12 releases

What's new in Clovra

Every feature, improvement, and fix — shipped fast, documented transparently.

v0.12.0Mar 28, 2026Latest

Auditor Comment System

Auditors can now leave comments on shared reports with identity verification and real-time interaction.

FeatureComment threads on shared audit reports with auditor identity badges
FeatureReal-time comment notifications for report owners
ImprovementShare link page now shows interactive comment sections per finding
v0.11.0Mar 22, 2026

Multi-Framework Compliance

Full support for SOC 2, ISO 27001, HIPAA, PCI-DSS, and CIS Controls v8 with plan-gated framework selection.

Feature5 compliance frameworks mapped to all 26 controls
FeatureFramework filter bar in gap report — filter controls by standard
FeaturePer-framework coverage bars in PDF Executive Summary
ImprovementOnboarding now includes multi-select framework picker
ImprovementSettings page: target frameworks card with plan-gated toggles
v0.10.0Mar 15, 2026

Remediation Playbooks & Timeline Planner

Step-by-step fix guides for every control and a dedicated timeline dashboard for tracking your path to audit readiness.

Feature26 remediation playbooks: GitHub (10), AWS (11), Google Workspace (5)
FeatureInteractive timeline page with 4 phases: Critical Fixes, Policy, Evidence, Audit Prep
FeatureGantt-like progress bars with estimated ready date
ImprovementGap report: 'How to fix' expandable section per failing control
ImprovementDashboard mini widget: completion %, current phase
v0.9.0Mar 8, 2026

Automated Evidence Collection

Scan results are now auto-saved as evidence snapshots with sensitive data masking. No more manual screenshots.

FeatureAuto-generated JSON evidence per control after every scan
FeatureSensitive data masking: tokens redacted, emails partially masked, keys truncated
ImprovementEvidence counter shows manual vs auto breakdown
ImprovementPrevious auto-evidence replaced on each new scan (keeps latest only)
FixEvidence API now supports ?type and ?autoGenerated filters
v0.8.0Mar 1, 2026

Scheduled Scans & Drift Detection

Set it and forget it. Auto-scan on a schedule with email notifications and regression tracking between scans.

FeatureDaily/weekly/monthly auto scans via Vercel Cron (plan-gated)
FeatureDrift detection: regression, improvement, and new control tracking
FeatureEmail notifications on scan completion with score delta
ImprovementDashboard 'Recent Changes' card: regressions (red), improvements (green)
ImprovementGap report: drift indicator badges per control
v0.7.0Feb 22, 2026

AI Policy Generation

Generate 8 SOC 2 policies personalized to your company using Claude. Access Control, Incident Response, Change Management, and more.

Feature8 AI-generated SOC 2 policies via Claude API (claude-sonnet-4-6)
FeaturePDF download per policy
ImprovementPolicies personalized to company context: industry, team size, integrations, scan results
FixMock mode for development without API balance
v0.6.0Feb 15, 2026

Google Workspace Integration

Scan your Google Workspace for compliance gaps: 2-step verification, admin counts, suspended users, third-party apps, and password policy.

FeatureGoogle Workspace OAuth connect flow (Admin SDK Directory API)
Feature5 new compliance controls for Google Workspace
ImprovementIntegrated into manual and scheduled scans
ImprovementPlan-gated: Growth and Scale only
v0.5.0Feb 8, 2026

Auditor Share Links & Evidence Locker

Share a read-only compliance snapshot with your auditor. Upload and organize evidence files per control.

FeatureRead-only shareable link for auditors — no account required
FeatureEvidence Locker: file upload per control with Supabase Storage
FeatureAudit Package Export: ZIP with PDF + evidence (Scale plan)
ImprovementShare link management page with create, copy, revoke, view count
ImprovementPlan-gated evidence limits per control
v0.4.0Feb 1, 2026

10-Page PDF Report

Auditor-grade PDF with risk heat map, framework cross-reference, cost-benefit analysis, and TSC coverage map.

Feature10-page PDF report generated with @react-pdf/renderer
FeatureRisk Heat Map: 3x3 Impact x Likelihood grid
FeatureCost-Benefit Analysis per failing control
FeatureSVG sparkline trend chart in Executive Summary
ImprovementPreview mode for Free plan with watermark and upgrade CTA
v0.3.0Jan 25, 2026

AWS Integration & Remediation Tracker

11 AWS compliance controls and an interactive checkbox system to track your remediation progress.

FeatureAWS IAM/S3/CloudTrail/RDS/EC2/CloudWatch scanning (11 controls)
FeatureAES-256-GCM encrypted AWS secret key storage
FeatureRemediation Tracker: checkbox UI with progress bar per control
ImprovementScore calculation now uses impact-weighted averages
v0.2.0Jan 18, 2026

Billing & Permissions

LemonSqueezy 4-tier billing, centralized plan permissions, and the invitation code system.

FeatureLemonSqueezy integration: Free, Starter, Growth, Scale plans
FeatureCentralized PLAN_LIMITS permission system
FeatureInvitation code gating with admin management
FeatureAdmin panel: members list, invitation codes, waitlist
ImprovementSubscription banners: trial, past due, canceled states
v0.1.0Jan 10, 2026

Initial Launch

Clovra goes live with GitHub scanning, gap analysis, and the core dashboard experience.

FeatureGitHub OAuth integration with 10 compliance controls
FeatureGap analysis with weighted scoring and per-control descriptions
FeatureDashboard with mobile responsiveness and skeleton loading
FeatureGoogle OAuth authentication via NextAuth.js
FeatureMulti-field onboarding modal

Building fast, shipping faster.

Start your SOC 2 journey today — we ship new features every week.

Start free scan →