Vulnerability Response Compatibility Matrix and Release Schema ChangesThis document lists all the released Store applications and schema changes for Vulnerability Response and Configuration Compliance. Vulnerability Response and Configuration Compliance Compatibility Matrix Locate applications and identify their version compatibility with versions of Vulnerability Response and Configuration Compliance. Family upgrades and supported versions of Vulnerability Response (VR) and Configuration Compliance If you have a previous version of Vulnerability Response and you are upgrading your Now Platform instance to a new family release, refer to the following matrix to see which versions of VR and its supported applications are supported by the family releases.For example, starting in May of 2023, if you have v18.0 of VR and you want to upgrade your Now Platform instance to Vancouver, your version of VR is automatically updated to v18.2.6. However, if you have upgraded Vulnerability Response to version 19.x or 20.x before your family upgrade, since these versions of Vulnerability Response are later than v18.2.6, they are not changed during your platform upgrade to Vancouver. M: Madrid, N: New York, O: Orlando, P: Paris, Q: Quebec, R: Rome, S: San Diego, T: Tokyo, U: Utah, V: Vancouver App Name Nov' 24 Aug` 24 June 24(minor) June 24(Patch) May` 24 Mar` 24 Feb` 24 Jan` 24(patch) Dec` 23(Minor) Dec` 23(Patch) Nov` 23 Aug` 23 July` 23 June` 23 May' 23 Mar' 23(patch) Feb' 23 Nov' 22 Aug' 22 May' 22 Mar' 22 Jan' 22 Oct' 21 June' 21 Feb' 21 Dec' 20 Nov' 20 Oct' 20 July' 20 June' 20 April' 20 Mar' 20 Vulnerability Response 24.0,6 V,W,X 23.0.6 U,V,W,X 22.1.3 U,V,W 22.0.8 U,V,W 22.0.5 U,V,W 21.1.2 U,V,W 21.0.3 U,V,W (Withdrawn) 21.0.4 U,V,W 20.2.4 T,U,V 20.2.3 T,U,V 20.0.5 T,U,V 20.0.2 T,U,V 19.0.4 T,U,V 18.2.6 S,T,U,V 18.2.5 S,T,U 18.2.4 S,T,U 18.0.6 S,T,U 18.0.2 S,T,U 17.1.4 R,S,T 16.5.4 Q,R,S,T 16.2.1 Q,R,S 16.1.3 Q,R,S 16.0.3S 15.0.2 Q, R 14.0.6 O,P,Q, R 13.0.3 O,P,Q 12.2.0 O,P,Q 12.1.4 O,P 12.0.3 O,P 11.0.3 N,O,P 10.3.8 N,O,P 10.0.4 M,N,O,P 10.0.3 M,N,O Configuration Compliance 15.1.5 V,W,X 15.0.0 U,V,W,X 14.12.7 U,V,W 14.12.4 U,V,W 14.11.2 U,V,W 14.10.2 T,U,V 14.9.2 T,U,V 14.8.6 S,T,U,V 14.8.5 S,T,U 14.7.5 S,T,U 14.7.3 S,T,U 14.5.4 R,S,T 14.3.5 Q,R,S,T 14.0.1 Q,R,S 13.1.1 Q,R,S 12.2.1 Q, R 12.2.1 Q, R 12.1.3 O,P,Q, R 12.0.1 O,P,Q,R 11.1.5 O,P,Q 11.1.5 O,P 11.0.0 O,P 10.3.3 N,O,P 10.3.3 N,O,P 10.0.0 M,N,O,P 10.0.0 M,N,O,P Security Support Orchestration 12.12.1 U,V,W 12.11.1 U,V,W 12.11.0 U,V,W 12.10.0 T,U,V 12.8.1 T,U,V 12.7.1 T,U,V 12.6.2 S,T,U,V 12.6.0 S,T,U 12.5.1 S,T,U 12.4.4 R,S,T 12.3.0 Q,R,S,T 12.2.1 Q,R,S 12.1.0 Q,R,S 11.5.0 P,Q,R 11.5.0 P,Q,R 11.4.0 O,P,Q, R 11,2,0 O,P,Q 11.1.3 O,P,Q 11.1.0 O,P 11.0.0 O,P 10.3.0 N,O,P 10.3.0 N,O,P 10.0.0 M,N,O,P 10.0.0 M,N,O,P Security Support Common 13.16.8 V,W,X 13.14.0 U,V,W,X 13.13.4 U,V,W 13.12.5 U,V,W 13.12.2 U,V,W 13.11.0 T,U,V 13.9.2 T,U,V 13.7.3 T,U,V 13.7.2(Withdrawn) 13.6.6 S,T,U,V 13.6.5 S,T,U 13.5.2 S,T,U 13.4.4 R,S,T 13.3.3 Q,R,S,T 13.2.0 Q,R,S 13.1.1 Q,R,S 12.5.1 P,Q,R 12.5.1 P,Q,R 12.2.4 O,P,Q, R 12.0.1 O,P,Q 11.1.5 O,P,Q 11.1.2 O,P 11.0.1 O,P 10.3.3 N,O,P 10.3.3 N,O,P 10.0.0 M,N,O,P 10.0.0 M,N,O,P Security Integration Framework 13.10.3 U,V,W 13.9.2 U,V,W 13.8.0 T,U,V 13.6.1 T,U,V 13.5.0 T,U,V 13.4.1 S,T,U 13.3.0 R,S,T,U 13.3.0 R,S,T 13.2.2 Q,R,S,T 13.1.2 Q,R,S 13.1.2 Q,R,S 12.2.1 P,Q,R 12.2.1 P,Q,R 12.1.3 O,P,Q, R 12.0.1 O,P,Q 11.1.3 O,P,Q 11.1.0 O,P 11.0.2 O,P 10.3.0 N,O,P 10.3.0 N,O,P 9.0.3 M,N,O 9.0.3 M,N,O Rapid7 Integration for Security Operations 13.14.0 V,W,X 13.13.0 U,V,W 13.12.5 U,V,W 13.12.2 U,V,W 13.11.2 U,V,W 13.11.1 U,V,W 13.10.1 T,U,V 13.8.2 T,U,V 13.7.4 S,T,U,V 13.7.2 S,T,U 13.6.1 S,T,U 13.5.3 R,S,T 13.4.2 Q,R,S,T 13.3.6 Q,R,S 13.3.6 Q,R,S 13.1.1 Q,R 13.1.1 Q,R 13.0.2 O,P,Q, R 12.0.1 O,P,Q,R 11.2.1 O,P,Q 11.1.0 O,P 11.0.0 O,P 10.3.5 N,O,P 10.3.5 N,O,P 10.0.1 M,N,O,P 10.0.1 M,N,O,P Qualys Integration for Security Operations 12.15.3 V,W,X 12.14.2 U,V,W,X 12.13.0 U,V,W 12.12.2 U,V,W 12.11.2 U,V,W 12.10.1 T,U,V 12.9.2 T,U,V 12.8.6 S,T,U,V 12.8.4 S,T,U 12.8.3 S,T,U 12.7.3 S,T,U 12.7.1 S,T,U 12.6.3 R,S,T 12.5.3 Q,R,S,T 12.4.1 Q,R,S 12.4.1 Q,R,S 12.2.2 Q,R 12.2.2 Q,R 12.1.1 O,P,Q, R 12.0.0 O,P,Q,R 11.1.0 O,P,Q 11.1.0 O,P 11.0.0 O,P 10.3.3 N,O,P 10.3.3 N,O,P 10.0.1 M,N,O,P 10.0.1 M,N,O,P Vulnerability Response Integration with Tenable 3.13.3 V,W,X 3.12.1 U,V,W,X 3.11.0 U,V,W 3.10.2 U,V,W 3.9.1 U,V,W 3.8.1 T,U,V 3.7.2 T,U,V 3.6.4 S,T,U,V 3.6.3 S,T,U 3.6.2 S,T,U 3.5.1 S,T,U 3.4.1 R,S,T 3.3.2 Q,R,S,T 3.2.3 Q,R,S 3.2.3 Q,R,S 3.0.5 Q,R 3.0.5 Q,R 2.2.3 O,P,Q,R 2.1.1 O,P,Q,R 2.0.4 O,P,Q 2.0.4 O,P Shodan Exploit Integration for Security Operations 10.7.0 R,S,T,U 10.7.0 R,S,T 10.6.0 S,T 10.6.0 S 10.6.0 S 10.5.0 O,P,Q,R 10.5.0 O,P,Q,R 10.5.0 O,P,Q,R 10.5.0 O,P,Q,R 10.4.2 O,P,Q 10.3.2 N,O,P 10.3.2 N,O,P 10.3.2 N,O,P 10.3.2 N,O,P 10.0.0 M,N,O,P 10.0.0 M,N,O,P Performance Analytics for Vulnerability Response 12.15.4 V,W,X 12.14.1 U,V,W,X 12.13.5 U,V,W 12.13.4 U,V,W 12.12.2 U,V,W 12.10.3 T,U,V 12.10.2 T,U,V 12.9.3 T,U,V 12.8.1 S,T,U 12.6.1 S,T,U 12.5.0 R,S,T 12.4.4 Q,R,S,T 12.4.1 Q,R,S 12.4.1 Q,R,S 12.1.0 Q,R 12.1.0 Q,R 12.0.6 O,P,Q,R 12.0.4 O,P,Q,R 11.0.0 O,P,Q 11.0.0 O,P 11.0.0 O,P 10.3.1 N,O,P 10.3.1 N,O,P 10.0.0 M,N,O,P 10.0.0 M,N,O,P Vulnerability Solution Management 10.4.3 R,S,T, U 10.4.1 R,S,T 10.4.0 Q,R,S,T 10.4.0 Q,R,S 10.4.0 Q,R,S 10.3.0 O,P,Q,R 10.3.0 O,P,Q,R 10.3.0 O,P,Q,R 10.3.0 O,P,Q,R 10.3.0 N,O,P,Q 10.3.0 N,O,P 10.3.0 N,O,P 10.3.0 N,O,P 10.3.0 N,O,P 8.0.1 M,N,O 8.0.1 M,N,O Vulnerability Response Mobile 11.1.1 S,T,U 11.0.0 R,S,T,U 11.0.0 Q,R,S,T 11.0.0 Q,R,S,T 11.0.0 Q,R,S 11.0.0 O,P,Q,R,S 11.0.0 O,P,Q,R 11.0.0 O,P,Q,R 11.0.0 O,P,Q,R 11.0.0 O,P,Q,R 11.0.0 O,P,Q 11.0.0 O,P 11.0.0 O,P 10.0.0 N,O,P 10.0.0 N,O,P 10.0.0 N,O,P 10.0.0 N,O,P Vulnerability Response Integration with Veracode 4.5.2 V,W,X 4.3.3 U,V,W,X 4.2.7 U,V,W 4.2.4 U,V,W 4.1.11 U,V,W 4.1.8 U,V,W 4.1.6 T,U,V 4.1.4 T,U,V 4.0.3 T,U,V 3.5.0 S,T,U 3.4.0 R,S,T 3.3.0 Q,R,S,T 3.3.0 Q,R,S 3.3.0 Q,R,S 3.1.0 Q,R 3.1.0 Q,R 3.0.1 O,P,Q,R 2.0.0 O,P,Q 1.0.1 O,P,Q 1.0.0 O,P 1.0.0 O,P Vulnerability Assignment Recommendations 1.0.0 R,S,T,U 1.0.0 Q,R,S,T 1.0.0 Q,R,S,T 1.0.0 Q,R,S 1.0.0 O,P,Q,R,S 1.0.0 O,P,Q,R 1.0.0 O,P,Q,R 1.0.0 O,P,Q,R 1.0.0 O,P,Q,R 1.0.0 O,P,Q 1.0.0 O,P Vulnerability Response Integration with NVD 1.5.1 V,W,X 1.4.5 U,V,W 1.4.3 U,V,W 1.4.2 T,U,V 1.3.3 T,U,V 1.2.0 R,S,T,U 1.2.0 Q,R,S,T 1.2.0 Q,R,S,T 1.2.0 Q,R,S 1.1.0 Q,R,S 1.1.0 Q,R 1.1.0 Q,R 1.0.3 O,P,Q,R 1.0.0 O,P,Q,R Fortify Application Vulnerability Integration 2.5.0 V,W,X 2.4.2 U,V,W,X 2.3.3 U,V,W 2.3.1 U,V,W 2.2.2 U,V,W 2.2.1 T,U,V 2.1.0 T,U,V 2.0.2 R,S,T,U 2.0.2 Q,R,S,T 2.0.2 Q,R,S,T 2.0.2 Q,R,S 2.0.2 Q,R,S Vulnerability Response Integration with Microsoft Threat and Vulnerability Management 2.5.1 V,W,X 2.4.1U,V,W,X 2.4.0 U,V,W 2.3.10 U,V,W 2.3.5 U,V,W 2.3.4 T,U,V 2.2.3 S,T,U,V 2.2.1 R,S,T,U 2.2.1 Q,R,S,T 2.2.1 Q,R,S,T 2.2.1 Q,R,S 2.2.1 Q,R,S 2.1.2 Q,R 2.1.2 Q,R 2.0.3 O, P, Q,R Vulnerability Response Patch Orchestration 2.1.1 V,W,X 2.0.6 U,V,W 2.0.5 T,U,V 2.0.3 R,S,T,U 2.0.3 Q,R,S,T 2.0.3 Q,R,S,T 2.0.1 Q,R,S 2.0.1 Q,R,S Vulnerability Response Patch Orchestration with Microsoft SCCM 2.2.1 V,W,X 2.1.6 U,V,W 2.1.2 U,V,W 2.1.1 T,U,V 2.0.1 R,S,T,U 2.0.1 Q,R,S,T 2.0.1 Q,R,S,T 2.0.1 Q,R,S 2.0.1 Q,R,S Vulnerability Response Patch Orchestration with HCL Bigfix 1.2.1 V,W,X 1.1.4 U,V,W,X 1.1.3 T,U,V 1.1.0 R,S,T,U 1.1.0 Q,R,S,T 1.1.0 Q,R,S,T 1.0.1 Q,R,S 1.0.1 Q,R,S Vulnerability Response Integration with Palo Alto Networks Prisma Cloud Compute 3.0.3 V,W,X 2.8.0 U,V,W,X 2.7.10 U,V,W 2.7.4 U,V,W 2.7.3 T,U,V 2.7.2 T,U,V 2.5.0 S,T,U 2.4.0 S,T,U 2.3.1 R,S,T 2.1.0 Q,R,S,T 2.1.0 Q,R,S 2.0.2 Q,R,S Vulnerability Response and Configuration Compliance for Containers 2.11.3 V,W,X 2.10.3U,V,W,X 2.6.9 U,V,W 2.6.5 U,V,W 2.5.3 U,V,W 2.3.3 T,U,V 2.3.2 T,U,V 2.2.3 T,U,V 2.1.2 S,T,U 2.0.6 S,T,U 2.0.4 S,T,U 1.2.2 R,S,T 1.0.6 Q,R,S,T 1.0.6 Q,R,S 1.0.5 Q,R,S Azure Security Center Integration for Security Operations (or) Microsoft Defender for Cloud Integration for Security Operations 