HCL AppScan 10.8.0: Smarter Security with Customization, Reporting and New Licensing Platform
As part of our ongoing innovation roadmap, HCLSoftware is proud to announce the release of HCL AppScan 10.8.0. This latest update introduces new capabilities into multiple application security testing products that not only simplify security testing, but also enhance automation and improve reporting compliance.
The key improvements in Version 10.8.0 can be found in three of our on-prem solutions: HCL AppScan Standard, HCL AppScan Enterprise and HCL AppScan Source. In each case, the increased accuracy and efficiency is a result of customer feedback and requests, as well as a continuous investment in engineering our products for current and future cyber threats.
Improved DevOps Integration and Customization
HCL AppScan Standard and HCL AppScan Enterprise now automatically import Postman collections with the latest versions and update on every rescan, ensuring API security tests reflect the most recent details without having to create a new scan every time when APIs are modified and added. Users can also create custom scripts to refine scans for specific needs, providing greater flexibility in security testing. To learn more, please click here.
My HCLSoftware (MHS): Your New Central Hub
My HCLSoftware (MHS) is the brand new, one-stop, central portal that supports the post-purchase customer lifecycle and is the new hub for managing all licensing needs for HCL AppScan products. Going forward, MHS will be the central platform for downloading and managing licenses across all supported versions of HCL AppScan. This portal is designed to improve transparency in managing licenses and give customers a seamless self-service experience. If you have any queries, please reach out to support, or visit our blog.
Automation and Accuracy Enhancements
Authentication failures can disrupt security scans, but the latest HCL AppScan Standard release improves automated login handling, reducing interruptions when testing protected applications. The Regular Expression feature is redesigned to define custom patterns, improving accuracy in identifying potential risks and enhancing user experience.
2024 CWE Top 25: Critical Software Weaknesses
To further strengthen security testing, HCL AppScan Source 10.8.0 includes updated support for the 2024 CWE Top 25 Most Dangerous Software Weaknesses. These weaknesses are not only widespread but also easy to exploit, making them a top target for attackers looking to steal data, disrupt operations or take full control of applications. This update empowers teams to address the root causes of vulnerabilities and strengthen security practices, helping to mitigate risk for both industry and government stakeholders.
Expanded Reporting, Compliance and Security
HCL AppScan Enterprise now provides enhanced reporting, displaying multiple CWEs per vulnerability to help teams prioritize risks more effectively. The CVSS vector score in API response allows for more precise risk assessments, while a new Activity Log REST API helps organizations track security-related actions. The integration of SCA issue results from HCL AppScan on Cloud (ASoC) helps vulnerability management on a single platform.
With a focus on accessibility, HCL AppScan Enterprise now includes enhancements aligned with Web Content Accessibility Guidelines (WCAG), improving user accessibility.
Stay Ahead with HCL AppScan 10.8.0
With increased automation, improved reporting, and seamless integrations, HCL AppScan 10.8.0 helps organizations stay ahead of security threats while optimizing efficiency. Learn more by visiting our documentation or website.
Related Links
Important Announcement HCL AppScan Plans Licensing Changes to Take Effect June 2025
Start a Conversation with Us
We’re here to help you find the right solutions and support you in achieving your business goals.
