Feature Requests

( Demo license ) Automation access for testing purposes for UI application and performing testing. My email address: maxim.pavlov@dish.com .

Hi Team, I would like to request a trial license for the Harness AI Automated Testing module. We are looking to evaluate its capabilities for both UI and API testing to see how it fits into our current QA workflow. Could you please enable the trial for my account or let me know the next steps to get started?My email: serkan.danisman@dish.com

Harness Wiz step plugin support with Wiz CLI v1.x

Invicti is globally used by us. We would appreciate DAST Scanning support in Harness. https://www.invicti.com/

I would like to be able to export into excel the occurrence details for issues (file name, line number, etc.) so that I may pass these to developers. I'm only able to get the number off occurrences when creating a dashboard, but not the occurrence details.

We would want to enforce Secrets prevention scanning of IaC code with Gitleaks before deployment in an IACM stage, thanks.

We are scanning with Prowler V5, which generates reports in .json.asff format. Issue: Setting product_name: prowler fails to ingest the report. We are forced to use product_name: aws_security_hub to successfully ingest the file. Problem: Because we have to use the Security Hub parser, the Harness UI incorrectly labels the scanner as "AWS Security Hub" instead of "Prowler" (see attached screenshot). Request: Please update the prowler parser to support .json.asff files so we can ingest these reports under the correct scanner name. Failed execution with prowler product name: https://app.harness.io/ng/account/kTcDr-37TtqE3qs0P3Mltg/all/orgs/default/projects/analytics_external_violations_service/pipelines/analytics_external_violations_service_sto_pipeline/executions/6WAA-8qHQ-ilFn7Ej9oB9g/pipeline?storeType=INLINE Successful execution with AWS Security Hub product name: Above pipeline (Build Id: 252)

Please allow snyk monitor and snyk container monitor to be disabled when using the Snyk STO step in "orchestration" mode with either "Snyk Container" or "Snyk Open-Source" set as the scan configuration. When performing lots of builds, it is not always necessary to have Snyk itself monitor each each output and calling monitor on every build where scanning means Snyk itself becomes polluted with unwanted data.

Currently Harness STO supports deduplication for the issues present in the same scanner report, but if we are scanning the same code with multiple scanners, it is not deduplicating it. Please add support for it as it is critical for us and we can't rely on the report from a single scanner.

Need base image detection feature to be available for ingestion mode scans. The current feature supports orchestration mode scans. ETA of the feature ?