We are pleased to announce the release of MetaDefender Core v5.15.0, along with updates to MetaDefender Distributed Cluster. This release introduces significant enhancements focused on deeper integration, streamlined operations, improved system feedback, and greater deployment resilience. These improvements help security and infrastructure teams maintain stronger control over file security workflows.
Whether you are integrating MetaDefender Core into a complex environment or optimizing an existing deployment, version 5.15.0 delivers capabilities that accelerate time to value while supporting performance, compliance, and availability requirements.
Operational Efficiency and Compliance Enhancements
Support for CIS Level 2
MetaDefender Core now supports CIS Level 2 system on Ubuntu 22.04. This enables organizations to meet more rigorous compliance requirements in regulated or high-assurance environments. Support for additional systems is planned for future releases.
Local User Management via REST API
MetaDefender Core now supports local user management via the REST API when integrated with My OPSWAT Central Management. This enhancement allows administrators to automate user account provisioning and role assignments across distributed environments, ensuring better alignment with centralized identity management practices.
Scan Execution Profiles for Adaptive Sandbox
MetaDefender Core now supports scan execution profiles for the Adaptive Sandbox engine. Users can choose from predefined profiles or create custom ones to optimize scanning behavior. This flexibility helps tailor performance and detection depth to meet specific operational needs, such as high-throughput workflows or targeted threat analysis.
Statistics by Block Reason and Rule
Administrators can now view statistics based on block reasons and policy rules, providing a more detailed view of file handling outcomes. This improvement goes beyond simple verdict summaries, helping teams better understand what policies are driving actions and enabling more informed tuning of security workflows.
Strengthened Security. System Awareness. Better Configuration
System Specification Warning at License Activation
MetaDefender Core now displays a warning if the system does not meet the recommended hardware specifications. This post-activation check helps administrators verify whether their environment is properly sized. While continuing with the current setup is allowed, doing so may lead to performance issues or instability under certain workloads.
Post-Action Triggers Scoped to Root Archive Files
To improve processing efficiency, post-action triggers, such as copying or quarantining files, now apply to root archive files. This refinement avoids unnecessary processing of nested archive layers and aligns more closely with typical workflow logic.
Force Update for Local Folders
When operating in offline or restricted environments, customers can now apply updates from local folders without requiring additional manual steps. This streamlines patch and engine update workflows in air-gapped deployments.
Custom Field Configuration
MetaDefender Core now allows users to query specific system metrics, such as CPU load thresholds, via customizable parameters in the REST API. This enables more granular control over the data returned in API responses, allowing monitoring systems to retrieve only the operational metrics relevant to their use case.
Engine Configuration Export and Import
MetaDefender Core now allows users to export engine configurations including status and advanced settings and import them into another instance. This feature helps reduce the time and effort required when adding new deployments or replacing existing instances. By replicating engine setups quickly and accurately, teams can scale more efficiently and maintain configuration consistency across environments.
PostgreSQL Upgrades
The PostgreSQL database has been upgraded to enhance long-term stability and performance. Additionally, administrators can now configure HTTPS during the initial deployment process, rather than post-installation. This simplifies secure setup and reduces deployment time.
MetaDefender Distributed Cluster Key Enhancements
GZIP and Base64 Encoding Support
MetaDefender Distributed Cluster now supports both GZIP and Base64 encoding for client requests to the API Gateway. This reduces bandwidth consumption and improves transfer efficiency across distributed environments.
Paused Scheduled Updates for Engines
Users can now temporarily pause scheduled updates for engines from MetaDefender Distributed Cluster. This is particularly useful during high-throughput periods or critical file processing workflows, where avoiding interruptions is essential.
Hash Lookups Support via API/GET
MetaDefender Distributed Cluster now supports GET by hash to check the status of files currently being scanned, using the optional include_InProgress flag.
Why This Release Matters
As file-borne threats grow more sophisticated and infrastructure becomes increasingly distributed, organizations need security tools that are adaptable, transparent, and easy to scale. MetaDefender Core v5.15.0 addresses these needs with updates that:
- Strengthen compliance with support for CIS Level 2 benchmarks
- Reduce operational friction through runtime configuration updates
- Simplify deployment with engine export and import functionality
- Improve threat visibility with statistics by block reason and rule
- Expand detection flexibility via Adaptive Sandbox execution profiles
- Enhance distributed performance with GZIP and Base64 encoding
- Improve scan pipeline visibility with hash lookup for in-progress files
Next Steps
Ready to get started with MetaDefender Core v5.15.0? Check out these helpful resources:
- Visit opswat.com/products/metadefender/core
- Upgrade to MetaDefender Core v5.15.0
- Upgrade to MetaDefender Distributed Cluster 2.1.0
- Access release note
Have other questions? Reach us at support@opswat.com
