Roadmap

High-level product roadmap for ThreatWeaver across three time horizons.

Timeline Overview

Legend: Active items are highlighted. Sections are color-coded by module.

Focus: ship and stabilize existing features, improve detection accuracy, close compliance gaps.

Initiative	Module	Description
AppSec Scanner Accuracy	AppSec	Continue reducing false positives through heuristic tuning (H1-H16 rules) and AI validation. Target: 95%+ true positive rate across all OWASP categories.
CI/CD DAST Integration	AppSec	Ship `appsecCiScan` API (3 endpoints already built) to enable triggering scans from CI/CD pipelines (GitHub Actions, GitLab CI, Jenkins).
Compliance Report Export	Exposure Mgmt	PDF/CSV compliance reports mapped to PCI-DSS, SOC 2, ISO 27001, and OWASP frameworks. Scheduled and on-demand generation.
Cloud Security MVP	Cloud Security	Complete the CSPM integration for AWS, Azure, and GCP. Ship container vulnerability scanning and CIS benchmark scoring.
Identity Security MVP	Identity	Ship Active Directory and Entra ID connectors. Deliver attack path analysis for Kerberoasting, DCSync, and Golden Ticket scenarios.
AI Security Module	AI Security	AI model inventory, risk classification, and governance policy engine for organizations deploying LLMs.

Focus: expand detection capabilities, add new scanning modalities, and deepen integrations.

Initiative	Module	Description
SAST Integration	AppSec	Add static analysis capabilities to complement DAST scanning. Correlate SAST findings with DAST runtime evidence for higher confidence.
EASM (External Attack Surface Management)	Exposure Mgmt	Automated discovery of internet-facing assets, subdomains, exposed services, and shadow IT.
Infrastructure Pentesting	AppSec	Extend scanner agents to test network services, SSH, FTP, SMB, and database ports beyond web applications.
SBOM and Supply Chain	Exposure Mgmt	Software Bill of Materials tracking with drift detection, dependency vulnerability correlation, and license compliance.
Advanced Reporting	Platform	Customizable report templates, scheduled report delivery, executive dashboards with trend comparison.
Okta and Google Workspace Connectors	Identity	Expand identity source coverage beyond Active Directory and Entra ID.

Focus: market positioning, partner ecosystem, and next-generation capabilities.

Initiative	Module	Description
Gartner MQ Listing	Business	Position ThreatWeaver in the Gartner Magic Quadrant for Vulnerability Risk Management and Application Security Testing.
MSP Partner Program	Business	Multi-tier partner program for Managed Security Service Providers with white-label options, usage-based billing, and partner portal.
Mobile Application Pentesting	AppSec	Extend scanner agents to test iOS and Android applications, including API backend testing and mobile-specific vulnerability classes.
Autonomous Remediation	AI Labs	AI-driven auto-fix for common vulnerability patterns (misconfigured headers, missing security controls, outdated dependencies).
Threat Intelligence Feeds	Exposure Mgmt	Ingest and correlate with third-party threat intel feeds (MITRE ATT&CK, AlienVault OTX, GreyNoise) for contextual risk enrichment.
SOC Integration	Platform	Bi-directional integration with SIEM/SOAR platforms (Splunk, Sentinel, Phantom) for automated incident response workflows.

Milestone	Date	Outcome
Multi-tenant architecture	Mar 2026	Schema-per-tenant isolation, RBAC v2, module gating
59-agent scanner pipeline	Apr 2026	Full 6-phase pipeline with AI validation and chain replay
Distributed scan sensors	Mar 2026	Docker agents for private network scanning via WebSocket tunnels
AI Labs module	Mar 2026	Fix planner, ticket writer, executive summary, root cause analyzer
VFP Fix Planner	Mar 2026	Work package grouping, team assignment, SLA policies, ticket integration
WeaverScore algorithm	Mar 2026	Composite risk scoring with CVSS + EPSS + asset criticality