To debug crashes or other issues when Defender
can't connect to Console, you can enable the debug mode for App-Embedded Defender
to write all logs to stdout.
To enable the debug mode, specify
an environment variable named
and set it
WAAS — Support for an SNI-Based Proxy
WAAS adds support for Server Name Indication
field (SNI) in a proxy so that you can serve multiple top-level
domains, each with different TLS certificates, on the same internal port.
for SNI enables certificate verification for different applications
where you need to forward TLS traffic to the host specified in the
Changes in Existing Behavior
Change in Behavior
Filtering For Unactionable Vulnerabilities
you enable the toggle, vulnerabilities are filtered by both severity
level and fix plan. Previously, when the toggle was enabled, it filtered
out vulnerabilities by severity level only. Now, the results for
unactionable vulnerabilities do not include:
with a severity level of
fix plan of
Vulnerabilities of any severity with a fix plan of
Serverless Scan Results
The last serverless scan results on
if a currently running scan is cancelled by a newly invoked scan.
when an in-progress serverless scan was cancelled, the results from the
last scan were deleted, and the display would include empty or partial
The new scan that caused the previous scan to be
cancelled won't start or run.