Skip to main content
2025-11-27
  1. Fixing IaC issues: I’m getting smarter in fixing IaC issues, I can suggest changes, help plan the next steps, and fix IaC issues with your input in mind.
2025-11-26
  1. Spotlight dashboard: I now have a dashboard that highlights high priority issues that need your attention. You can investigate each issue directly or dismiss it if it’s not relevant, helping you focus on what matters most.
2025-11-25
  1. Shai-Hulud 2.0 npm supply-chain worm assessment: I can now assess exposure to the Shai-Hulud 2.0 npm worm, the evolved variant of the original supply-chain threat.
  1. Search through Linear and ClickUp: I can now search through issues and tasks in your Linear and ClickUp workspaces, making it easier to find, review, and act on our ongoing work together.
2025-11-19
  1. Sidebar as default chat location: Based on user feedback, I’ve moved to the sidebar as the default chat location. You can switch back to the navbar anytime in Settings.
2025-11-13
  1. Linear: I can now create, update, comment and close Linear issues from start to finish.
2025-11-12
  1. ClickUp: I can now create, update, comment and close ClickUp tasks from start to finish.
2025-11-11
  1. New UI layout options: I’m introducing two new ways to interact with me across the Plerion platform:
    • Right sidebar: I now appear in a dedicated panel on the right side of the interface.
    • Navbar integration: You can also open me directly from the top navigation bar.
    When opened, I’ll push the main Plerion interface to the left, ensuring all content remains visible without obstruction. This replaces the previous movable chat bubble design, creating a cleaner and more natural experience that aligns with how leading AI assistants integrate into products.
  2. Documentation guidance: I can now search documentation to provide step-by-step guidance for using and exploring all available features.
  3. Bitbucket repositories: I can now automatically fix vulnerabilities and Infrastructure-as-Code (IaC) misconfigurations in your Bitbucket repositories by creating pull requests with the necessary patches and updates.
2025-11-06
  1. Quickstart prompts: You can now get started faster with some of my most useful prompts directly from the chat window. Just click to launch a conversation or explore a capability instantly.
2025-11-04
  1. SBOM (Software Bill of Materials): I can now help you see what’s really inside your software and its dependencies with new SBOM capabilities:
    • Dashboard: I provide a centralized view of SBOM components across cloud workloads with instant insights on packages in use, their licenses, and any affected components. It’s your bird’s-eye view of your entire software supply chain.
    • Threat assessment: I automatically analyze SBOM components against active supply-chain threats. For example, I can assess exposure to threats like the Shai-Hulud npm worm, detecting vulnerable packages, impacted assets, and recommending immediate mitigation steps.
    • Interactive exploration: Dive deep into SBOM components with me. Explore versions, licenses, and vulnerability details in real time.
Note:
  • With this update, I’ve learned to proactively assess software supply-chain threats. When zero-day attacks or supply-chain incidents hit, I can quickly search for potential exposure and help the team remediate fast.
  • Azure and Kubernetes support is limited, but stay tuned - more to come soon.
  • Code-based SBOM analysis isn’t available yet. Right now, my focus is on cloud workloads, and code SBOM support will be added in the future.
2025-11-03
  1. Improved report generation: I can now include full Unicode characters, emoji, and mathematical symbols in the PDF reports I generate. Your reports will now look exactly as intended, whether they include technical notation or expressive visuals.
2025-10-31
  1. Learn, investigate, and remediate: You can now chat with me directly from the Plerion platform when viewing any finding, asset, vulnerability, or risk. With one click, you can learn more, investigate, and remediate issues.
2025-10-28
  1. Enhanced Slack security: I now only respond to verified Plerion platform users in Slack, ensuring our security conversations stay within our trusted team environment. This keeps our security discussions private and secure.
  2. Improved table display: Tables you generate with me now display perfectly for everyone. I’ve smoothed out the layout so your data looks clean, aligned, and easy to read.
  3. Export code issues and repositories: I can now export lists of code issues and repositories to CSV format, making it easier to share findings with your team or analyse data in your preferred tools.
2025-10-15
  1. Pin and rename chat: I now let you pin important chats so they’re always at your fingertips, and rename them to keep things clear and organized. This way, the conversations that matter most never get lost, and you can stay focused on moving security work forward.
  1. Conversation length tracking: I now show you exactly how long our conversation has gotten with a smart progress indicator. When our chat gets too long, I’ll suggest starting fresh to keep my responses sharp and relevant - because shorter conversations help me give you better, more focused answers.
2025-10-10
  1. Firefox: I’m now available in Firefox to help you manage security tasks directly in your browser.
2025-10-09
  1. Default model upgrade: I now use Claude Sonnet 4.5 as my default model — making me smarter, faster, and more reliable than ever.
2025-10-01
  1. Dashboards: I can now build dashboards for you — suggesting live views, creating reports from any data, and even bringing dashboards directly into Slack. This makes it easier to visualize security insights and collaborate with your team in real time.
  1. Requesting reviews for change requests: I can now create change requests and assign them to repository contributors for review, helping us resolve code issues faster together.
