-
v1.2.68
StableSome checks failedSecret Scan / gitleaks (push) Successful in 49sGolang Tests / test-go (push) Successful in 1m39sPublish OCI Images / publish (push) Failing after 2m9slint / lint (push) Successful in 2m9sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 1m54sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 1m28sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 2m49sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 2m29sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 2m45sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 4m41sCI / build (push) Successful in 10m6sImage Security Scan / image-security (push) Successful in 32m30sSource Security Scan / source-security (push) Successful in 32m33sPublish Release Artifacts / publish (push) Successful in 34m9sHelm Lint / Helm Lint (push) Has been cancelled
Ghost
released this
2026-05-18 21:22:02 +00:00 | 605 commits to staging since this releaseServiceRadar v1.2.68
Armis northbound recovery, inventory metadata cleanup, plugin status durability, and CI audit fixes.
Whats New
1.2.68
- Fixed remaining timestamp precision mismatches in Armis/config-dispatch and sweep availability paths so persisted integration and device availability timestamps match their Ecto field precision.
- Restored Armis northbound bulk execution visibility with runner logs for candidate loading, update/skip counts, run completion, and failure paths.
- Fixed Armis northbound scheduling so overlapping stale
Runningrows are timed out consistently and only one active run is allowed for a source. - Fixed Armis-imported device type rendering in
/devicesby falling back to integration metadata when the canonical type column is empty. - Cleaned up Armis device details by removing redundant Discovery Details and Operating System cards, linking Sync Service to integration details, linking Armis Device ID to the Armis inventory URL, and dropping misleading per-batch total device metadata.
- Fixed Armis integration source device counts so paged syncs report the total distinct imported devices for the source instead of the last batch size.
- Preserved the last reported plugin status during assignment reconciliation so
/servicesdoes not overwrite real plugin results withplugin assignment pending result. - Added an audit event detail page so CSP and security events can be opened and inspected from the audit event list.
- Moved web-ng maintenance workers to a dedicated
web_maintenanceOban queue so core-elx no longer attempts to run unknownServiceRadarWebNG.*worker modules. - Gated GeoLite and IPinfo MMDB download workers behind explicit Helm/runtime enable flags and defaulted GeoIP enrichment off when MMDB storage is not configured.
- Updated the datasvc
cowliblock to 2.16.1 and added a narrow audit ignore for the remaining low-severity cookie encoder advisory that has no patched release.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.67
StableSome checks failedImage Security Scan / image-security (push) Successful in 31m20sSource Security Scan / source-security (push) Successful in 31m23sPublish Release Artifacts / publish (push) Successful in 33m25sSecret Scan / gitleaks (push) Successful in 47sPublish OCI Images / publish (push) Failing after 57sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 1m25sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 2m14sGolang Tests / test-go (push) Successful in 2m23sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 1m26sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 3m20slint / lint (push) Successful in 3m24sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 3m35sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 5m41sElixir Quality / Elixir Quality (push) Failing after 14m27sCI / build (push) Failing after 16m31smfreeman451 released this
2026-05-18 18:29:41 +00:00 | 611 commits to staging since this releaseServiceRadar v1.2.67
Armis integration recovery, plugin status visibility, and release pipeline fixes.
Whats New
1.2.67
- Fixed Armis discovery sync failures when the Armis API returns a scalar device
namesvalue instead of the documented list format. - Normalized Armis sync timestamps to second precision before inventory ingestion so sub-second
first_seen,last_seen, and agent observation times do not violate:utc_datetimeresource fields. - Fixed integration sync status and agent config dispatch timestamp writes so recent sync and config delivery details can be recorded without microsecond precision errors.
- Fixed Armis northbound candidate loading on PostgreSQL by casting the JSONB
availability_source_agent_idvalue to text, resolvingERROR 42P18 could not determine data type of parameter $1. - Changed Armis northbound run handling so recorded runner failures finalize the run and return cleanly to Oban, preventing one-minute retry storms and stale
Runningrows after timeouts. - Added Armis northbound worker and runner logs around run start, completion, failure, and stale-run timeout handling to make missing agent/core execution paths visible.