2.7.0 V,W,X 2.6.0 U,V,W,X 2.5.2 U,V,W 2.4.2 T,U,V 2.3.0 S,T,U 2.0.0 Q,R,S,T 2.0.0 Q,R,S,T 2.0.0 Q,R,S Vulnerability Response Integration with Palo Alto Prisma Cloud 2.6.2 U,V,W 2.6.0 T,U,V 2.5.1 T,U,V 2.4.1 S,T,U,V 2.4.0 S,T,U 2.3.1 S,T,U 2.2.1 R,S,T 2.0.0 Q,R,S,T 2.0.0 Q,R,S Performance Analytics for Configuration Compliance 1.5.0 V,W,X 1.4.0U,V,W,X 1.3.2 U,V,W 1.3.1 U,V,W 1.2.0 T,U,V 1.1.0 S,T,U 1.0.1 R,S,T,U 1.0.1 R,S,T Vulnerability Response Licensing and Usage 2.6.1 V,W,X 2.5.1 U,V,W 2.5.0 U,V,W 2.4.4 U,V,W 2.4.3 U,V,W 2.3.4 T,U,V 2.3.3 T,U,V 2.2.3 S,T,U,V 2.2.2 S,T,U 2.1.1 R,S,T Vulnerability Response Integration with CISA 1.5.0 V,W,X 1.4.1 U,V,W 1.3.1 T,U,V 1.2.4 T,U,V 1.2.0 S,T,U 1.0.0 Q,R,S,T 1.0.0 Q,R,S,T Cloud Security Posture Management 2.5.0 U,V,W 2.2.1 T,U,V 2.1.3 S,T,U 2.0.3 S,T,U Vulnerability Response Analyst Workspace 4.0.1 V,W,X 3.2.2 U,V,W,X 3.1.3 U,V,W 3.0.1 U,V,W 2.0.5 T,U,V 2.0.3 T,U,V 1.0.1 T,U,V Asset Security Posture Management 5.0.2 V,W,X 3.0.2 U,V,W 2.0.2 U,V,W 2.0.0 U,V,W 1.0.1 T,U,V Security Posture Control Core 5.0.2 V,W,X 3.0.2 U,V,W 2.0.4 U,V,W 2.0.0 U,V,W 1.0.0 T,U,V Data Model for SBOM 3.4.4 V,W,X 2.0.2 U,V,W,X 1.4.3 U,V,W 1.3.1 U,V,W 1.1.2 T,U,V 1.0.3 T,U,V SBOM Core 5.0.4 V,W,X 4.0.4 U,V,W,X 3.0.3 U,V,W 2.1.1 U,V,W 2.0.2 T,U,V 1.0.5 T,U,V SBOM Response 5.0.3 V,W,X 4.0.3 U,V,W,X 3.3.0 U,V,W 3.2.3 U,V,W 3.1.3 U,V,W 3.0.3 T,U,V 2.0.5 T,U,V SecOps Health Analytics 2.3.3 V,W,X 2.2.1U,V,W,X 2.1.8 U,V,W 2.1.2 U,V,W 2.1.1 T,U,V 2.0.3 T,U,V Vulnerability Response Integration with Atlassian Jira 1.0.4 U,V,W 1.0.2 T,U,V Vulnerability Response Integration with Agile Management 1.1.2 V,W,X 1.0.3 T,U,V Vulnerability Response Common 2.9.2 V,W,X 2.8.2 U,V,W,X 2.7.0 U,V,W 2.6.4 U,V,W 2.5.3 U,V,W 2.5.1 U,V,W 2.4.2 T,U,V 2.4.0 T,U,V 2.2.3 T,U,V 2.2.2 T,U,V 2.0.4 T,U,V Github integration 1.2.2 U,V,W,X 1.1.3 U,V,W 1.0.4 U,V,W 1.0.2 T,U,V Vulnerability Response Common Workspace 1.3.3 V,W,X 1.2.2U,V,W,X 1.1.10 U,V,W 1.1.7 U,V,W 1.0.2 U,V,W Microsoft Defender for Office365 Integration for SecOps 2.3.1 V,W,X 2.2.3 U,V,W 2.0.1 U,V,W KnowBe4 Integration for SecOps 2.3.1 V,W,X 2.2.3 U,V,W 2.0.1 U,V,W CISO's BoD Dashboard 2.3.2 V,W,X 2.2.1 U,V,W,X 2.1.3 U,V,W 2.0.1 U,V,W Security Simulation and Training Integration for SecOps 2.1.3 U,V,W 2.0.2 U,V,W Invicti Application Vulnerability integration 1.2.1 V,W,X 1.1.1 U,V,W 1.0.2 U,V,W BlackDuck Integration 1.0.5 U,V,W Vulnerability Crisis Management 1.0.1 U,V,W,X Application Versions Trued up to Platform Releases The following matrix lists minimum true-up versions for VR and its supported applications. In some cases, after you download and install Vulnerability Response and its supported applications from the Service Now Store and followed by Platform upgrade you might see a version of an application on your Now Platform instance that is not listed in the compatibility matrix and is not available from the ServiceNow Store. This is a result of certain versions of Vulnerability Response or supported applications which are trued up with Platform Family release and not released on store. Note that if the version of the application in the instance prior to the Platform upgrade is higher than the version that is trued up to the Platform release, then the higher version is retained in the instance post Platform upgrade. For example, if you recently upgraded your Now Platform instance to the Rome family release, the version for Vulnerability Response will be set to v13.0.5. This version was built after the Feb'21 release to Store to address Rome platform compatibility changes. You can find these versions on your instance at System Applications>All Available Applications. App Name Xanadu True up version Washingtondc True up version Vancouver True up versionUtah True up versionTokyo True up versionSanDiego True up versionRome True up versionQuebec True up versionSecurity Integration Framework 13.10.3 13.8.0 13.4.1 13.3.0 13.1.2 13.0.2 12.0.1 11.1.3Security Support Common13.13.413.11.013.6.613.4.413.2.113.0.112.0.111.1.5Security Support Orchestration12.12.112.10.012.6.212.4.412.2.112.0.011.2.011.1.3Vulnerability Response22.0.820.0.518.2.617.1.616.3.016.0.313.0.512.2.0Configuration Compliance14.12.714.10.214.8.614.5.414.0.113.0.012.0.111.1.5Performance Analytics for Vulnerability Response12.13.512.10.212.8.11.0.112.4.112.3.012.0.411.0.0Vulnerability Response Mobile11.1.111.1.111.1.111.0.111.0.011.0.011.0.011.0.0Vulnerability Response Integration with NVD 1.4.51.4.21.2.11.2.11.2.01.1.01.0.0Not true'ed up to Quebec but compatibleQualys Integration for Security Operations12.12.212.10.112.8.612.6.312.4.112.3.012.0.011.1.0Rapid7 Integration for Security Operations13.12.513.10.113.7.413.5.313.3.613.2.012.0.111.2.1Vulnerability Assignment Recommendations 1.0.11.0.11.0.11.0.11.0.01.0.01.0.01.0.0Shodan Exploit Integration for Security Operations10.7.010.7.010.7.010.7.010.6.010.6.010.5.010.4.2Vulnerability Solution Management10.4.310.4.310.4.310.4.210.4.010.3.010.3.010.3.0Vulnerability Response Integration with Tenable3.10.23.8.13.6.43.4.13.2.33.1.02.1.12.0.4Vulnerability Response Integration with Veracode4.2.74.1.63.5.03.4.03.3.03.2.02.0.01.0.1Azure Security Center Integration for Security Operations2.5.22.4.22.3.02.2.22.0.0 Vulnerability Response Patch Orchestration with HCL Bigfix1.1.31.1.31.1.11.1.11.0.1 Vulnerability Response and Configuration Compliance for Containers2.6.92.3.32.1.21.2.31.0.6 Fortify Application Vulnerability Integration2.3.12.2.12.0.32.0.32.0.2 Vulnerability Response Integration with Microsoft Threat and Vulnerability Management2.3.102.3.42.2.32.2.22.2.12.1.2 Vulnerability Response Patch Orchestration2.0.62.0.52.0.42.0.42.0.1 Vulnerability Response Integration with Palo Alto Networks Prisma Cloud Compute2.7.102.7.32.5.02.3.12.1.0 Vulnerability Response Integration with Palo Alto Prisma Cloud2.6.22.6.02.4.12.2.12.0.0 Vulnerability Response Patch Orchestration with Microsoft SCCM2.1.62.1.12.0.22.0.22.0.1 Vulnerability Response Integration with CISA1.4.11.2.41.2.11.1.0 Vulnerability Response Licensing and Usage2.5.12.3.42.2.32.1.1 Performance Analytics for Configuration Compliance1.3.21.2.01.1.01.0.1 Vulnerability Response Integration with Atlassian Jira1.0.41.0.3 Vulnerability Response Integration with Agile Management1.0.41.0.4 Vulnerability Response Common2.6.42.2.3 Vulnerability Response Common Workspace1.1.10 Github integration1.1.31.0.2 Vulnerability Exposure Assessment3.1.3 Vulnerability Response Integration with Black Duck1.0.4 Invicti Application Vulnerability Integration1.1.1 Schema Changes This section contains table and index changes. August 2024 Store Release schema changes Vulnerability Response Existing Tables: sn_vul_app_vulnerable_item New Fields : source_resolved_date,last_found_dt_tmAudit removed fields : location,line_number,source_target_fix_date,category_name,source_notes,complies_with_policy,planned_version,technical_details,impact,affected_functionality,source_recommendation,dependency_type,package_id,remediation_plan,has_vulnerable_methods,vulnerable_method_info,vulnerable_links,project_name,project_branch,application_module,source_link,source_additional_info_string,steps_to_reproduce,evidence,impacts_compliance_program,compliance_program_impacted,recommendation,affected_url,affected_parameter,source_vulnerability_summary,source_vulnerability_explanation,source_recommendation,source_references,integration,product_model,close_notes,age_duration,ignore_reason,originating_scan_lifecycle_stage,last_seen_scan_lifecycle_stage,originating_scan_app_version,last_seen_scan_app_version,last_state_changed_on,resolution_date,remediation_commitment_date,effort,in_effort,login_required,access_to_internal_data Vulnerability Response and Configuration Compliance for Containers Existing Tables: sn_vul_container_m2m_vul_group_item New Fields : sn_vul_is_manual sn_vul_container_vulnerability New Fields : assignment_type,auto_exception_rule,auto_vi_refresh,vulnerability_group_rule,group_key sn_vul_container_image_vulnerable_item Audit removed : ignore_reason,resolution_date,integration,integration_instance,effort,in_effort,New Index ,number,activeflag May 2024 Store Release schema changes Vulnerability Response Common New Tables: sn_vul_cmn_auto_close_rule Vulnerability Response Existing Tables: sn_vul_entry New fields: solution_type sn_sec_int_integration New fields: is_chaining_required sn_vul_solution New fields: integration_instance, update_status Vulnerability Response integration with Blackduck Existing Tables: sn_vul_analyst_vulnerability_assessment New fields: last_scan_date, application_link, security_policy_status, distribution, application_source, security_risk_profile, license_risk_profile, operational_risk_profile sn_vul_app_vulnerable_item New fields: New choices for substate field : Mitigated by Design, Remediation Complete New Tables: sn_vul_blackduck_configsn_vul_blackduck_projectsn_vul_blackduck_project_importsn_vul_blackduck_app_importsn_vul_blackduck_avit_import Feb 2024 Store Release schema changes Security Support Common New Tables: sn_sec_cmn_background_job_run New Fields number (label: Number) run_type (label: Run type) state (label: State) Choices queued (label: Queued)processing (label: Processing)wait_complete (label: Wait complete)complete (label: Complete) substate (label: Substate) Choices error (label: Error)success (label: Success)timeout (label: Timed out)cancelled (label: User cancelled) parameters (label: Parameters) notes (label: Notes) execution_script (label: Execution script) execution_script_pre_complete (label: Execution script pre complete) execution_script_post_complete (label: Execution script post complete) sys_domain (label: Domain) Existing Tables: sn_sec_cmn_background_job New Fields background_job_run (label: Background job run) Vulnerability Response Existing Tables: sn_vul_analyst_vulnerability_assessment New Fields: last_assessed_on sn_sec_cmn_approval_rule New Fields: change_approval_notifyNew Fields: change_approval_expiry sn_vul_auto_exception_rule New Fields: approval_rule sn_vul_change_approval New Fields: approval_rule sn_vul_entry New Field: Risk reduction New Table: sn_vul_m2m_entry_compensating_control Compensating ControlVulnerability Container Vulnerability Response Existing Tables: Discovered Container Image (sn_vul_container_image) New Fields: Image name (image_name) Configuration Compliance Existing Tables: sn_vulc_state_change_approval New Fields: approval_rule sn_vulc_test Criticality New Choices 6 (Label : None)7 (Label : Medium) sn_vulc_auto_exception_rule New Fields: approval_rule Rapid7 Integration for Security Operations New Tables: Rapid7 Scan Engine (sn_vul_r7_scan_engine)Rapid7 Scan Engine Import (sn_vul_r7_scan_engine_import Vulnerability Response Integration with CISA Existing Tables: sn_vul_entry New Fields: ransomware New Roles: sn_vul_cisa.configure_intelligence_integration Security Posture Control Existing Tables: sn_sec_spc_core_policy New Fields: All exclusion policies(all_exclusion_policies)Base policy(base_policy)Exclusion policies(exclusion_policies)Generate Findings(generate_findings)High Risk Combination(high_risk_combination)Marked for deactivation(marked_for_deactivation)Policy level(policy_level)Security Posture Labels(security_posture_labels)Selected Classes(selected_classes)SPC query(spc_query) sn_sec_spc_core_relation New Fields required_for_asset_search New Tables: SPC Policy CI Staging (sn_sec_spc_core_policy_ci_staging)Multisource Asset Cache Mapping (sn_sec_spc_core_m2m_multisource_asset_cache)Asset Cache (sn_sec_spc_core_asset_cache)SPC Policy CI Pre Stage(sn_sec_spc_core_policy_ci_pre_stage) Cyber Asset Attack Surface Management New Tables: CAASM Cloud Security Rules (sn_sec_caasm_cloud_security_rule )CAASM Cloud Network ACL Rule (sn_sec_caasm_network_acl_rule)CAASM NIC to Groups(sn_sec_caasm_nic_to_group)CAASM VM Exposed Ports (sn_sec_caasm_vm_exposed_ports )CAASM Virtual Machine Properties (sn_sec_caasm_vm_properties)CAASM Cloud Routes (sn_sec_caasm_cloud_route)Policy Trend Data (sn_sec_caasm_policy_trend)Custom Insights (sn_sec_caasm_custom_insight)Custom Insight Policy (sn_sec_caasm_custom_insight_m2m_policy) New Roles: sn_sec_caasm.caasm_security_adminsn_sec_caasm.write Vulnerability Response Common Workspace New Tables: sn_vul_cmn_ws_saved_filter New Fields Filter nameFilter conditionCategoryTypeAggregationsUser createdDisplay orderRefreshed onRefresh statusAccessible To Vulnerability Response Licensing and Usage New Table: sn_vul_licensing_usage New Fields Duplicate scanned AssetsFinal UsageIncomplete IP AssetsTotal Scanned Assets Nov 2023 Store Release Schema Changes Application Vulnerability Response Existing Table : sn_vul_app_vulnerable_item New Fields : originating_scan_lifecycle_stage (Label = Originating Scan Lifecycle Stage)last_seen_scan_lifecycle_stage (Label = Last Seen Scan Lifecycle Stage)originating_scan_app_version (Label = Originating Scan App Version)last_seen_scan_app_version (Label = Last Seen Scan App Version)source_exploit (Label = Source exploitability) Existing Table : sn_vul_app_vul_scan_summary New Fields: Source_sdlc_status (Label = source sdlc status) Existing Table: sn_vul_app_release New Fields: app_creation_date(App creation date) app_updation_date(App updation date) Existing table – sn_vul_app_m2m_vul_group_item New Fields sn_vul_is_manual(label: Manual, type: boolean) Existing table – sn_vul_app_vulnerability New Fields Assignment type (assignment_type) – choices: Rule, Manual, Recommendation, Unassigned Automatically update related application vulnerable items (auto_vi_refresh) – Boolean Remediation task rule (vulnerability_group_rule) – Reference: sn_vul_grouping_rule Grouping method (filter_type) – choices: created_by_vgr, created_by_aer, effort_task group_key – String Existing table – sn_vul_vulnerability_group_rule Modifield Fields use_extended_field_column_1 Added choices app_vulnerable_item app_configuration_item app_product_model_class app_vulnerability_class use_extended_field_column_2 Added choices app_vulnerable_item app_configuration_item app_product_model_class app_vulnerability_class use_extended_field_column_3 Added choices app_vulnerable_item app_configuration_item app_product_model_class app_vulnerability_class use_extended_field_column_4 Added choices app_vulnerable_item app_configuration_item app_product_model_class app_vulnerability_class use_extended_field_column_5 Added choices app_vulnerable_item app_configuration_item app_product_model_class app_vulnerability_class use_extended_field_column_6 Added choices app_vulnerable_item app_configuration_item app_product_model_class app_vulnerability_class New Fields Table (pm_class) – Reference: cmdb_model Using Field (pm_key) – dependent on pm_class Table (pm_class_2) – Reference: cmdb_model Using Field (pm_key_2) – dependent on pm_class_2 Table (pm_class_3) – Reference: cmdb_model Using Field (pm_key_3) – dependent on pm_class_3 Table (pm_class_4) – Reference: cmdb_model Using Field (pm_key_4) – dependent on pm_class_4 Table (pm_class_5) – Reference: cmdb_model Using Field (pm_key_5) – dependent on pm_class_5 Table (pm_class_6) – Reference: cmdb_model Using Field (pm_key_6) – dependent on pm_class_6 New Roles sn_vul.app_manage_group_rules: User with this role can do read, write, delete, create operations on application remediation task rules sn_vul.app_read_group_rules: user with this role can only have read operation on application remediation task rules. App sec manager(sn_vul.app_sec_manager) has these roles by default. Vulnerability Response Existing Tables: Vulnerable Item (sn_vul_vulnerable_item) New Columns: defer_extend_countoriginal_risk_scoreignore_expiration_for_risk_reduction New Index last_foundintegrationcmdb_ci Qualys Integration for Security Operations Existing Tables: Third-party entry (sn_vul_third_party_entry) New Columns: backfill_neededthreat_intel New Table: Qualys Threat Intelligence (sn_vul_qualys_rti) August 2023 Store Release Schema Changes Data Model for SBOM New Tables