Release v0.6.0

What's Changed

• chore: bump version to 0.6.0 (#94) (c95c024)
• feat: OpenSearch caching, resilience, and IOC Matches page (#93) (c017b50)
• feat(ui): overhaul (#92) (b145c11)

What's Changed

• feat(ui): overhaul by @TerrifiedBug in #92
• feat: OpenSearch caching, resilience, and IOC Matches page by @TerrifiedBug in #93
• chore: bump version to 0.6.0 by @TerrifiedBug in #94

Full Changelog: v0.5.0...v0.6.0

Release v0.5.0

What's Changed

• feat: add custom enrichment webhooks and UX improvements (#91) (98a2e43)
• feat: MISP integration for proactive rule generation (#90) (5e369fd)
• refactor: code simplification and logging security improvements (#89) (7f134c8)
• chore(deps-dev): bump @vitejs/plugin-react in /frontend (#81) (7fb7c32)
• chore(deps-dev): bump autoprefixer from 10.4.23 to 10.4.24 in /frontend (#83) (729ec27)
• chore(deps-dev): bump globals from 15.15.0 to 17.3.0 in /frontend (#84) (eb79caf)
• chore(deps-dev): bump jsdom from 27.4.0 to 28.0.0 in /frontend (#82) (8c17c20)
• chore(deps-dev): bump @types/node from 20.19.30 to 25.2.0 in /frontend (#85) (97a4ba7)
• chore(deps-dev): bump @types/react from 19.2.9 to 19.2.10 in /frontend (#79) (70734b5)

What's Changed

• chore(deps-dev): bump @types/react from 19.2.9 to 19.2.10 in /frontend by @dependabot[bot] in #79
• chore(deps-dev): bump @types/node from 20.19.30 to 25.2.0 in /frontend by @dependabot[bot] in #85
• chore(deps-dev): bump jsdom from 27.4.0 to 28.0.0 in /frontend by @dependabot[bot] in #82
• chore(deps-dev): bump globals from 15.15.0 to 17.3.0 in /frontend by @dependabot[bot] in #84
• chore(deps-dev): bump autoprefixer from 10.4.23 to 10.4.24 in /frontend by @dependabot[bot] in #83
• chore(deps-dev): bump @vitejs/plugin-react from 5.1.2 to 5.1.3 in /frontend by @dependabot[bot] in #81
• refactor: code simplification and logging security improvements by @TerrifiedBug in #89
• feat: MISP integration for proactive rule generation by @TerrifiedBug in #90
• feat: add custom enrichment webhooks and UX improvements by @TerrifiedBug in #91

