What's New?

With the new Show in Sidebar ability, any Torq Interact-triggered workflow can now be launched directly from the sidebar. All Workspace members can now instantly access and execute critical processes without leaving the Torq app.

We've introduced a new integration for Akamai Application Security, along with new steps and improvements for existing integrations. For full details, check out the complete digest.

Workflows can now be triggered by a bulk action on Cases, such as Assign, Change state, Link, and Change severity.

The new Bulk action performed trigger enhances visibility into bulk operations, making it easier to audit activity, manage cases efficiently, and gain deeper operational insights.

Now you can view a structured table of cases associated with an observable, including key details like status, resolution reason and timestamps. Easily assess historical relevance and investigative impact from the observable view, with seamless navigation between related cases.

We’ve updated the case preview—now easier to scan at a glance!

Information like the case severity, category, and creation time is now more accessible and easier to read in both the case card and quick views.
Everything you’re used to is still there—just better organized, more intuitive, and quicker to navigate.

Automate the upkeep of your Workspace and Organization's Custom Roles with Torq's newest Steps! Streamline role management and autonomously manage permissions and access using the Create, Update, and Delete Custom Role Steps within your Workflows.

Configure inactivity timeout and session expiration settings in the new Security section of the Settings page, enhancing Workspace security. Ensure your Workspace's users are automatically logged out after inactivity and define a time limit for all sessions, reducing the risk of unauthorized access.

You can now use the Set case management SLA remaining time display step to customize how SLA (Service Level Agreement) times are shown—either as time remaining or time elapsed. This setting is applied at the workspace level, ensuring a consistent display format for all users.

When viewing a case, users can quickly identify which time format is used and better assess the case’s urgency.

For more details, refer to our Knowledge Base.

We've introduced new integrations for Azure DevOps, Fact24, Google Search, Kaspersky, OSV, and VulDB, along with new steps for existing integrations and new templates. For full details, check out the complete digest.

You can now proactively monitor and resolve Runner-related issues with Torq’s diagnostic collector. This enhanced visibility into your Runners’ health expedites troubleshooting and improves automation reliability. Make sure to update Runners to v25.06.4.

The Step Runner page also now displays additional metadata such as each runner’s creation time, creator, status, description, type (K8s or Docker), and version.

Streamline data presentation with the display table element—now available in Torq Interact. Embed tables directly into your Torq Interactions, enabling real-time data display from securely exposed workspace variable tables and JSON tables.

We've introduced new integrations for Scanner, Transmit Security, Veeam ONE, Veeam Recovery Orchestrator, and Zabbix, along with new steps for existing integrations. For full details, check out the complete digest.

You can now use AI to auto-generate the Send an HTTP request step parameter values. This allows you to rapidly configure requests and minimize the time spent integrating third-party APIs.

If you don't see this feature, your organization may not have opted into AI.

Use the AI Task operator to enable no-code implementation of LLMs directly within workflows, transitioning from static, deterministic workflows to dynamic, AI-driven ones.

Streamline SecOps processes with AI, enabling countless use cases with just a drag of the operator.

If you don't see the new AI Task operator, it may be because your organization has opted out of Torq AI features. Please contact Torq support if you have not opted out and still don't see the feature.

Unlock the power of complete flexibility with Torq's Custom Integration Builder, enabling seamless connections to any service. By creating both step and trigger integrations, you can tailor & edit integrations to meet your exact needs and easily share them within your organization.
​
Go to Build > Integrations > Create New > Integration to try it now!

You can now save enrichment data, such as results from a threat intelligence service or internal business context, directly with the observable. This ensures the information is always readily available to anyone reviewing the observable, whether part of a case or on its own.

There are two ways to add enrichment data:

• Manually: Enter enrichment data when adding or viewing the observable from the Observables tab within a case.
• Automatically: Use the Enrichment optional parameter in the Create observable or Add observable to a case steps. Use the Update observable enrichment step to add or modify enrichment information anytime.

You can now auto-generate resolution details for your cases, allowing you to minimize the time spent manually summarizing case investigation findings.

Use Socrates to generate details about a case's closure or resolution based on a comprehensive analysis of all relevant case data.

Additional information is available in our knowledge base.

To perform additional analysis, you can export selected cases to a CSV file.

Apply filters to display only the cases you’re interested in, then click the Export All Filtered Cases icon to export them easily.

Additional information is available in our knowledge base.

With our new Loop experience, building Loops is more intuitive than ever! Within the new Loop UI, you can easily switch between types and modes, add next-step operators, and conveniently rename Loop values and keys.

Torq’s custom steps offer unparalleled flexibility to meet your organization’s unique needs. Now, you can share a workflow with custom steps or custom integrations, and they’ll automatically be included and available in the destination workspace.