sn_sbom_comp_external_refsn_sbom_comp_idsn_sbom_comp_propertysn_sbom_comp_relationshipsn_sbom_componentsn_sbom_contactsn_sbom_docsn_sbom_hashsn_sbom_licensesn_sbom_m2m_bom_compsn_sbom_supplier SBOM Response New Tables sn_sbom_config_rulesn_sbom_m2m_comp_vuln Existing Tables sn_vul_app_vulnerable_item sn_sbom_config_rule(AVIT config rule)sn_sbom_component (SBOM component)vex_justification(VEX justification) choices: code_not_present(Code not present), code_not_reachable(Code not reachable), requires_configuration(Requires configuration), requires_dependency(Requires dependency), requires_environment(Requires environment), protected_by_compiler(Protected by compiler), protected_at_runtime(Protected at runtime), protected_at_perimeter(Protected at perimeter), protected_by_mitigating_control(Protected by mitigating control) vex_response(VEX response) choices: can_not_fix(Cannot fix), will_not_fix(Will not fix), update(Update), rollback(Rollback), workaround_available(Workaround available) vex_detail(VEX detail)vex_state(VEX state)New choice list 'SBOM-SCA'(value: sbom_sca) for 'scan_type' columnNew choice list 'Not affected'(value: 40) for 'substate' columnNew Indexes sn_sbom_componentapplication_releaseactive Vulnerability Response Common New Tables sn_vul_cmn_rollup_app_risk_scoresn_vul_cmn_cloud_compliance Existing tables sn_vul_rollup weights_required Vulnerability Emergency Response New Tables sn_vul_analyst_exposure_manifestsn_vul_analyst_m2m_pot_exp_sw_modelsn_vul_analyst_sam_configsn_vul_analyst_software_risk Data Model for SPC New Tables sn_sec_spc_core_asset_typesn_sec_spc_core_asset_type_connectorsn_sec_spc_core_connectorsn_sec_spc_core_connector_categorysn_sec_spc_core_connector_table_mappingsn_sec_spc_core_host_attributessn_sec_spc_core_policysn_sec_spc_core_relationsn_sec_spc_core_rollup_di_manifest Existing Tables sn_vulc_result finding_type sn_sec_cmn_src_ci violated_spc_policy Data Model for CAASM New Tables sn_sec_aspm_asset_countsn_sec_aspm_dashboard_datasn_sec_aspm_query_manifestsn_sec_aspm_st_connector_setup Vulnerability Response integration for Veracode New table - sn_vul_veracode_link_projects New Fields app_release (Label: Discovered application)project_id (Label : Project id) site_id (Label : Site id) name (Label : Name) last_sca_scan_date (Label : Last SCA Scan Date) languages (Label : Languages) Github Application Vulnerability Integration : New Table: Github Configuration(sn_vul_github_config) : api_url(Label : API URL) api_token(Label : API Token) enterprise_name(Label : Enterprise Name) organisation_name(Label : Organisation Name) auth_type(Label : Authentication Type) connection(Label : Connection) manage_false_positives_in_snow(Label : Manage False Positives In ServiceNow) manage_exceptions_in_snow(Label : Manage Exceptions In ServiceNow) integration_instance(Label = Integration Instance)mid_server(Label : Mid Server) sys_domain (Label : Domain) Data Model Changes for CSPM New Tables sn_sec_cspm_cloud_routesn_sec_cspm_cloud_security_rulesn_sec_cspm_network_acl_rulesn_sec_cspm_object_storage_propertiessn_sec_cspm_nic_to_groupsn_sec_cspm_pattern_configurationsn_sec_cspm_vm_exposed_portssn_sec_cspm_vm_properties Vulnerability Response Existing tables sn_vul_rollup weights_required sn_vul_exp_by_sw enabled sn_vul_m2m_exp_sw_model confidence_score sn_vul_software target_swtarget_hwother Application Vulnerability Response Existing table – sn_vul_app_vulnerable_item Field updates Application release field label changed to Discovered Applications. New Fields product_model (label – Product model)Login required (login_required) – choices: Yes, No. Hint: Indicates if login is required Access to internal data (access_to_internal_data) – choices: Yes, No. Evidence (evidence) – HTML Has Vulnerable Methods(has_vulnerable_methods)Vulnerable Method Link(vulnerable_method_info)Vulnerable Links(vulnerable_links)Project Name(project_name)Project Branch(project_branch)Remediation Plan(remediation_plan)Remediation Commitment Date (remediation_commitment_date)New choice list 'Awaiting Implementation' for 'state' column Existing table – sn_vul_app_release (Label for this table Application Release changed to Discovered Applications) Field updates Business impact (business_criticality) label changed to Source business criticality.CI matching rule (ci_lookup_rule) label changed to Matching rule. New Fields application_services (label – Application services)business_application (label – Business application)product_model (label - Product model)apm_app_id(label - Source APM AppId)source_app_guid(label - Source application GUID) Existing table – sn_vul_app_vul_scan_summary Field updates Application release field label changed to Discovered Applications. New Fields scan_analysis_size(label - Static scan size)third_party_library_count(label - Third party library count)vulnerable_third_party_library_count(label - Third party vulnerable library count)third_party_vulnerability_count(label -Third party vulnerability count)tpe_vulnerabilty_count_by_severity(label - Third party flaw count by severity)third_party_library_issue_count(label - Third party library issue count)third_party_license_issue_count(label - Third party license issue count)fixed_flaw_count(label - Fixed Flaw Count)new_flaw_count(label -New Flaw Count)mitigated_flaw_count(label - Mitigated Flaw Count)unmitigated_flaw_count(label - Unmitigated Flaw Count)sast_flaw_count_by_severity(label - Static flaw count by severity)new_flaw_count_by_severity(label - new flaw count by severity)unmitigated_flaw_count_by_severity(label - Unmitigated flaw count by severity)total_flaw_count_by_severity(label - Total flaw count by severity)last_sca_scan_rating(label - Last SCA scan rating)last_sca_scan_date(label - Last SCA scan date)scan_published_date(label - Scan published date)tags (label - Tags) Existing table – sn_vul_app_package New Fields package_latest_version(label - Latest Version)package_release_date(label - Release date)package_latest_release_date(label - Latest release date)dependency_type(label - Dependency Type)fixed_package_version(label - Fixed Version)package_latest_safe_version(label - Latest safe Version) New Table - sn_vul_app_license – Label – License Table to store the license information. New Fields license_unique_id - (label - Unique ID)license_name- (label - Name)id- (label - ID)url- (label - URL)source_risk_rating-(label -Risk rating)source- (label - Source)integration- (label - Integration)integration_instance- (label - Integration instance) New Table - sn_vul_m2m_package_license – Label – Package License Information is is an m2m table to store the relationship b/w packages and licenses. New Fields license (label - license) package (label - package) Existing table – sn_vul_app_vulnerable_item_ptreq_snapshot Field updates Application release field label changed to Discovered Applications. Existing Tables: sn_vul_ptreq_assessment_type_config New Fields Application size (application_size) – choices: Small, Medium, Large, Standard. Hint: Specifies size of an application Existing tables: sn_vul_app_m2m_vul_group_item New Fields Override remediation fields Existing tables: sn_vul_app_vulnerability New Fields Remediation Plan(remediation_plan)Remediation Commitment Date (remediation_commitment_date)New choice list 'Awaiting Implementation' for 'state' column Existing tables: sn_vul_pen_test_assessment_request New Fields Specify if a contract or agreement has been signed with the vendor (contract_or_agreement_exists) – choices: Yes, No Reference number (reference_number) – String. Hint: Type the reference number or attach the reference document to this request Clause exists that allows us to perform pen testing? (clause_exists_for_pen_testing) – choices: Yes, No Application hosted by another third-party vendor? (app_hosted_by_third_party) – choices: Yes, No. Hint: Specify if the application is hosted by another third-party vendor Add the clause citing the permission to perform pen testing (pen_test_permission_clause) – String Intrusion detection system (intrusion_detection_system) – String. Hint: Type the name of