Documentation release for the Spectra Assure CLI 2.9.0 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.7.2 Portal version.

CLI​

• Added the license status return codes to the following commands: init, list, report, sync, update, vault, rl-deploy, rl-safe

• Updated the existing return codes in the scan and license commands

• Created a policy configuration guide for Community

• Updated the policy configuration schema

  • Added the new default_linux option
  • Added the new community section for configuring trigger conditions for the policies focused on open source components and dependencies included in the application
  • Added the new identity.dependency.scenario field
  • Added the new hash value to the processing.filter.matches field

• Updated the policy configuration guide for BOM editing according to policy configuration schema changes

Integrations​

• Added a guide on how to integrate Spectra Assure with DefectDojo

SAFE​

• Updated the SAFE Viewer download links and hashes for version 1.4.0

Other​

• Added the scanning guidelines to the TPRM guide, to help users get the most out of the Spectra Assure products and ensure accurate analysis results

• Added new Threat hunting policies to the documentation: TH16501, TH16502, TH16503, TH16504, TH16505, TH16506, TH16507, TH16508, TH16509, TH18301, TH18302, TH30101, TH30102, TH30103, TH30104, TH30105, TH30106, TH30107, TH30108, TH30109, TH30110, TH30111, TH30112, TH30113

• Added new behaviors to the reference docs: BH13836, BH13837, BH13838, BH13839, BH13840, BH13841, BH13842, BH13843, BH13844, BH13845, BH13846, BH13847, BH13848, BH13849, BH13850, BH16392

• Added the new statistics.dependencies field in the rl-json report schema and the rl-checks report schema

• Updated product release notes

Documentation release for the Spectra Assure CLI 2.8.2 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.7.1 Portal version.

CLI​

• Updated the rl-deploy version, release date, links, and hashes to v2.4.1

SAFE​

• Updated the SAFE Viewer download links and hashes for version 1.3.3

• Fixed the incorrect description for the Components page of the report on the SAFE report landing page

Other​

• Added a new Component identification guide to the Concepts > Conceptual guides section of the docs. This guide gives insight into components and the process of their identification in Spectra Assure

• Updated the verified glossary entry with a more accurate explanation of software identity verification methods

• Updated the maximum file size limit in the TPRM guide, the Partners landing page, the Licensing guide, the rl-scanner-cloud Docker image, and license and scan command examples

Documentation release for the Spectra Assure CLI 2.8.1 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.6.2 Portal version.

CLI​

• Updated the documentation for the rl-secure find command with instructions on how to use the new SBOM searching option

• Updated the maximum file size limit for CLI processing on the CLI system recommendations page

SAFE​

• Updated SAFE Viewer download links and hashes for version 1.3.2

Community​

• Added support for VS Code. Made the change more prominent by creating a new Supported communities section on the Community category landing page

Other​

• Updated product release notes

• Explained the new "Prevalence in Spectra Intelligence" section for behaviors that pulls the data from the ReversingLabs malware database

Documentation release for the Spectra Assure CLI 2.8.0 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.6.1 Portal version.

CLI​

• Added new OpenAI handler to the list of secrets on the find command page

• Added the CTRE license to the list of Third-party open source software

• Updated the rl-deploy version, release date, links, and hashes to v2.4.0

SAFE​

• Added "Uploaded by" info to an admonition on the Report summary page

Other​

• Updated product release notes

• Added support for ZFS to the Community and language coverage page

• Moved the preview stream configuration for the CLI Docker image (rl-scanner) to the Partners > Preview stream configuration page. Rewritten parts of this page to include new info

• Added the Microsoft 365 Copilot API, Microsoft Copilot API, and Microsoft Copilot Chat Service API endpoints to the AI services table

• Added new behaviors to the reference docs: BH13833, BH13834, BH13835

Documentation release for the Spectra Assure CLI 2.7.1 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.5.2 Portal version.

Portal​

• Added support for spaces in SSO group names to the SSO configuration guide

SAFE​

• Updated SAFE Viewer download links and hashes for version 1.3.1

Other​

• Fixed the incorrect number of Threat hunting and Differential analysis policies on the Policies category landing page

• Updated the Supported proprietary licenses list with the missing licenses

• Added a page for new ReversingLabs service category, which lists all official Spectra services

• Separated AI and Data processor services, as well as Collaboration and Data exchange services for ease of reference

• Added an explainer table with a Service type column to individual service category pages to make the distinction between a service category and a service type more clear

• Listed some previously undocumented service types on the xBOM page

• Added new behaviors to the reference docs: BH13830, BH13831, BH13832, BH15356, BH15357, BH16391, BH17439, BH17440, BH17441

Documentation release for the Spectra Assure CLI 2.7.0 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.5.1 Portal version.

