September 2025
We are excited to introduce the latest features and enhancements in Endor Labs.
Dedicated commands for container scans New
You can now use the dedicated command endorctl container scan
for container scanning. This replaces the older endorctl scan --container
command. Migrate to endorctl container scan
to ensure continued compatibility. For more information, see Use new container scan commands.
Deprecation notice
The oldendorctl scan --container
commands and their corresponding flags (--container
, --container-tar
, and --container-as-ref
) are deprecated and will be removed by the end of September 2025.
Opengrep support for SAST and AI model detection New
Endor Labs now uses Opengrep to scan your code for SAST and AI model findings instead of Semgrep. Opengrep is an open-source, static analysis tool that finds bugs and vulnerabilities in the source code using pattern matching. Endor Labs automatically downloads Opengrep for you when you run a scan that needs it.
You can continue using Semgrep with Endor Labs if you prefer. See Use Semgrep with Endor Labs for more information.
Support for SAST scan on Windows Enhancement
With the use of Opengrep instead of Semgrep for SAST scan, you can now run SAST scans on Windows. For more information, see SAST scan with Endor Labs.
SwiftPM support for Swift/Objective-C projects Enhancement
Endor Labs now supports scanning Swift projects that use the Swift Package Manager (SwiftPM) by resolving dependencies from the Package.swift
file.
For more information, see Scan Swift projects.
Filter findings exported to GitHub Advanced Security Enhancement
Endor Labs now supports filtering findings exported to GitHub Advanced Security through action policies. Findings are exported only from projects covered by configured action policies.
For more information, see Export findings to GitHub Advanced Security.
Feedback
Was this page helpful?
Thanks for the feedback. Write to us at support@endor.ai to tell us more.
Thanks for the feedback. Write to us at support@endor.ai to tell us more.