the intrusion detection system Has the logged information been reviewed for malicious activity? (info_logged_for_malacious_activty) – choices: Yes, No Full legal name and address of the vendor (vendor_address) – String. Hint: Type the complete legal name and business address of the vendor or joint venture company Legal entity requesting the pen test (legal_entity_requesting_pen_test) – String Contact from vendor who will be signing off on the pen test (vendor_approver_contact) – String Technical contact from vendor (vendor_technical_contact) – String. Hint: Contact information for the technician from the vendor company Risk assessment ID (risk_assessment_id) – String. Hint: Type the IT security tracking number for the application Business Unit executive name (business_executive_name) – User reference: sys_user Enterprise Services executive name (enterprise_executive_name) – User reference: sys_user Line of business (line_of_business) – StringIP address (ip_address) – String. Hint: Type the related IP address, using commas to separate them if there is more than one Application size (application_size) – choices: Small, Medium, Large, Standard. Hint: Specifies size of an application Security analyst name (security_analyst_name) – User reference: sys_user. Hint: Name of the analyst who performed the security review Business owner details (business_owner_details) – String. Hint: Contact details of the business owner who is authorizing the test Emergency contact (emergency_contact) – String. Hint: Type the name and phone number of the emergency contactBusiness contact name (business_contact_name) – String Testing app environment (testing_app_environment)– choices: UAT, Test, Stage, Production Automated script exists? (automated_script_exists) – choices: Yes, No Production version of this app is external facing? (app_available_externally) – choices: Yes, No.Related third-party interfaces or applications (third_party_applications) – String Approximate number of users in production (no_of_users) – String. Hint: Number of people using the app in production Operating system (operating_system) – choices: Android, IOS, Windows, Blackberry. Hint: Specify the operating system for the application Application accessible through a local proxy? (local_proxy_accessibility) – choices: Yes, No Application accessible through a local HTTP proxy? (local_http_proxy_accessibility) – choices: Yes, No Binary and source code available for application? (binary_code_available_for_app) – choices: Yes, No Development environment name (development_environment_name) – String Encryption/obfuscation applied to mobile app source (encryption_applied_to_app) – choices: Yes, No Financial Damage (financial_damage) – choices: Less than the cost to fix the vulnerability, Minor effect on annual profit, Significant effect on annual profit, Bankruptcy Reputation Damage (reputation_damage) – choices: Minimal damage, Loss of major accounts, Loss of goodwill, Brand damage Non-compliance (non_compliance) – choices: Minor violation, Clear violation, High profile violation Privacy Violation (privacy_violation) – choices: One individual, Hundreds of people, Thousands of people, Millions of people Vulnerability Response Integration with Veracode Existing Table - sn_vul_veracode_config New Fields import_sca (label - Include SCA) import_manual (label - Include Manual) New table - sn_vul_veracode_category extends sn_vul_cwe – New Table to store the veracode categories information which is used during AVIT ingestion. New Fields veracode_id(label - Veracode Id) recommendation (label - Recommendation) Security Support Common Existing table - sn_sec_cmn_ci_lookup_ruleCI Lookup Rule (sn_sec_cmn_ci_lookup_rule) -> Label changed for this table to Lookup Rule Field updates target_table (Label for this field changed to Search on CI table)target_field (Label for this field changed to Search on CI field) New Fields target_table_product_model (label - Search on product model table)target_field_product_model (label - Search on product model field)lookup_target (label - Lookup target) Existing tables: sn_sec_cmn_approval_ruleNew Fields Added new choice Application Exception Rules for type. Existing tables: Discovered item(sn_sec_cmn_src_ci)New Fields Configuration Item Name(cmdb_ci_name) Secops Health Analytics New Tables: Health dashboard data (sn_sec_analytics_health_dashboard_data)Health dashboard data updates (sn_sec_analytics_health_dashboard_data_updates)Health dashboard aggregate (sn_sec_analytics_health_dashboard)Health dashboard aggregate updates (sn_sec_analytics_health_dashboard_updates)Health dashboard mapping (sn_sec_analytics_m2m_health_dbrd_data) Vulnerability Response Licensing and Usage Existing table: Asset Usage Counts(sn_vul_licensing_Asset_usage_counts) New Fields Product Category(product_category) May 2023 Patch Store Release Schema Changes Security Integration Framework: Existing tables: sn_sec_int_impl New columns: Parent Instance March 2023 Patch Store Release Schema Changes Configuration Compliance: Existing tables: sn_vulc_result New index Parent Instance February 2023 Store Release Schema Changes Vulnerability Response New Tables: Application Vulnerability Update Manifest(sn_app_vul_vuln_update)Select Application vulnerable item(sn_vul_action_select_avi)Split remediation task(sn_vul_app_action_split_vg)Remediation Task Item(sn_vul_app_m2m_vul_group_item)Application Remediation Task Manifest(sn_vul_app_rt_manifest)Application Remediation Task(sn_vul_app_vulnerability)Remediation Effort Counts(sn_vul_daily_count_re)Remediation Progress(sn_vul_remediation_effort_record)Remediation Task(sn_vul_remediation_task)Watch Topic Vulnerability Counts(sn_vul_wt_vulnerability_counts)Remediation Effort Record (sn_vul_remediation_effort_record) Existing tables: Watch Topic(sn_vul_watch_topic) New columns: Application Vulnerable Item Condition Configuration Issues Condition Container Vulnerable Item Condition Remediation Progress Category Refresh Status Refreshed On Vulnerability Scan (sn_vul_scan) New columns: canceled_scans Display List RE Transfer (sn_vul_display_re_transfer) New Columns: record_type Remediation Effort (sn_vul_remediation_effort) New Columns: filter_present Impacted CI (sn_vul_wt_cache_ci) New Columns: record_typeasset_category Vulnerable Item Detection (sn_vul_detection) New Columns: source_detection_score Vulnerable Item (sn_vul_vulnerable_item) New Columns: source_risk_scorebackup_substate Watch Topic Counts (sn_vul_daily_count_wt) New Columns: asset_category Impacted CI (sn_vul_vulnerable_ci) New Columns: asset_categoryrecord_type Watch Topic Statistics (sn_vul_wt_cache_statistics) New Columns: asset_categoryrecord_type Vulnerability Entry New index: classification_typeclassification Application Vulnerability Response New Tables: Application Remediation Task Manifest (sn_vul_app_rt_manifest) Application Remediation Task (sn_vul_app_vulnerability) Application Remediation Task Item (sn_vul_app_m2m_vul_group_item) Existing Tables: Application Vulnerable Item (sn_vul_app_vulnerable_item) New Columns: backup_substate effortin_effort Container Vulnerability Response New Tables: Container Remediation Task (sn_vul_container_vulnerability)Container Remediation Task Item (sn_vul_container_m2m_vul_group_item)Container Remediation Task Manifest (sn_vul_container_rt_manifest) Existing Tables: Container Vulnerable Item (sn_vul_container_image_vulnerable_item) New Columns: backup_substateeffortin_effort Security Support Common New Tables: Exception Management Configuration (sn_sec_cmn_exception_config) Policy Exception Reason Mapping (sn_sec_cmn_policy_reason_mapping) Existing tables: Discovered Item(sn_sec_cmn_src_ci) New choice list column 'Matching type for the DI' is added with the following choices: Created by IRECreated by VRMatched by IREMatched by CI Lookup Rules New Columns: resource_idasset_criticality_scoreimage_idasset_risk_score Host Tags renamed to Resource Tag Resource Tag (sn_sec_cmn_host_tag) Host Tag renamed to Resource Tag Configuration Compliance: New Tables: Test Counts (sn_vulc_wt_test_counts) Existing Tables: Renamed 'Policy' to 'Test Group'Test Result (sn_vulc_result) New Columns: backup_resolutiondefer_reopen_dateeffortin_effortresolution_reasonresolution_dateresolved_byhas_impacted_servicesdefer_count Test Result Group (sn_vulc_result_group) New Columns: effort Cloud Security Posture Management New Tables: Cloud Account ScanAccount Scan ConfigurationCompliance StandardCitation CSPM Host Attributes Qualys Integration for Security Operations Existing Tables: Qualys Host Attributes Table (sn_vul_qualys_host_attrb) New Columns: asset_category Vulnerability Response Integration with Tenable Existing Tables: Tenable.io Host Attributes Table (sn_vul_tenable_io_asset _attrb) New Columns: asset_category Rapid7 Integration for Security Operations Existing Tables: Rapid7 InsightVM Host Attributes Table (sn_vul_r7_ivm_host_attrb) New Columns: asset_category November 2022 Store Release Schema Changes Vulnerability Response Existing Tables: Application Release (sn_vul_app_release) New columns: last_policy_compliance_check_date Scanned Application (sn_vul_app_scanned_application) New columns: last_policy_compliance_check_date Vulnerable Item (sn_vul_vulnerable_item) Updated choice list value from 'Invalid CI' to 'Invalid' for 'substate' New columns: first_found_dt_tmlast_found_dt_tmresolution_dt_tmlast_opened_dt_tm New index: age_duration_dt_tm Exception Management (sn_vul_exception_config) New columns tablerole Policy Exception Reason Mapping (sn_vul_policy_reason_mapping) New columns application Vulnerability State Change Approval (sn_vul_change_approval) New columns desired_fielddesired_value Vulnerability Integration (sn_vul_integration) New choice list value 'Asset and Findings' for 'type' column Remediation Target Rule (sn_vul_ttr_rule) New columns: Target from (date) New Tables: Add Proof to the VI Key (sn_vul_proof_key_vulnerability) Application Vulnerability Response Role: sn_vul.app_manage_exception_configuration Container Vulnerability Response Existing tables: Vulnerability Entry (sn_vul_entry) New columns count_active_cviactive_nd_cvistotal_cvistotal_nd_cvispercent_cvi_completepercent_nd_cvi_complete Security Support Common Existing Tables: Approval Rule(sn_sec_cmn_approval_rule) New choice list values added for 'Rule Type' column Vulnerability ManagementCC ManagementContainer Management Security Integration Framework Existing tables: Third Party Integration (sn_sec_int_integration) New columns: include_proof_in_vi_key Configuration Compliance: Deleted tables Exception Management (sn_vulc_exception_config) Existing Tables: Test Result Group (sn_vulc_result_group) New columns backup_stateignored_byignore_date State Change Approval (sn_vulc_change_approval) New columns desired_fielddesired_value Remediation Target Rule (sn_vulc_ttr_rule) New columns: Target from (date) New Tables: Policy Host Id (sn_vul_qualys_policy_host_id) host_idintegration_instancepolicy_idrefresh_neededsubscription_id Microsoft Defender for Cloud Integration for Security Operations Existing Tables: Microsoft Defender for Cloud Configuration(sn_vul_asc_config) New columns import_configurationmanagement_group Vulnerability Response Licensing and Usage New Tables: Usage by CI Classes(sn_vul_licensing_usage_by_ci_classes) August 2022 Store Release Schema Changes Vulnerability Response Existing tables: Auto-Close Stale Detections (sn_vul_auto_close_config) New columns: manual_auto_close_activemanual_detection_last_found_days Vulnerable Items (sn_vul_vulnerable_item) New columns: defer_count Application Vulnerable Item (sn_vul_app_vulnerable_item) New columns: package_iddefer_count New choice list 'SCA' for 'scan_type'New choice field 'Unassigned' for assignment type Vulnerability Integration Run (sn_vul_integration_run) New columns: downloaded_attachprocessed_attachpercent_completetotal_chunksavailable_chunks Remediation tasks (sn_vul_vulnerability) New columns: duplicate_vi_updatedduplicate_vi_existsdefer_count State Change Approval (sn_vul_change_approval) New choice list 'No Longer Required' for 'approval_state' column Assignment Rule (sn_vul_assignment_rule) new column unassign_countmanual_count New Tables: Manual Ingestion Host Attributes (sn_vul_manual_ingestion_host_attrb)Manual Ingestion Vulnerable Item Import (sn_vul_manual_ingestion_vulnerable_item_import)Manual Ingestion Host Id Configuration (sn_vul_manual_ingestion_host_id_config)Package (sn_vul_app_package)Vulnerability Integration Push Queue (sn_vul_integration_push_queue)Potential Duplicate Vulnerable Item (sn_vul_m2m_pot_duplicate_item) Configuration Compliance: Existing Tables: Test Result Group (sn_vulc_result_group) new column defer_countresolution_dateresolved_by Test Result (sn_vulc_result) new column defer_countresolution_reasonresolution_dateresolved_byhas_impacted_services State Change Approval (sn_vulc_state_change_approval) new choice list 'No Longer Required' for 'approval_state' column Assignment Rule (sn_vulc_assignment_rule) new column unassign_countmanual_count Security Support Common: New Tables: Cloud Resource Type Mapping (sn_sec_cmn_cloud_resource_type_mapping) Existing Tables: Cloud Resource Type (sn_sec_cmn_cloud_resource_type) new column provider_resource_type new combined index on service_provider and resource_type fields Cloud Region (sn_sec_cmn_cloud_region) changed the display value from region_id to region Container Vulnerability Response: Existing Tables: Container Vulnerable Item (sn_vul_container_image_vulnerable_item) new choice field 'Unassigned' for assignment type May 2022 Store Release Schema Changes Vulnerability Response Existing Tables: sn_vul_ds_import_q_entry New combined index added on column data_source and queued_on Security Support Common : New Tables : Cloud Account (sn_sec_cmn_cloud_account)Cloud Region (sn_sec_cmn_cloud_region) Cloud Resource Type (sn_sec_cmn_cloud_resource_type)Cloud Service Provider (sn_sec_cmn_cloud_service_provider) Existing Tables : Discovered item(sn_sec_cmn_src_ci) New Columns : Cloud resource type (cloud_resource_type)Cloud service provider (cloud_service_provider)Cloud account (cloud_account)Cloud region (cloud_region) Configuration Compilance : New Tables : Manifest for Decommissioned DI and CI (sn_vulc_ci_di_manifest) Existing Tables: Test Result Group (sn_vulc_result_group) Altered Columns: resolution column - New Choice CI Decommissioned added Citation (sn_vulc_citation) Altered Columns: section column - set max_length to 400 Mar 2022 Store Release Schema Changes Vulnerability Response Patch orchestration New Tables: sn_vul_patch_orch_collectionsn_vul_patch_orch_deploy_patchsn_vul_patch_orch_deploymentsn_vul_patch_orch_m2m_src_ci_collectionsn_vul_patch_orch_m2m_src_ci_updatesn_vul_patch_orch_m2m_vuln_patchsn_vul_patch_orch_update Vulnerability Response Patch Orchestration with Microsoft SCCM New Tables: sn_vul_sccm_collection_importsn_vul_sccm_configsn_vul_sccm_deploy_patchsn_vul_sccm_deployment_importsn_vul_sccm_device_collection_importsn_vul_sccm_device_update_importsn_vul_sccm_integrationsn_vul_sccm_patch_update_import Vulnerability Response Patch Orchestration with HCL Bigfix New Tables: sn_vul_bigfix_collection_importsn_vul_bigfix_configurationsn_vul_bigfix_deploy_patchsn_vul_bigfix_deployment_importsn_vul_bigfix_device_patch_update_importsn_vul_bigfix_host_attributessn_vul_bigfix_integrationsn_vul_bigfix_patch_update_import Container Vulnerability Response New Tables: Container Vulnerable Item (sn_vul_container_image_vulnerable_item)Container Image Finding (sn_vul_container_image_findings)Discovered Container Image (sn_vul_container_image)Container Image Layer (sn_vul_container_image_layer)Container Image Package (sn_vul_container_image_package)Image Package Files (sn_vul_container_package_files)Container Image Mapping (sn_vul_container_image_mappings)Finding mappings (sn_vul_container_finding_m2m_vul_item)Docker Related Services (sn_vul_container_m2m_ci_services)Configure Image Vulnerability Keys (sn_vul_container_image_vulnerability_keys)Auto-Close