- Restored durable Wasm plugin visibility on
/servicesby reconciling plugin assignments into service state and rendering plugin service cards from durable plugin rows instead of a short active-status window. - Added OCSF event emission for Oban job failures, including retryable/discarded status, worker, queue, job ID, attempt counts, redacted args, and stacktrace excerpts so background job failures appear in the Events stream.
- Hardened GeoLite MMDB refresh failures so unwritable download directories and failed downloads record events and use the normal cooldown path instead of repeatedly crashing and being re-enqueued every scheduler tick.
- Updated stale Debian package pins for
openssl,libssl3, andlibpq-devso Bazel release CI no longer downloads removed Debian package URLs.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
- Fixed Armis discovery sync failures when the Armis API returns a scalar device
-
v1.2.66
StableSome checks failedSecret Scan / gitleaks (push) Successful in 44sPublish OCI Images / publish (push) Failing after 1m1slint / lint (push) Successful in 3m18sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 2m49sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 2m52sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 4m9sGolang Tests / test-go (push) Successful in 3m31sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 4m24sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 4m29sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 5m34sCI / build (push) Failing after 18m50sImage Security Scan / image-security (push) Failing after 26m50sSource Security Scan / source-security (push) Successful in 31m9sPublish Release Artifacts / publish (push) Successful in 33m38s
Ghost
released this
2026-05-17 06:20:23 +00:00 | 689 commits to staging since this releaseServiceRadar v1.2.66
Long-running northbound actions, device details UX, and inventory enrichment fixes.
Whats New
1.2.66
- Added deferred northbound action execution with polling, result-fetching, expiration, cancellation handling, external correlation IDs, redacted persisted results, and resumable continuation state.
- Added token-gated and HMAC-signed northbound action webhook callbacks so external systems can report job progress or completion back to ServiceRadar without requiring only poll-based integrations.
- Updated the sample northbound Wasm plugin to exercise immediate, polling, and webhook-style action flows for device and interface integrations.
- Fixed the device details Logs tab so log loading runs asynchronously instead of timing out the LiveView event.
- Improved device details metadata rendering with grouped integration sections, cleaner task history output, Armis risk score display, and better handling for integration-provided device type data.
- Fixed stale self-scheduled Oban maintenance job reaping so stuck IP and GeoIP enrichment workers can be expired and restarted instead of silently starving NetFlow map enrichment.
- Added agent and gateway control-stream diagnostics for command ACK failures, config ACK failures, mapper config application, config payload summaries, and stream shutdowns to make failed agent command delivery visible during managed rollouts.
- Hardened Bazel module resolution for release CI by preferring the Bazel mirror for the transitive
rules_kotlinarchive when GitHub release downloads return transient 502s. - Added validation coverage for northbound action platform-schema migrations, lifecycle state transitions, redaction, poll scheduling, and expiration.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.65
StableSome checks failedSecret Scan / gitleaks (push) Successful in 45sPublish OCI Images / publish (push) Failing after 1m11sGolang Tests / test-go (push) Successful in 2m44sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 2m57slint / lint (push) Successful in 3m53sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 3m12sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 3m50sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 3m58sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 4m8sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 6m2sCI / build (push) Failing after 15m59sImage Security Scan / image-security (push) Failing after 23m51sSource Security Scan / source-security (push) Failing after 28m45sPublish Release Artifacts / publish (push) Successful in 30m28sHelm Lint / Helm Lint (push) Failing after 44m2s
Ghost
released this
2026-05-17 00:06:25 +00:00 | 704 commits to staging since this releaseServiceRadar v1.2.65
Northbound launch authorization and device integration metadata display fixes.
Whats New
1.2.65
- Fixed northbound task launches so users with
northbound.actions.launchcan create the per-target invocation rows required for device and interface actions. - Reworked device details metadata so collected integration data from Armis, NetBox, UniFi, and other sources is shown as readable label/value sections instead of raw metadata key badges.
- Added a fallback Integration Details section for non-debug integration metadata so newly collected fields remain visible without leaking internal
_alias_*,debug_*, or raw implementation keys.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
- Fixed northbound task launches so users with
-
v1.2.64
StableSome checks failedSecret Scan / gitleaks (push) Successful in 2m22sPublish OCI Images / publish (push) Failing after 2m39sGolang Tests / test-go (push) Successful in 3m35sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 3m49slint / lint (push) Successful in 4m44sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 4m19sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 4m18sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 4m27sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 4m31sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 6m5sSource Security Scan / source-security (push) Failing after 23m32sCI / build (push) Failing after 23m47sPublish Release Artifacts / publish (push) Successful in 31m7sImage Security Scan / image-security (push) Failing after 43m36sHelm Lint / Helm Lint (push) Failing after 43m48s
Ghost
released this
2026-05-16 22:12:22 +00:00 | 708 commits to staging since this releaseServiceRadar v1.2.64
Agent plugin config fallback, release rollout recovery, and northbound sample hardening.
Whats New
1.2.64
- Added a backward-compatible agent plugin config fallback so plugin assignments are also embedded in
config_json, allowing agents to recover assignments even when typed plugin config is absent from the config response. - Fixed the agent plugin manager config path to load assignments and engine limits from the new JSON fallback and added coverage for download credentials, runtime params, and engine limit parsing.
- Fixed release rollout reconciliation so agents that restart or reconnect after a dispatched release command can still advance from dispatched/in-flight states instead of remaining stuck.
- Added cleanup handling for expired release commands so stalled attempts surface terminal state instead of lingering indefinitely.
- Hardened the sample northbound Wasm plugin so scheduled checks report a valid ServiceRadar status and interface actions tolerate numeric interface status fields.
- Fixed RBAC launch authorization and profile deletion edge cases discovered while validating northbound device and interface actions in demo.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
- Added a backward-compatible agent plugin config fallback so plugin assignments are also embedded in
-
v1.2.63
StableSome checks failedSecret Scan / gitleaks (push) Successful in 1m13sPublish OCI Images / publish (push) Failing after 1m27sCI / build (push) Failing after 22m50sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 1m49sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 1m48slint / lint (push) Successful in 2m27sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 2m33sGolang Tests / test-go (push) Successful in 2m40sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 3m1sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 4m17sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 6m14sSource Security Scan / source-security (push) Successful in 18m40sImage Security Scan / image-security (push) Successful in 18m43sPublish Release Artifacts / publish (push) Successful in 20m19s
Ghost
released this
2026-05-16 17:56:20 +00:00 | 710 commits to staging since this releaseServiceRadar v1.2.63
Northbound action integrations, sample Wasm action provider, RBAC fixes, and CI hardening.
Whats New
1.2.63
- Added the northbound action integration foundation for device, interface, and event-driven remediation workflows, including action providers, descriptors, invocation tracking, redaction policy, event handlers, and history views.
- Added device and interface launch UI flows that discover available plugin-backed actions and collect action inputs through the northbound action contract.
- Added a sample northbound Wasm plugin and SDK fixture coverage so device and interface action providers can be tested against a simulated external API workflow.
- Adapted Ansible task launches to the northbound action model and fixed launch gating so unavailable integrations do not present runnable actions.
- Fixed northbound provider, descriptor, invocation, invocation-target, and interface-target Ash reads so relationship loads and status transitions remain atomic under the Elixir quality contract.
- Fixed RBAC launch authorization for persisted LiveView scopes by refreshing real-user permissions before northbound action checks.
- Fixed RBAC role-profile deletion by clearing assigned users before custom profiles are destroyed and setting the database foreign key to
ON DELETE SET NULL. - Fixed Elixir quality checks for projects that depend on
serviceradar_srqlby force-compiling the SRQL NIF before Boundary/xref introspection. - Fixed plugin runtime lint failures by replacing dynamic Go errors with static wrapped errors.
