Changelog

What's new in SignalVault.

Blog
v0.10.0

Tool Call Audit Logs

  • Tool calls captured automatically when proxying OpenAI or Anthropic — no SDK changes required, works for streaming and non-streaming
  • "Tools Offered" section on the request detail page showing which tools were exposed to the model on each request
  • PII and secret detection extended to tool inputs and outputs, with the JSON path of the offending field surfaced on every violation
  • Field-level redaction in the audit log — sensitive values masked while sibling fields stay readable for debugging
  • Filter the events list by tool calls alongside requests, violations, errors, and budget
v0.9.0

Launch Hardening

  • Cloudflare Turnstile bot protection and disposable-email domain blocking on sign-up
  • Email verification required before dashboard access, with rate-limited resend
  • Up to 5 API keys per app with labels, last-used tracking, and revocation
  • Real-time event feed in the dashboard — new events appear without a page reload
  • Cursor-based pagination on event lists, 7-day activity counts on app cards, and analytics auto-refresh
  • Production log aggregation with error-rate alerting
v0.8.0

Refreshed UI

  • Redesigned dashboard with new sidebar navigation and improved mobile support
  • Refreshed landing, pricing, blog, and documentation pages
  • Cleaner, more consistent visual design throughout the app
v0.7.0

New Rule Types

  • Prompt injection detection with configurable sensitivity (standard and strict modes)
  • Regex match rule with label support and execution timeout protection
  • Keyword blocklist with case-insensitive word-boundary matching
  • Model allowlist to restrict which AI models an app may use
v0.6.0

Transparent Proxy Endpoint

  • Proxy endpoint: point your existing OpenAI or Anthropic client at SignalVault with a one-line URL change — no SDK required
  • Full guardrail enforcement in-path: block and redact rules stop requests before they reach the upstream provider
  • Streaming (SSE) fully supported for both providers — chunks forwarded in real-time, response logged after stream completes
  • Anthropic token and cost tracking for both streaming and non-streaming responses
  • Rate limiting per app (60 req/min) rather than per IP
v0.5.0

Webhook Alerts, Response Redaction & Data Retention

  • Webhook alerts: send alerts to any HTTPS endpoint — Slack URLs get rich Block Kit messages, all others get plain JSON
  • Response redaction: rules with action 'redact' now mask matched content in stored payloads before write
  • Data retention card in Settings: see your retention period, total stored events, oldest event date, and next purge cutoff
v0.4.0

Email Alerts & Pricing

  • Email alerts for policy violations, budget breaches, and AI errors (Growth plan)
  • Configurable alert settings: event types, minimum severity, cooldown, and recipient
  • Pricing page now lets signed-in users subscribe directly without leaving the page
  • Plans & Billing documentation added
  • Node.js and Python SDK support added
v0.3.0

Budget Controls & Billing

  • Set monthly cost and daily token limits per app
  • Dashboard alerts when budgets are exceeded
  • Export audit logs as CSV or JSON
  • Dashboard analytics: request volume, violation rate, and cost tracking
  • All prompts and responses are now encrypted at rest
  • Stripe billing for Starter and Growth plans
v0.2.0

Security Hardening

  • Stronger API key hashing for improved security
  • Rate limiting on login and API endpoints
  • Improved session security
v0.1.0

Initial Release

  • AI request and response logging with full audit trail
  • Guardrail rules: PII detection, secret scanning, token limits, model allowlists
  • Dashboard with filtering, sorting, and request detail views
  • Node.js SDK with OpenAI-compatible wrapper and mirror mode