Release Notes - CRT v7.06.233, TPRM v4.0.16 & SGA v4.01.13
The above versions were released on 07/02/2026. This article contains information about what was included in those releases.
BUGS/FIXES
-
#4165 - Third-Party Risk Management > Service Provider - Enhanced the Third-Party Risk Management module to allow Service Providers to be managed like vendors, including the ability to edit provider details and trigger assessments.
- #4255 - Policy Manager - Fixed an issue where formatting was lost when importing document text into the Policy Manager editor.
- #4258 - Assessment Management > Evidence - Improved evidence preview by displaying a clear message when users attempt to preview an unsupported file type, helping users understand why the file cannot be previewed.
- #4308 - Third-Party Risk Management > Dashboard - Fixed the Upcoming Assessments widget to exclude Submitted and Closed assessments from upcoming date ranges. Assessment counts now display the correct records, and selecting a count opens the corresponding assessment details.
- #4309 - Third-Party Risk Management > Assessment List - Added a dynamic results count to filtered assessment lists, allowing users to quickly see the total number of records that match their selected filters.
- #4341 - Third-Party Risk Management > Third-Party Details > Line of Business - Fixed the Line of Business field to correctly display configured values and allow selections without requiring a page refresh.
- #4360 - Third-Party Risk Management > Third-Party Details > Third-Party ID - Fixed an issue where the Third-Party ID was not saved correctly. The value now persists after saving and displays properly.
- #4361 - Risk Register > Third-Party Association - Fixed the + Add button in Third-Party Association. Users can now successfully add third-party associations to risks.
- #4455 - Third-Party Risk Management > Assessments - Resolved an issue where assessments with solutions could not be deleted.
- #4460 - Third-Party Risk Management > Solutions - Fixed an issue where solution-level contact information was not saved. Contact details now persist correctly.
- #4461 - Living Control Set Dashboard - Fixed inconsistent status colors so they now display consistently across the LCS Dashboard.
- #4476 - Maturity Management > SSP - Fixed the SSP document to display the correct System Security Officer (SSO) information.
- #4484 - Assessment Management > Conformity Engagements - Improved conformity management by correctly handling custom controls and during conformity creation and deletion.
- #4514 - Administration > Manage Clients > Repository Connections - Fixed repeated FTP and repository connection errors, improving connection reliability and reducing random failures.
- #4525 - Assessment Management > Document Explorer - Fixed a 500 error that occurred when downloading evidence reports from Document Explorer.
- #4526 - Assessment Management > Engagements - Fixed an issue where the Add Engagement button did not respond for users with the required permissions.
- #4527 - Assessment Management > Evidence - Fixed an evidence issue so its status now updates correctly when the expiration date is changed.
- #4529 - Risk Register > Export - Fixed an issue that could prevent organization and client-level Risk Register reports from generating for large datasets.
- #4531 - Assessment Management > Audit Iteration > Assessment Plan - Fixed an issue where auditors could not access assessment details from the Assessment Plan due to permission errors.
- #4537 - Waiver Management - Fixed a 403 error that prevented authorized users from approving or publishing waivers.
- #4550 - Living Control Set > Conformity - Fixed an issue where conformity engagement creation intermittently skip the conformity analysis step.
ENHANCEMENTS/FEATURES
- #4070 - Third-Party Risk Management > Assessment List - Added a Waiver Applied column to the TPRM Assessment List export, allowing users to easily identify assessments that were completed using an approved waiver.
- #4219 - Document Control Management System - Added a soft delete feature for DCMS documents, allowing deleted documents to be recovered by authorized users instead of being permanently removed.
- #4223 - Notifications Templates - Updated waiver notification templates to include the associated client name, giving users clearer context in approval emails.
- #4313 - Notification Management - Added dedicated notification templates for Threat Management events
- #4395 - Assessment Management > Data Ingestion - Added progress notifications for ingestions, including running task notifications and a status indicator.
- #4453 - Notifications Management > Notification Templates - Updated the New Client Assigned email template with clearer wording and improved formatting for a better user experience.
- #4462 - Living Control Set > STRM Details - Updated the STRM Details page to match the Conformity Analysis layout, making it easier to review framework information.
- #4474 - Third-Party Risk Management > Third-Party Details - Added new contract and agreement fields to Third-Party Details, including contract dates, renewal information, NDA, BAA, and other related fields.
- #4495 - Living Control Set - Added a repository setup step during LCS creation, allowing users to connect a repository before completing the engagement.
- #4522 - Assessment Management > Data Ingestion - Added support for importing control-level Responsible Resource, Control Summary, Implementation Summary, and Implementation Solution fields.