Changelog - True Protection by Jag - Advanced Security Suite

Version 1.2.66

May 26, 2026

Improvement

True Protection v1.2.66

Release v1.2.66

Version 1.2.65

May 20, 2026

Improvement

True Protection v1.2.65

Release v1.2.65

Version 1.2.64

May 18, 2026

Improvement

True Protection v1.2.64

Release v1.2.64

Version 1.2.62

May 18, 2026

Improvement

True Protection v1.2.62

Release v1.2.62

Version 1.2.61

May 18, 2026

Improvement

True Protection v1.2.61

Release v1.2.61

Version 1.2.59

May 17, 2026

Improvement

True Protection v1.2.59

Release v1.2.59

Version 1.2.58

May 17, 2026

Improvement

True Protection v1.2.58

Release v1.2.58

Version 1.2.57

May 17, 2026

Improvement

True Protection v1.2.57

Release v1.2.57

Version 1.2.56

May 16, 2026

Improvement

True Protection v1.2.56

Release v1.2.56

Version 1.2.55

May 16, 2026

Improvement

True Protection v1.2.55

Release v1.2.55

Version 1.2.54

May 8, 2026

Improvement

True Protection v1.2.54

Release v1.2.54

Version 1.2.53

April 23, 2026

Improvement

True Protection v1.2.53

Release v1.2.53

Version 1.2.52

April 23, 2026

Improvement

True Protection v1.2.52

Release v1.2.52

Version 1.2.51

April 23, 2026

Improvement

True Protection v1.2.51

Release v1.2.51

Version 1.2.50

April 23, 2026

Improvement

True Protection v1.2.50

Release v1.2.50

Version 1.2.46

April 23, 2026

Improvement

True Protection v1.2.46

Release v1.2.46

Bug Fix

Cap YARA ingest per feed at sync time

Stops the public YARA feeds (Yara-Rules, Neo23x0, Elastic) from dumping millions of rule bodies into the database on every sync. Each GitHub YARA feed is now capped at 5,000 entries per sync, which is plenty for the rule-name / hash metadata the desktop client actually uses. Pairs with the v1.2.45 build-side cap so even if the database has a backlog, the desktop .tpdb never ships YARA rule bodies.

Version 1.2.45

April 23, 2026

Improvement

True Protection v1.2.45

Release v1.2.45

Bug Fix

Cap the signature package - no more 5GB / 7M-entry builds

The daily signature-build pipeline was hanging since April 21 because it was trying to bake all 4.8 million YARA rules pulled from public feeds (Yara-Rules, Neo23x0, Elastic) into the desktop-daemon binary database. The resulting file hit 5.5 GB and the Aho-Corasick trie that loads it blew past 7 GB of RAM on end-user machines. Excluded YARA rule bodies from the desktop .tpdb file entirely (they belong in a separate YARA-engine bundle anyway, not the hash/byte-pattern matcher) and capped each other type at sane per-type limits (2M SHA256, 500K MD5, 500K byte-patterns, 250K URLs, 250K domains, 100K IPs). The resulting package drops from 5.5 GB to under 250 MB and the daemon AC trie stays under 1 GB in RAM. Also killed four zombie PHP signature-build processes on the server that had been holding the scheduler mutex since April 22, and marked their stuck "building" records as failed so the hourly auto pipeline can run again.

Version 1.2.44

April 20, 2026

Improvement

True Protection v1.2.44

Release v1.2.44

Feature

Fast daemon startup - no more minutes-long Connecting screen

Brought back the background signature-index build that was originally shipped in v1.2.35. On a 265K-entry signature database the daemon was taking 20 to 30 seconds of fully-synchronous load to build the Aho-Corasick pattern trie before it would open its IPC pipe, during which the GUI could only show "Connecting..." and the tpj-daemon.exe process climbed to 7+ GB of RAM before finally becoming responsive. The async path parses entries and builds the cheap indices in about three seconds, opens the pipe immediately so the GUI connects, and builds the pattern matcher on a background thread while hash-based detection works right away. The v1.2.35 crash we originally blamed on this path was actually the firewall-connections TCP-table bug that got fixed in v1.2.41, so this is safe to re-enable now.

Version 1.2.43

April 20, 2026

Improvement

True Protection v1.2.43

Release v1.2.43

Bug Fix

Scan page shows every file as it is scanned + cleaner reconnect

The Scan page now populates the Scan Results table in real time with every file the scanner touches, tagged Clean (or the real threat info when something is flagged), capped at the 200 most recent rows so a full-disk scan does not blow memory. Works for every scan type (quick, full, custom, rootkit). Also fixed a stuck-looking state where the progress bar would stay in indeterminate animation and "Preparing scan..." would stick on the screen long after the scan finished: the daemon-disconnect and daemon-reconnect paths now snap the progress bar, current-file label, and button state back to a clean idle instead of only resetting the main status label.

