Skip to main content
All CollectionsRelease Notes
🚀Release Notes - Build 5.0.5
🚀Release Notes - Build 5.0.5
Muhammad Omar Khan avatar
Written by Muhammad Omar Khan
Updated over 5 months ago

We're excited to announce the latest updates in SIRP Version 5.0.5, a minor release with new features, enhancements, and bug fixes to improve your experience and functionality. Here's what's new:

Exciting New Features:

Closing Note:

A prompt to add a final "Closing Note" now appears upon changing the status of any container to "Closed".

This field is optional. If an organization don't want this field or wish to make it mandatory, the setting is available in Admin > Cases > Fields Settings.

Automation Report:

A new feature introduced in the Automation Playground that allows analysts to generate Excel reports of all (or selected) Automation Actions executed in a given period.

New Dashboard Widgets:

Executed Playbooks:

Shows list and count of all playbooks executed in a given period.

Executed Actions:

Shows list and count of all automation Actions executed in a given period.

Containers Age Distribution

Shows the age distribution of different types of containers (Alerts, Investigations, and Incidents)

Miscellaneous Enhancements and Bug Fixes:

  • Updated Date and Time is now available in both grid view and Detail view of Incident Management, Threat Intelligent, and Cases modules.

  • A new Permission "Assign Alert" is introduced that can be used to restrict a member from editing alerts and only allows them to assign alerts to others.

  • Log entries are now generated for the alerts that are reopened after being closed, enhancing traceability.

  • Analysts can now add ".msg" files as attachments in the Incident detail view.

  • For multitenant environments, we now have the option to restrict or allow access to Global Dashboards for multitenant users.

  • Widgets in the Global Dashboard now pull data from only those tenants whose access is allowed for the logged-in users.

  • All the Comments in the Incident detail view are now visible to the Admin without any restrictions. This would result in enhanced transparency and oversight.

  • Playbook Start Time is now displayed based on when it was scheduled instead of when the execution started. The execution time of the playbook is also calculated accordingly.

  • The Error Logs in the Administration section now also show the artifact against which the action was executed. This results in better debugging and issue tracking.

Apps and Integrations:

  • Elastic Integration updated to support multitenancy. SIRP is now able to pull data from Elastic which is configured with multiple tenants

  • New Elastic action added to get Custom Signals from Elastic

  • New Cisco AMP action to remove hash from custom detection in Cisco AMP

  • New Symantec Messaging Gateway action to Unblock emails

Enjoy! 💻👋

Did this answer your question?