-
v1.2.78
StableSome checks failedSecret Scan / gitleaks (push) Successful in 37slint / lint (push) Successful in 1m53sPublish Release Artifacts / publish (push) Has been cancelledGolang Tests / test-go (push) Successful in 2m6sRust Tests / test-rust (rust/srql, cargo) (push) Failing after 4m57sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 1m28sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 2m8sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 1m54sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 3m3sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 3m16sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Failing after 2m58sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 3m26sCI / build (push) Failing after 15m38sPublish OCI Images / publish (push) Failing after 19m15sImage Security Scan / image-security (push) Successful in 47m14sSource Security Scan / source-security (push) Successful in 47m13smfreeman451 released this
2026-05-22 18:04:39 +00:00 | 698 commits to staging since this releaseServiceRadar v1.2.78
Dashboard creator foundation and agent plugin runtime hardening.
Whats New
1.2.78
- Added the dashboard creator foundation, including shared user groups, dashboard ownership/access controls, favorites, dashboard discovery, SRQL-backed dashboard definitions, and system mail configuration for dashboard email workflows.
- Refactored the agent plugin runtime into focused files by responsibility, making the manager, assignment parsing, wazero execution, host I/O, media bridge, action credentials, and memory helpers easier to review and maintain.
- Hardened plugin execution by making wazero runtimes interruptible on context cancellation and ensuring failed plugin calls always release host connections and connection counters.
- Added a shared wazero compilation cache for plugin executions to reduce repeated compile cost across scheduled checks, actions, and streaming plugins.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.77
StableSome checks failedSecret Scan / gitleaks (push) Successful in 21slint / lint (push) Successful in 1m16sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 1m30sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 2m13sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 2m40sGolang Tests / test-go (push) Successful in 3m17sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 2m58sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 2m8sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 3m48sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Failing after 4m9sPublish OCI Images / publish (push) Failing after 4m58sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 6m13sCI / build (push) Failing after 16m26sImage Security Scan / image-security (push) Successful in 18m27sSource Security Scan / source-security (push) Successful in 18m35sPublish Release Artifacts / publish (push) Successful in 20m40s
Ghost
released this
2026-05-21 22:33:44 +00:00 | 733 commits to staging since this releaseServiceRadar v1.2.77
Plugin status read model and Proxmox inventory recovery.
Whats New
1.2.77
- Restored durable plugin status display on
/servicesso page reloads read the latest persisted service state instead of waiting for the next checker cycle to turn healthy plugins green. - Fixed plugin assignment reconciliation so stale rows are retired without creating duplicate active plugin services, while preserving the latest result for each assigned plugin.
- Reworked the Proxmox inventory WASM plugin to use reflection-free TinyGo JSON handling, eliminating the runtime panic and restoring inventory summaries, device discovery, and resource event output.
- Hardened Proxmox plugin result serialization, UTF-8-safe response truncation, and service-state orphan matching across package names and plugin identifiers.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
- Restored durable plugin status display on
-
v1.2.76
StableSome checks failedSecret Scan / gitleaks (push) Successful in 34sPublish OCI Images / publish (push) Failing after 1m39sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 2m13sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 2m40slint / lint (push) Successful in 3m35sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 2m25sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Failing after 3m3sGolang Tests / test-go (push) Failing after 4m7sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 3m51sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 4m3sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 4m16sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 4m37sSource Security Scan / source-security (push) Failing after 22m21sImage Security Scan / image-security (push) Failing after 22m23sCI / build (push) Failing after 27m49sHelm Lint / Helm Lint (push) Failing after 42m33sPublish Release Artifacts / publish (push) Successful in 18m59s
Ghost
released this
2026-05-20 21:19:49 +00:00 | 803 commits to staging since this releaseServiceRadar v1.2.76
Armis northbound bulk update authentication recovery.
Whats New
1.2.76
- Fixed Armis northbound bulk updates to send the fetched Armis access token as the raw
Authorizationheader value, matching the Armis API and the existing southbound sync client behavior.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
- Fixed Armis northbound bulk updates to send the fetched Armis access token as the raw
-
v1.2.75
StableSome checks failedPublish OCI Images / publish (push) Failing after 28sSecret Scan / gitleaks (push) Successful in 1m23slint / lint (push) Successful in 3m59sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 3m58sGolang Tests / test-go (push) Successful in 4m37sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Failing after 4m41sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 4m44sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 4m45sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 5m7sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 5m7sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 5m10sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 7m22sCI / build (push) Failing after 20m39sImage Security Scan / image-security (push) Failing after 25m22sHelm Lint / Helm Lint (push) Failing after 30m39sSource Security Scan / source-security (push) Successful in 50m41sPublish Release Artifacts / publish (push) Successful in 23m50s
Ghost
released this
2026-05-20 18:15:51 +00:00 | 806 commits to staging since this releaseServiceRadar v1.2.75
Manual device reconciliation and Armis northbound scheduler recovery.
Whats New
1.2.75
- Reconciled manual device creation for hostname-only records so re-adding a hostname can merge with the existing device, resolve the IP address, and navigate directly to the device details page.
