Where TridentStack Control is headed
The features we are working toward, grouped by how soon you can expect them.
This reflects our current priorities and thinking, not a commitment or a delivery schedule, and it can change. For what is already live, see the changelog.
Now
What we are focused on in the near term.
Free CVE and CISA-KEV lookup tool
A free, no-signup tool to look up any CVE: severity, exploit-prediction score, affected products, and whether it is actively exploited (CISA Known Exploited Vulnerabilities).
Next
Planned and coming after that.
Ubuntu Pro and ESM coverage visibility
See at a glance which Linux machines have Ubuntu Pro and ESM coverage, and where you have a security-maintenance gap.
Container host awareness
Recognize Docker, containerd, Podman, and Kubernetes hosts: report runtime versions and flag updates that could disrupt running containers.
Later
Directions we are exploring.
Unattended-upgrades visibility
Surface which Linux machines have unattended-upgrades enabled and flag when it conflicts with your TridentStack policy.
Snap and Flatpak update visibility
Track Snap and Flatpak application versions across your fleet alongside system packages.
Kernel livepatch status
Report whether live kernel patching is active, which patches are applied, and how long since the last full reboot.
Fleet-wide package pinning
Hold or pin specific packages across your whole fleet from the console.
Repository and source management
Manage package repositories, signing keys, and sources centrally across your fleet.
Firmware updates
Report firmware versions and coordinate firmware updates across your fleet.
Native mobile app
A native iOS app with push notifications for agent and fleet alerts.
Self-hosted relay for restricted networks
A lightweight on-prem relay so endpoints in air-gapped or tightly restricted networks can be managed through a single outbound connection. Built for OT, manufacturing, and regulated environments.
Need something that is not here yet? Tell us what would help.