Full Changelog: v0.3.0...v0.5.0

Release v0.4.0

What's Changed

• fix(security): remove unused import and avoid logging tainted error messages (6cfd4fe)
• chore: bump version to 0.4.0 (4bdb533)
• fix(security): resolve remaining CodeQL sensitive data logging alerts (ea630c5)
• fix(security): resolve CodeQL findings for log injection and code quality (677a770)
• fix(ui): add data freshness events to notifications and fix dashboard grid (c2c9315)
• refactor(dashboard): consolidate rule cards into single Rules card (3d1e2d0)
• feat(settings): add data freshness threshold fields to Health settings (6bf22f9)
• feat(types): add data freshness thresholds to HealthSettings (3d62b77)
• feat(notifications): add data_freshness_warning and data_freshness_critical event types (acdf70f)
• feat(health): add data freshness warning/critical thresholds (c7b83e4)
• refactor(config): remove API_KEY_RATE_LIMIT env var (577eddc)
• feat(security): make API rate limit configurable in Settings UI (a6810d9)
• feat: add rate limiting for API key authentication (22fd3c2)
• feat(health): add WebSocket live updates for health status (0eeba02)
• fix(alerts): remove incorrect UUID parsing in bulk delete (ef5ac62)
• fix(frontend): show startup page when backend returns 500 (f263d45)
• fix(security): add SSRF protection and sanitize error messages (58b4da3)
• fix(tests): update tests for disabled service health check and IOC title behavior (19e85ed)
• fix(test): use correct ioc_field_mappings format for IOC detection (b4324a2)
• feat(test): add pull mode test script with full setup automation (ba9ae66)
• feat(test): enhance push mode test script with full setup automation (1b858b0)
• fix(health): skip disabled services and fix AI provider display names (5ea90a3)
• fix(health): use consistent MISP display name in health status API (158eabf)
• fix(ui): normalize badge and dropdown sizing (6b9e88a)
• feat(ui): add bulk MISP export to alerts list (72c0b58)
• feat(dev): add test scripts for push/pull alert generation (a88c4bf)
• fix(ui): consistent icons for SigmaHQ and MISP buttons on Rules page (45a9034)
• fix(ui): improve alert clustering badge alignment (956e2b5)
• fix(ui): improve alert detail layout and MISP settings organization (73995fd)
• feat(notifications): add MISP sync failure notifications (f6cae25)
• fix(health): correct MISP capitalization on health page (3d7a4fc)
• fix(alerts): use misp_event_info for IOC alert titles (6fa2dda)
• fix(alerts): prevent duplicate alerts when Sigma and IOC both match (8b047ac)
• feat(ui): add alert type badges and filtering (ab73f64)
• feat(misp): add IOC cache eviction and false positive filtering (87c2458)
• fix(alerts): extract IOC matches from enriched log documents (ff15014)
• feat(enrichment): add MISP IOC cache lookup for Sigma alerts (b87a4b4)
• fix(scheduler): fix MISP auto sync execution and status tracking (3e1f7f4)
• fix(api): add IOCMatch schema to AlertResponse (74ce85e)
• fix(ti): add MISP handler to TI source health checks (c87aea4)
• fix(scheduler): add MISP sync job to scheduler startup (aa2159e)
• feat(ti): integrate IOC detection into Pull Mode (47f2a37)
• fix(ui): add missing IOC types to MISP sync filter (9bbdade)
• feat(ti): add synced_at timestamp to IOC index (3365a93)
• fix(misp): include all threat levels in sync defaults (1108964)
• fix(api): add IOC detection fields to IndexPattern schema (f97bc4b)
• fix(ti): correct MISP API response parsing for IOC sync (198f526)
• feat(ui): add Create MISP Event button to AlertDetail (33706e5)
• feat(ui): add Create MISP Event dialog component (3edd932)
• fix(ui): allow IOC detection for both Push and Pull modes (d6b4be2)
• feat(ui): add IOC Matches display to AlertDetail (6a4d771)
• feat(ui): add IOC Matches card component (73cd3a3)
• feat(ui): add MISP Sync Dashboard to TISettings page (ac3d868)
• feat(ui): add MISP Sync Dashboard component (583d94e)
• feat(ui): add IOC Detection tab to IndexPatternDetail (408d93b)
• feat(ui): add IOC Detection tab component (9a61f57)
• feat(api): add MISP sync, feedback, and IOC detection types (be3197f)
• style: fix import ordering in TI modules (b720ff3)
• feat(ti): export all IOC and MISP services from module (c727fa2)
• feat(api): add MISP feedback API endpoints (bdbd824)
• feat(ti): add MISP feedback service for sightings and events (cd767e8)
• feat(ti): add IOC query builder for Pull Mode (ae2fe38)
• feat(api): integrate IOC detection into log processing (a7f84ee)
• feat(ti): add IOC detector service for Push Mode (c282282)
• feat(api): add MISP sync API endpoints (57e3b56)
• feat(scheduler): add MISP IOC sync scheduled job (cfee356)
• feat(models): add IOC detection fields to IndexPattern (79cb590)
• feat(ti): add MISP sync service orchestrator (5601096)
• feat(ti): add OpenSearch indicator index service (e84ad2f)
• feat(ti): add Redis IOC cache for Push Mode detection (13f2b6b)
• feat(ti): add MISP IOC fetcher for bulk sync (1652ddc)
• feat(ti): add IOC data types for MISP sync (fa29b57)
• feat(misp): add lazy loading with backend pagination for IOCs (5b42107)
• feat(misp): convert import modal to dedicated page with improved UX (9e4c4ca)
• fix(misp): use dot separator for Sigma tag namespaces (e4775e3)
• fix(misp): include all threat levels in default filter (39568f8)
• fix(misp): use correct config key for TLS verification (a894495)
• amend ci docker workflow (5d5eafd)
• Adjust docker dev for misp testing (f0ec91d)
• fix(frontend): add QueryClientProvider wrapper (5e887ff)
• test(ti): add TI enrichment manager tests for MISP integration (73df71e)
• feat(misp): add MISP origin panel to rule detail page (c6e0521)
• feat: add MISP origin panel for rule details (9ef6981)
• feat: add MISP to rule source filter options (9f6618c)
• feat: add MISP import button to Rules page (c7bc952)
• feat: add MISP import modal component (70c83fa)
• feat: add MISP API client methods (8124285)
• feat: add MISP API endpoints for event browsing and import (f43ff69)
• feat: add MISP import service for event browsing (2e5bf28)
• feat: add Sigma rule generator for MISP IOCs (81c98c3)
• feat: add MISP integration schemas (f65dbba)
• feat: add migration for misp_imported_rules table (ae03464)
• feat: add MISPImportedRule model for import tracking (0b62812)
• feat: add MISP to RuleSource enum (29579dd)
• refactor: code simplification and logging security improvements (#89) (7f134c8)
• chore(deps-dev): bump @vitejs/plugin-react in /frontend (#81) (7fb7c32)
• chore(deps-dev): bump autoprefixer from 10.4.23 to 10.4.24 in /frontend (#83) (729ec27)
• chore(deps-dev): bump globals from 15.15.0 to 17.3.0 in /frontend (#84) (eb79caf)
• chore(deps-dev): bump jsdom from 27.4.0 to 28.0.0 in /frontend (#82) (8c17c20)
• chore(deps-dev): bump @types/node from 20.19.30 to 25.2.0 in /frontend (#85) (97a4ba7)
• chore(deps-dev): bump @types/react from 19.2.9 to 19.2.10 in /frontend (#79) (70734b5)

