2026-07-02
v0.7.2-alpha
Improved
- Better retrieval quality for repo-wide code Q&A (code.ask / RAG): expanded retrieval results are now smart-reranked by default using code-structure relationships, keeping code.ask answers focused on the relevant content; incremental refresh scoping is also corrected, so the index refresh range after file changes is more accurate — no more over- or under-refreshing
- Enhanced IOC extraction (sec.ioc_extract): defanged notations such as hxxp://, 1[.]2[.]3[.]4 and user[at]example[.]com are restored before extraction; IPs get validity and classification checks, domains are recognized against public suffixes, and private ranges can optionally be excluded to cut false positives; new indicator types include CVE IDs, Windows registry paths, MAC addresses, SHA-512 and Ethereum / Monero wallet addresses; results carry occurrence counts and type labels with pagination support (consistent with sec.strings), plus optional defanged output and match context
Fixed
- Importing / rebuilding sessions no longer falsely reports “already exists”: fixed misplaced write targets and the dedup / ownership conflicts caused by reusing one session ID across workspaces (including sessions missing after import into a newly created workspace, and blank workspaces falsely reporting duplicates), and fixed the return structure of import conflict detection (previously failing because the Wails binding lost the model type); import / rebuild now completes normally
- Session-export redaction now covers nested JSON: redaction recursively descends into nested JSON structures, covering sensitive data in tool-call arguments and results so deeply nested fields are no longer missed
