SaaS: Sysdig Secure Release Notes

Supported Web Browsers

Sysdig supports, tests, and verifies the latest versions of Chrome and Firefox. Other browsers may also work but are not tested in the same way.

January 13, 2026

Registry Scanner v0.11.0

Enhanced Image Filtering Capabilities

Improved image filtering functionality with expanded filter limits to support larger registries and more complex filtering requirements. This enhancement allows for more comprehensive control over which container images are included in vulnerability scanning workflows.

Filter limit increases:

• config.filter.maxRepositoriesPerRegistry: Increased from 10,000 to 20,000 repositories per registry
• config.filter.maxTagsPerRepository: Increased from 50 to 100 tags per repository
• config.filter.maxAgeDays: Extended from 365 days (1 year) to 1,825 days (5 years) for image age filtering Refer to chart documentation for more details.

Security Updates

Updated dependencies to address the following vulnerabilities:

• CVE-2025-4598

January 12, 2026

KSPM Collector v1.39.17

Security Updates

Updated dependencies to address the following vulnerabilities:

• CVE-2025-61727
• CVE-2025-61729

January 5, 2026

Risk Spotlight (In-Use) for Non-Kubernetes Containers

Sysdig has expanded Risk Spotlight (In-Use) prioritization to support non-Kubernetes container workloads. You can now identify which packages are actively loaded at runtime for bare containers (Docker and Podman) running on Linux hosts protected by the Sysdig Host Shield.

This enhancement allows you to reduce vulnerability noise and prioritize remediation efforts for your entire Linux ecosystem, including orchestrators such as Nomad or Mesos, by focusing on the vulnerabilities that are actually executable in production.

For more information, see Risk Spotlight.