Product Updates
ThreatZ Changelog
The latest features, improvements, and fixes to ThreatZ from the VxLabs engineering team.
June 25, 2026
Content — 8 new SEO pillar articles
New
- US Connected Vehicle Rule Compliance — the BIS rule live since 17 March 2025; MY2027 software / MY2030 hardware supply-chain playbook.
- Euro 7 Anti-Tampering: Software Governance Guide — emissions-relevant assets, calibration governance, evidence-chain integrity for OEMs.
- EU Data Act for Connected Vehicles — data-access duties, security controls, and an operating model that separates OEM, supplier and service-provider obligations.
- Automotive Cybersecurity Assurance Cases — practical CAE/GSN guide aligned to ISO/SAE 21434 and R155-aligned monitoring.
- EV Charging Cybersecurity — ISO 15118, OCPP 2.1/2.0.1, and backend integration across OEM, CPO and EMSP responsibilities.
- Connected Vehicle API Security — threat model + OAuth/mTLS patterns for telematics, mobile-app and fleet APIs.
- AI Governance for Automotive Engineering — policy, audit trail, and prompt-registry patterns for GenAI in automotive engineering.
- Autonomous Vehicle Cybersecurity — ODD-aware threat models and an incident-to-risk feedback loop for ADS and robotaxi fleets.
February 18, 2026
ThreatZ v4.2
New
Improved
- GB 44495 dual-compliance mode — run a single TARA mapped to both GB 44495 and UNECE R155 simultaneously
- AI-powered threat suggestion engine now recommends threats based on your vehicle architecture model
- SBOM format auto-detection for CycloneDX 1.5 and SPDX 2.3 imports
- New compliance dashboard with real-time gap analysis across all active vehicle programs
- Performance: TARA report generation is now 40% faster for projects with 500+ components
January 8, 2026
ThreatZ v4.1
New
Improved
Fixed
- Knowledge graph cross-platform threat intelligence — share threat patterns across vehicle programs
- 30+ new tool integrations including Polarion, codebeamer, and Enterprise Architect
- Improved: SBOM vulnerability matching now uses NVD 2.0 API with CPE 2.3 dictionary
- Improved: Bulk component import supports Excel and CSV alongside CycloneDX/SPDX
- Fixed: Compliance report PDF export handling of multi-byte characters (CJK support)
December 12, 2025
ThreatZ v4.0
New
- Major release: Unified TARA + SBOM + Compliance platform with shared knowledge graph
- New 4-tier pricing model: Starter, Team, Professional, Enterprise
- SAML SSO and SCIM provisioning for Enterprise customers
- API v2 with OpenAPI 3.1 spec and per-key rate limiting
- Chinese language support (Simplified) across the entire platform
- ISO/SAE 21434 audit report template generator with one-click export
Stay Updated
Want to be the first to know about new features? Subscribe to our newsletter or follow us on LinkedIn.