top of page
ZEB SVG WHITE.png

What's New In Zerberus- June 2025

Updated: Jul 2

In June, our focus was simple: help fast-moving SaaS teams reduce compliance toil and strengthen software supply chain visibility. From automated policy generation to enriched SBOM intelligence, this month’s updates are all about accelerating trust without draining your time.


AI Assisted Policy Generator (Beta)

Module: ComplAI


policy generator

Writing policies from scratch is a time sink. Most teams either patch together templates or delay documentation until audits loom. Our new AI-assisted policy tool solves this.

What to expect:


  • A guided intake to capture your operational context

  • Automatically generated policies covering Access Control, Encryption, Incident Response and more

  • Output in Markdown, PDF, or Word formats

  • Built in reviewer and approval workflow


Ideal for: First-time compliance journeys and internal refreshes alike. It is currently in closed beta. If you would like early access, you can request it here.



Introducing ZSBOM (Zerberus Software Bill of Materials)

Module: Trace-AI


software supply chain

Static SBOMs no longer cut it. ZSBOM transforms the Software Bill of Materials into a living source of insight for your engineering and compliance teams. Trace-AI now supports automated SBOM generation and contextual enrichment for open-source dependencies.


What to expect:


  • Instant SBOM generation for Python and Node.js repositories

  • Risk tagging for vulnerable, deprecated or inactive packages

  • SBOMDiff to track changes between builds and releases

  • Export options in SPDX and CycloneDX formats


Trace-AI positions your team to proactively manage software supply chain risks while remaining audit-ready at all time. Trace-AI now supports automated SBOM generation and contextual enrichment for open-source dependencies.our stack, team size, and security posture.


Improvements Implemented:


We made several quality-of-life enhancements based on customer feedback.

  • GitHub integration now syncs five times faster

  • Audit logs can be toggled between local time and UTC

  • Statement of Applicability preview now aligns with ISO 27001:2022 clause format

  • Minor bugs resolved across policy editor, export formatting and control mapping filters


Coming Soon:


We are actively testing and preparing the following for release in the next cycle:

  • Vendor Risk Matrix to assess, rate and track third-party risk

  • Just-in-Time access review workflows for Google Workspace

  • Container image SBOM support in Trace-AI

Here is what we shipped.


That's it for this month!

 
 
 

Commentaires

bottom of page