v1.1.3

What's Changed

• Adds support for Spring V2 Applications
• Improves & fixes debug logging
• Slightly improved testing workflows

Full Changelog: v1.1.2...v1.1.3

v1.1.2

What's Changed

• Now reports statistics on blocked and monitored bot blocking & ip lists
• Reports dialect in case of sql injection

v1.1.2-beta.3

Merge pull request #173 from AikidoSec/fix-monitoring-ip-issues

IP/UA Stats: Clean up

v1.1.2-beta.2 (pre-release)

What's Changed

• Reports IPList/Botlist statistics
• Reports dialect in case of a sql injection

v1.1.1

What's Changed

• Now supports SQLite
• More accurate reporting of hits for outbound hostnames
• Minor bugfixes and improvements

v1.1.1 (beta)

What's Changed

• Now supports SQLite
• More accurate reporting of hits for outbound hostnames
• Minor bugfixes and improvements

v1.1.0

What's Changed

• Warning: The way the release zipfile is created changed, when you unzip zen.zip it's now zen/ instead of dist/
• Major: Use shared memory with locks instead of IPC - results in decreased overhead
• Reports operation statistics (i.e. how many I/O operations scanned)
• Now shows the reason for blocking a request
• Minor SSRF Optimization

v1.1.2 Pre-Release

What's Changed

• Moved to the split up mutex PRs
• Reports sink statistics

Why is this a pre-release?

• The code has not yet been fully approved
• We want to test this extensively before release

v1.0.11

What's Changed

• Fix an exploit in Spring and Javalin that allowed a bypass via the cookies
• Fix an exploit in Spring and Javalin where, depending on the function used, Spring/Javalin would return different headers.

v1.0.10

What's Changed

• Add support for the new IP Allowlists
• Minor SSRF bugfix (Host header could have been flagged if the app made requests to itself)
• Minor improvements to private IP detection