CLI​

• Updated the policy configuration schema

  • provider is a new required field, and flow is required in the networking.protocol.filter.address.service object
  • product, version, publisher and license are now optional in the processing.filter.identity.component and processing.filter.identity.dependency objects
  • description is a new optional field in processing.filter.identity.component and processing.filter.identity.dependency objects
  • editing is a new optional field in the processing.filter.identity.dependency object
  • processing.filter.hunting.behaviors now supports setting a behavior ID to 'pass'
  • a new section processing.filter.hunting.indicators allows targeting behaviors by their description text

• Updated the policy configuration guides for behaviors and BOM editing according to policy configuration schema changes

• Reorganized content on the vault command page to make it clearer which options are supported by which sub-command

• Updated the content on the find command page

  • Added the Dropbox short-lived online and offline access tokens to the Web service access tokens section of supported secrets
  • Noted that behaviors can be searched by ID in the introduction
  • Reorganized specialized CLI options for search terms into their own sections
  • Merged the "Search for specific secrets with evidence" example into the "Find active and exposed secrets in a project" example to simplify the page
  • Changed example headings for clarity

Portal​

• Added notes about PDF Summary files automatically refreshing on Portal upgrade to Analysis reports and SAFE report pages

SAFE​

• Documented the new "Component Age" section on the Summary page of the SAFE report
• Updated SAFE Viewer download links and hashes for version 1.3.0
• Improved the content on the SAFE Viewer page to make the information about the current version more visible and explain the transparency report
• Reorganized the content on the SAFE report page to reduce duplicated information; added missing references about PDF summary, and indicated where xBOM information can be found in the report

Other​

• Updated product release notes

• Reorganized content on the Community and language coverage page

  • Virtual Machines are now a standalone section instead of being grouped together with Containers
  • Moved content from tables into simple lists to make it easier to search and navigate

• Updated the rl-json report schema

  • Added new fields in report.metadata.components.identity, report.metadata.cryptography, report.metadata.dependencies.identity, report.metadata.ml_models, report.metadata.services
  • Updated the catalogue version in the schema

• Split the report examples from schemas on all report schema pages in conceptual docs for a more consistent structure and easier access to examples

• Increased font size in all tables to improve readability

First release of the Spectra Assure Community documentation.

Community​

The Spectra Assure Community product now has a dedicated section on the Spectra Assure docs website.

Previously, the Community item in the top navbar was a direct link to the official Community page. Now it's a dropdown that lets you access new content and makes space for future documentation about the product.

Specifically, the Community section of the docs website now contains:

• The product landing page that helps you understand how Spectra Assure Community works and what it's best used for
• The quick start guide that explains the basics of the Spectra Assure Community report and how to share it with others

Other​

• Fixed a broken link to the vault command page in the CLI section of the 2024-04-10 docs changelog entry

Documentation release for the Spectra Assure CLI 2.6.3 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.4.2 Portal version.

CLI​

• Replaced SAFE with rl-html in the Supported report formats table on the report command page

• Added explanations for custom return codes communicating the license state to the scan and license commands

Portal​

• Updated the SAFE Viewer version, hashes, and download links to v1.2.0

• Added a section on the auto-approval feature to the Portal Settings page

• Added the auto-approval feature to the File Stream vs Projects comparison table to indicate that it's supported in both

Other​

• Added an RSS feed to the Changelog page, allowing users to subscribe to docs-related updates via RSS

• Added new behaviors to the reference docs: BH13778, BH13779, BH13780, BH13781, BH13782, BH13783, BH13784, BH13785, BH13786, BH13787, BH13788, BH13789, BH13790, BH13791, BH13792, BH13793, BH13794, BH13795, BH13796, BH13797, BH13798, BH13799, BH13800, BH13801, BH13802, BH13803, BH13804, BH13805, BH13806, BH13807, BH13808, BH13809, BH13810, BH13811, BH13812, BH13813, BH13814, BH13815, BH13816, BH13817, BH13818, BH13819, BH13820, BH13821, BH13822, BH13823, BH13824, BH13825, BH13826, BH13827, BH13828, BH13829, BH15343, BH15344, BH15345, BH15346, BH15347, BH15348, BH15349, BH15350, BH15351, BH15352, BH15353, BH15354, BH15355, BH16389, BH16390, BH19570

• Updated the product release notes

• Mentioned the new Malware page of the report where applicable and updated the graphics to illustrate the changes

• Added Coinminer, Dropper, and Mail to the list of supported threat types

• Declared the SQ30101 policy as enabled by default

• Removed the incorrect statement on ML models from the ML-BOM section of the xBOM page

• Updated the link to the ReversingLabs EULA in the API reference documentation

• Fixed a broken anchor link on the CLI report command page

• Corrected the wrong rl-deploy version number in the last docs changelog update

Documentation release for the Spectra Assure CLI 2.6.2 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.4.1 Portal version.

