We’re very proud to announce the next major release of CAST Highlight, the software intelligence product that acts as a control tower for your application portfolio. This version introduces new innovations including: CAST SBOM Manager, SPDX SBOM support, Gitlab integration, Github Security Advisories support, and many other new capabilities.
CAST SBOM Manager
Automatically create, customize, and maintain SBOMs with the ultimate level of control and flexibility. The CAST SBOM Manager is a new extension included with all Complete Insights subscriptions. It detects Open Source dependencies and related risks (vulnerabilities and security advisories, licenses, obsolescence) directly from scanning source code, and allows you to create and maintain SBOM metadata over time (proprietary components, custom licenses, vulnerabilities) and much more!
SPDX 2.3 Export
Increase compliance with new support for exporting SBOMs in the SPDX 2.3 format.
Gitlab CI scan integration
Speed up implementation for applications hosted in Gitlab. This extension is a CI Yaml template for Gitlab’s CI integration to run CAST Highlight scans on your Gitlab-hosted repositories. Yaml sample file and instructions are included in the download.
COBOL support for Green Insights
Get enhanced insights for COBOL applications with new support for Green Impact and CO2 Emission Estimates.
Microsoft Power BI Template
Create custom dashboards with ease using the new Microsoft Power BI template. This template integrates CAST Highlight insights into custom Power BI dashboards. It enables users to create executive-level and organizational application portfolio overview dashboards.
Github Security Advisories support
Increase OSS and 3rd party security risk reporting coverage with new support for GitHub Security Advisories (GHSA).
Custom dashboard widgets
Tailor your CAST Highlight custom dashboards with new widget options including: CVEs, metric trends, license risk, and more.
Many other feature improvements
The product team also took the opportunity with this new release to introduce many additional enhancements such as: Java/.Net deprecated version detection, improved custom segmentations, trends for Technical Debt, improved Azure service recommendations, and much more.