YARA-X 1.18.0 and 1.19.0 Bring CPU Limits and Bugfixes for Threat Hunters
The YARA-X pattern-matching tool has been updated with two new releases, adding a CPU-limit option and multiple bugfixes for malware analysts.
The YARA-X project has released versions 1.18.0 and 1.19.0, delivering a series of improvements and bugfixes for the open-source pattern-matching tool widely used by threat hunters and malware analysts. The updates, announced on June 28, 2026, focus on performance control and reliability.
Version 1.18.0 introduces three improvements and two bugfixes. The standout feature is a new command-line option, --cpu-limit, which allows users to restrict the amount of CPU resources YARA-X can consume. This is particularly valuable for analysts running scans on shared or resource-constrained systems, preventing the tool from overwhelming the host during intensive pattern-matching operations.
Version 1.19.0 follows closely with four improvements and two bugfixes, further refining the tool's stability and usability. While the specific details of these changes were not fully disclosed in the announcement, the rapid iteration indicates active development and responsiveness to community feedback.
YARA-X is the modern successor to the original YARA tool, designed for identifying and classifying malware by creating rules that match patterns in files or memory. It is a staple in incident response, digital forensics, and threat intelligence workflows. These updates ensure that analysts can continue to rely on YARA-X for efficient and controlled scanning.
The releases are available through the official YARA-X repository. Users are encouraged to upgrade to the latest versions to benefit from the performance improvements and bugfixes. The SANS Internet Storm Center highlighted the updates in its daily diary, noting their relevance for the cybersecurity community.