What we ship, every week.

New

• Source grounded Q&A — ask Vera questions about your compliance posture directly from the portal
• Slack agent escalations — receive and act on Vera's compliance alerts directly within Slack
• Document management — upload, stash, and batch-assess evidence documents in a single workflow
• Policy bulk import — consolidated interface for importing and managing your existing policy library
• Document search — Vera now searches across your uploaded policy documents for more accurate answers

Improved

• Faster program setup with parallelized test compilation

Fixed

• Policy coverage counts — counts now reflect shared and master policies accurately
• Evidence selection — excluded covered policies from select-all to ensure counts match the footer
• Labeling consistency — updated the healthy state label to Approved for better clarity
• Test editing — the Edit Test dialog now correctly modifies the evidence instructions
• Control deduplication — flattened control trees to remove duplicate citations across multiple frameworks

New

• Vendor risk management — discover vendors from integrations, tier them, and let Vera draft assessments
• Continuous evidence enforcement — track freshness with renewal filters and automated integration-to-evidence lifecycles
• Compliance posture dashboard — monitor workspace-wide readiness with actionable cards and Vera-generated risk registers
• Policy governance — set per-policy review cadences and manage bulk approval requests in a unified inventory
• HRIS and IdP sync — automate personnel directory management and provider-agnostic background checks
• Microsoft Teams and M365 compliance — dedicated provider support for Teams, SharePoint, and Entra ID

Improved

• Optimized cloud connection — improved background processing speeds when connecting or disconnecting cloud providers
• Framework mapping — unified HIPAA controls for streamlined cross-framework evidence collection
• Policy management UI — split policy imports into tabs with smarter classification and richer review dialogs
• Role-based access control — restricted policy edits and vendor assessment writes to authorized manager roles

Fixed

• N/A test accuracy — corrected display logic and applicability reasons for non-applicable control tests
• Identity resolution — resolved duplicate user account creation during OAuth login and browser extension authentication
• Role stability — fixed role assignment persistence by syncing on stable identifiers rather than editable names
• Questionnaire parsing — improved support for multi-sheet workbook uploads and draft auto-population
• Audit cycle management — fixed date-shift logic and handled null periods in auditor invitation emails

New

• Test-first onboarding — replace questionnaires with action-oriented steps to accelerate audit readiness
• Evidence classification — Vera suggests tests for uploaded documents and saves them as classified evidence
• Two-stage request lifecycle — manage evidence requests through distinct respond and resolve stages
• Audit-cycle management — track frameworks, vault uploads, and readiness analytics in a unified view
• Organization-wide MFA enforcement — manage and enforce two-factor authentication across all user accounts
• Policy checklist — upload and track required policies with support for bulk imports and drag-and-drop
• Open Requests dashboard — view all pending requests and linked-document evidence in a dedicated view

Improved

• Automated test status — Vera automatically marks tests as N/A when no in-scope resources are found
• Enhanced Microsoft 365 monitoring — replaced manual attestation stubs with automated Graph API checks
• Bulk actions — manage controls and policies efficiently with multiselect and bulk approval workflows
• Responsive interface — properties panel now collapses into a floating tab for better use on narrow screens

Fixed

• Test regression handling — tests now revert to a failed state if a re-run confirms a new failure
• Evidence integrity — Vera now invalidates and re-grades reviews when the underlying evidence files change
• Notification cleanup — stopped duplicate Open Requests from appearing as auditor notifications
• Upload reliability — blocked evidence submissions when files are unreachable to prevent data gaps
• Login security — hardened workspace-scoped routes and validated redirect URIs to prevent cross-org requests

New

• Frameworks dashboard — navigate controls and tests grouped by specific regulatory criteria
• Automated test skipping — Vera identifies and skips non-applicable tests to reduce manual escalations
• HIPAA Security Rule expansion — six additional implementation specifications added to the compliance catalog
• Readiness questionnaire overhaul — inline integration setup and direct access to Vera for guidance
• Evidence management — attach evidence to any category and find tests by description
• Audit Cycles — track historical and active audits grouped by year with dedicated cycle views
• Discrete evidence tracking — specific slots for network diagrams and performance evaluations

Improved

• Vera reasoning transparency — new visual indicators show Vera's thinking process and skill usage
• Slack and email agent reliability — improved skill reachability and cross-turn memory for remote interactions
• Test activity feed — paginated results with noise reduction for automated check logs
• Progress tracking — section counts now reflect sub-questions for more accurate readiness reporting

Fixed

• Evidence-driven test status — test results now trigger from evidence submission for higher accuracy
• Chat evidence attachment — resolved issues with test ID memory and link sanitization in Vera
• Integration stability — fixed OAuth connection lifecycles and API key credential modal triggers
• Control tree reliability — eliminated duplicate controls and flickering when switching between frameworks
• Document search — improved relevance ranking to match any token within policy searches

New

• Vera claim verification — Vera verifies compliance claims and recommends supporting evidence from your integrations
• Continuous monitoring — daily API-driven checks detect configuration drift across your security stack
• Audit cycle management — track progress and evidence submissions across multiple frameworks in one view
• On-demand evidence review — Vera performs instant quality reviews on uploaded evidence artifacts
• SOC 2 readiness expansion — 14 new auditor-requested tests for SOC 2 Type I readiness
• Policy-to-message attachments — attach existing vault documents and policies directly to chat threads with Vera
• Deep-linked onboarding — resume setup at any stage with persistent wizard state and direct URLs

Improved

• Performance virtualization — faster loading for large task boards, test lists, and control trees
• Composer responsiveness — reduced input lag by deferring non-critical card rendering in the chat interface
• Snapshot coalescing — cleaner readiness history by grouping gap-detection updates into single snapshots

Fixed

• Evidence locking — vault documents linked to submitted evidence are now correctly locked from modification
• M365 provider resolution — corrected display titles for Microsoft 365 integration checks
• Inbox layout — fixed property panel overflow issues within the inbox view
• Evidence submission flow — resolved errors blocking the end-to-end evidence approval and submission process
• Duplicate tool calls — prevented duplicate assistant messages to ensure stable AI agent responses