Skip to content

Releases: mantiumai/chirps

0.3.2

14 Sep 19:17
2c8480a
Compare
Choose a tag to compare

What's Changed

Full Changelog: 0.3.1...0.3.2

0.3.1

07 Sep 17:23
f332ac9
Compare
Choose a tag to compare

Weekly Blog update

What's Changed

  • periodic task framework & worker status enhancement by @zimventures in #189
  • properly render Findings by Severity doughnut by @alex-nork in #191
  • Add MultiQueryResult and MultiQueryFinding models by @alex-nork in #188
  • Refactor scan results and findings to support multiple types by @alex-nork in #190
  • implement MultiQueryRule execution logic by @alex-nork in #192
  • policy template fixture with MultiQueryRules by @alex-nork in #198
  • update policy dashboard template to group rules by type by @alex-nork in #195

Full Changelog: 0.3.0...0.3.1

0.3.0

31 Aug 17:02
6a02cdb
Compare
Choose a tag to compare

Feature Updates & Improvements

  • Ability to cancel jobs: This will provide the ability to cancel a job that is in the running or in a queued state. Provides the action of clicking on the “stop” button on the scan dashboard to perform the cancellation.
  • Introduction of agent classes: An Agentclass, along with Attacker and Evaluator subclasses were added. These will be used when executing the MultiQueryRule to generate messages to be sent to an asset and to evaluate the response from an asset.
  • Ability to make an API request to an API Asset: The query included in the request POST body will be generated during a scan, and the entire response from the request will be parsed to determine if the response includes the pre-defined success outcome. If not, another query will be generated and the process repeated.
  • And more…

Bug Fixes

Community Contributions

  • @PedroAVJ for opening a PR to implement a version bump workflow to address an issue in the backlog

Upcoming Milestones

  • Periodic task scheduling: In Progress – This will enable users the ability to kick off tasks at regular intervals replacing the need to manually scan each asset, each time
  • Automatic Patch version bumping: Week ending 09/08 – This will be helpful for developers to identify what version of Chirps an end-user is running to help with triaging issues.

What's Changed

Full Changelog: 0.2.0...0.3.0

0.2.0

24 Aug 14:49
ac8522d
Compare
Choose a tag to compare

Weekly update

Feature Updates and Improvements

Policy Rule Application Refactor: RegexRule model created to move regular expression specific values out of the existing Rule model. Enables additional rule types to support new LLM Scanning and DDOS Vulnerability functionality.

Scans as configuration items:  Scans now have a history, and are configurable items rather than execution items. Now with a Dashboard, Scan History and Scan Editing.

APIEndpoint Asset model: Provides the user with a means for connecting Chirps to an API endpoint, allowing Chirps to interact with their chatbot or some other LLM application

And more…

Bug Fixes

No reported bug since the week starting 07/31

See all the fixes…

Community Contributors

@PedroAVJ for the refactor of the rule model. The Mantium team is thankful for your continued contributions and commitment to expanding the capabilities of this project.

Upcoming Milestones

Expanding Chirps to scan LLM API's: In Progress – This will provide the ability to scan LLM (Language Models) APIs for specific security-related issues such as Prompt Injection, DDOS, and other potential vulnerabilities.

Ability to cancel jobs: By EOW - This will provide the ability to cancel a job that is in the running or in a queued state. Provides the action of clicking on the "stop" button on the scan dashboard to perform the cancellation.

What's Changed since 0.1.0

New Contributors

Full Changelog: 0.1.0...0.2.0

0.1.0

27 Jul 19:36
6dcc087
Compare
Choose a tag to compare
0.1.0 Pre-release
Pre-release

Welcome to the initial release of Chirps!

With this release, users are able to create assets, policies, and perform scans. Instructions on how to setup and run the application can be found in the Getting Started Guide.