0.2.0
Weekly update
Feature Updates and Improvements
Policy Rule Application Refactor: RegexRule model created to move regular expression specific values out of the existing Rule model. Enables additional rule types to support new LLM Scanning and DDOS Vulnerability functionality.
Scans as configuration items: Scans now have a history, and are configurable items rather than execution items. Now with a Dashboard, Scan History and Scan Editing.
APIEndpoint Asset model: Provides the user with a means for connecting Chirps to an API endpoint, allowing Chirps to interact with their chatbot or some other LLM application
Bug Fixes
No reported bug since the week starting 07/31
Community Contributors
@PedroAVJ for the refactor of the rule model. The Mantium team is thankful for your continued contributions and commitment to expanding the capabilities of this project.
Upcoming Milestones
Expanding Chirps to scan LLM API's: In Progress – This will provide the ability to scan LLM (Language Models) APIs for specific security-related issues such as Prompt Injection, DDOS, and other potential vulnerabilities.
Ability to cancel jobs: By EOW - This will provide the ability to cancel a job that is in the running or in a queued state. Provides the action of clicking on the "stop" button on the scan dashboard to perform the cancellation.
What's Changed since 0.1.0
- Celery task failure mechanism by @zimventures in #115
- Finding vector source ID by @zimventures in #118
- Check openai key exists before running scan by @alex-nork in #119
- Embedding model service provider dropdown list by @alex-nork in #121
- Asset creation: provide available embedding models based on selected embedding model service by @alex-nork in #123
- Asset editing by @zimventures in #125
- add cohere embedding service by @alex-nork in #124
- Generic asset ping support by @zimventures in #126
- removing pycharm settings by @zimventures in #127
- Replacing custom Javascript with HTMX for embedding model retrieval by @zimventures in #131
- generate_embeddings management command by @alex-nork in #128
- redis ping enhancement by @zimventures in #132
- Configurable preview window size by @alex-nork in #134
- Add loading indicator to "ping" buttons by @PedroAVJ in #138
- User API key enhancements by @zimventures in #135
- Enable mypy pre-commit hook by @alex-nork in #137
- Add flash messages after Create/Update/Delete of an item by @PedroAVJ in #139
- Display worker status by @alex-nork in #151
- update address regex in the standard pii policy by @JustEmrick in #150
- remove vestigial fernet key code by @alex-nork in #153
- Css update - Table fixed width for policies by @JustEmrick in #160
- User password change by @PedroAVJ in #147
- configurable severity by @alex-nork in #161
- new rule severity dropdown by @alex-nork in #163
- refactor attribute display to make it easier when adding new asset types by @alex-nork in #166
- make workspace directory dynamic by @boyko11 in #152
- Scans as configuration items by @zimventures in #162
- APIEndpointAsset model by @alex-nork in #165
- Add auto restart for celery by @PedroAVJ in #170
- Revert "Add auto restart for celery" by @zimventures in #172
- Refactor Rule model by @PedroAVJ in #169
- Scan application refactor by @alex-nork in #173
New Contributors
- @PedroAVJ made their first contribution in #138
- @JustEmrick made their first contribution in #150
- @boyko11 made their first contribution in #152
Full Changelog: 0.1.0...0.2.0