- Restored the audit settings app shell theme and repaired sweep TCP availability and agent registry views.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.62
StableSome checks failedPublish OCI Images / publish (push) Failing after 48sSecret Scan / gitleaks (push) Successful in 58sGolang Tests / test-go (push) Successful in 2m20slint / lint (push) Successful in 2m44sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 1m40sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 1m56sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 1m56sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 3m2sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 2m51sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 3m41sCI / build (push) Failing after 19m11sImage Security Scan / image-security (push) Failing after 19m13sHelm Lint / Helm Lint (push) Failing after 24m14sSource Security Scan / source-security (push) Successful in 30m18sPublish Release Artifacts / publish (push) Successful in 32m5s
Ghost
released this
2026-05-15 22:06:41 +00:00 | 749 commits to staging since this releaseServiceRadar v1.2.62
Device ingest, inventory UI, Elixir quality, and NATS platform update.
Whats New
1.2.62
- Fixed sync ingestion failures caused by microsecond-bearing timestamps so Armis enrichment batches can persist normalized device metadata again.
- Fixed
/devicesmatching-count and vendor/type selector regressions, including stale "Counting total results" states and unusable long facet lists. - Restored agent identity indicators in the device list after recent inventory metadata normalization changes.
- Fixed integration discovery status accounting so paged Armis runs report the total discovered device count instead of the final page size.
- Added event emission for failed integration sync runs so operators get explicit failure visibility instead of only status text.
- Fixed Elixir quality workflows by avoiding dependency-format scanning churn and serializing project checks that were fighting over shared runner resources.
- Updated NATS runtime images to
2.14.0-alpine, Bazel-managednats-servertov2.14.0, Go NATS modules to current releases, and Rustasync-natsclients to0.48.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.61
StableSome checks failedPublish OCI Images / publish (push) Failing after 53sElixir Quality / Elixir Quality (palisade) (push) Successful in 1m17sElixir Quality / Elixir Quality (datasvc) (push) Successful in 1m23sElixir Quality / Elixir Quality (connection) (push) Successful in 2m27sElixir Quality / Elixir Quality (elixir_uuid) (push) Successful in 2m26sSecret Scan / gitleaks (push) Successful in 2m44sRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 1m59sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 2m44sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 1m54slint / lint (push) Successful in 3m54sGolang Tests / test-go (push) Successful in 4m10sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 4m35sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 2m36sElixir Quality / Elixir Quality (serviceradar_srql) (push) Failing after 7m12sRust Tests / test-rust (rust/srql, cargo) (push) Successful in 5m14sElixir Quality / Elixir Quality (serviceradar_core) (push) Failing after 12m44sElixir Quality / Elixir Quality (web-ng) (push) Failing after 16m41sImage Security Scan / image-security (push) Successful in 21m10sSource Security Scan / source-security (push) Successful in 21m12sPublish Release Artifacts / publish (push) Successful in 22m49sCI / build (push) Failing after 25m4sElixir Quality / Elixir Quality (serviceradar_core_elx) (push) Failing after 25m20sElixir Quality / Elixir Quality (serviceradar_agent_gateway) (push) Failing after 25m22s2026-05-15 16:52:33 +00:00 | 756 commits to staging since this releaseServiceRadar v1.2.61
Release pipeline and CI hotfix.
Whats New
1.2.61
- Fixed managed agent release-key stamping so Bazel receives the release public key from CI and resolves fallback key files from the repository root.
- Fixed the agent Bazel target to include remote file-transfer sources and tests, restoring release builds for the agent file-transfer path.
- Fixed first-party Wasm plugin builds after the Go 1.26 upgrade by pinning TinyGo genrules to a Bazel-managed Go 1.25 SDK while leaving the main ServiceRadar Go SDK on Go 1.26.