- Fixed Armis northbound scheduling so stale executing Oban jobs no longer leave integrations stuck in
Running, and ensured northbound workers load decrypted Armis credentials before requesting access tokens.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.74
StableSome checks failedPublish OCI Images / publish (push) Failing after 46sSecret Scan / gitleaks (push) Successful in 1m48sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 1m57slint / lint (push) Successful in 3m16sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 3m14sGolang Tests / test-go (push) Successful in 3m30sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 3m45sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Failing after 3m42sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 3m35sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 4m18sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 4m22sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 6m18sCI / build (push) Failing after 23m46sHelm Lint / Helm Lint (push) Failing after 23m47sSource Security Scan / source-security (push) Failing after 43m40sImage Security Scan / image-security (push) Failing after 1h3m41sPublish Release Artifacts / publish (push) Successful in 19m50s
Ghost
released this
2026-05-20 15:30:05 +00:00 | 811 commits to staging since this releaseServiceRadar v1.2.74
Fresh install, demo ingestion, Armis, and observability dashboard recovery.
Whats New
1.2.74
- Fixed CNPG image tag resolution so Docker Compose and Kubernetes installs no longer reference a missing release artifact.
- Refactored fresh database bootstrap to avoid long raw migration paths on new installs with no existing schema.
- Restored Armis availability updates and streamed agent configuration handling.
- Routed demo syslog ingestion through the shared gateway and aligned Kubernetes network policies for external telemetry intake.
- Documented Kubernetes external ingestion patterns without publishing environment-specific addresses.
- Fixed observability log severity drilldowns so card links match title-case severity values such as
CriticalandDebug. - Kept observability stats cards on continuous aggregate rollups for fast page loads instead of raw log, metric, or trace table scans.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.73
StableSome checks failedSecret Scan / gitleaks (push) Successful in 31sPublish OCI Images / publish (push) Failing after 2m5sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 2m2slint / lint (push) Successful in 2m34sGolang Tests / test-go (push) Successful in 2m53sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 1m56sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 2m44sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 2m55sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 3m7sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 3m35sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Successful in 5m1sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 6m17sCI / build (push) Failing after 18m47sHelm Lint / Helm Lint (push) Failing after 23m1sSource Security Scan / source-security (push) Successful in 31m39sImage Security Scan / image-security (push) Successful in 31m55sPublish Release Artifacts / publish (push) Successful in 33m56s
Ghost
released this
2026-05-19 21:54:25 +00:00 | 828 commits to staging since this releaseServiceRadar v1.2.73
Release build recovery for agent-gateway strict dependency checks.
Whats New
1.2.73
- Fixed the agent-gateway Bazel target by declaring the direct gRPC
codesandstatusdependencies required by streamed agent config error handling.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
- Fixed the agent-gateway Bazel target by declaring the direct gRPC
-
v1.2.71
StableSome checks failedSecret Scan / gitleaks (push) Successful in 2m48sPublish OCI Images / publish (push) Failing after 3m18sCI / build (push) Failing after 21m45slint / lint (push) Successful in 2m34sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 2m28sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 3m4sGolang Tests / test-go (push) Successful in 3m23sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 3m13sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 3m10sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 3m33sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 3m58sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Successful in 4m14sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 5m39sHelm Lint / Helm Lint (push) Has been cancelledSource Security Scan / source-security (push) Failing after 18m41sImage Security Scan / image-security (push) Failing after 18m48sPublish Release Artifacts / publish (push) Successful in 16m49s
Ghost
released this
2026-05-19 18:35:46 +00:00 | 855 commits to staging since this releaseServiceRadar v1.2.71
Restricted filesystem compatibility for datasvc and db-event-writer startup.
Whats New
1.2.71
- Added writable
/tmpvolumes to datasvc and db-event-writer pods so their startup config rendering works withreadOnlyRootFilesystem: true.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
- Added writable
-
v1.2.70
StableSome checks failedPublish OCI Images / publish (push) Failing after 32sSecret Scan / gitleaks (push) Successful in 2m39sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 3m45sGolang Tests / test-go (push) Successful in 4m12sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 4m26sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 4m31slint / lint (push) Successful in 5m6sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 5m0sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 5m10sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 5m13sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Successful in 5m37sSource Security Scan / source-security (push) Successful in 12m47sImage Security Scan / image-security (push) Successful in 12m58sPublish Release Artifacts / publish (push) Successful in 13m37sCI / build (push) Failing after 18m20sRust Tests / test-rust (rust/srql, cargo) (push) Failing after 18m5sHelm Lint / Helm Lint (push) Failing after 23m31s
Ghost
released this
2026-05-19 17:05:16 +00:00 | 857 commits to staging since this releaseServiceRadar v1.2.70
Production upgrade recovery for Helm migration hooks and Elixir release workloads.
Whats New
1.2.70
- Fixed Helm core migration hooks so they no longer depend on the GeoIP MMDB PVC during pre-upgrade execution.
- Added migration-hook controls for hook-specific image pull policy and pod annotations so operators can force fresh pulls or opt out of pod mutation webhooks when needed.