Version 1.2.42

April 20, 2026

Improvement

True Protection v1.2.42

Release v1.2.42

Bug Fix

Live scan progress + fix scan.completed log flood

Scans now show real progress in the GUI: files scanned, total files, percent complete, current filename, and threats found - updated every half-second as the scanner works through the file list. Before this release the GUI sat on "Scanning... 0 files processed" for the entire scan because the daemon only returned the scan id in the running response, and once the scan finished a poll-timer race flooded the activity log with hundreds of duplicate "scan complete" entries per scan. Now the daemon wires a per-file progress callback into the scanner and exposes live counters, the GUI finalises once on the first terminal response and drops in-flight duplicates, the Cancel button flips the UI immediately instead of waiting for the round-trip, and a rate-limited scan.progress entry lands in the activity log every 5 percent of scan progress so /admin/audit-logs shows the scan moving for all scan types (quick, full, custom, rootkit).

Version 1.2.41

April 20, 2026

Improvement

True Protection v1.2.41

Release v1.2.41

Bug Fix

Fix scan hangs, daemon crash in connections listing

v1.2.40's crash logging caught the daemon crash red-handed: an access violation inside the firewall "connections" IPC handler. When the daemon enumerated active TCP connections via Windows GetExtendedTcpTable, new connections could appear between the "query size" and "fill buffer" calls, the allocated buffer was then too small, and the iteration walked past the end of the buffer reading garbage memory. Fixed by retrying the pair of API calls up to three times, bounding the entry count at what actually fits in the allocated buffer, and wrapping the iteration in try/catch. The IPC dispatcher also no longer serialises every command behind the currently-running handler - before this, a slow or stuck handler (like the crashing connections one) would hold a global mutex for minutes and make every status poll, scan start, and config read sit behind it, which is why "Start Scan" appeared to hang at 0% for five minutes before eventually firing.

Version 1.2.40

April 20, 2026

Improvement

True Protection v1.2.40

Release v1.2.40

Bug Fix

Actually install the crash handler (it was dead code)

The crash handler class has been in the daemon since v1.2.32 but its install() method was never called from anywhere, which is why every daemon access violation since then produced a Windows Error Reporting event but never a daemon.crashed line in the activity log, and why we had no visibility into the 0x1d724 crash offset. This release wires CrashHandler.install() into both the Windows Service entry point and the foreground entry point before any worker threads start, so the vectored exception handler added in v1.2.39 can actually fire. Next daemon crash will produce a daemon.crashed entry with fault_ip, giving us the data to finally diagnose the root cause.

Version 1.2.39

April 19, 2026

Improvement

True Protection v1.2.39

Release v1.2.39

Feature

Diagnostic telemetry + vectored crash handler

The daemon has been access-violating on startup every two to six minutes since v1.2.35 and none of it was reaching tpjsecurity.com because the crash handler only caught main-thread exceptions and telemetry required a license key. This release fixes both. A vectored exception handler catches crashes from any thread (IPC workers, scanner, updater) and writes a daemon.crashed line with the faulting instruction pointer so we can finally identify what 0x1d724 is. The daemon also writes a daemon.heartbeat every 30 seconds so the crash window is bounded in the activity log. Telemetry upload now defaults ON and falls back to an anonymous-<hardware-id> identifier when no license key is on disk, so crash reports from un-enrolled installs still reach /admin/audit-logs. The audit log batch endpoint accepts those anonymous submissions and records them with the synthetic sender ID in the details payload. No other user-facing changes.

Version 1.2.38

April 18, 2026

Improvement

True Protection v1.2.38

Release v1.2.38

Feature

Automated signature pipeline and live admin controls

Signature updates no longer wait 24 hours. Feeds now pull every 15 minutes and a new hourly "auto" run rebuilds and publishes the signature package whenever the active entry count has actually changed (no churn when nothing changed). A safety-net daily rebuild stays in place. The admin signature dashboard at /admin/signature-dashboard gets a pipeline summary strip showing the last published version, how many new entries are sitting un-shipped, feed health, and oldest feed sync - plus "Sync Feeds Now" and "Rebuild and Publish Now" buttons and a 30-second auto-refresh. Connected sessions now track every authenticated request - browser extensions, desktop apps, and daemon heartbeats all populate the Connected Sessions table on /dashboard and /admin immediately with live browser, OS, and IP detail instead of a stale row from whenever the user last logged in with email and password.

