Release notes

Vendor Risk AI-Powered Security Profile (Beta) – Ongoing Enhancements

Toby Roger
Toby Roger
released Apr 09, 2025
Release notes imageVendor Risk AI-Powered Security Profile (Beta) – Ongoing Enhancements

We’re continuing to roll out incremental improvements to the Vendor Risk AI-powered Security Profile (Beta) to give you greater flexibility, control, and clarity. 

  • Custom Domain & IP selection: You can now customize the domains and IPs used in a vendor’s security profile. Your selection is saved between sessions and automatically applied to the Instant Risk Assessment, helping you tailor assessments to specific vendor engagements and use cases.
  • Excel document support:  You can now upload and scan Excel documents as part of the evidence used in the security profile.
  • Manual check management: We’ve made it easier to manage checks and citations—users can now manually mark checks as "met" to better reflect their evaluation.
  • Add comments to all checks: Comments can now be added to both passed and unmet checks (previously, comments were only supported for identified risks).
  • Updated rating logic: The Security Profile rating will now default to the automated scanning score when no evidence has been provided. Once evidence is added, the rating will automatically update to reflect the combined impact of the automated scanning and evidence, against the Security Profile control set.

More enhancements to come in upcoming releases.

New in Breach Risk: Risk Waivers for Subsidiaries

We’ve introduced Risk Waivers for Subsidiaries, a powerful new feature in Breach Risk that gives organizations greater control and flexibility in managing risk across their subsidiaries. With this enhancement, you can now create private risk waivers for risks associated with any of your subsidiaries. These waivers are visible only within your organization and ensure your internal risk posture reflects the controls and context you manage centrally.

New in Trust Exchange: Trust Page enhancements

We’ve rolled out a number of improvements to Trust Pages in this release:

  • Trust Page users can now add specific badges for their CSA STAR level, plus new badges for CSA TCP, CREST and URAC, so businesses who adopt these frameworks and standards can reflect that on their Trust Page. 
  • Downloads data is now available in the Trust Page access log, giving you deeper insight into the documents that your prospects and customers find most valuable. 
  • A preview mode for Trust Pages is now available, so you can see what your page will look like from an outside perspective prior to publishing. 
  • You can now customize your security link titles on your Trust Page via Settings > Content Library
  • We’ve made UI improvements to the Trust Page share modal, published status badges and settings page. 

Other improvements

  • For Vendor Risk customers who want to be notified when their vendors make changes to their Trust Page, we’ve made improvements to the notification, which you can enable via Home > Manage Notifications > Configure custom notifications
  • We’ve added a new Vendor Risk custom attribute type URL so you can now add clickable links as custom attributes.
  • Users can now sort by percent complete when reviewing remediation requests in both Vendor Risk and Breach Risk.
  • We’ve added SOC3 report as default document type to Vendor Risk Additional Evidence.
  • This release includes a number of bug fixes.
  • Check icon
  • Check icon
  • Check icon
  • Check icon
  • Check icon
Book a free demo
View all release notes

UpGuard Release Notes

Learn about new features, changes, and improvements to UpGuard.
Add a custom domain for your Trust Page
UpGuard logo
Add a custom domain for your Trust Page
Abstract image background

Add a custom domain for your Trust Page

Add a custom domain for your Trust Page
Toby Roger
March 27, 2025
Open Ollama server detection
UpGuard logo
Open Ollama server detection
Abstract image background

Open Ollama server detection

Open Ollama server detection
Toby Roger
March 12, 2025
Introducing AI-Powered Security Profile and Instant Risk Assessments
UpGuard logo
Introducing AI-Powered Security Profile and Instant Risk Assessments
Abstract image background

Introducing AI-Powered Security Profile and Instant Risk Assessments

Introducing AI-Powered Security Profile and Instant Risk Assessments
Toby Roger
February 26, 2025
Import questionnaire templates into the questionnaire builder
UpGuard logo
Import questionnaire templates into the questionnaire builder
Abstract image background

Import questionnaire templates into the questionnaire builder

Import questionnaire templates into the questionnaire builder
Toby Roger
February 14, 2025
CIS Critical Security Controls Questionnaires
UpGuard logo
CIS Critical Security Controls Questionnaires
Abstract image background

CIS Critical Security Controls Questionnaires

CIS Critical Security Controls Questionnaires
Toby Roger
January 30, 2025
Introducing new Trust Pages
UpGuard logo
Introducing new Trust Pages
Abstract image background

Introducing new Trust Pages

Introducing new Trust Pages
Toby Roger
January 15, 2025
View all release notes
UpGuard customer support teamUpGuard customer support teamUpGuard customer support team

See UpGuard In Action

Book a free, personalized onboarding call with one of our cybersecurity experts.
Contact sales
Free demo
Free instant security score

How secure is your organization?

Request a free cybersecurity report to discover key risks on your website, email, network, and brand.
  • Check icon
    Instant insights you can act on immediately
  • Check icon
    Hundreds of risk factors including email security, SSL, DNS health, open ports and common vulnerabilities
Free score
Website Security scan resultsWebsite Security scan rating
UpGuard logo
UpGuard is a complete third-party risk and attack surface management platform.
Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
Products
Tools
Company
Insights
@2025 UpGuard, Inc.
Research GuidelinesPlatform Terms & ConditionsWebsite Terms & ConditionsPrivacyCookies