- Aligned core-elx, datasvc, agent-gateway, and core migration pods with the Elixir release image UID so
/appremains executable under restricted pod security contexts.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.69
StableSome checks failedHelm Lint / Helm Lint (push) Has started runningCI / build (push) Has started runningPublish Release Artifacts / publish (push) Has started runningSecret Scan / gitleaks (push) Successful in 26sSource Security Scan / source-security (push) Successful in 55sPublish OCI Images / publish (push) Failing after 1m53sRust Tests / test-rust (rust/rdp-adapter, cargo) (push) Successful in 1m39sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 2m14sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 2m31sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 2m25sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 2m42sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 2m44slint / lint (push) Successful in 3m3sImage Security Scan / image-security (push) Successful in 3m16sGolang Tests / test-go (push) Successful in 2m55sRust Tests / test-rust (rust/rdp-connector-probe, cargo) (push) Successful in 3m21sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 4m50s
Ghost
released this
2026-05-19 16:39:08 +00:00 | 859 commits to staging since this releaseServiceRadar v1.2.69
Experimental RDP remote desktop access, hardened desktop media controls, and large sweep stability fixes.
Whats New
1.2.69
- Added experimental, feature-gated RDP remote desktop access with optional agent/helper runtime packaging, browser media transport, RDP target management, session launch plumbing, recording lifecycle visibility, and readiness/capability checks.
- Hardened the experimental RDP path with bounded helper IPC frames, policy-bound desktop media sessions, route/principal enforcement, clipboard and recording controls, credential grant cleanup, TLS/CA policy propagation, session timeout handling, and expanded audit metadata.
- Improved RDP setup UX so operators can enable RDP from device context, select devices/agents/gateways/credential rules from existing inventory data, keep credentials optional for prompt-at-connect flows, and manage credential rules from the existing network credentials area.
- Added verified RDP TLS policy fields for server name and CA bundle material, while keeping CA bundle identifiers generated from target identity instead of requiring users to type internal IDs.
- Packaged the optional
serviceradar-rdp-adapterruntime bundle and enabled ready helper capability reporting for demo builds when the experimental feature flag and agent-local gate are enabled. - Added and tightened live/boundary tests for RDP TLS trust, CredSSP handoff, connector readiness, media frame parsing, browser rendering, and helper cleanup behavior.
- Fixed large sweep target handling by streaming target batches instead of expanding everything in memory, preserving SRQL device targets, avoiding IPv6 CIDR over-expansion during sizing, and correcting misleading rate-limit deferral metrics.
- Added an opt-in agent pprof endpoint and bounded sysmon process telemetry encoding, with a configurable process sample limit to avoid unbounded agent status payload growth.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.68
StableSome checks failedSecret Scan / gitleaks (push) Successful in 49sGolang Tests / test-go (push) Successful in 1m39sPublish OCI Images / publish (push) Failing after 2m9slint / lint (push) Successful in 2m9sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 1m54sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 1m28sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 2m49sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 2m29sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 2m45sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 4m41sCI / build (push) Successful in 10m6sImage Security Scan / image-security (push) Successful in 32m30sSource Security Scan / source-security (push) Successful in 32m33sPublish Release Artifacts / publish (push) Successful in 34m9sHelm Lint / Helm Lint (push) Has been cancelled
Ghost
released this
2026-05-18 21:22:02 +00:00 | 1287 commits to staging since this releaseServiceRadar v1.2.68
Armis northbound recovery, inventory metadata cleanup, plugin status durability, and CI audit fixes.
Whats New
1.2.68
- Fixed remaining timestamp precision mismatches in Armis/config-dispatch and sweep availability paths so persisted integration and device availability timestamps match their Ecto field precision.
- Restored Armis northbound bulk execution visibility with runner logs for candidate loading, update/skip counts, run completion, and failure paths.
- Fixed Armis northbound scheduling so overlapping stale
Runningrows are timed out consistently and only one active run is allowed for a source. - Fixed Armis-imported device type rendering in
/devicesby falling back to integration metadata when the canonical type column is empty. - Cleaned up Armis device details by removing redundant Discovery Details and Operating System cards, linking Sync Service to integration details, linking Armis Device ID to the Armis inventory URL, and dropping misleading per-batch total device metadata.
- Fixed Armis integration source device counts so paged syncs report the total distinct imported devices for the source instead of the last batch size.
- Preserved the last reported plugin status during assignment reconciliation so
/servicesdoes not overwrite real plugin results withplugin assignment pending result. - Added an audit event detail page so CSP and security events can be opened and inspected from the audit event list.
- Moved web-ng maintenance workers to a dedicated
web_maintenanceOban queue so core-elx no longer attempts to run unknownServiceRadarWebNG.*worker modules. - Gated GeoLite and IPinfo MMDB download workers behind explicit Helm/runtime enable flags and defaulted GeoIP enrichment off when MMDB storage is not configured.
- Updated the datasvc
cowliblock to 2.16.1 and added a narrow audit ignore for the remaining low-severity cookie encoder advisory that has no patched release.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads