Changelog
Start typing to search…
Back to All

Release of October 22, 2025

October 22nd, 2025

Enhancements

Report & Export Permissions Update

Improved report permissions to make data access clearer and more secure:

  • PDF reports and report template configurations now require login with a Bearer token (used in the Bright web app).
  • API Keys continue to support other export formats such as CSV, JSON, SARIF, and HAR.

If your automations use API Keys for PDF reports, switch to Bearer token authentication to continue using this feature.

Scope behavior for exporting reports:

Scope

Purpose

Required for

reports:read

Allows viewing and exporting PDF reports for scans and projects.

  • Export PDF reports (Scan, Project)

reports:write

Allows editing or configuring report templates and organization report settings.

  • Modify report templates and settings

issues:read

Allows access to issue data needed for all report and export actions.

  • Export issues as PDF, CSV, SARIF, JSON (Scan, Project)

entrypoints:read

Allows reading and exporting Entrypoints data.

  • Export Entrypoints (CSV / HAR)

projects:read

Allows reading project-level metadata and reports.

  • Export Project as PDF / CSV

comments:read

Allows reading comments on issues

  • Included in PDF report context

New: Filter Entrypoints by Host

A new host-based filter has been added to the Entrypoints tables in both Scan and Discovery pages. This improvement allows users to quickly isolate and view entrypoints associated with specific hosts, ensuring more accurate visibility and troubleshooting across multi-host projects.

Improved Projects Page Layout

Projects page UI improvements for easier navigation and use.

What's New:

  • Moved the toolbar from the bottom to the top of the page for better visibility and a more intuitive layout.
  • Added a Create Discovery button in the Discovery tab.
  • Added a Create Entry Point button in the Entry Points tab.
  • You can now share direct links to specific tabs or items within the Projects page.

These updates are part of our ongoing effort to improve usability and align the Projects area with the upcoming new Bright dashboard experience . No workflow or automation changes are required on your side - this update is UI only.

Bright-CLI

New version of Bright-CLI v13.8.0.

New features:

  • CI: support arm64 in docker hub.

Bug fixes:

  • Resolved the repeater connection issue which occasionally happened on bridge service restart, where repeaters appeared connected but were unresponsive.

Removed deprecated endpoint

The entry point GET '/api/v1/me/org/memberships' is now deprecated.

Integrations

OX Security integration (ASPM)

Bright now integrates with OX Security. You can automatically import Bright DAST findings into OX to manage AppSec risks in a single backlog with consistent prioritization and automated routing. The integration enables seamless visibility and unified risk management across your SDLC.