- Fixed web-ng precommit formatter drift that blocked release validation after recent CI recovery changes.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
-
v1.2.59
StableSome checks failedRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 1m39sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 1m45sRust Tests / test-rust (rust/srql, cargo) (push) Failing after 6m37sPublish Release Artifacts / publish (push) Successful in 28m11sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 2m20sImage Security Scan / image-security (push) Failing after 5m28slint / lint (push) Successful in 1m17sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 1m35sPublish OCI Images / publish (push) Failing after 16m14sSecret Scan / gitleaks (push) Successful in 29sCI / build (push) Failing after 12m44sSource Security Scan / source-security (push) Successful in 37sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 1m4sGolang Tests / test-go (push) Successful in 49sHelm Lint / Helm Lint (push) Failing after 1h2m34s
Ghost
released this
2026-05-15 06:40:25 +00:00 | 1749 commits to staging since this releaseServiceRadar v1.2.59
Agent config compatibility, normalized integration inventory imports, Armis sync repair, and device inventory UI fixes.
Whats New
1.2.59
- Fixed agent startup compatibility with stale Kubernetes ConfigMaps that still contain the deprecated
remote_access_known_hosts_filefield. - Fixed Armis token requests to use the
secret_keyparameter expected by the Armis API while accepting common stored credential aliases. - Normalized Armis device imports into ServiceRadar inventory fields and generic
integration_idsource identifiers instead of provider-specific metadata display paths. - Persisted sync-provided network interface observations into discovered interface records for imported devices.
- Added clean device-detail discovery metadata rendering using normalized fields, including source IDs, query labels, boundaries, site, tags, and interface summaries.
- Fixed SRQL device ordering and vendor/type filtering when imported inventory contains dirty comma-separated IP values.
- Fixed device list matching counts and fixed-height vendor/type dropdown scrolling.
- Added managed-device defaults for imported and manually-created devices while preserving explicit user-managed unmanaged overrides.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads
- Fixed agent startup compatibility with stale Kubernetes ConfigMaps that still contain the deprecated
-
v1.2.58
StableSome checks failedRust Tests / test-rust (rust/consumers/zen, cargo) (push) Successful in 1m22sRust Tests / test-rust (//rust/rperf-server:rperf, rust/rperf-server, bazel) (push) Successful in 2m7sRust Tests / test-rust (rust/rperf-client, cargo) (push) Successful in 1m18sRust Tests / test-rust (rust/log-collector, cargo) (push) Successful in 1m40sImage Security Scan / image-security (push) Failing after 5m32sSource Security Scan / source-security (push) Failing after 5m41sRust Tests / test-rust (rust/trapd, cargo) (push) Successful in 2m8sCI / build (push) Failing after 11m33sRust Tests / test-rust (rust/srql, cargo) (push) Failing after 6m13sSecret Scan / gitleaks (push) Successful in 23sPublish Release Artifacts / publish (push) Has been cancelledlint / lint (push) Successful in 1m36sGolang Tests / test-go (push) Successful in 39sPublish OCI Images / publish (push) Failing after 5m23s
Ghost
released this
2026-05-15 04:18:48 +00:00 | 1752 commits to staging since this releaseServiceRadar v1.2.58
Per-agent availability source selection, Armis northbound availability controls, device inventory filter visibility, and release-path hardening.
Whats New
1.2.58
- Added latest per-agent device availability tracking so multiple agents can report different ICMP/TCP reachability for the same inventory device without duplicating inventory.
- Added canonical availability source selection on devices, preserving existing fallback behavior when no source agent is configured.
- Added clean device-detail visibility for per-agent availability, including agent, status, checks, response time, ports, and freshness.
- Added SRQL filters for querying devices by selected availability source and per-agent available or unavailable status.
- Added Armis northbound availability source selection so outbound availability tags can use canonical availability or a specific agent's view.
- Added query-wide matching device totals to the devices table header so ad-hoc SRQL and vendor/type filters show the full result count, not just the current page size.
- Expanded the devices By Type and By Vendor facets to return all rollup buckets while keeping the dropdown menus fixed-height and scrollable.
- Hardened Forgejo release package publishing by avoiding duplicate version suffixes in uploaded package asset names.
- Fixed Bazel-managed TinyGo host toolchain downloads used by release builds so they no longer depend on stale upstream URLs.
- Hardened the Forgejo Bazelisk installer with retries and fallback download paths for transient GitHub/curl failures.
Downloads
-
Source code (ZIP)
0 downloads
-
Source code (TAR.GZ)
0 downloads