CLI​

• Added a new status sub-command to rl-secure vault that checks if the password vault has been initialized for the specified package store

• Added Palantir JWT to the list of supported secrets under the find command

• Updated the rl-deploy version, release date, links, and hashes to v2.3.1

Other​

• Added new behaviors to the reference docs: BH13765, BH13766, BH13767, BH13768, BH13769, BH13770, BH13771, BH13772, BH13773, BH13774, BH13775, BH13776, BH13777

• Removed the incorrect reference to rl-cve from the rl-uri report schema frontmatter

• Fixed a broken link in the Suppress secrets policy configuration guide

• Fixed tags in the report example on the rl-uri report schema page

• Removed the duplicate listing of differential analysis policies on the Policies > Threat hunting page

• Transformed SAFE and Integrations categories into dropdowns. All important pages in these categories can now always be accessed from any part of the docs

• Fixed the CBOM glossary entry to mention that it's included only in the CycloneDX report format

Documentation release for the Spectra Assure CLI 2.6.1 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.3.2 Portal version.

CLI​

• Added Anthropic API key to the list of supported secrets under the find command

• Updated the main policy configuration example with new sections

• Updated phrasing in all policy configuration guides to clarify where and how policy changes apply, and which policy configuration objects are used

• Created a policy configuration guide for declaring network services

• Created a policy configuration guide for BOM editing

• Updated the instructions for networking filters to match the new opt-in behavior for declaring networking placeholders

• Updated the policy configuration schema with new objects supported in the xBOM release (networking.protocol.filter.address.service, processing.filter.identity.component, processing.filter.identity.model_card, processing.filter.identity.dependency)

• Updated the rl-checks report schema with objects added in the xBOM release (report.scans.scan-{type}.rl_store, report.scans.scan-{type}.assessments.assessment.evaluations)

Portal​

• Updated the Portal API specification:

  • Added the Usage details for an organization endpoint returning data for an organization and for all groups the user has access to
  • Added the Usage details for a group endpoint returning data for an organization and the selected group (if the user has access to the group)

• Updated SAFE Viewer version, hashes, and download links to v1.1.1

Other​

• Updated the product release notes

• Added examples of ML models, services, and algorithms to the xBOM page

• Added a missing behavior ID (BH13402) in the Monitor behavior category

• Fixed some broken links to individual policies in expandable sections on the Known vulnerabilities and Application hardening pages

• Made a distinction between the my.secure.software domain and region-specific domains across all pages that refer to servers and connectivity

Documentation changes related to the Spectra Assure CLI 2.6.0 / 2025.3.1 Portal product update.

Integrations​

• Updated the Portal Docker image docs with changes related to response codes and configuration parameters (--submit-only, --rl-portal-host, --rl-portal-server)

Other​

• Updated the Analysis reports conceptual guide to clarify that the PDF Summary is now supported in Portal File Stream
• Added new behaviors and licenses to the reference docs
• Modified phrasing in the How Spectra Assure analysis works conceptual guide

Documentation release for the Spectra Assure CLI 2.6.0 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.3.1 Portal version.

CLI​

• Added new --[show-]models, --[show-]sbom, --[with-]license, and --no-dep[endencie]s options to the inspect command. Their usage has been illustrated by accompanying examples

• Added the --no-tracking option to the report command

• Marked the --no-vex option as deprecated in the report command

• Expanded the admonition about --keep-reference on the rl-secure scan command page to include the Windows issue

• Added the Windows issue regarding symbolic links to the CLI Troubleshooting page

SAFE​

• Updated the SAFE Viewer version, release date, links, and hashes to v1.1.0

Other​

• Created a new How Spectra Assure analyzes software page under Concepts & Reference that explains the different stages in the analysis process. A diagram was used to visualize the entire process and make the order of analysis steps easier to understand

• Created a new Services category under Concepts & Reference, containing all supported SaaSBOM services sorted by type

• Reorganized the tables on the Community and language coverage page to improve search, navigation, and content maintenance

• Added the following new policies to the documentation:

  • New policies in the Malware detection category focus on adware, PUAs and low-quality content in software components and their dependencies: SQ30121, SQ30205, SQ30122, SQ30204, SQ30201, SQ30206, SQ30203, SQ30202

