May 2026

New Features

Service Accounts & OAuth2

You can now create service accounts — named, non-human identities with their own API credentials — for programmatic access to the Adversarial API. Service accounts support OAuth2 client credentials and are subject to the same role-based access controls as human users, so you can scope them to exactly the permissions your integrations need.

Service accounts are managed from Settings → Service Accounts and appear separately from human team members on the team page.

Activity Tab on Risk & Incident Records

Risk and incident detail modals now include an Activity tab that shows the full change history of the record: every field edit, status change, and comment in chronological order. Each entry displays the author, timestamp, and a before/after diff of the changed fields.

AI Risk Summaries in PowerPoint Exports

The risk slide in PPTX deck exports now includes an AI-generated executive summary. The summary is scoped to the risk’s description, scoring rationale, and linked findings, giving stakeholders a concise narrative without requiring manual authoring.

“Last Updated By” on Risk & Incident Registers

The risk and incident register tables now surface a Last Updated By column, showing the user who most recently modified each record. The field is also visible in the record’s detail modal.

Date Tooltips on Register Cells

All date columns on the risk and incident registers — including Discovered, Expected, Closed, Occurred, Detected, Contained, and Responded dates — now show a precise YYYY-MM-DD HH:mm timestamp on hover, matching the behavior already present on the Created and Updated columns.

Improvements

Redesigned Email Notifications

Notification emails have a new look-and-feel aligned with the latest Adversarial design system: a clean white card layout, pill-style logo header, and a shared footer with manage-notifications and unsubscribe links. Severity and urgency level words are now color-coded in the email body to match their in-app treatment (e.g. Critical appears in red).

In-App Guidance Panels Replaced with Docs Links

The embedded Guidance panels in the Threats, Risks, Incidents, and Compliance modules have been replaced with a compact ? icon that opens the relevant guide on docs.adversarial.com in a new tab. This keeps the interface clean and ensures guidance content stays up to date as documentation evolves.

Threat Objective Tooltips

Threat objective icons throughout the platform now display a tooltip on hover identifying the objective by name. This makes it easier to interpret threat data without needing to cross-reference a legend.

Scoring: Re-score Findings on Description Change

When an integration sync updates a finding’s description, the platform now automatically re-scores the finding using the new text. Previously, description changes during sync did not trigger re-scoring, which could leave severity scores stale.

Improved Scoring Summary Notifications

Scoring summary notifications are now delivered to the user who requested the scoring run, and the notification body shows cleaner counts (e.g. findings scored, findings skipped) instead of raw debug output.

GreyMatter Integration Improvements

The GreyMatter integration (formerly listed as “GreyMatter SIEM”) has been renamed to GreyMatter. Incident syncs now correctly use the resolvedAt timestamp — rather than closedAt — as the contained date, improving accuracy for incidents that are resolved before they are formally closed.

Register Scrollbars

Risk and incident registers now render a single vertical scrollbar instead of multiple nested scrollbars, reducing visual clutter and making large registers easier to navigate.

Filter panels with many options are now scrollable instead of being clipped.