Changelog

What shipped, and when

Every dated entry below is verified against the commit or pull request that shipped it.

Graph drill-in navigation
The full code graph now supports drill-in navigation with a layered layout, labeled edges, and a scope filter — making it easier to trace dependencies and calls across a large repository.
VibeCop UI overhaul
A refined interaction layer across the whole app: consistent severity tokens on findings, a retuned surface-ramp, and an exploratory graph view for browsing your codebase's structure.
Org-level wallet
Credits and billing are now consolidated at the organization level, replacing the earlier per-product setup — one balance and one subscription per organization.
SAST detector expanded
The static application security testing layer grew from 5 to 18 rules, each with its own severity, CWE and OWASP tags, real line numbers, and full-tree scanning instead of a sample.
Dependency-CVE detector v4
Dependency vulnerability scanning moved to two-phase OSV lookups with CVSS scoring, lockfile transitive-dependency resolution, and EPSS plus CISA KEV enrichment for prioritizing real-world exploit risk.
Detector blackboard
Detector agents now share extracted graph facts on a common bus, so later agents in a scan can build on what earlier agents already found instead of re-deriving it.
Graph edge confidence and architectural hubs
Every graph edge is now tagged extracted or inferred based on how it was resolved, and the graph health view surfaces architectural hub candidates — nodes with unusually high fan-in or fan-out.
AI fix prompts
Every finding now gets a copyable, LLM-generated fix prompt you can hand directly to your coding assistant, instead of writing the fix instructions yourself.
Changelog | VibeCop