arrow-left Back to Announcements
DATE:
AUTHOR:
CyberCloud Team
RELATED ROADMAP ITEMS:
#PP-426 External quote integration & pentest management
PentestPortal.io

Release 29 August 2025

DATE:
AUTHOR: CyberCloud Team
RELATED ROADMAP ITEMS: #PP-426 External quote integration & pentest management

We’re excited to share our August 2025 release - a significant update laying the foundation for integrated billing and proposal workflows. With the new Assignments feature (including Offorte.com quote integration), extended reseller and role controls, and several bug fixes, this release delivers more control, clarity, and consistency across planning, permissions, and project tracking.

Features

#PP-426 – Epic: External quote integration & pentest management

This release introduces Assignments as a way to manage the relationship between signed quotes and one or more pentests - paving the way for integrated invoicing in the next release of September/October '25.

  • Secure API integration with external quoting systems (currently: Offorte.com)

  • Ability to import quotes and link them to one or more pentests

  • Support for project code auto-fill, customer matching, and quote-based metadata

  • Customizable invoice logic (none, fully upfront, 50/50, fully after)

  • Optional purchase order field per customer

  • Amount breakdowns per pentest or per assignment

  • Skipping or including quotes via tag filtering (configurable via instance settings)

  • Full visibility into linked pentests and assignments

This feature is the foundation for billing directly from PentestPortal — coming soon!

Other Feature Enhancements

  • #PP-482 – Show reseller name when linking assignment
    The assignment dialog now includes the reseller name (in parentheses) for clarity in multi-reseller instances.

  • #PP-483 – Extended reseller contact role

    • Reseller Contacts can now create and edit customers

    • Billing fields now permissioned via a dedicated right

Bug Fixes

  • #PP-457 – Fixes following July 2025 feedback

    • Scoped visibility in Team and User Overview

    • Fixed 500 error when assigning roles to removed users

    • Planning data desyncs resolved

    • QA demand view pagination removed

  • #PP-479 – ASVS compliance edits restored
    Pentesters can now correctly update ASVS status fields again.

  • #PP-476 – Report version number editing restored
    Fixed permission error blocking version additions.

  • #PP-475 – Add Pentester IP button restored
    UI button for IP addresses under a pentest is now visible for pentesters again.

  • #PP-474 – 404 on pentester role creation fixed
    Creating users with the Pentester role no longer fails on first attempt.

  • #PP-473 – Autocomplete entry in instance settings working again

  • #PP-472 – Prevent adding findings to completed assessments
    The dialog now respects assessment status and enforces read-only mode.

  • #PP-471 – Offorte "Skip" tags now honored
    Backend and frontend filtering based on tags is live.

  • #PP-477 – Reserved time now shown more neutrally
    Planning status label improved for privacy while maintaining clarity (e.g., "Unavailable").

  • #PP-459 – IP Column in scope table made wider
    IPs with long octets now display correctly (e.g. 192.168.120.100)

We believe that PentestPortal will greatly enhance the experience of individual penetration testers, penetration testing firms and enterprises conducting their own pentests and that PentestPortal contributes to more efficient and effective penetration testing. Your feedback is invaluable in helping us improve and tailor the software to meet your needs.

Thank you for choosing our software, and we look forward to hearing your thoughts on this exciting new release!

Powered by LaunchNotes