Custom Assessment and Remediation Release 2.6.3
November 06, 2025
Integration with GitLab
You can now import scripts from your private or public GitLab repositories into CAR. This feature enables you to use these imported scripts from the repositories to create scripts and execute them on your assets from CAR.
Key Capabilities
- Connect to GitLab:
Easily connect your private or public GitLab repositories to CAR by providing the repository details, such as URL, path, and access token, and CAR automatically connects to your repository. - Keep Scripts up to Date:
Keep your scripts updated by syncing them with GitLab on demand or automatically.
To access this feature, create a new script and select Import from GitLab when providing the script details.
For more information, refer to CAR Online Help.
Enhanced Script Categorization in the Library
We have enhanced how scripts are categorized in the Library. Previously grouped under broad categories, scripts are now further classified into sub-categories based on the specific actions they perform or the outcomes they are intended to achieve. This enhancement makes it easier and faster to locate the scripts you need.
You can also navigate in the Library using the navigation path.
New QQL Tokens
The following table provides the new QQL tokens added in this release:
| Token | Tab | Description |
|---|---|---|
| script.isImportedFromGitLab | Scripts | Use this token to search scripts that are imported from a GitLab repository.
Supported values: Example: |
| script.isGitLabAutoSyncEnabled | Scripts | Use this token to search GitLab-imported scripts that have auto-sync enabled.
Supported values: Example: |
| script.gitlabSyncStatus | Scripts | Use this token to search GitLab-imported scripts based on their sync status.
Supported values: Example: |
| script.isImportedFromGitLabPublicRepo | Scripts | Use this token to search scripts imported from public GitLab repositories.
Supported values: Example: |