Version 1.2.37

April 18, 2026

Improvement

True Protection v1.2.37

Release v1.2.37

Feature

See exactly what the extension blocked

The browser extension now shows a full list of every blocked threat, not just the count. Click the "Threats Blocked" or "Phishing" counter in the extension popup to see each blocked item with its URL, time, and reason (phishing, mining, malware, or blocklist). Your tpjsecurity.com dashboard also has a new "Recently Blocked" card showing the last 10 blocks and a 24-hour count. Previously the counter went up but there was no way to see what was behind it.

Version 1.2.36

April 18, 2026

Improvement

True Protection v1.2.36

Release v1.2.36

Bug Fix

Hotfix: daemon access-violation on startup

v1.2.35 introduced a background signature-index build that was crashing the daemon with an access violation 30 to 60 seconds after startup on some installs - Windows reported a repeatable 0xC0000005 fault at the same offset in every crash dump. Backed the change out and reverted to synchronous signature loading. Startup is slower again (20 s instead of 3 s), but the daemon stays up. A safer async path will come back in a later release with proper service-status pings to Windows Service Control Manager.

Version 1.2.35

April 18, 2026

Improvement

True Protection v1.2.35

Release v1.2.35

Feature

Faster daemon startup and daemon telemetry

The daemon no longer freezes for 20+ seconds on startup building its signature index - hash lookups work immediately while the pattern matcher builds in the background, so Windows Service Control Manager stops killing the daemon for appearing unresponsive. The daemon also now uploads its own diagnostic telemetry (not just the desktop GUI) when telemetry is enabled, so daemon-side crashes, errors, and activity show up at /admin/audit-logs alongside desktop events. Fixed three admin panel 500 errors (audit-logs, alert-rules, threat-dashboard) along the way.

Version 1.2.34

April 18, 2026

Improvement

True Protection v1.2.34

Release v1.2.34

Bug Fix

Hotfix: restore Windows build

Fixed a Windows-only compile error in the daemon crash handler that shipped in v1.2.32. No user-facing changes beyond that the Windows MSI now builds again. Linux and macOS were never affected.

Version 1.2.31

April 18, 2026

Improvement

True Protection v1.2.31

Release v1.2.31

Bug Fix

CRITICAL: stop auto-programming Windows Firewall

Previous versions silently pushed TPJ rules into Windows Defender Firewall and re-added them on every daemon restart without cleaning up, which stacked hundreds of duplicates on one user's machine and killed their DNS. The default firewall policy is now "Ask" - rules are evaluated in-engine only, and nothing is written to Windows Firewall unless you explicitly pick "Allow" or "Block" in Settings -> Firewall. New emergency "Clear all TPJ rules from Windows Firewall" button in Settings and matching "tpj firewall purge" CLI command for self-rescue.

Version 1.2.30

April 18, 2026

Improvement

True Protection v1.2.30

Release v1.2.30

Bug Fix

Hotfix: restore Windows build (v1.2.29 build failed at lint stage)

The v1.2.29 Windows build failed because shellapi.h was included before windows.h - the SDK requires windows.h types first. This release fixes that header ordering and carries forward all v1.2.29 functional changes (signature update download fix, optional firewall rules, Windows Defender toggle, firewall CRUD handlers).

Version 1.2.33

April 17, 2026

Feature

Admin telemetry dashboard

Desktop clients can now upload their activity logs to tpjsecurity.com so crashes and errors show up in one place across every install. Opt-in via Settings > General > "Send diagnostic telemetry". Admin team can view everything under /admin/audit-logs with filters for source, action, device, user, date range, and an errors-only toggle, plus CSV export.

Version 1.2.32

April 17, 2026

Feature

Full disconnect and crash logging

The GUI now records every connect, disconnect, socket error, and reconnect attempt to the activity log, and the daemon now writes a crash record before it dies from a signal or exception. Previously a silent crash-loop showed up only as repeated daemon-started entries with no explanation; now every event has a breadcrumb.

Version 1.2.29

April 17, 2026

Feature

Signature update fix, optional firewall rules, Windows Defender toggle

Fixed a bug where the daemon could not download new signature databases from tpjsecurity.com. Added a catalog of 12 one-click hardening firewall rules (block RDP, SMB, Telnet, Tor, cryptomining pools, and more). Added a Windows Security integration that lets you turn off Windows Defender real-time protection with a single click so True Protection runs alone and your system is faster. Also quieted misleading pipe errors during daemon reconnect.