2025-09-26
  1. Feature requests: You can now share feature requests with me, helping me understand what you need most and continue improving as your AI security teammate.
2025-09-23
  1. Chat feedback: You can now upvote or downvote my responses to share what’s helpful (and what’s not). This helps me keep getting sharper as your AI security teammate.
2025-09-19
  1. Chat source visibility: I now show you the sources of information I use in our conversations, so you can see exactly where my insights come from.
2025-09-16
  1. Delete chat: I now let you delete chats you had with me to give you more privacy and control.
2025-09-02
  1. Python project vulnerability fixes: I can now automatically fix vulnerabilities in your Python projects, helping you maintain secure dependencies and code.
2025-08-25
  1. Fix vulnerabilities in GitHub repositories: I can now automatically fix vulnerabilities in your GitHub repositories by creating pull requests with the necessary patches and updates.
  2. Assign to collaborators and request reviews: When creating pull requests to fix vulnerabilities, I can assign them to the appropriate team members and request reviews from designated reviewers.
  3. Activity visibility: I now let you see all the activities I perform, such as:
    • When I create a change request for GitHub or GitLab
    • When I create a Jira ticket
2025-08-22
  1. Fix vulnerabilities in GitLab repositories: I can now automatically fix vulnerabilities in your GitLab repositories by creating merge requests with the necessary patches and updates.
2025-08-12
  1. I can now read and understand a wide range of file formats:
  • Images: JPEG, PNG, WebP
  • Documents: PDF, TXT, CSV, Markdown, YAML, JSON, XML
  • Code and config: Go, JavaScript/TypeScript, Python, Java, C/C++, C#, PHP, Ruby, Rust, Swift, Kotlin, Scala, Dart, Shell scripts, SQL, HTML, CSS, Config files (INI, TOML, CONF) You can upload these files directly to me for analysis, security checks, compliance validation, or remediation guidance - no need to convert them first.
2025-08-11
  1. Jira: I can now raise, track, and update Jira tickets from start to finish.
2025-08-10
  1. Code assessment: I can now run a comprehensive code security assessment, summarizing the overall security posture across all code, highlighting top vulnerable repositories, key issues, trends, and more. This makes it easier to spot and address security risks in code early, before they become bigger problems. Try this:
Code assessment
Run a code security assessment. Where do we stand with our code security?
  1. Fix IaC issues in repositories (GitHub and GitLab): I can automatically detect Infrastructure-as-Code (IaC) misconfigurations and raise a pull request to fix them before they reach production.
2025-08-06
  1. Vulnerability assessment: I can now provide a comprehensive cloud vulnerability assessment, highlighting summaries, top vulnerable assets, vulnerabilities nearing or past SLA deadlines, trends, and more. This makes it easier to spot and act on vulnerabilities that need urgent attention. Try this:
Vulnerability assessment
Where do we stand with cloud vulnerabilities right now?
2025-07-27
  1. Vulnerabilities SLA approaching: I flag vulnerabilities that are getting close to their remediation deadlines, helping you prioritize before they breach SLA. Try this:
Vulnerabilities approaching SLA deadlines
Any vulnerabilities in our cloud environments that are approaching SLA?

Our SLA policies:
- Critical: <critical_severity_sla> hours
- High: <high_severity_sla> hours
- Medium: <medium_severity_sla> hours
- Low: <low_severity_sla> hours

Warning thresholds (advance notice):
- Critical: <critical_severity_threshold> hours
- High: <high_severity_threshold> hours
- Medium: <medium_severity_threshold> hours
- Low: <low_severity_threshold> hours
By default, SLAs are Critical 7 days, High 14 days, Medium 60 days, and Low 180 days, with advance warning thresholds of 1 day, 3 days, 7 days, and 14 days respectively, all configurable to match your organization’s SLA policies.
  1. Vulnerabilities SLA breached: I highlight vulnerabilities that have already missed their SLA deadlines, using the same default SLA durations which can also be customized. \
  2. Download vulnerabilities approaching and breached SLA: I can export both approaching and breached SLA vulnerabilities to CSV for deeper analysis and reporting.
2025-07-17
  1. Email: You can now reach me at [email protected] and I’ll help with alerts, questions, or tasks directly from your inbox.
2025-07-11
  1. Conversation history: You can now revisit previous chats with me. This sets the foundation for a unified experience where every interaction across Slack, email, tasks, and more becomes part of one continuous conversation.
2025-07-06
  1. Export assets, findings, vulnerabilities, risks: I can now prepare all your data for download: assets, findings, vulnerabilities, and risks, so you can share reports or dig deeper whenever you need.
  2. Repetitive work: You can now assign me tasks. I’ll run them on schedule, keep an eye on things, and send you updates, just like any great teammate would.
  3. Vanta: I’ve integrated with Vanta! I’ll use it to help keep your compliance work on track and your security posture up to date.
  4. Drata: I now work with Drata too. I’ll make sure your risks and controls stay aligned and help you pass those audits faster.
  5. Stay in the loop with cloud security news: I can now keep you updated with the latest from AWS, Azure, and GCP.