Vulnerable Items (sn_vul_container_image_auto_close_config)VR Container Counts (sn_vul_container_vr_container_counts) Vulnerability Response Integration with Palo Alto Networks Prisma Cloud Compute New Tables Prisma Integration (sn_vul_prisma_integration)Prisma vulnerabilities import (sn_vul_prisma_vulnerabilities_import)Prisma Asset Attributes (sn_vul_prisma_asset_attrb)Prisma Projects (sn_vul_prisma_prisma_projects) Security Support Common : New Tables : Security Classification Group (sn_sec_cmn_classification_group) Existing Tables : Discovered item(sn_sec_cmn_src_ci) New Columns : Classification rule(classification_rule)classification(classification)Classification type(classification_type)Asset category(asset_category)Non-infra last scan date(non_infra_last_scan_date)Non-infra last compliance scan date(non_infra_last_comp_scan_date)Classification rule(classification_rule)Classification(classification)Classification type(classification_type) Altered Columns : Operating system column length increased to 255 from 50. Security Classification Rule (sn_sec_cmn_classification_rule) Altered columns : value_type : changed the value_type of script tag to 3 from 2. New columns : Classification Group(calculator_group) Approval Rule(sn_sec_cmn_approval_rule) - added 2 new choices for Rule Type Configuration Compliance Exception ManagementConfiguration Compliance Exception Rules Vulnerability Response : New Tables : Classification Group(sn_vul_classification_group)Application Vulnerable Item Pen Test Assessment Request Snapshot(sn_vul_app_vulnerable_item_ptreq_snapshot)Penetration Testing Sprint(sn_vul_pen_test_sprint)Sprint Configuration(sn_vul_pen_test_sprint_config)Penetration Testing Assessment Type Configuration(sn_vul_ptreq_assessment_type_config) Existing Tables : Application Vulnerable Item(sn_vul_app_vulnerable_item) New fields: Affected functionalities(String)Affected parameters(String)Affected URLs(String) Penetration Test Assessment Request(sn_vul_pen_test_assessment_request) New fields: Assessment Type - To capture assessment type of the request Altered fields: Application type(Integer) - Modified the existing choices and added a couple of new onesState - Added a few new states : Testing On Hold, Testing In Review, Draft and Cancelled State Map(sn_vul_app_state_map) New fields: Target triage stateTarget triage reason Classification Rule(sn_vul_classification_rule) Altered Columns : classification(classification) - made not mandatoryClassification type(classification_type) - made not mandatory Configuration Compilance : New Tables : Configuration compliance risk rule(sn_vulc_risk_rule)Risk Rule Fields table(sn_vulc_risk_rule_field)Auto Exception Rule(sn_vulc_auto_exception_rule)Auto-Close Stale Test Results (sn_vulc_auto_close_stale_config)Exception Management (sn_vulc_exception_config) Existing Tables: Test Result History(sn_vulc_result_history) New Columns: Auto Exception Rule(u_auto_exception_rule) Test Result Group(sn_vulc_result_group) New Columns: Auto Exception Rule(u_auto_exception_rule) Test Result(sn_vulc_result) New Columns: Display(display) 2021 Store Release Schema Changes Vulnerability Response changes from version 15.0.2 to Jan release New Tables: SN_VUL_EFFORT_UPDATE Oct 2021 Store Release Schema Changes Vulnerability Response changes from version 14.0.6 to October release Existing Tables: SN_VUL_ACTION_ASSOCIATE_CR Altered columns: add_cis_to_cr (Updated the hint) SN_VUL_ACTION_CREATE_CR Altered columns: add_cis_to_cr (Updated the hint) SN_VUL_ACTION_SELECT_VI Altered columns: vg_sys_id (Updated the label)vi_selection_method (Updated the hint) SN_VUL_ACTION_SPLIT_VG (Updated the table name) Altered columns: new_vg_short_desc (Updated the hint) SN_VUL_APP_VUL_ENTRY New columns: cvss_base_scorecvss_vector SN_VUL_APP_VULNERABLE_ITEM New columns: steps_to_reproduceimpacts_compliance_programcompliance_program_impactedplanned_versiontechnical_detailsimpactrecommendationsecurity_team_contactbusiness_applicationassessment_requestuse_ttr Altered columns: scan_type (Added new choice)substate (Added new choice)risk_rating (Made read only as true) SN_VUL_ASYNC_VI_JOB Altered columns: f_vuln_group (Updated the label) SN_VUL_AUTO_CLOSE_CONFIG New columns: auto_close_vis_linked_to_retired_cis SN_VUL_AUTO_EXCEPTION_RULE New columns: trigger_type SN_VUL_DETECTION Altered columns: status (Added new choice) SN_VUL_DS_IMPORT_Q_ENTRY New columns: last_record_processed SN_VUL_ENTRY New columns: classification_ruleclassificationclassification_type Altered columns: v3_attack_vector (Added default value)v3_attack_complexity (Added default value)v3_privileges_required (Added default value)v3_user_interaction (Added default value)v3_scope_change (Added default value)v3_confidentiality_impact (Added default value)v3_integrity_impact (Added default value)v3_availability_impact (Added default value) SN_VUL_INTEGRATION Altered columns: type (Added choice list) SN_VUL_INTEGRATION_PROCESS New columns: det_ignored Altered columns: group_rules_time (Updated the label and the hint) SN_VUL_INTEGRATION_RUN New columns: det_ignored Altered columns: avg_group_rules_time (Updated the label and the hint) SN_VUL_INTEGRATION_STATS Altered columns: key (Updated the choice list name) SN_VUL_M2M_VG_CHANGE_REQUEST (Updated the table name) Altered columns: sn_vul_vulnerability (Updated the label) SN_VUL_M2M_VUL_GROUP_ITEM (Updated the table name) Altered columns: sn_vul_vulnerability (Updated the label)group_risk_accepted_on_add (Updated the label) SN_VUL_TTR_RULE Altered columns: condition (Updated the hint) SN_VUL_UPDATE_MANIFEST Altered columns: vulnerable_group (Updated the label) SN_VUL_VGR_ASSIGNMENT_RULE Altered columns: vgr (Updated the hint) SN_VUL_VULNERABILITY (Updated the table name) Altered columns: resolution_date (Updated the hint)risk_rating (Updated the hint)business_criticality (Updated the hint)vulnerability_group_rule (Updated the label)filter_type (Updated the hint)status_updated_on (Updated the hint) SN_VUL_GROUPING_RULE (Updated the table name) Altered columns: assignment_type (Updated the label) SN_VUL_VULNERABLE_ITEM New columns: effortin_effort Altered columns: substate (Added the choice list)is_in_group (Added the hint)managed_by_vul (Updated the hint)resolution_date (Updated the hint) New Tables: SN_VUL_CI_DI_MANIFESTSN_VUL_CLASSIFICATION_RULESN_VUL_DAILY_COUNT_WTSN_VUL_M2M_PEN_TEST_REQUEST_ITEMSN_VUL_PEN_TEST_ASSESSMENT_REQUESTSN_VUL_PEN_TEST_CONFIGSN_VUL_REMEDIATION_EFFORTSN_VUL_WATCH_TOPIC Configuration Compliance changes from version 12.1.3 to October release Existing Tables: SN_VULC_POLICY Altered columns: source_id (Updated the max length) SN_VULC_RESULT Altered columns: source_id (Updated the max length) SN_VULC_RESULT_HISTORY Altered columns: source_id (Updated the max length) Rapid7 Integration for Security Operations changes from version 13.0.2 to October release Existing Tables: SN_VUL_R7_COUNT New columns: detection_ignored SN_VUL_R7_RAPID7_CONFIG Altered columns: server_url (Added new choice) Qualys Integration for Security Operations changes from version 12.1.1 to October release Existing Tables: SN_VUL_DETECTION New columns: affect_running_kernelaffect_running_serviceaffect_exploitable_config SN_VUL_VULNERABLE_ITEM New columns: affect_running_kernel_rollupaffect_running_service_rollupaffect_exploitable_config_rollup Security Support Common changes from version 12.2.4 to October release Existing Tables: SN_SEC_CMN_SRC_CI Altered columns: State (Added new choice) SN_SEC_CMN_WORKFLOW_TRIGGER New index Based on columns "table" and "active". SN_SEC_CMN_SRC_CMDB_MAP New columns: use_scriptscript New Tables: SN_SEC_CMN_APPROVAL_CONFIGSN_SEC_CMN_APPROVAL_RULESN_SEC_CMN_APPROVER_LEVELSN_SEC_CMN_CLASSIFICATION_RULE Security Integration Framework changes from version 12.1.3 to October release Existing Tables: SN_SEC_INT_INTEGRATION Altered Columns integration_type (Added new choice) New Columns is_auto_close_supported June 2021 Store Release Schema Changes Vulnerability Response changes from version 