· intuitem · News · 3 min read
What's New in CISO Assistant — Week 06, 2026 (v3.11.3 – v3.12.0)
Batch actions on tables, partial requirement assignments, sticky form buttons, the Moroccan cybersecurity framework, and a critical data-integrity fix in v3.11.5.
This week brings four releases capped by v3.12.0, which introduces two long-requested epic features. If you are on v3.11.4 or earlier, pay special attention to v3.11.5 — it contains a critical fix to prevent potential data conflicts during requirement assessments.
Epic Features in v3.12.0
Batch actions on tables — You can now select multiple rows in any model table and apply actions in bulk: change status, assign owners, export, or delete. This dramatically speeds up day-to-day housekeeping on large compliance programmes.
Partial requirement assignments — Requirements within an audit can now be individually assigned to a specific user or team. This means you no longer need to assign an entire audit to one person; workload can be split at the requirement level.
New Features
Save and Next on requirement assessments (v3.11.4) — A new button lets you save the current requirement and immediately advance to the next one, cutting the number of clicks during large assessment campaigns.
BIA risk-matrix change (v3.11.5) — You can now swap the risk matrix used by a Business Impact Analysis after creation, giving you more flexibility as your methodology evolves.
Available-update indicator (v3.11.5) — Frameworks used in audits now show an icon when an updated version is available in the library, so you know when it is time to refresh.
Serializer-level access control (v3.12.0) — Access checks are now enforced at the API serializer layer, adding defence in depth on top of existing view-level permissions.
Framework & Library Updates
- Moroccan cybersecurity law — Added by community contributor @Qnadia. Includes the framework itself plus an ISO/IEC 27001:2022 to Moroccan Law 05-20 mapping and a reverse DNSSI 2023 mapping.
- CyFun 2025 — Reference controls have been added to the CyFun2025 framework.
UX Improvements
- Sticky form buttons and AppBar (v3.11.5) — Form action buttons and the top navigation bar now stay visible as you scroll, eliminating the need to scroll back up to save.
- Better custom-library guidance — The upload flow now includes clearer styling and step-by-step guidance.
- Task-template email links — Assignment notification emails now include a direct link to the task template.
- Improved domain explore spacing — The domains explore view has tighter, cleaner spacing.
- Better default task filters (v3.12.0) — Task lists now default to more useful filter presets.
- More reverse links on domains and removal of redundant titles improve navigation.
Bug Fixes & Data Integrity
- Critical: layout reset on Save and Next (v3.11.5) — A forced layout reset now prevents requirement-assessment data from being accidentally overwritten when using Save and Next. Upgrade to v3.11.5 if you use this workflow.
- Stored library deletion on update (v3.11.5) — Previously, updating a stored library could leave orphaned data; this is now cleaned up automatically.
- TOTP/PAT 500 error — The Two-Factor and Personal Access Token configuration page no longer returns a server error.
- Suggest-controls now follows implementation groups and the sync-to-action pipeline is faster.
- Third-party mailing through an actor works correctly again.
- Graph rendering for kill-chain and strategic scenarios has been fixed.
- The TPRM overview page no longer crashes.
Performance
- Analytics (home page) performance (v3.11.5) — Dashboard queries have been optimised, resulting in noticeably faster home-page loads on large datasets.
For the full list of changes, see the v3.11.3 – v3.12.0 releases on GitHub.
