Major Hai RAG System Updates!
We've rolled out some major improvements to Hai's RAG (retrieval-augmented generation) system to save you time and boost Hai's accuracy:
Image Metadata Extraction (Beta):
Hai now reads text, URLs, PII, and more from image attachments.
Example: Automatically summarize reports with screenshots or ask Hai if attachments contain PII.
Richer Report Metadata
Added fields like severity, state, scope, weaknesses, and bounty amount for better insights.
Program Metadata:
Added policies, triage notes, and templates for smarter program recommendations.
Better Actor Tracking: Hai is better able to discern the actor of an activity, including whether it was originally authored by a triage analyst (even if a user is no longer an analyst).
Multi-Team Support: Load and manage context about multiple teams.
Improved CVE/CWE context
More context = smarter insights. Try it out, and let us know how it's working for you!
Benchmarking Custom Cohorts for Professional Tier
After the successful GA release of Benchmarks to all customers and Custom Cohorts to Enterprise customers in October 2024, we have now updated the packaging for Professional customers to include the Custom Cohorts feature!
What we did:
The Custom Cohorts feature of Benchmarks has been opened up to all customers.
Why we did it:
While we had made Custom Cohorts accessible to CSMs for all of their customers, we wanted to make a further impact by changing the tier packages to help empower more customers with this feature and reduce reliance on CSMs for custom cohort data.
Who it helps:
Benchmarks and Custom Cohorts will help all customers better understand their program's performance over time, both in relation to their past results and those of others on the platform. Users can set custom benchmark filters for deeper analysis, making data-driven decisions easier. This will also reduce the number of custom report requests to CSMs.
How to use it:
To use Benchmarks, the customers can navigate to Analytics > Dashboards > [select the Submissions Dashboard or Response Efficiency Dashboard] to view the Benchmarks against various dashboards mentioned below. To use Bounty table benchmarking, go to the Engagement level Dashboard > Bounty table benchmarking.
To use Custom Cohorts, navigate to Analytics > Dashboards. View the general benchmark or create your custom cohort:
Click on a chart with the Explore button in the top right of the chart.
Scroll down to the Benchmarks section of the page and click Add benchmark.
Name the benchmark, select measurement, and choose a color for the line on the chart. Filters can be added by clicking Add filter. Filters include:
Industry
Organization size
# of employees
Submission severity
Public vs. private programs
Performance percentile.
To finish, click Save.
Customers can then use Custom Cohorts on the following:
Submissions chart
Response Efficiency dashboard
Webhooks for Professional Customers
Webhooks allow professional customers to create real-time integrations between the HackerOne platform and tools of their choice.
What We Did:
In response to customer demand, we enabled Professional customers, in addition to Enterprise Customers, to integrate with the HackerOne platform in a way that fits their business needs. Professional customers can now choose report and program events to subscribe to for each engagement. These include:
Update an external issue tracker
Trigger a notification system
Update a report’s data backup
Trigger provisioning for a user account
Why We Did It:
The expansion reduces manual effort for Professional customers and, therefore, improves time-to-action for vulnerability handling. It enables customers to manage vulnerabilities more efficiently within their existing workflows, ultimately improving their overall experience.