13.0.3 to 14.0.6 Existing Tables: SN_VUL_AUTO_CLOSE_CONFIG Altered Columns: auto_close_type (Updated name and hint)last_found_days (Updated name and hint)last_scanned_days (Updated name and hint) New Columns: ignore_detections SN_VUL_DETECTION Altered Column: status (Added choices) SN_VUL_INTEGRATION_PROCESS New Columns: vi_ignoredci_ignored SN_VUL_INTEGRATION_RUN New Columns: vi_ignoredci_ignored SN_VUL_SCAN New Columns: Source IDs SN_VUL_SCANNER New Columns: Requires configConfig URL SN_VUL_M2M_VULNERABILITY_SOLUTION New Columns: Exclusion TypeMetrics updated onMetrics invalidated onMetrics status New Tables: SN_VUL_DETECTION_KEY_CONFIGSN_VUL_RISK_FIELD Security Support Common changes from version 12.0.1 to 12.2.4 New Tables: sn_sec_cmn_fd_triggersn_sec_cmn_m2m_flow_fd_triggersn_sec_cmn_background_job_configurationsn_sec_cmn_background_job_processor_poolsn_sec_cmn_int_auth_config New columns: Integration instance Authentication ConfigurationExpires on Domain Existing Tables sn_sec_cmn_background_job New Columns: Job ConfigurationScheduled Job sn_sec_cmn_workflow_trigger New Columns: Advanced conditionScripted Condition Security Integration Framework changes from version 12.0.1 to 12.1.3 Existing Tables: sn_sec_int_integration New Columns is_reapply_ci_lookup_supportedhost_attributes_tablelookup_by_network Configuration Compliance changes from version 12.0.1 to 12.1.3 Existing Tables: sn_vulc_result New Columns integration_runsrc_ci Feb 2021 Store Release Schema Changes Vulnerability Response changes from version 12.2.0 to 13.0.3 Existing Tables: SN_VUL_INTEGRATION New columns: type SN_VUL_NVD_ENTRY Removed columns: repoprocessedsoftware_vulnerabilities_raw SN_VUL_SOFTWARE New columns: sw_updatesw_edition SN_VUL_SOLUTION Altered columns: summary (added hint on column) SN_VUL_M2M_VULNERABILITY_SOLUTION New columns: exclusion_type SN_VUL_SCANNER New columns: integration SN_VUL_SCAN New columns: hosts_not_scannedscan_launched_at Altered columns: State (Added new choice for state) SN_VUL_M2M_SCAN_CONFIGURATION_ITEM New columns: integration SN_VUL_THIRD_PARTY_ENTRY New columns: product SN_VUL_APP_VULNERABLE_ITEM New columns: source_sdlc_statussource_vulnerability_summarysource_vulnerability_explanationsource_recommendationsource_referencescategory_name SN_VUL_CWE New columns: calculated_cwe_id_name New Tables: SN_VUL_REST_INTEGRATION Removed Tables: SN_VUL_NVD_REPO Configuration Compliance changes from version 11.1.5 to 12.0.1 New Table: sn_vulc_cr_formsn_vulc_action_create_crsn_vulc_action_associate_crsn_vulc_action_split_trgsn_vulc_m2m_trg_change_request Rapid7 Integration for Security Operations changes from version 11.2.1 to 12.0.1 Existing Table: sn_vul_r7_site New index name_idx ( column "name" ) New Table: sn_vul_r7_api_site_import Security Support Common changes from version 11.1.5 to 12.0.1 Existing Tables: SN_SEC_CMN_SCAN New columns: next_action SN_SEC_CMN_SCAN_Q_ENTRY New Column next_action New index scan_queue_items_mgr ( columns "state" and "next_action" ) Performance Analytics changes from version 11.0.0 to 12.0.4 New Tables: SN_VUL_ANALYTICS_TOP_ITEM SN_VUL_ANALYTICS_SCAN_CI_CLASS SN_VUL_ANALYTICS_SCAN_COVERAGE_CONFIG Qualys Integration for Security Operations changes from version 11.1.0 to 12.0.0 Existing Tables: SN_VUL_QUALYS_DEFAULT_APPLIANCE New columns: integration_instancenetwork_idoption_profile SN_VUL_QUALYS_APPLIANCE_IMP New columns: u_network_id SN_VUL_SCAN New columns: qualys_option_profile New Tables: SN_VUL_QUALYS_M2M_SEARCH_OPTION_PROFILESN_VUL_QUALYS_OPTION_PROFILESN_VUL_QUALYS_OPTION_PROFILE_IMPORT December 2020 Store Release Schema Changes No schema changes November 2020 Store Release Schema Changes Vulnerability Response changes from version 12.0 to 12.1.4 Existing Tables: SN_VUL_APP_RELEASE New columns: source_release_id SN_VUL_APP_VULNERABLE_ITEM New columns: source_finding_status SN_VUL_SCAN New columns: integration_instancevulnerabilitycompleted_scansfailed_scanstotal_scansscan_end_timeparent_scanparameters Altered columns: ip (length increased to 8000) SN_VUL_VULNERABLE_ITEM Altered columns: assignment_type (added new choice list value) SN_VUL_VULNERABLILITY New columns: assignment_type New Tables: SN_VUL_M2M_SCAN_ENTRYSN_VUL_ML_CONFIG Security Support Common changes from version 11.1.0 to 11.1.2 No schema changes Security Integration Framework changes from version 11.0.2 to 11.1.0 Existing Tables: SN_SEC_INT_INTEGRATION New columns: ire_source_name Configuration Compliance changes from version 11.0.0 to 11.1.5 Existing Tables: SN_VULC_RESULT New columns: ttr_target_datettr_applied_rulettr_status New indexes: ttr_values (columns "ttr_status", "result" and "ttr_target_date") SN_VULC_RESULT_GROUP New columns: ttr_target_datettr_statuschange_approval Altered columns: resolution (choice list dependent values and label changed)defer_reason (label changed)defer_reopen_date (label changed) SN_VULC_RESULT_HISTORY New columns: ttr_target_datettr_status New Tables: SN_VULC_TTR_RULESN_VULC_M2M_TTR_STATUSSN_VULC_STATE_CHANGE_APPROVAL October 2020 Store Release Schema Changes Vulnerability Response changes from version 11.0 to 12.0 Existing Tables: SN_VUL_CALC_RISK New columns: owasp_top_10_weightsans_top_25_weight SN_VUL_CHANGE_APPROVAL New indexes: requested_by (columns "requested_by" and "desired_state") SN_VUL_CWE New columns: integration_runnamestatuscontent_historynotesurlsans_top_25_positionowasp_top_10_positionsys_class_name New indexes: cwe_sans_index (column "sans_top_25_position")cwe_owasp_index (column "owasp_top_10_position") Altered indexes: cwe_id_index (index is now unique) SN_VUL_ENTRY New columns: source_risk_scoresource_risk_ratingnamestig_severity SN_VUL_EXP_BY_SW Altered columns: filter_ci (added column attributes "readable=true,condition_builder=v2") SN_VUL_INTEGRATION_RUN New columns: next_integration_ran Altered indexes: state (added columns "substate" and "next_integration_ran") SN_VUL_SEVERITY_MAP New columns: integration_type SN_VUL_TTR_RULE New columns: descriptionreapplyreapply_versionmarked_for_deletion SN_VUL_VULNERABILITY New columns: auto_exception_rule Altered columns: substate (choice list dependent values changed)filter_type (new choice "Auto exception rule") SN_VUL_AUTO_CLOSE_CONFIG Altered columns: auto_close_type (changed column name, hint and choice list values)last_found_days (changed column name and hint)last_scanned_days (changed column name and hint) SN_VUL_VULNERABLE_ITEM Altered columns: substate (choice list dependent values changed) New Tables: SN_VUL_APP_INTEGRATIONSN_VUL_APP_RELEASESN_VUL_APP_SCANNED_APPLICATIONSN_VUL_APP_STATE_MAPSN_VUL_APP_VUL_ENTRYSN_VUL_APP_VUL_SCAN_LOCATIONSN_VUL_APP_VUL_SCAN_SUMMARYSN_VUL_APP_VULNERABLE_ITEMSN_VUL_AUTO_EXCEPTION_RULESN_VUL_CWE_CATEGORYSN_VUL_CWE_CONSEQUENCESN_VUL_CWE_PLATFORMSN_VUL_CWE_REFERENCESN_VUL_CWE_VIEWSN_VUL_CWE_WEAKNESSSN_VUL_M2M_CWE_CVESN_VUL_M2M_CWE_PLATFORMSN_VUL_M2M_CWE_REFERENCESN_VUL_M2M_CWE_RELATION Security Support Common changes from version 10.0 to 11.0 Existing Tables: SN_SEC_CMN_BACKGROUND_JOB New columns: parent_job Altered columns: parameters (length increased to 2,000,000) SN_SEC_CMN_CAPABILITY Altered indexes: idx_unique_name (added column "sys_domain") SN_SEC_CMN_CAPABILITY_IMPLEMENTATION Altered indexes: idx_name (removed unique, added column "sys_domain") SN_SEC_CMN_CI_LOOKUP_RULE New columns: descriptiontablecondition SN_SEC_CMN_FILTER_CONDITION Altered indexes: idx_unique_name (removed unique, added column "sys_domain") SN_SEC_CMN_SRC_CI New columns: Other matched CIs SN_SEC_CMN_WHOIS_CONTACT Altered columns: full_name (removed as display column)organization (added as display column) New Tables: No new tables Security Integration Framework changes from version 10.3 to 11.0 Existing Tables: SN_SEC_INT_IMPL New columns: validation_status SN_SEC_INT_INTEGRATION Altered columns: source (new choice "Veracode")integration_type (new choice "Application Vulnerability Integration") New Tables: No new tables Configuration Compliance changes from version 11.0 to 12.0 No schema changes