Changelog

VPC Security Sprint — 16 new modules, 202 tests

• CloudWatch & Azure Monitor exporters for sensor fleet telemetry
• Cognito JWT validation with JWKS auto-rotation
• Credential stuffing detector — cross-session velocity + device fingerprinting
• Shadow AI Discovery: detect unauthorized LLM calls in request traffic
• API Posture Scoring: continuous risk-score across all endpoints
• AWS SigV4 inbound validation for Bedrock and Lambda integrations
• Agentic SPM (Security Posture Management) for AI agent fleets
• Security Graph: cross-pillar entity relationship mapping
• gRPC interceptor sensor for unary, server-stream, and bidirectional calls
• Adaptive MFA: risk-score-triggered step-up challenges
• Datadog exporter, HIBP breach check, Lambda Authorizer, Kafka/MQTT sensors

Customer VPC Deployment — sensors ship into customer infrastructure

• Common Sensor SDK (Python) — handshake, config-push, WebSocket, cert rotation
• MCP Security Sensor: 114 tests, full tool-call interception pipeline
• AI Gateway Sensor: 133 tests, 22 LLM providers, BYOK rotation
• Verification Engine Sensor: 95 tests, 5-layer parallel detection, EU AI Act Article 5
• Sensor Lifecycle: 192 tests — handshake, rollout, quarantine, version-compat, cert-reissue
• Bulk ops, fleet pubsub, config-push, sweeper, and cert lifecycle
• Helm charts for all sensors with HPA, PDB, NetworkPolicy, PrometheusRule
• No traffic leaves customer VPC — sensor-to-collector ingest over mTLS

Live Demo Environment — real data, live traffic, full walkthrough

• Demo traffic generator: realistic multi-pattern attack simulation
• Marketplace populated with real integrations from database
• Threat map wired to live threat_events table — no more demo-mode fallback
• Security posture stats computed from real threat_logs traffic tables
• Demo proxy routes write to threat_events on every blocked request
• Seed data: extended SQL, threat intelligence, and threat log fixtures
• Demo kit: playbook, walkthrough, quick-reference, and setup guide

Dashboard Rejuvenation — complete dark-theme sweep, 22 pages rebuilt

• DemoDataBanner across all 22 dashboard pages — graceful degradation when API unavailable
• Compare page redesign with side-by-side feature matrix
• Verification Engine async mode + Stage 3 pipeline
• Command-center real-data guards — zero-response now shows live demo data
• Verification page crash fixed — LazyCharts + array guard on trend data
• Marketplace category-grouped layout with dropdown filters
• Rate-limit 429 RFC 7807 Problem+JSON responses with X-RateLimit-* headers

AI Gateway expansion — 10+ providers, 200+ new test suites, hardening

• Added DeepSeek, Together AI, Fireworks AI, xAI, Ollama, Mistral, Cerebras, Groq (total 10+ providers)
• 200+ new test suites across API Security, MCP Security, AI Gateway, Verification Engine
• 14 security hardening items: ReDoS, WebSocket XFF, CSP nonce, SSRF, Redis namespacing
• SQLAlchemy 2.0 text() compatibility across all migrations
• Auth login 500 error fixed — JWT refresh race condition resolved
• Python and npm dependency security patches

General Availability — unified four-pillar platform ships

• API Security: 1,700+ threat patterns, 7-layer rate limiting, anomaly detection (IsolationForest)
• MCP Security: tool-call monitoring, RBAC, prompt injection detection, OS-level sandbox
• AI Gateway: multi-provider routing (10+ LLMs), BYOK, cost tracking, failover matrix
• Verification Engine: OpenAPI schema validation, JSON constraints, AI output verification
• 8 compliance framework engines: SOC 2, HIPAA, GDPR, PCI DSS, ISO 27001, FedRAMP, CMMC, NIST CSF
• Full dark-theme dashboard — 21 pages redesigned
• Complete breadcrumb navigation across 28 API and AI pages
• PostgreSQL Row Level Security on all 204 org-scoped tables
• Independent pentest: 0 Critical / 0 High / 3 Medium (all resolved)