What's Changed

• chore(deps-dev): bump @types/react from 19.2.9 to 19.2.10 in /frontend by @dependabot[bot] in #79
• chore(deps-dev): bump @types/node from 20.19.30 to 25.2.0 in /frontend by @dependabot[bot] in #85
• chore(deps-dev): bump jsdom from 27.4.0 to 28.0.0 in /frontend by @dependabot[bot] in #82
• chore(deps-dev): bump globals from 15.15.0 to 17.3.0 in /frontend by @dependabot[bot] in #84
• chore(deps-dev): bump autoprefixer from 10.4.23 to 10.4.24 in /frontend by @dependabot[bot] in #83
• chore(deps-dev): bump @vitejs/plugin-react from 5.1.2 to 5.1.3 in /frontend by @dependabot[bot] in #81
• refactor: code simplification and logging security improvements by @TerrifiedBug in #89

Full Changelog: v0.3.0...v0.4.0

Release v0.3.0

What's Changed

• chore: bump frontend version to 0.3.0 for release (#88) (c4147d2)
• feat: Pull Mode Detection and UX Improvements (#87) (9b2551d)
• fix(ci): always build Docker images on tag push (#77) (554d69f)
• feat: production scaling improvements and UX enhancements (#76) (53fc870)
• feat(ci): add manual workflow dispatch with custom tag support (#75) (84751fb)
• Update README (daed54e)

