The AI agent governance problem nobody has tools for yet
Your IT stack was designed around humans. Your AI agents are not humans. Here is what that gap actually looks like in production, and the control framework that names it.
Releases¶
Read about the latest changes to Thalian.
Compliance frameworks — NIST CSF 2.0 and ISO 42001 mapped, Trend chart plots all four
The Compliance page now covers four frameworks side-by-side: SOC 2, ISO 27001, NIST CSF 2.0, and ISO 42001. The Compliance Trend chart plots all four framework scores over time, so security teams can see at a glance which posture is moving and which framework is dragging.
May 2026 — MCP action tools, Okta AI agent detection, AI chat improvements
MCP server v1.1.0 adds write-scope action tools; Okta AI agent principals now sync as first-class non-human identities; AI chat can now act on grouped findings and remove admin roles.
Attack Surface Map, login geolocation, grouped findings, and Slack App Directory
New interactive threat visualization, IP-based login context, dramatically less finding noise, and Thalian now installs directly from the Slack App Directory.
GitLab, PingOne, Datadog, recurring access reviews, and remediation playbooks
Three new integrations, 400+ detection rules, recurring access reviews with PDF evidence export, remediation playbooks, cross-platform offboard cascade, and Claude Opus 4.7.
April 2026: bulk access reviews, FAIR risk scoring, and integration error UX
Thalian now supports bulk decisions in access review campaigns, a FAIR-aligned entity risk model, and smarter integration error handling.
UX audit: landing, demo, and signup improvements
UX improvements across the landing page, demo experience, and signup flow based on a full product audit.
316 detection rules, Zoom and Box integrations, cross-platform compound findings
Thalian's detection engine nearly doubled — from 173 rules to 316 — with new integrations, deeper platform analysis, and findings that require 3+ connected platforms to surface.
GCP IAM sync fixes and analysis reliability improvements
GCP IAM sync now works reliably across all GCP organization configurations, and the analysis engine handles edge cases that previously caused silent data loss.
npm supply chain hardening
In response to the March 30 Axios npm supply chain attack (CVE pending, attributed to North Korean threat actor UNC1069), we audited all dependencies and confirmed Thalian is not affected — axios is not in our dependency tree.