Changelog
Changelog
A running record of what ships.
v1.4.0
- Added detection for OpenAI, Anthropic, and Mistral API keys
- Fable 5 AI model upgraded - context-window for scans increased 2x
- URL scan now follows up to 5 redirect hops before analyzing
- Report export to JSON now available on Pro plan
- Reduced false-positive rate on GitHub PAT detection by 40%
v1.3.2
- Fixed: session replay detection false negative on certain Hotjar embed variants
- Fixed: file scan timeout on documents larger than 8 MB
- Improved: passport number detection now covers EU biometric card format
v1.3.0
- New detection category: Headers / Transport (HSTS, CSP, X-Frame-Options, server banner)
- URL scans now include HTTP response header analysis
- Added severity filter to the scan report UI
- API scan endpoint now returns scan_id for audit logging
v1.2.1
- Fixed: YAML multi-line string secrets occasionally missed
- Fixed: PDF text extraction dropped line breaks in some fonts
- Improved: credit card detection now validates Luhn checksum before flagging
v1.2.0
- File upload now supports .docx, .py, .rb, .go, .java, .cs, .php
- Detection catalog page launched at /detections
- Added plain-English 'recommended action' field to every finding
- Mobile layout improvements on the scan report view
v1.1.0
- Trackers & Scripts detection category launched
- Now detects Meta Pixel, Google Ads, FullStory, and Hotjar embeds
- Added 'false positive confidence' indicator to each finding
- Performance: median scan time reduced from 1.2 s to 380 ms
v1.0.0
- Public launch
- Text, URL, and file scanning
- Secrets & Keys detection: AWS, GitHub, Stripe, Twilio, Google, and 70+ providers
- Personal Data / PII detection: email, phone, SSN, credit card, passport
- Insecure Config detection: open CORS, debug mode, default credentials
- Free plan: 50 scans per month, no account required
- Pro plan: unlimited scans, file uploads, API access