Version 2.8.1

2.8.1

Changes

• Tests refactor - improved Testalerters performance using setUpTestData class method (by community - @drona-gyawali)

Bugfix

• Fixed alerts view - Added missing filename to read_config and write_config calls (Google Summer of Code 2025 - @Noble47)

What's Changed

• Fix alerts view read config by @Noble-47 in #391
• Refactor(tests): improve Testalerter performance using setUpTestData by @drona-gyawali in #382
• Develop updated - rebase by @Lorygold in #395
• 2.8.1 by @Lorygold in #396

Full Changelog: 2.8.0...2.8.1

Version 2.8.0

Features

• Added the retry mechanism with exponential backoff for the alerting module (Google Summer of Code 2025 - @kunalsz)
• Added the country_name validator to allow valid ISO 3166-1 country names and ISO 3166-1 Alpha-2 country codes (by community - @drona-gyawali)
• Updated the CI linters versions (compatible with requirements-linters.txt versions)
• Upgraded Django to 5.2

Changes

• Updated the setup_config django mgmt command to customize all the possible fields in the Config model
• Refactored the utils functions to centralize them
• Updated the licence classifier because deprecated

Bugfix

• Fixed the TypeError: string indices must be integers, not 'str' in the ingestion.get_ingestion_sources view

What's Changed

• Retry mechanism with exponential backoff by @kunalsz in #348
• feat:Add country_name validator by @drona-gyawali in #342
• Remove test_send_actual_alert from alerter tests by @kunalsz in #378
• Update contributing file and linters versions in CI by @Lorygold in #377
• Moved test_alert_filter.py into the tests/detection folder by @Lorygold in #370
• 336 feature backend integrate filters into setup config mgmt command by @Lorygold in #338
• Refactor utils functions by @Lorygold in #361
• Moved the countries list file in the config/buffalogs folder by @Lorygold in #385
• Upgraded Django to 5.2 by @Lorygold in #386
• Updated the licence classifier because deprecated by @Lorygold in #387
• 2.8.0 by @Lorygold in #388

Full Changelog: 2.7.0...2.8.0

Version 2.7.0

Features

• Migrated from Elasticsearch client 7.x to 9.0.3 (also in the CI)
• Implement an alert_preferences config, where users can choose which types of alerts they want to receive/prioritize (Google Summer of Code 2025 - @kunalsz)
• Added customizable templates for alerting - Users will be able to define the format of alert messages with the help of placeholders (Google Summer of Code 2025 - @kunalsz)

Changes

• Removed elasticsearch_dsl from requirements
• Refactored API and views module (Google Summer of Code 2025 - @Noble47)
• Updated active_alerter view function to handle multiple active alerters (Google Summer of Code 2025 - @Noble47)
• Refactored test - created validator, detection and task test modules (Google Summer of Code 2025 - @Noble47)
• Refactoring to centralized some utilities functions

What's Changed

• Alert Preferences System by @kunalsz in #322
• Customizable templates by @kunalsz in #350
• Feature [Buffalogs] Alerter Api Endpoints by @Noble-47 in #347
• Updated to Elasticsearch 9 by @Lorygold in #357
• Version 2.7.0 by @Lorygold in #359
• 2.7.0 by @Lorygold in #360

Full Changelog: 2.6.0...2.7.0

Version 2.6.0

Features

• Implemented logic to send separate alert emails to both the compromised user and the admin, based on the recipient_list_admins and recipient_list_users field values in the alerting.json config file (Google Summer of Code 2025 - @kunalsz)
• Created new ingestion API endpoints that let users view and configure log ingestion (Google Summer of Code 2025 - @Noble47)
• Updated some Python dependencies
• Updated elasticsearch and Kibana docker image versions to 7.17.28
• Added healthcheck to the Postgres Docker container
• Added FawltyDeps linter - dependency checker for Python that finds undeclared and/or unused 3rd-party dependencies - for local dev
• Develop a standard alert message formatter to take in all the necessary inputs, ensures a consistent message structure across all alerting platforms (Google Summer of Code 2025 - @kunalsz)

Changes

• Added requirements_opt.txt file that collects the Python dependencies used only with specific configurations
• Converted the Elasticsearch fake data (for tests) generator script into a Django Management Command
• Moved documentation from Wiki to the project docs folder

What's Changed

• Alert Message Formatter by @kunalsz in #315
• Added ingestion api enpoint by @Noble-47 in #324
• Moved documentation from wiki to the project docs folder by @Lorygold in #329
• Converted Elasticsearch fake data generator script into a Django Mgmt… by @Lorygold in #331
• Added healthcheck to the Postgres Docker container by @Lorygold in #332
• Update python dependencies by @Lorygold in #325
• Added PyYAML requirement by @Lorygold in #337
• Email Integration in Users Model by @kunalsz in #320
• 2.6.0 by @Lorygold in #343

Full Changelog: 2.5.0...2.6.0

Version 2.5.0

What's Changed

• Feature/frontend: Alert Details page by @drona-gyawali in #282
• Opensearch testing by @sofie204 in #264
• Update README.md by @Lorygold in #283
• Add advanced alert filtering options – resolves #178 by @drona-gyawali in #284
• Adds GoogleChat Alerter by @kunalsz in #289
• Fixed healtcheck in the frontened Docker container by @Lorygold in #294
• Adds RocketChat Alerter by @kunalsz in #291
• Adds Mattermost Alerter by @kunalsz in #298
• Created views module by @Lorygold in #299
• Added api endpoint to list supported alert types by @Noble-47 in #300
• Standardization of Alerting Module by @kunalsz in #303
• Added buffacli branch for actions by @Lorygold in #305
• Added buffacli_CI workflow by @Lorygold in #307
• Comprehensive Testing by @kunalsz in #309
• 2.5.0 by @Lorygold in #316

New Contributors

• @sofie204 made their first contribution in #264

Full Changelog: 2.4.0...2.5.0

Version 2.4.0

What's Changed

• 2.4.0 by @Lorygold in #287

Full Changelog: 2.3.0...2.4.0

Version 2.3.0

What's Changed

• feat: User Login Activity Dashboard by @drona-gyawali in #275
• Added support for custom dates in impossible_travel command by @rskbansal in #274
• feat: Dockerized Node Js by @drona-gyawali in #263
• Feat export alerts csv final by @eshant742 in #278
• Bug_fix/frontend: Homepage by @drona-gyawali in #280
• 2.3.0 by @Lorygold in #281

Full Changelog: 2.2.0...2.3.0

Version 2.2.0

What's Changed

• updated: consolidate duplicate date conversion and fetch logic by @eshant742 in #252
• Add risk score increment filter by @Lorygold in #254
• Refactor views.py by @kunalsz in #245
• Removed .DS_Store and added it to .gitignore by @rskbansal in #271
• Refactored alerts, unique_alerts and all_logins templates by @Noble-47 in #265
• fix(token-utils): use primitive string return types by @eshant742 in #267
• 2.2.0 by @Lorygold in #273

New Contributors

• @eshant742 made their first contribution in #252

Full Changelog: 2.1.2...2.2.0

Version 2.1.2

What's Changed

• Handled splunklib import because not mandatory by @Lorygold in #249
• 2.1.2 by @Lorygold in #250

Full Changelog: 2.1.1...2.1.2

Version 2.1.1

What's Changed

• Put the NotifyAlertsTask back (removed by mistake) by @Lorygold in #242
• Fixed user-agent parsing in case of a "None" os by @Lorygold in #246
• 2.1.1 by @Lorygold in #248

Full Changelog: 2.1.0...2.1.1