Skip to main content

Strike Graph Product Updates

This article is your reference for all Strike Graph releases. Each update includes a summary of new features, enhancements, and fixes, organized chronologically from most recent to oldest. We update the product every 2 weeks.

Written by Laurel True-McCarthy

Thursday July 2nd

🔒 Trust Chain Updates

This release brings a full role-based access model to this vendor risk management module, with three new dedicated roles: Trust Viewer, Trust Contributor, and Trust Manager. Each gives the right level of access to the right people, whether they need read-only visibility, ownership of specific vendor relationships, or full Trust Chain management.

We also added a few quality-of-life improvements along the way: vendor detail pages now show when an invitation was sent, evidence request templates can be edited after creation, and new organizations are automatically set up with a default evidence request library so there's less friction getting started. We also added resiliency to vendor CSV imports and the bulk evidence assignment flow.

📊 Compliance Dashboard — Coming Soon

We're actively building a new Compliance Dashboard, and this release marks meaningful progress. Compliance managers will soon have access to a 90-day trend chart showing progress across controls, evidence, and framework criteria over time, along with a swimlane that highlights expiring evidence requiring manual attention and a summary of outstanding action items — all in one place. Stay tuned.

🔌 New Integrations: ServiceNow, ClickUp, and Zoho

Script Runner now supports three new platforms. ServiceNow, ClickUp, and Zoho can each be connected as automated evidence collection sources, with built-in default scripts and dedicated configuration interfaces to make setup straightforward. We also improved error messaging across integrations so that when something doesn't work, you get a clear explanation of why.

📝 Rich Text for Evidence and Controls

Descriptions for risks, controls, and evidence now support rich-text formatting — bold, italics, lists, links, and headings. More expressive documentation, right where your team is already working.

🤖 Security Assistant Improvements

The Security Assistant now handles mixed-content documents better, including spreadsheets and images where key information appears alongside other content. This means more complete and accurate answers when your evidence lives in complex file formats. We also touched up the Verify AI interface on the Evidence Detail page for a more intuitive experience, and added resiliency to a few edge cases in evidence test cleanup.

🛠️ Platform Reliability

We improved audit trail coverage so that changes to evidence links, criteria assignments, and ownership are now consistently captured in activity logs. We also resolved an authentication edge case that could cause an infinite login loop for newly invited users, and fixed a bug affecting bulk control publishing when framework filters returned no results.

Thursday June 18th

📋 Security Questionnaires
We've added new flexibility to running Security Questionnaires. You can rerun a completed questionnaire entirely or target specific questions—useful when new information arrives or you want to revisit areas without restarting. AI-generated answers have also improved: yes/no questions now have a clear, direct prefix, making responses easier to scan and act on.

🔌 Integrations
Script Runner now supports Azure Active Directory (Entra ID) and Azure DevOps, enabling advanced and pre-defined automated evidence collection directly from these services. We also improved the reliability of Office 365 evidence collection, adding resiliency to folder-based evidence gathering.

🤝 Trust Chain
Vendors now have a smoother path to reusing their documentation. Attachments submitted in response to Evidence Requests can be saved directly to the Trust Asset Library, making it easy to pull those documents into future requests without digging through old submissions.

🔐 Identity & Access Management
We expanded SCIM support to cover user deactivation and reactivation, as well as role mapping from your identity provider. We also touched up several invitation and SSO edge cases to ensure users land in the right role and organization from day one.

✨ Other Improvements
Advanced Verify AI tests now run automatically whenever a new attachment is added to an evidence item. We also added an in-app product tour for Manager-role users to help orient new team members to key platform features. We also updated platform content to close identified gaps in FedRAMP Low compliance coverage, and resolved an issue where expiration notifications were incorrectly firing for evidence already marked as satisfied.

Did this answer your question?