  • New policies in the Digital signatures category focus on issues with countersigning and integrity validation of signatures: SQ20133, SQ20136, SQ20135, SQ20134, SQ20132

  • New policies in the Threat hunting category focus on developer reputation, detecting additional known software supply chain compromises, and identifying behaviors typical for infostealer, keylogger, and rootkit malware: TH15110, TH15403, TH20108, TH20113, TH15402, TH15401, TH20114, TH20112, TH18201, TH15405, TH15108, TH18202, TH15109, TH20110, TH15404, TH20109, TH20111

• Updated the verified glossary entry with new verification types

• Added new glossary entries for SaaSBOM, CBOM, ML-BOM, BOV, and VEX

• Updated the Spectra Assure analysis reports page with new information on new Bill of Materials formats

• Updated the product release notes

• Added BTRFS filesystem support on Community and language coverage and File format coverage pages

• Updated the CycloneDX and SPDX versions in the docs. We're now using CycloneDX 1.6 and SPDX 3.0.1

Documentation release for the Spectra Assure CLI 2.5.5 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.2.2 Portal version.

CLI​

• Updated the rl-deploy version, release date, links, and hashes to v2.3.0

Portal​

• Made a new Best practices for working with projects guide in the Portal docs. It includes the best naming practices, as well as all important information on the projects hierarchy and usage on Spectra Assure Portal

• Separated the workflows from the Portal File Stream and Projects pages. This helps users focus on the actions available on each page, without having to scroll through the general information every time

• Simplified the File Stream and Projects workflows and added roles tags to each. This eliminates the need to check the User and group management page for every action

• Replaced all screenshots with interactive guides in the Portal docs

SAFE​

• Moved the Reproducibility check section from the Projects page to the Report landing page

• Updated the SAFE Viewer version, release date, links, and hashes to v1.0.4

• Added information on the new File Stream header to the Summary page of the SAFE report. It allows users to export parts of the report in various formats and move the version to a project of their choice right from the top of the landing page of the report

• Removed the incorrectly included RAT from the list of Threat types on the Summary page of the report

Other​

• Re-designed API, Portal, and CLI category landing pages to look the same as Integrations, Partners, and SAFE category landing pages in our docs

• Moved Reproducibility checks, Live secret validation, and Managing third-party risks guides to a new Conceptual guides sidebar category

Documentation release for the Spectra Assure CLI 2.5.4 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.2.1 Portal version.

CLI​

• Updated the rl-deploy version, release date, links, and hashes to v2.2.9

• Updated the rl-secure list and rl-secure report pages to indicate that those commands don't require an active license

Portal​

• Added the new Entitlements section to the Settings page. It allows users to check which SAFE Assessment categories are enabled for their ReversingLabs cloud account and are evaluated during software analysis

• Made changes to the Settings page. Screenshots on the page have been replaced with interactive guides, while the textual content has been refreshed

• Fixed the incorrect year in the 2025.1.2 version title in the Portal release notes

Integrations​

• Information about the ServiceNow integration can now be accessed from the Integrations page

• Added support for creating the PDF summary (rl-summary-pdf) to the Portal Docker image documentation

SAFE​

• Updated the information relating to the SAFE Assessment part of the report summary

• Updated the SAFE Viewer version, release date, links, and hashes to v1.0.3

Other​

• Policy and behavior statistics have been refreshed.

• New behaviors have been added.

• Landing pages for Application hardening and Threat hunting policies have been improved by adding links to headings so it's easier to navigate within the page.

Documentation release for the Spectra Assure CLI 2.5.3 product update.

New release of the Spectra Assure Portal and Public API documentation, covering the 2025.1.2 Portal version.

CLI​

• Updated the information on Entitlements. Entitlements are now more dynamic, since they're no longer tied to the user license, but to the user account

• Updated the list of secrets supported by the find command

Portal​

• Added the new PDF Summary export feature to the Portal and API docs

• Resolved minor issues in the Portal API reference docs:

  • Fixed the incorrect response message when trying to replace a version
  • Fixed the incorrect request body in Approval (TPRM) endpoints that misrepresented the reason field as optional
  • Removed 400 responses from endpoints that don't support them; replaced generic 404 response for reports with more specific messages
  • Changed content types in response schemas to match the file format that the API returns and clarified response handling for report content
  • Updated request code examples with placeholder value for report type

Integrations​

• Linked the new JFrog Artifactory integration in CLI and Portal sections

SAFE​

• Updated the SAFE Viewer version, download links, and hashes. The "Current version" admonition now also shows the release date of the latest version

Other​

• Updated the product release notes

• Added a short description of the new PDF Summary export to the Analysis reports page

• Removed all references to the unused endpoint (api.reversinglabs.com) from the docs