Release 20 November 2025

This release brings another round of critical improvements, refinements to stability and usability across the platform. With 25 issues addressed - including enhancements to user feedback, planning UX, test account handling, spelling checks, invoicing, and data consistency - we're continuing to focus on both polish and performance.

Features & Improvements

• PP-543: Fixed a 500 error when adding test accounts. Accounts now add without backend failures.

• PP-538: The email sender for invoices now correctly reflects the configured sender address from invoice settings.

• PP-547: A migration was implemented to treat house numbers as strings instead of numbers in the database.

• PP-336: Spell checker red underlines are now shown directly on page load, even outside of edit mode.

• PP-540: Last names have been removed from the planning dashboard to make the UI cleaner, unless there are duplicate first names.

• PP-548: HR managers can now view pentest details in planning without having full access to test contents.

• PP-539: Restored functionality of risk label chips in reports, ensuring scope and probability are correctly rendered.

• PP-532: Spell check improvements including clearer indexing of reproduction steps and ignoring false positives in risk references.

• PP-524: Added a new value “Not applicable” to Impact and Likelihood fields for findings where these do not apply.

• PP-514: Added hover tooltips with explanations to CVSS 3.1 subfields to assist scoring accuracy.

• PP-511: The risk database now displays the last updated timestamp, helping pentesters track content updates.

Bug Fixes

• PP-520: Removed the unused “Notes” field from findings as this was not used much.

• PP-546: Improved clarity of error messages shown when all a client’s scan credits have expired.

• PP-551: Fixed issues related to deprecated Kaniko Executor builds and moved to Buildah.io to build our images, ensuring stable pipeline functionality.

• PP-545: Addressed encoding bugs and validation errors on customers without house numbers (see linked PP-547).

• PP-519: Fixed a visual bug in the planning calendar where weekdays (e.g., Friday) would sometimes be duplicated.

• PP-494: Fixed an issue preventing pentests from being deleted when special characters or trailing spaces existed.

• PP-526: Resolved pagination caching bug across pentests which caused some tabs (like Findings/Scope) to incorrectly show on the page.

• PP-450: Target field filters now search through all targets, not just the first 25, when adding test accounts.

• PP-525: Addressed an issue where planned pentests on Fridays appeared as empty white spaces in the planning view.

• PP-517: You can now reuse and save test accounts across multiple pentests. Previously saved accounts also reappear correctly.

• PP-501: The “Pentester IP” quality requirement now resets if IPs are removed, preventing false green statuses.

We believe that PentestPortal will greatly enhance the experience of individual penetration testers, penetration testing firms and enterprises conducting their own pentests and that PentestPortal contributes to more efficient and effective penetration testing. Your feedback is invaluable in helping us improve and tailor the software to meet your needs.

Thank you for choosing our software, and we look forward to hearing your thoughts on this exciting new release!