August 2025
We are excited to introduce the latest features and enhancements in Endor Labs.
First-party code dashboard New
The first-party code dashboard provides a comprehensive view of the vulnerabilities in your codebase from a SAST and secrets perspective.
For more information, see First-party code dashboard.
Container end of life dependency finding policy New
You can now enable the End of Life Container Dependencies finding policy to raise findings for OS-level packages and components in container images that have reached end of life.
For more information, see Container finding policies.
Support for pull request scans in GHAS SARIF exporter Enhancement
The GHAS SARIF exporter now supports pull request scans for GitHub App (Pro). If you have enabled pull request scans in your GitHub App, the GHAS SARIF exporter exports the findings for each pull request. You can view the findings for the pull request in GitHub Advanced Security.
For more information, see Export findings to GitHub Advanced Security.
Malware finding policy New
You can now enable the Malware finding policy to raise findings for known malicious code or suspicious patterns in dependencies.
For more information, see Malware finding policies.
Export SBOM in SPDX format New
You can now export Software Bill of Materials in the industry standard SPDX format, with support for both json and tag-value output formats, making it easier to integrate SBOMs into existing compliance, auditing, and security workflows.
For more information see Export SBOM in Endor Labs.
Feedback
Was this page helpful?
Thanks for the feedback. Write to us at support@endor.ai to tell us more.
Thanks for the feedback. Write to us at support@endor.ai to tell us more.