What's Changed

• feat(ci): add manual workflow dispatch with custom tag support by @TerrifiedBug in #75
• feat: production scaling improvements and UX enhancements by @TerrifiedBug in #76
• feat: Pull Mode Detection and UX Improvements by @TerrifiedBug in #87
• chore: bump frontend version to 0.3.0 by @TerrifiedBug in #88

Full Changelog: v0.1.0...v0.3.0

Release v0.2.0

What's Changed

• fix(ci): always build Docker images on tag push (#77) (5b1dd4c)
• feat: production scaling improvements and UX enhancements (#76) (53fc870)
• feat(ci): add manual workflow dispatch with custom tag support (#75) (84751fb)
• Update README (daed54e)

What's Changed

• feat(ci): add manual workflow dispatch with custom tag support by @TerrifiedBug in #75
• feat: production scaling improvements and UX enhancements by @TerrifiedBug in #76
• fix(ci): always build Docker images on tag push by @TerrifiedBug in #77

Full Changelog: v0.1.0...v0.2.0

Release v0.1.0

What's Changed

• fix: add trailing newline before heredoc delimiter in release workflow (3fc3967)
• fix: use unique delimiter in release changelog generation (e4611d2)
• feat: permission improvements, correlation alerts, and audit logging (#73) (b50e781)
• feat: permission improvements, correlation alerts, and audit logging (#72) (321dafd)
• fix: sanitize remaining log injection in correlation service (#71) (5a141a2)
• feat: correlation rule improvements and platform enhancements (#70) (492c5c0)
• fix: lowercase Docker image names for GHCR compatibility (#69) (8584430)
• feat: Platform Improvements v3 - Clustering, Ownership, Correlation & More (#68) (8682fe7)
• perf: use native ARM runners for multi-arch Docker builds (#67) (f572825)
• fix: use correct column name for health metrics latency (#66) (8f4fd56)
• feat: Platform Improvements v2 - Reporting, Backup, and Rule Validation (#65) (cf924bc)
• Bug fixes and performance improvements (#64) (2e6178b)
• feat: UX improvements for correlation rules, alerts, and health monitoring (#63) (ab2916b)
• feat: alert management improvements and health monitoring enhancements (#62) (6a11b7c)
• feat: add configurable log level to reduce production logging noise (#61) (d1a65b6)
• fix: add alerts table migration and fix alert deletion logic (#60) (63f0dd5)
• fix: resolve SSO_ONLY attribute error and create missing Alert model (#59) (699abd6)
• fix: comprehensive security and UX improvements (#58) (d172a61)
• Feature/platform improvements 2026 01 27 (#57) (9576bd9)
• Platform Improvements - Health Metrics, ATT&CK Coverage, Bulk Operations, and UI Fixes (#56) (58d8542)
• fix: Create attack mappings during rule deployment (79ed86b)
• fix: Live Alerts Tooltip crash and full-width layout (7197f18)
• Merge branch 'main' of https://github.com/TerrifiedBug/chad (5047e83)
• fix: SSO CSRF error, health metrics, GeoIP crash, and SSL warnings (be2bbd7)
• fix: OpenSearch SSL verification and wizard improvements (#55) (e65011b)
• Merge branch 'main' of https://github.com/TerrifiedBug/chad (414b053)
• fix: add docker-entrypoint.sh to Docker build path triggers (#54) (8a87c0e)
• fix: add docker-entrypoint.sh to Docker build path triggers (9a76a88)
• Fix/bcrypt compatibility passlib (#53) (59c5a9e)
• fix: pin bcrypt to 4.3.0 for passlib 1.7.4 compatibility (#52) (59e5650)
• Feature/app url env config (#51) (2a6df7b)
• Feature/app url env config (#49) (28de669)
• Update compose (#48) (d95ba6c)
• Feature/docker build path filtering (#47) (9b306ea)
• fix: remove deprecated nh3 parameter and add smoke test (#46) (66f97d5)
• chore(deps): bump react-router-dom from 6.30.3 to 7.13.0 in /frontend (#29) (a892c85)
