CHECKMARX ONE 3.50 IS ABOUT CONTROL, NOT JUST MORE FINDINGS
Checkmarx One 3.50 is not a volume driven release. It is designed to help large enterprises control how security data flows through their delivery, governance, and reporting systems.
Across SAST, SCA, DAST, IaC, container security, and analytics, the focus is consistent: improve accuracy, reduce operational friction, and align security workflows with how enterprises actually manage risk.
For security and quality leaders running regulated, multi team DevSecOps programs, this release strengthens posture without slowing delivery.
SECURE AND STANDARDIZED CONNECTIVITY WITH ZROK V1
CxLink has been upgraded to Zrok v1, updating the underlying connectivity and security stack.
Enterprise impact:
- Reduced exposure for hybrid and internal applications scanned from cloud hosted platforms
- Easier justification during vendor risk, zero trust, and architecture reviews
- Alignment with supported and current connectivity standards
Team impact:
- Fewer scan failures caused by unstable tunnels
- Faster onboarding for new teams without repeated security exceptions
This reduces operational risk in environments where connectivity itself is scrutinized.
USER CONTROLLED INCREMENTAL SAST SCANS FOR BRANCHES
Incremental branch scanning is now fully configurable in the UI.
Enterprise impact:
- Faster pipelines for large codebases without removing SAST gates
- Clear policy alignment by branch type, such as full scans for releases and incremental scans for features
Team impact:
- Faster feedback in pull requests
- Less pressure to bypass security due to performance concerns
This enables security at speed instead of security as a bottleneck.