Automated Triaging and more integrations

Smithy can now remove even more noise. Several new integrations

Spyros Gasteratos
Author
Spyros Gasteratos
Published on
Release

v0.118.0

Changes in this release

  1. Smithy can now download and extract archives from S3 compatible locations. Great for ingesting manual test results or raw documents that have e.g. Pentest Reports
  2. New reporter for Sentry, you can centralize both runtime errors and security findings in Sentry.
  3. There is a reporter for Discord now, you can report scans and their findings to specific Discord channels.
  4. Smithy Workflows and the Dashboard now support Automated Triaging. You can set findings to be automatically marked as False Positives or get deprioritized based on configurable logic from the workflow. (e.g. If a finding is unreachable or if the exploit for a CVE is not public). Triaged findings have a clear triage log and are still accessible from the findings lists.
  5. Reporters ignore findings that have been triaged out so that downstream reporting targets do not see noise.
  6. You can now find all enrichers grouped in a frontend feature called “Smithy Intelligence”, enabled by default. Intelligence is a singular hub for what extra information you can add to a workflow. That is one of two types:
    • “Triage”, if applied and the condition is true the finding will be automatically marked as false positive
    • “Info”, extra information such as ownership, similar other findings, CWE or other standard enrichment, fix information etc.