Release Notes¶

Release 0.15.0¶

License key and internet access required to run Novelty
Added license usage UI with visual reporting of entitlements and consumption
Improved graph query performance by limiting edges returned during traversals
Increased default max SSE line and event sizes to 5MB to prevent infinite retry loops on large messages

File ingest operations now require an allowedDirectories configuration; files loaded by from ./file_ingests are allowed by default
Reduced in-memory lifecycle of passwords by using character arrays that are blanked after use
Enhanced UUID generation to use FIPS 140-2 compliant cryptographically secure random values
Enforced strict-transport-security HTTP header across all endpoints
Added additional HTTP security headers including tightened CSP
Added authentication serialization improvements
Improved secret redaction in configuration printing
ClickHouse persistence now requires credentials to be set via environment variables instead of configuration files

Removed application base url configuration in favor of runtime inference
Improved error response formatting by using correlation codes that link user-facing errors to detailed server logs for easier troubleshooting
Replaced documented IP addresses with RFC 5737 TEST-NET addresses
Removed CloudTrail ingestion functionality including RabbitMQ and Redis dependencies

Updated amazon-kinesis-client to 3.1.3
Updated logback-classic to 1.5.20
Updated caffeine to 3.2.3
Updated pekko-actor, pekko-cluster, and related components to 1.2.1
Updated avro to 1.12.1
Updated commons-csv to 1.14.1
Updated commons-codec to 1.19.0
Updated commons-io to 2.20.0
Updated netty-handler to 4.1.127.Final (security update)
Updated ayza (formerly sslcontext-kickstart) to 10.0.1
Updated AWS SDK components (aws-core, aws-query-protocol, kinesis, kinesis-video, and others) to 2.31.78
Updated scalajs-dom to 2.8.1
Updated msgpack-core to 0.9.10
Updated java-driver-core and java-driver-query-builder to 4.19.1
Updated metrics-core, metrics-jmx, and metrics-json to 4.2.37
Updated amqp-client to 5.26.0
Updated scalacheck to 1.19.0
Updated scala-logging to 3.9.6
Updated pprint to 0.9.4
Updated kind-projector to 0.13.4
Updated org.eclipse.jgit to 7.3.0.202506031305-r
Updated sbt and related components to 1.11.7
Updated sbt-scalafmt to 2.5.6
Updated sbt-jmh to 0.4.8
Updated sbt-sbom to 0.5.0
Updated sbt-scalajs and scalajs-compiler to 1.20.1

Initialize browser history on UI page load, correcting behavior of browser navigation when navigating between tabs, and using the back/forward browser buttons

This patch release includes foundational changes in preparation for an upcoming major release; current functionality remains unaffected.

Optionally support NGINX in Docker image for basic auth by setting USE_NGINX and USE_BASIC_AUTH env vars to “true”

Enable thatDot products to stream data directly to each other using reactive streams

Fix Novelty Exploration UI to correctly show observation node relationship from plots
Fix Novelty Exploration UI quick queries
Update selected context when user selects new context from dropdown on Novelty plots page
Add netty-handler override for CVE-2025-24970