Skip to content

Release notes for the April, 26 2026 update

Update Version 4.1.202604241240

New Features

Added support for filtering PowerShell session commands

Command filtering enables granular control of permitted and blocked commands within secure remote sessions initiated from native desktop or mobile PowerShell clients.

Added Support for User-Defined Access through Connection Broker

Introduced the ability for users to initiate connections to remote endpoints by supplying their own credentials or destination details, while all access is securely mediated through the connection broker. This feature enforces RBAC policies, approval workflows, and session monitoring with video and event recording, enabling secure, identity-based session management without requiring automated credential management.

Key capabilities include:

  • Users can specify credentials or host details when connecting to assets without predefined values.
  • Asset owners can override stored credentials when initiating a connection.
  • Asset owners can override the target host for a connection.

Extensions

  • Added the option to search assets in the application command line interface shell.

  • Added the option to list only assets that allow SSH connection in the application command line interface shell.

  • Added the option to specify API token filter as a space-separated list of IP addresses and IP ranges.

  • Added event log message for successful and for failed REST API connections using API tokens.

Security

Security Improvements

  • Added the option to install, update and run the application on Linux hosts as a dedicated service user to enforce the principle of least privilege.

  • Added client side quality control tool to ensure code quality, consistency, and reliability across the WEB application.

  • Improved security, performance, stability and maintainability of the WEB application GUI by decoupling tightly linked components, simplifying expressions, lists and types management, enforcing strict compare and state maintenance, improving code reusability and notation as well as overall code cleanup.

Components Update

  • Updated application WEB framework to the latest version.

  • Updated client side markdown rendering component to the latest version.

  • Updated Code Editor View component to the latest version.

  • Updated HTML sanitization library to the latest version.

  • Updated MySQL Driver to the latest version.

  • Updated HTTP communication component to the latest version.

  • Updated FIPS cryptography utilities and certificate management components to the latest version.

  • Updated database access component to the latest version.

  • Updated database caching component to the latest version.

  • Updated data processing component to the latest version.

Fixes

  • Fixed the issue with early deployment of the application during Linux host OS startup by improving detection of system service management component.

  • Fixed the issue with error reporting and terminating the installation on the Linux hosts with no known service management components.

  • Fixed the issue with the incorrect type of the error exception generated for the SSH Script that cannot connect to the destination.

  • Fixed the issue with deleting an asset assigned as a reference to the import from LDAP.

  • Fixed the issue with dynamic issuer used in generated API token.

  • Fixed the issue with filtering REST API connections based on the client IP Address and API token filter.

  • Fixed the issue with the updating the application on Linux platforms with OpenRC service manager.

  • Fixed the alias command of the application command line interface to return sorted list of aliases.

  • Updated browser console messages about renewing a temporary authentication token to debug level.