• chore(deps): bump tailwind-merge from 2.6.0 to 3.4.0 in /frontend (#38) (2a1866e)
• chore: upgrade to React 19 (09b9d14)
• chore: merge python-multipart update (75777d9)
• chore: merge authlib update (0f68682)
• chore: merge fastapi update (67cefbe)
• chore: merge lucide-react update (b9dec14)
• chore: merge dependabot update (70221c1)
• chore: merge dependabot update (cec3049)
• chore: merge dependabot update (0d986b8)
• chore: merge dependabot update (bfc61cd)
• chore: merge dependabot update (799ad23)
• chore: merge dependabot update (071ad8a)
• chore: merge dependabot update (6de0a69)
• test: fix CSRF token test mock (b6cdb08)
• fix: use npm ci in CI workflow to preserve lockfile (e5a5d76)
• fix: re-enable Docker caching now that lockfile is fixed (a5c7a25)
• fix: regenerate package-lock.json on Linux (176167a)
• fix: disable Docker cache for frontend build (e0e8e60)
• fix: expand .dockerignore to prevent macOS node_modules copy (f4f9ee8)
• feat: add manual trigger to Docker build workflow (231142a)
• fix: use canonical Docker build approach (6b72d64)
• chore: exclude platform-specific package-lock.json (7efb4e8)
• fix: regenerate package-lock.json in Docker build (4e7a1ac)
• fix: switch frontend to node:20-slim (Debian) (bdc7c25)
• fix: correct TypeScript type error in CSRF test (39c4a5f)
• revert: restore npm ci (breaks reproducibility workaround) (4ff40f7)
• fix: resolve CI failures (6c0a316)
• revert: switch back to python:3.11-slim base image (a4a42b4)
• feat: add manual workflow trigger to CodeQL (2242a40)
• chore: remove Trivy dependency scanning (e472d59)
• fix: reduce security alert noise (7f71b4f)
• fix: add Vitest type declarations for jest-dom matchers (f528079)
• fix: only run Trivy Docker scans on main branch (782149c)
• fix: improve Docker and Trivy workflow error handling (48efad9)
• fix: upgrade CodeQL to v4 and fix SARIF upload permissions (360fb6d)
• feat: add Dependabot version updates configuration (fb45eec)
• fix: comprehensive TypeScript error resolution for CI build (1174ed0)
• feat: production readiness improvements (1b5cb26)
• fix: enhance API error handling to validate error response format (a5d72b6)
• chore:packagelock (5ea5c12)
• chore: remove backend/docs from git tracking and add to gitignore (d1fbc58)
• feat: comprehensive production-readiness improvements (fb63f8a)
• fix: implement JWT token versioning and security enhancements (357d769)
• fix: resolve linting issues and add CSRF protection (694e9cc)
• fix: resolve all critical security issues and TypeScript errors (b0459d1)
• feat: comprehensive production-ready infrastructure and security enhancements (14e92fd)
• chore: remove test-results folder from git tracking (1d96169)
• chore: remove accidentally committed screenshot (7c8a7c3)
• refactor: move load-tests to tests/load for better organization (59b7aa4)
• fix: correct SyncResult attribute access in scheduled SigmaHQ sync (7ce6df5)
• feat: add last_edited_by to correlation rules (same approach as rules) (dd3257d)
• feat: add Last Updated column to correlation rules table (bced9c3)
• feat: move correlation rule activity panel to right side layout (5f8bf38)
• fix: add db.commit() after audit_log calls in correlation rules API (d92dce0)
• fix: correct CorrelationActivityPanel API query and remove unused imports (5b0e234)
• feat: add activity panel to correlation rule editor (20a6c09)
• feat: complete Phase 15 Task 7-9 (706b59b)
• fix: add change_reason to activity endpoint and remove debug logging (3956f45)
• fix: pass version_number instead of full RuleVersion object to ActivityPanel (e26e7fe)
• fix: revert version restore to last working state (d870a55) (4c90aaa)
