v1.27

Jan 27, 2022

New and Noteworthy

Lookup Tables allow you to add important context to your detections and alerts for improved investigation workflows. Use Lookup Tables to enhance alerts with metadata and context, such as identity/asset information, vulnerability context, and network maps. (docs)
Pull your audit logs from Atlassian with our new native Atlassian Log Puller integration. (docs)

New alert functionality for when Panther fails to successfully scan cloud security resources. (docs)
Data sent to Panther via log ingestion will now be backed up in a Panther-managed S3 bucket for improved data resiliency. (docs)

Custom detection pack sources experience has been moved to the "Packs" page under "Analysis" tab for improved navigation. (docs)
Panther will now generate a GetObject system error alert if an S3 bucket is onboarded with an incorrect stream type.
Improved and simplified the setup process for onboarding AWS CloudWatch Logs as a data transport.
All steps in log source onboarding experience are now active to simplify editing a log source after initial setup.
Panther will now generate a GetObject system error alert if a GZIP file becomes corrupted.

Fixed an issue that caused the rules engine to fail to report rule errors for scheduled queries.

v1.26 Dec 3, 2021

"Select all in system" option now available in the alert bulk selector to speed up mass alert triaging (docs)

CSV files, in addition to JSON, are now supported when generating or testing schemas in the UI (docs)

v1.25 Nov 9, 2021

Generate a schema in the UI from uploaded sample logs for quicker data onboarding (docs)

New security content that will expand built-in detections, helpers, and data models in Panther (repo)

v1.24 Oct 22, 2021

Users can now drill down into indicator search timeline results for more impactful searches (docs)