All Collections
What's new?
Release notes
Release Notes - April 25, 2023
Release Notes - April 25, 2023
Cerby Team avatar
Written by Cerby Team
Updated over a week ago

New Features

  • Our platform keeps getting even more user-friendly. The Cerby browser extension v1.0.172 (Firefox, Google Chrome, Microsoft Edge, and Safari) is now available with the feature to save your credentials at login.
    You now have an easy and secure way to add accounts to Cerby when accessing an application manually through a login page using a web browser. Stay tuned because this is just the beginning.

  • Talking about improvements. After reading these release notes, you’ll surely want to update your Cerby mobile app. The versions v1.0.79 for Android and v1.0.23 for iOS are now available with the following features:

    • A brand new account details screen where you can see the following:

      • Your login credentials

      • The verification codes when two-factor authentication (2FA) is configured and managed by Cerby

      • The QR code scanner to configure 2FA managed by Cerby

      • The members and teams with access to the account

      • The option to share an account with other workspace members and teams

    • Secrets are here! You can now view the secret details screen with the following information:

      • The name and body of the secret

      • The file attachments

      • The members with access to the secret

      • The last modified and added dates

      With Secrets supported, you can also:

      • Download and view attachments.

      • Share a secret with other workspace members and teams.

  • We have good news for IT admins! They can now automatically invite new users to join a tenant or remove them by performing provisioning and deprovisioning events in their identity provider (IdP). These events propagate from group assignments in the IdP to teams in Cerby.

  • We've been busy flexing our security muscles and have implemented the Proof Key for Code Exchange (PKCE) protocol in the Cerby browser extension and mobile app. The goal is to protect all of our users against authorization code interception attacks. This protocol is available in the following versions:

    • Cerby browser extension v1.0.167 and subsequent versions

    • Cerby mobile app v1.0.79 for Android and v1.0.23 for iOS, and subsequent versions

    So, next time you use the Cerby browser extension or mobile app, know that an additional security layer is in place for the authorization process. This way, we ensure that login credentials are securely managed and protected from potential threats without affecting your user experience.

Security Fixes

  • A potential hijacking vulnerability in the Cerby mobile app for Android is fixed.

Did this answer your question?