What's new
Nuclei vulnerability scanner
The ferret-lab sandbox now includes Nuclei — a fast, template-based vulnerability scanner from ProjectDiscovery. A new run_nuclei AI tool is available in the Execution group in the hunt Context pane. The AI can run Nuclei against a target URL or host using community templates, with support for template tag/path filtering, severity filtering, and proxy routing.
AI tool grouping in the Context pane
The AI Tools section of the hunt Context panel now organises tools into five collapsible groups — Proxy History, Findings, Testing, Execution, and Sources — instead of a flat unsorted list. Group state is persisted to localStorage across page reloads.
Persistent thinking block collapse state
The thinking block collapse state is now persisted to localStorage per session and message, so collapsed/expanded state survives page reloads.
Fixes
Setup wizard
- Password entry is now on its own page, preventing password managers (e.g. Bitwarden) from overlaying the provider selection step.
- Provider card text is now correctly black when a card is selected.
- Login field autofocuses on page load.
- Password manager autocomplete suppressed on non-password fields in the setup wizard.
UI polish
- Synlace footer added to the app shell.
- Provider icons are now bundled with the UI image rather than fetched from external CDNs.
- Navigation text sizes increased in Hunts, Gnaw, and Snare.
- Settings page section headers are now static (no longer collapse).
Infrastructure
just up now defaults to the latest stable release
Previously, just up without FERRET_VERSION set would pull :latest images, which could point to a pre-release lab image. It now defaults to v1.6.3. Future releases will automatically update this default as part of just tag.
Upgrade
git pull
just upOr pin a specific version:
FERRET_VERSION=v1.6.3 just up