Skip to content

Changelog

All notable releases of Precogly are documented here.

v0.2.0

Release date: May 26, 2026

35 merged PRs covering features, bug fixes, architecture improvements, and operational readiness.

Features

  • Delete functionality for components and countermeasures in Threat Analysis view (#79)
  • Actor and attacker impact fields added to threat records (#70)
  • Show/hide password toggle on login and signup forms (#64)
  • Threat model import/export — added ThreatPersona/ThreatSource models, fixed round-trip fidelity (#86)
  • Cross-framework requirement mappings for compliance overlays (#50)
  • Improved threat model completion status indicators (#84)
  • Threat libraries can now be imported without compliance packs (#98)
  • Schema version added to pack.yaml with validation (#95)

Bug Fixes

  • Threat materialization on re-sync — generate threats for existing components/flows and recalculate risks on orphan deletion (#63)
  • Compliance overlay instances not refreshed after pack update (#60)
  • Library packs can be removed and re-added to threat models (#57)
  • Data flow threats no longer auto-populated from unrelated library packs (#46)
  • Filter threat picker by component's library (#55)
  • Taxonomy pack slug mismatch fix (#65)
  • String-list format in components-threats.yaml now rejected at validation time (#74)
  • Pack version mismatch — sync_all_packs_from_source now correctly returns success=False (#73)
  • Provider parsing, component matching, and UI fallback fix (#48)
  • Form field overflow in modals (#35)
  • Forgot password element positioning fix (#36)
  • npm audit vulnerabilities resolved (#62)
  • tsconfig baseUrl deprecation fix (#67)
  • Validation improvements with messages bubbled up to frontend (#78)
  • Component category enums unified, control_type values consistent across stack (#87)

Architecture / Performance

  • Pack resolution simplified — use filesystem as source of truth with O(1) path-based lookup (#47, #54)
  • Pack directory structure simplified and libraries UI improved (#89)

DevOps / Operational Readiness

  • CI workflow added for PR checks — pytest (via docker compose) + tsc (#90, #91)
  • Branch protection enabled on main (1 review required, status checks must pass)
  • release-please workflow added for automated releases (#93)
  • Version numbers reconciled across frontend, backend, and docs (#92)
  • GitHub Milestones set up for roadmap visibility

Documentation

  • Added recipes section with IEC 62443 and EU banking recipes (#44)
  • CONTRIBUTING.md added and updated (#42, #49)
  • Docs for threat model import/export (#68)
  • Docs for multiple DFD creation (#76)
  • README updated with OWASP affiliation (#71)
  • Discord link added to README (#85)

View on GitHub

v0.1.0 - First stable release

Release date: April 28, 2026

Initial public release of Precogly.

Highlights

  • Core threat modeling workflow
  • DFD editor with nested components, trust zones, and trust boundaries
  • Library packs (AWS, Azure, GCP)
  • Threat analysis and reporting
  • Import and export TM-BOM style JSON files
  • Collaborative workspaces with roles and permissions
  • Compliance mapping (DORA, CRA, ASVS, NIST CSF, SOC 2)
  • Reference image support
  • REST API with OpenAPI documentation

Notes

  • Early-stage release. APIs and data models may change.
  • Recommended for evaluation and feedback, not production use.

View on GitHub