• fix: include change_reason in activity data and ensure proper type handling (351645a)
• fix: add defensive type check for change_reason to prevent object rendering (6770138)
• fix: revert version restore to working implementation without change_reason (ef55c06)
• fix: properly extract change_reason from version object (21e8ff5)
• fix: prevent object rendering in version restore (3f8f8c7)
• fix: add TooltipProvider to pages using TimestampTooltip (c31f277)
• fix: wrap RuleEditor in TooltipProvider for tooltips to work (b03b5ee)
• feat: add UTC tooltip to rule editor 'Last updated' timestamp (0c6ac2c)
• fix: correct SigmaHQ sync notification implementation (639f322)
• fix: use Radix UI tooltip component for better UX (9124463)
• feat: send notifications on manual SigmaHQ sync (d269335)
• feat: add UTC tooltips to GeoIP database update timestamp (a529071)
• feat: add UTC tooltips to service health check timestamps (ff8b267)
• feat: add UTC tooltips to API key timestamps (cb7fa52)
• feat: add UTC tooltips to user creation dates (f29557b)
• feat: add UTC tooltips to rules tree view timestamps (4681b82)
• feat: add UTC tooltips to audit log timestamps (3804826)
• feat: add UTC tooltips to alert detail timeline (5c8cc72)
• feat: add UTC tooltips to activity panel timestamps (c7d5a3f)
• feat: apply PermissionButton to Rules page actions (ad69174)
• feat: add PermissionButton component with tooltip for missing permissions (1556bb6)
• feat: protect admin routes, make ATT&CK accessible to all authenticated users (d39f729)
• feat: add ProtectedRoute component for route-level permission checks (f781438)
• feat: add MISP, abuse.ch, AlienVault OTX, and PhishTank to TI settings (39a49f3)
• feat: register new TI source handlers in manager (bd56b9c)
• feat: add PhishTank TI source handler (3e2cf96)
• feat: add AlienVault OTX TI source handler (acd4565)
• feat: add abuse.ch (URLhaus) TI source handler (ffe7644)
• feat: add MISP TI source handler (775e418)
• feat: add MISP, abuse.ch, AlienVault OTX, and PhishTank to TI source types (2b81642)
• fix: save GeoIP last update timestamp on manual download and read file mtime as fallback in health check (2031d95)
• fix: rename result variables and fix typo in GeoIP health check (02d0200)
• fix: correct GeoIP setting lookup (cc5738d)
• fix: show GeoIP status based on configuration instead of last update (e702803)
• feat: add GeoIP, SigmaHQ, MITRE ATT&CK status to health dashboard (e5235c4)
• feat: move AI health checks to every-minute schedule (a4e2461)
• fix: add missing Setting import to health.py (aa940b4)
• fix: ensure all configured services appear in health status (47a4d63)
• feat: add OpenSearch and AI to health status endpoint (df99be1)
• fix: improve health monitoring UX and fix VirusTotal health check (2097a79)
• feat: add TI source health monitoring (72bc5b0)
• feat: enhance health page with external service monitoring (cae9eb0)
• feat: add health status bell icon to header (94566db)
• feat: add health check status and test API endpoints (7990569)
• feat: register health check jobs with scheduler (1cc7f6a)
• feat: add Jira health check job (7640133)
• feat: add OpenSearch health check job (7ac7321)
• feat: add health check service for logging and status tracking (a47a719)
• feat: add health check configuration to notification_settings (fb15f26)
• feat: add health tracking columns to service config tables (3d13e11)
• feat: add health_check_logs table for service monitoring (79291f9)
• chore: remove debug logging from RuleEditor (6539cdc)
• fix: set created_at explicitly when creating RuleVersion instances (037d4bb)
• fix: explicitly order versions i...