1.0Mar 15, 2026

Custom Scan Rules

Define your own SAST rules using a simple YAML-based syntax. Create organization-specific patterns to catch security anti-patterns unique to your codebase, enforce coding standards, and detect internal API misuse.

newCustom SAST rule editor with YAML syntax and live pattern testing

newRule sharing across projects within an organization

improvedScan results now show which rules triggered each finding

improvedAPI key management page with usage analytics and expiration controls

fixedFixed GitHub App installation flow for organizations with SSO enabled

fixedResolved a memory leak in long-running secret detection scans

v2.0.0Mar 1, 2026

Scault Launch

The initial launch of Scault, a comprehensive security scanning platform built for vibe coders. Ship with confidence using 5 scan engines, multi-platform microVM isolation, and real-time results. Scault scans your code across iOS, Android, macOS, Windows, and Linux in parallel.

newSAST (Static Application Security Testing) engine with support for 12+ languages

newSCA (Software Composition Analysis) for dependency vulnerability detection

newSecrets scanner to detect hardcoded API keys, tokens, and credentials

newIaC (Infrastructure as Code) scanner for Terraform, CloudFormation, and Kubernetes

newLicense compliance scanner for open-source dependency license analysis

newMulti-platform microVM execution across iOS, Android, macOS, Windows, and Linux

newGitHub App integration for automated PR scanning and status checks

newReal-time scan progress with SSE streaming

newTeam management with roles and permissions