The Mandiant Advantage Security Validation (MA-SV) team is pleased to announce version 5.10.3.0 of the MA-SV platform.
General Enhancements
- Improved memory usage by the Job Results API
- The GET /jobs/<ID> API endpoint no longer includes the integration_events.untranslated field by default, and truncates the integration_events.raw_event field by default to a max of 1024 characters. If users still need those full fields in the response, they can add the include query param:
GET /jobs/<ID>?include=integration_events.untranslated,integration_events.raw_event
The Doc portal's search feature does not search the API guides. To search for specific information in the API guide, open the API & then use the browser's search functionality.
- Improved the performance of modifying files in the Files Library
- When a deleted user tries to authenticate, they now receive a message that their account was deleted and to contact an administrator instead of an authentication error
- Added additional API documentation to pull and filter Director Audit Logs
- Security enhancements
- The GET /jobs/<ID> API endpoint no longer includes the integration_events.untranslated field by default, and truncates the integration_events.raw_event field by default to a max of 1024 characters. If users still need those full fields in the response, they can add the include query param:
Bug Fixes
- Fixed an issue where the file cleanup service was not removing all temporary file data
- Fixed an issue that caused the Job Page to list "Submitted By" name as "Unknown" instead of the appropriate user
- Fixed an issue that prevented Event Suppression from suppressing versus dropping events
- Fixed an issue where the following API call was not returning any "security_technology":
https://app.validation.mandiant.com/v2/jobs/915070.json?only=id,vid,detected,blocked,security_technology - Fixed an issue where AEDA Dashboard was displaying that Monitors were passing when they did not run correctly
- Fixed an issue where the AEDA "Last Run" was not linking to the last run job
- Fixed an issue where the user interface was unable to display the Jobs page with a 414 error
- Updated Security Technologies to include "Trellix"
- Fixed an issue when turning on Active Directory Authentication; users can now see and test new settings prior to rebooting
- Fixed an issue where older exported content would cause the Action Library to crash
- Fixed an issue where security patch updates were failing to some Actors
- Fixed an issue in AEDA where altering any existing monitor setting unintentionally changed the proxy being used by the Monitor
- Fixed an issue where log rotation was not properly working on Remote Integration Actors
- Fixed an issue where users with System Admin roles were not able to delete user-created evaluations
- Made improvements to prevent Bad Request integration errors when queries were above a certain size
- Fixed an issue where users were unable to add sleep Actions when creating an Evaluation from the API