Release Notes - Aug 2025

Release Notes

• Release Notes - Sep 2025

• Release Notes - Aug 2025

• Release Notes - July 2025

• Release Notes - June 2025

• Release Notes - May 2025

• Release Notes - April 2025

• Release Notes - March 2025

• Release Notes - February 2025

• Release Notes - January 2025

Release v4.1.112

Aug 25, 2025

1. Customizable email templates - Early Access

Users can now configure outgoing email templates in SAFE by personalizing subject lines, and body texts with variable placeholders. Logos, light/dark themes, and default CCs can be set, with a live preview editor for easy customization. Default templates are also available for quick adoption and fallback.

2. Contract analysis and summary

SAFE now provides automated contract analysis and summarization, extracting key takeaways across risks (Security, AI, Privacy, Legal, and Operational). It also highlights the contract expiry date, contract stage, and status (Active/Outdated).

3. New dashboard widget for contract analytics

SAFE introduces new dashboard distribution widgets to track contract status and stage, along with upcoming contract expirations (week/month), enabling improved visibility and proactive risk management.

4. SOC 2 analyser in evidences

SAFE now automatically analyzes uploaded SOC 2 reports and generates a summary with key takeaways, auditor’s opinion, exceptions, control failures, subservice organizations, and controls making compliance review faster and easier.

5. Oracle Cloud Infrastructure (OCI) findings in SAFE

SAFE now pulls the OCI findings via Wiz integration, enabling comprehensive visibility into Oracle Cloud Infrastructure risks within SAFE.

6. Ingestion of Configure Assessment (CA) findings from Tenable VM - Early Access

Tenable VM integration has been enhanced to ingest the Configuration Assessment (CA) findings in addition to vulnerabilities. This provides comprehensive visibility into both vulnerabilities and misconfigurations.

7. Finding Severity Classification

SAFE is updating the severity of “Potentially Exploitable Systems with Critical Severity” findings. Severity will now follow CVSS ratings from the National Vulnerability Database.

Impact of the Change

• This revision applies to Outside-In findings for CRQ  and TPRM.

• The severity score will increase from 8.9 to 9.1, and the severity will be marked as Critical.

• The Secure Software (SSW) control maturity may change, depending on the number of impacted assets.

  • Testing indicates that aggregate breach likelihood for third-party organizations is marginal (under 1%), with negligible effect on overall SAFE Score.

  • CRQ customers should expect minimal impact (less than 1%), as other finding sources (e.g., vulnerability scanners and CSPM) have greater influence on SSW control maturity.

This change will take place over the next 15 days as our outside-in data updates, starting on September 1st.

For any questions regarding this change, please contact your Customer Success Advisor.

Release v4.1.111

Aug 11, 2025

1. Revamped Questionnaire Experience for SAFE TPRM

We’ve redesigned the questionnaire interface in SAFE TPRM to make it easier than ever to navigate, answer, and track assessment.

• Answer Without the Click Around – View and respond to full questions instantly without opening new screens or manually saving.

• Navigate with Ease – Grouped questions, smart filters, and a clean structure help you move through even the longest questionnaires effortlessly.

• See Your Progress – Real-time updates and a progress bar give you instant visibility into your completion status.

• One-Click Reset – Restart the entire questionnaire instantly whenever needed.

Note: The enhanced questionnaire experience is now live for SAFE TPRM and will be available soon across all SAEF products.

2. Simplified Evidence Workflow in SAFE TPRM

We've enhanced evidence handling across vendor and analyst workflows. Users can now edit evidence types and view detailed metadata directly from the evidence list. Evidence uploaded by third parties will be stored in the evidence library.

3. Custom Field Support in Dashboard Widgets

Dashboard widgets now support Date, Number, and Currency type custom fields, enabling richer filtering and visualization in organization-based widgets such as Distribution, Filtered Count, and Filtered List.