# #43 - Aikido Infinite (Continuous Pentesting), VM Reachability Diagrams & IDE full scan ### Features * [Aikido Infinite (Continuous Pentesting)](https://www.aikido.dev/blog/introducing-aikido-infinite): Automatically re-(pen)test your app after every code change. It focuses a Pentest on what actually changed and validates exploitability, so you get fewer false positives and faster fixes. * [Reachability diagrams for Cloud VM’s:](https://help.aikido.dev/virtual-machine-scanning/misc/virtual-machine-reachability-analysis) See whether a finding is actually exploitable by visualizing how it is reachable in your cloud environment, including the network path, entry points, and exposed ports. * [Full Workspace Scan everywhere + IaC scanning in VS Code](https://help.aikido.dev/ide-plugins/features/full-workspace-scan-in-ide): Full Workspace Scan is now available across IDEs (VS Code, Jetbrains, Visual Studio, Eclipse, Cursor, ..), with IaC scanning for VS Code. ### **Aikido Intel - Malware & Vulnerability Database** Our research team has discovered over [#158 new vulnerabilities](https://intel.aikido.dev) over the last two weeks! We published the [State of AI Security Development 2026](https://www.aikido.dev/state-of-ai-security-development-2026) report, with fresh data on how teams are using AI and what it’s changing for AppSec. ### Improvements * General - [Github now supports ignoring security issues and code quality from within the PR](https://help.aikido.dev/pr-and-release-gating/github-ci-pr-gating-via-aikido-dashboard#ignore-issues-directly-from-pr-comments) * Intel - [Added package health for PHP and Malware detection for skills.sh, Go, Rust, and Wordpress plugins](https://intel.aikido.dev/malware) * Autofix - [ELS libraries for .NET](https://help.aikido.dev/aikido-autofix/autofix-for-open-source-deps-extended-lifecycle-support) * Container - [Include/exclude images by pattern](https://help.aikido.dev/container-image-scanning/cloud-provider-registries/configuring-registry-scan-scope) * Cloud - [Kubernetes images scanning now supports multiple tags of an image for the same cluster](https://help.aikido.dev/cloud-scanning/kubernetes-cluster-scanning/kubernetes-in-cluster-image-scanning) * AI Pentest - File upload support for agent browser * AI Pentest - [SMS based two-factor authentication, OAuth Password Grant](https://help.aikido.dev/pentests/setting-up-authenticated-testing/handling-sms-verification) * Code Quality - [Autofix will suggest Code Quality fixes](https://help.aikido.dev/pr-and-release-gating/aikido-ci-gating-functionality/autofix-suggestions-and-inline-commenting-for-pr-checks) * Zen * Release of [Go beta](https://www.notion.so/Changelog-Items-31-01-27-02-3185cb88a38280bfbceec805119cafa7?pvs=21), and [Ruby](https://github.com/AikidoSec/firewall-ruby) got it first full release * [IDOR blocking in NodeJS](https://help.aikido.dev/zen-firewall/zen-features/idor-protection-with-zen-firewall) * Releases for [Dotnet](https://github.com/AikidoSec/firewall-dotnet/releases), [Java](https://github.com/AikidoSec/firewall-java/releases), [Python](https://github.com/AikidoSec/firewall-python/releases), [PHP](https://github.com/AikidoSec/firewall-php/releases), [Ruby](https://github.com/AikidoSec/firewall-ruby/releases), [Golang](https://github.com/AikidoSec/firewall-go/releases) and [Node](https://github.com/AikidoSec/firewall-node/releases) * Integrations - [Jira now has support for setting Custom Fields](https://help.aikido.dev/getting-started/task-management-systems/map-aikido-data-to-jira-custom-fields) * Integrations - [Updated Slack alerts with direct actions from Slack and improved detail view](https://help.aikido.dev/miscellaneous-info/setting-up-aikido-changelog-notifications-in-slack-and-teams) * Integrations - [Added Comp AI for Governance, Risk, and Compliance](https://integrations.aikido.dev/integrations/comp-ai) * API - [Save pull request config](https://apidocs.aikido.dev/reference/saveprchecksconfiguration) for Azure, Bitbucket and Github * API - [Adjust group severity](https://apidocs.aikido.dev/reference/adjustgroupseverity) * API - [Add subdomains to attack surface domains](https://apidocs.aikido.dev/reference/addsubdomain) --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://help.aikido.dev/changelog/q1-2026/43-aikido-infinite-continuous-pentesting-interactive-vm-reachability-diagrams-and-ide-full-scan.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.