Findings π
We empower customers to take control of vulnerability prioritization in Findings with advanced filters, sorting, and customizable views. Users can segment reports or view all findings across the organization, enabling quick access to actionable insights and faster resolution of critical issues.
What we did:
We created a centralized view to help users quickly identify and prioritize urgent reports across all engagements, assets, and teams.
Added flexible search capabilities and customizable display options streamline the process, allowing for precise filtering, tailored views, and better visibility into vulnerability status.
Introduced boards enabling users to save and manage multiple report views for easier prioritization and remediation.
Why we did it:
Customers faced challenges managing vulnerabilities across multiple inboxes and engagements, leading to prioritization gaps and slower resolutions. The limited search and filter options made it difficult to refine reports, and the spread of key details across multiple pages slowed decision-making. Multiple views lacked the flexibility needed for effective prioritization and remediation across different teams, assets, and workflows.
Who it helps:
Customers managing multiple teams and programs can now use a single view to optimize the prioritization of vulnerability findings. Additionally, all customers can take advantage of customizable views and enhanced search functionality for more efficient management and decision-making.
Learn more about it in our blog or how to use it in our Findings doc!
External Connectors for Automations (Beta)
Customers can now build automations into any tool of their choice, providing them greater flexibility and empowering them to streamline workflows on their own terms.
What we did:
We extended automations functionality to remove restricted access to HackerOne integrations only. Now, customers can automate tasks between the HackerOne platform and applications of their choice with the use of Secrets. These Secrets are securely stored and encrypted with a key only accessible to our customers.
Why we did it:
Customers have requested the ability to create automations that integrate tightly with their tools of choice and unlock major improvements in vulnerability elimination workflows.
Who it helps:
Enterprise and Professional customers looking to minimize repetitive, manual tasks between the HackerOne platform and Internal applications.
β
Learn more in our doc.
Secure Code Warrior Integration (Beta)
Customers can now identify root causes leading to vulnerabilities in their code and arm their developers with targeted, hands-on training from Secure Code Warriorβs pre-built learning modules to help their teams understand where issues are originating and how to prevent similar vulnerabilities in the future. This integration helps customers address real vulnerabilities, boost code quality, and stop security issues earlier in the software development lifecycle. Available directly through the HackerOne Platform and supported developer tools.
What we did:
Based on HackerOne vulnerability findings, HackerOne reports will link to recommended Secure Code Warrior pre-built learning modules. Because developers are not typically in the HackerOne Platform, this data is also available directly in developer tools like Jira, GitLab, and ServiceNow. This ensures developers have easy access to the most relevant training.
Why we did it:
Customers told us, βIt is not enough for security providers to find problems; they must define solutions to drive risk reduction and close the loop on fixing issues.β We took action by helping them identify developer upskilling needs to prevent vulnerabilities.
Who it helps:
Enterprise and Professional customers looking to prevent vulnerabilities by upskilling the development teams with targeted learning.