Menu

    April 2026

    Avatar
    Matt Proctor
    • Updated
    Follow

    Release Notes - April 2026

    Learning Depth for Quests

    What's New:
    Admins can now set the learning depth for each Quest so training matches the time and coverage they want to provide. Three depth options are available: Fundamentals for a quick introduction, Compact for focused essentials, and Comprehensive for deeper coverage across more activity types.

    Key Benefits:

    • Tailor Quest depth to different learning goals and time constraints
    • Give learners a more consistent and purposeful training experience
    • Choose between awareness-level, focused, or in-depth learning in a single setting

    How to Access:
    Open a Quest and go to Advanced Settings to select the learning depth.

    Quests Advanced Settings

    Self-Serve Single Sign-On Setup

    What's New:
    Company admins can now configure single sign-on through a guided self-service workflow. Admins can manage domain allowlisting and validate configuration before saving using the built-in connection test. This capability is now enabled for most customers, with exceptions for organisations using multiple security groups or strict-mode single sign-on.

    Key Benefits:

    • Reduce setup delays by allowing administrators to manage configuration directly
    • Increase confidence with built-in connection testing before saving changes
    • Lower the need for support involvement for most single sign-on setups

    How to Access:
    Open the authentication or single sign-on configuration area in the platform as a company administrator and follow the guided setup flow.

    Adaptive Learning with Trust Agent AI

    What's New:
    Adaptive Learning now uses Trust Agent AI signals to assign training based on real developer behaviour. When enabled, the platform detects qualifying AI usage and automatically assigns relevant training so developers receive learning at the right time.

    Key Benefits:

    • Align training to real behaviour instead of static assignments
    • Improve relevance by targeting learning to observed risk signals
    • Help teams respond faster to changing AI usage patterns

    How to Access:
    Enable Adaptive Learning with Trust Agent AI and configure the relevant training policy and Quest criteria in the platform.

    Adaptive Learning with Trust Agent: AI

    New AI Challenges Across Quest Topics

    What's New:
    A new batch of 133 AI Challenges has been added across 12 languages:

    • Bash: 15 new AI Challenges
    • C# (.NET) Basic: 7 new AI Challenges
    • C# (.NET) Core: 7 new AI Challenges
    • C# (.NET) MVC: 16 new AI Challenges
    • C# (.NET) Web API: 6 new AI Challenges
    • GO Basic: 19 new AI Challenges
    • Java Enterprise Edition API: 27 new AI Challenges
    • Java Spring: 5 new AI Challenges
    • JavaScript Node.js Express: 2 new AI Challenges
    • Kubernetes: 12 new AI Challenges
    • Terraform AWS: 10 new AI Challenges
    • Typescript Node.js Express: 7 new AI Challenges

    How to Access:
    All new AI Challenges have been added to their relevant Quest/Learn topics, and can be found in Explore.

     

    New Topics for OWASP Web A10 Category in 9 Web Languages

    What's New:
    9 of our web languages have been updated with new topics to reflect the new A10 - Mishandling of Exceptional Conditions category in the new OWASP 2025 Web Top 10. The new topics are:

    • Information Exposure - Error Details
    • Denial of Service - Uncaught Error Handling
    • Memory Corruption - Race Conditions
    • Memory Corruption - Null Dereference

    These vulnerability topics have been added to the following 9 languages:

    • C# (.NET) Basic
    • C# (.NET) Core
    • C# (.NET) MVC
    • GO Basic
    • Java Enterprise Edition Basic
    • Java Spring
    • JavaScript Node.js Express
    • Python Basic
    • Typescript Node.js Express

    Key Benefits:
    • Helps teams upskill on the new A10 category of vulnerabilities
    • Hands-on training covering an important emerging area of security concern

    How to Access:
    These new topics are available in Quests and Learn, and their individual activities can be found in Explore.

     

    Golang Memory Vulnerability Topics Added

    What's New:
    We have added 2 new memory vulnerability topics to GO Basic, covering vulnerabilities possible in Golang that are not typically possible in most web languages.

    • Memory Corruption - Buffer Overflow
    • Memory Corruption - Integer Overflow

    Key Benefits:
    • Helps teams upskill on how important memory corruption vulnerabilities can manifest in GO.
    • Hands-on training covering an important advanced security topic in GO.

    How to Access:
    These new topics are available in Quests and Learn, and their individual activities can be found in Explore.

     

    New Web Language: Delphi

    What's New:
    We have added support in Quests, Learn and Explore for Delphi (Web). The topics available for Delphi training are:

    • Access Control - Missing Function Level Access Control
    • Authentication - Insufficiently Protected Credentials
    • Denial of Service - Uncaught Error Handling
    • File Upload Vulnerability - Unrestricted File Upload
    • Information Exposure - Error Details
    • Injection Flaws - SQL Injection
    • Insufficient Logging and Monitoring - Insufficient Logging and Monitoring
    • Memory Corruption - Race Conditions
    • Memory Corruption - Use After Free
    • Sensitive Data Storage - Plain Text Storage of Passwords
    • Vulnerable Components - Using Components from Untrusted Source
    • Vulnerable Components - Using Known Vulnerable Components
    • XML External Entities (XXE) - XML External Entities (XXE)

    How to Access:
    These new topics are available in Quests and Learn, and their individual activities can be found in Explore.

     

    Language Controls for Quests

    What's New:
    Admins and team managers can now control which programming languages learners can use in a Quest. Learners are required to complete the Quest using only the languages selected by the administrator.

    Key Benefits:

    • Keep training aligned to approved or relevant programming languages
    • Reduce confusion by limiting irrelevant language choices
    • Support more targeted and consistent learning outcomes

    How to Access:
    Open a Quest and use the language controls in Advanced Settings to choose the allowed languages.

     

    Skill Levels for Quest Learners

    What's New:
    Learners now see their skill level directly in My Quests, including their current level, progress toward the next level, and additional information about how skill levels are calculated. Available levels include Recruit, Apprentice, Warrior, Sentinel, and Champion.

    Key Benefits:

    • Help learners understand their current progress more clearly
    • Give admins and managers a clearer foundation for goals and incentives
    • Support smoother adoption of updated scoring experiences

    How to Access:
    Learners can open My Quests to view their current skill level and select Learn More for additional details.

    Comments

    0 comments

    Please sign in to leave a comment.