What's new
New checks and capabilities ship to SuiteRX constantly, and every plan gets them automatically, at no extra cost. The scan gets smarter over time.
July 2026
Authentication posture checks
The scan now reads your account auth config and flags missing SSO, weak password length, and long idle-session timeouts, mapped to SOC 2 access controls.
Segregation of Duties (SOX ITGC)
Detects roles that combine incompatible duties. For example, one role that can both create a vendor and pay bills, or post and approve its own journal entries. The finding an auditor asks about first.
Access-token posture
Flags integration tokens scoped to an Administrator role (a standing credential that bypasses 2FA and never expires) and long-lived tokens due for rotation.
Per-script AI code review
From any script finding, pull the live source and get a senior SuiteScript review: governance, performance, error handling, anti-patterns. Reviews your own scripts only; bundle-managed code is skipped.
Customization-focused scanning
The scan now separates your own customizations from publisher-managed bundle code and reports only what you can actually change. On a typical account that's a fraction of the scripts, the ones that matter.
Change management analysis
Distinguishes configuration edited directly in production (a person, live) from integration traffic, and surfaces it as a SOX change-management gap.
Framework anchoring & cited sources
Every finding now maps to a named control (SOX ITGC, SOC 2, NetSuite Leading Practices, SuiteScript best practices) and cites an authoritative source, so the report is audit-defensible.
Run the scan that keeps getting deeper.
Every check on this page is already in your scan.
Run your free scan