April 2026 Product Update: Docker SBOM Support, Searchable CVEs Across Repos, and External SBOM Scanning

Posted on May 7, 2026

We’ve introduced several new capabilities to the RunSafe Security Platform in April, including expanding SBOM support, delivering deeper visibility into vulnerabilities across your organization, and improving the login experience.

Here’s what’s new in the RunSafe Security Platform in April:

Docker SBOM support
Organization-wide vulnerability reporting with searchable CVE insights
Scanning of externally generated SBOMs
OAuth support for Google, GitHub, GitLab, and Microsoft
New Protect page for a centralized view of your runtime protection posture
Daily vulnerability digest emails

Docker SBOM Support

RunSafe now supports SBOM generation and analysis for Docker images, expanding visibility into containerized environments and helping teams better understand the components and risks within their container stacks.

Organization-Wide Vulnerability Reporting

A new, centralized reporting experience brings together vulnerability data across your organization. Teams can now search for specific CVEs and quickly determine whether they exist in any repositories and exactly where they appear.

Generic Projects for Flexible SBOM Scanning

Generic projects allow you to upload and scan SBOMs from outside a connected CI pipeline. Teams can analyze third-party software, supplier-provided SBOMs, or other externally generated artifacts directly within the RunSafe Security Platform.

OAuth Support for Simplified Access

Users can now sign in using OAuth providers, including Google, GitHub, GitLab, and Microsoft, making it easier to securely access the RunSafe Security Platform with existing credentials.

Understand Your Protect Coverage and Risk Exposure

We added a new Protect page in the platform sidebar to provide a centralized view of your runtime protection posture. Teams can quickly see which repositories are already covered by RunSafe Protect, which mitigates memory safety vulnerabilities.

Just as importantly, the page highlights repositories that are not yet protected but contain memory safety vulnerabilities, making it easy to prioritize where Protect can have the greatest impact. Organizations get a clear view of both current exposure and opportunities for risk reduction across their software portfolio.

Daily Vulnerability Update Emails

Customers who opt in will now receive daily email digests highlighting newly discovered vulnerabilities. Each digest shows new vulnerabilities detected by the RunSafe Security Platform for the organizations configured in your account.

If you’d like to learn more about these updates or see them in action, reach out to your RunSafe Security contact. Schedule time with our team here.

Our Latest Updates

February 2026 Product Update: Expanded GitLab Controls, Enhanced Package Detection, and MIPS Support

Feb 27, 2026

February brought meaningful enhancements across the RunSafe Security Platform, with new compliance controls for GitLab, expanded architecture support in Protect, and continued improvements to SBOM accuracy and package detection in Identify. As always, our focus...

December 2025 Product Update: Platform Updates, New Reachability Analysis, and QNX Package Detection

Dec 19, 2025

RunSafe is ending the year strong with a number of upgrades to the RunSafe Security Platform and big additions to our Identify solution, including reachability analysis and package and sub-package detection for QNX. Here’s what’s new in December: RunSafe Security...

October 2025 Product Updates: GitHub Support Now Available, License Compliance Features, and More

Oct 14, 2025

RunSafe closed out Q3 with a number of big additions to the RunSafe Security Platform, including major new features for both GitHub support and license compliance. Here’s what’s new in October: The RunSafe Security Platform: GitHub support now available! Identify: New...