New Features
- Decisions - Update of decisions on events that received no decision on ingestion time while there was no model.
- Feedback - Feedback table redesign with additional functionalities such as column reordering, resizing and pinning.
- Feedback quick filters - Improvement on filters that show buckets that require analyst attention
- Context Enrichment - Jinja built-in filters now available
- Context Enrichment - Ability to preview the templated request before sending it to the REST API
- Monitoring - Stability improvements and cleanup of old component entries in monitoring dashboard
- Aggregated Feedback View - Ability to provide and review feedback on multiple jobs at the same time, easing the
management of many jobs.
- Aggregated Decision Point View - Ability to easily compare and update decision points across multiple jobs, easing the
management of many jobs.
- Model auto-train - Ability to enable auto-retraining of models if there are no outstanding issues
- Generative - Bucket summarization using generative AI
- Integrations - FortiSIEM Input and Post-decision integration
- Integrations - Elasticsearch context enrichment integration
- Integrations - Threatconnect post decision integration - ability to update an existing case in Threatconnect
Bug Fixes
- Filtering - issues on N/A values and lists of values
- Notifications - fix inconsistencies
- Active Directory - role mapping inconsistencies
- Context enrichment - fix handling of dot notation field names, disable of autoescape
- Monitoring dashboard - UI inconsistencies
- Platform - wrong reset of base URL on platform upgrade
- Flows - UI adjustments
- Ingestion - fix file descriptor leak on ingestion component