EvidenceForge v1.5.1

What's Changed

• fix: bound HTTP resp_bytes body fallback by @DavidJBianco in #340
• chore(deps): bump actions/checkout from 6 to 7 by @dependabot[bot] in #336
• chore(deps): bump pytest from 9.1.0 to 9.1.1 by @dependabot[bot] in #337
• chore(deps): bump click from 8.4.1 to 8.4.2 by @dependabot[bot] in #338
• chore(deps): bump ruff from 0.15.17 to 0.15.19 by @dependabot[bot] in #339
• Release v1.5.1 by @DavidJBianco in #341

Full Changelog: v1.5.0...v1.5.1

EvidenceForge v1.5.0

What's Changed

• fix: reject symlinked Zeek external parser logs by @DavidJBianco in #330
• fix: escape adversarial payloads in ground truth markdown by @DavidJBianco in #331
• feat: add LLM prompt-injection demo scenario (closes #285) by @peterhanily in #333
• [codex] Release EvidenceForge 1.5.0 by @DavidJBianco in #335

Full Changelog: v1.4.2...v1.5.0

EvidenceForge v1.4.2

What's Changed

• [codex] Fix authored HTTP error body sizing by @DavidJBianco in #334

Full Changelog: v1.4.1...v1.4.2

EvidenceForge v1.4.1

What's Changed

• Release EvidenceForge 1.4.1 by @DavidJBianco in #329

Full Changelog: v1.4.0...v1.4.1

EvidenceForge v1.4.0

What's Changed

• chore(deps): bump ruff from 0.15.15 to 0.15.16 by @dependabot[bot] in #305
• fix: harden Splunk app tar extraction by @DavidJBianco in #306
• fix: tolerate malformed explicit proxy URIs by @DavidJBianco in #308
• fix: bound eCAR file churn counts by @DavidJBianco in #309
• fix: harden output target marker reads by @DavidJBianco in #310
• fix: constrain DNS parser tag ignore policy by @DavidJBianco in #312
• fix: harden raw Windows EventID handling by @DavidJBianco in #313
• fix: handle deep x509 parser originals by @DavidJBianco in #314
• fix: require explicit eCAR shell concurrency groups by @DavidJBianco in #315
• fix: tolerate malformed HTTP file URIs by @DavidJBianco in #316
• fix: preserve IPv6 ASA ICMP faddr parsing by @DavidJBianco in #317
• fix: reject symlinked external parser source logs by @DavidJBianco in #319
• fix: align web emitter role matching by @DavidJBianco in #324
• fix: tolerate malformed Splunk request URLs by @DavidJBianco in #325
• fix: harden storyline shell friction templates by @DavidJBianco in #326
• fix: avoid orphan Linux logons for dropped bash commands by @DavidJBianco in #327
• docs: harden manual release fallback by @DavidJBianco in #307
• feat: add adversarial_payload event type for log-pipeline weakness testing by @peterhanily in #296
• Release v1.4.0 by @DavidJBianco in #328

Full Changelog: v1.3.2...v1.4.0

EvidenceForge v1.3.2

What's Changed

• fix: repair stale process parent pids by @DavidJBianco in #303
• chore: bump version to 1.3.2 by @DavidJBianco in #304

Full Changelog: v1.3.1...v1.3.2

EvidenceForge v1.3.1

What's Changed

• Release v1.3.1 generation fixes by @DavidJBianco in #302

Full Changelog: v1.3.0...v1.3.1

EvidenceForge v1.3.0

What's Changed

• [codex] Add Splunk output target and parser validation by @DavidJBianco in #299
• Release EvidenceForge 1.3.0 by @DavidJBianco in #301
• [codex] Add output target ingest guides by @DavidJBianco in #298

Full Changelog: v1.2.1...v1.3.0

EvidenceForge v1.2.1

What's Changed

• chore(deps): bump typer from 0.26.2 to 0.26.7 by @dependabot[bot] in #293
• [codex] Promote current-dev realism fixes by @DavidJBianco in #295

Full Changelog: v1.2.0...v1.2.1

EvidenceForge v1.2.0

What's Changed

• feat: add spillage event type for synthetic credential leakage by @peterhanily in #289
• fix: restore canonical session ownership for process spillage by @DavidJBianco in #290
• feat: make ground truth json canonical by @DavidJBianco in #291
• Release 1.2.0 by @DavidJBianco in #292

New Contributors

• @peterhanily made their first contribution in #289

Full Changelog: v1.1.1...v1.2.0