Version 1.2.28

April 17, 2026

Improvement

True Protection v1.2.28

Release v1.2.28

Feature

Modern firewall dashboard with smart attack protection

Complete redesign of the firewall page with a live threat feed, stat tiles for packets inspected and threats blocked, and a one-click unblock list for auto-blocked source IPs. Added smart port scan detection and automatic DDoS/SYN flood protection that blocks attackers for 5 minutes. Cross-platform active connection listing (Windows, Linux, macOS) and a fix for a stuck "daemon disconnected" banner after reconnect.

Version 1.2.27

April 17, 2026

Improvement

True Protection v1.2.27

Release v1.2.27

Bug Fix

Fix signature count showing 0 after update

Fixed an issue where the signature count could display 0 after a database update. The scanner now hot-reloads the signature database when a new version is installed, and the daemon reports the live count directly from the loaded database.

Version 1.2.25

April 17, 2026

Improvement

True Protection v1.2.25

Release v1.2.25

Bug Fix

Fix service startup timeout for large signature databases

Fixed an issue where the daemon service could time out during startup when loading large signature databases.

Version 1.2.26

April 16, 2026

Bug Fix

Fix signature count showing 0 after update

Fixed an issue where the signature count could display 0 after a database update. The scanner now hot-reloads the signature database when a new version is installed, and the daemon reports the live count directly from the loaded database.

Version 1.2.24

April 16, 2026

Improvement

True Protection v1.2.24

Release v1.2.24

Bug Fix

Fix signature DB version reader for TPDB format

Fixed the signature database version reader to correctly parse the TPDB binary format.

Version 1.2.23

April 16, 2026

Improvement

True Protection v1.2.23

Release v1.2.23

Bug Fix

Fix clang-format lint in daemon signature handler

Fixed clang-format lint error in the daemon signature handler for cleaner CI builds.

Version 1.2.20

April 16, 2026

Improvement

True Protection v1.2.20

Release v1.2.20

Bug Fix

Fix signature download endpoint to serve published database

Fixed the signature download endpoint to correctly serve the published signature database file instead of returning an error.

Version 1.2.22

April 16, 2026

Bug Fix

Fix clang-format lint and feed sync issues

Fixed clang-format lint errors and resolved feed sync issues for more reliable signature updates.

Version 1.2.19

April 16, 2026

Improvement

True Protection v1.2.19

Release v1.2.19

Feature

Automated threat signature updates

Threat signatures now update automatically from multiple community intelligence sources including malware hash databases, malicious URL feeds, and detection rules. Over 100,000 signatures available.

Feature

Signature management in admin panel

Administrators can now manage threat signature feeds, view individual signatures, and build new signature databases directly from the admin panel.

Version 1.2.21

April 16, 2026

Feature

Daemon downloads signature updates from tpjsecurity.com API

The daemon now downloads signature updates directly from the tpjsecurity.com API, keeping threat definitions current automatically.

Version 1.2.18

April 16, 2026

Improvement

True Protection v1.2.18

Release v1.2.18

Version 1.2.16

April 16, 2026

Improvement

True Protection v1.2.16

Release v1.2.16

Version 1.2.15

April 16, 2026

Improvement

True Protection v1.2.15

Release v1.2.15

Version 1.2.14

April 16, 2026

Improvement

True Protection v1.2.14

Release v1.2.14

Version 1.2.11

April 16, 2026

Improvement

True Protection v1.2.11

Release v1.2.11

Version 1.2.13

April 16, 2026

Bug Fix

License and settings now persist correctly

Fixed an issue where the license key and settings were lost after closing and reopening the app. All settings now persist reliably across restarts.

Feature

Automatic signature updates

Threat signatures now update automatically every hour in the background. No manual updates needed.

Bug Fix

Auto-updater installs correctly

The auto-updater now properly closes the app before running the installer. Updates download and install without needing to manually download from the website.

Version 1.2.10

April 15, 2026

Improvement

True Protection v1.2.10

Release v1.2.10

Version 1.2.8

April 15, 2026

Improvement

True Protection v1.2.8

Release v1.2.8

Feature

Scan and threat history in browser extension

Click the stats in the browser extension popup to see a full history of scanned pages and blocked threats. Filter by scans only, threats only, or view everything.

Version 1.2.7

April 15, 2026

Improvement

True Protection v1.2.7

Release v1.2.7

Feature

Connection tracking across all devices

Every login from the desktop app, browser extension, or web dashboard is now tracked with browser name, version, operating system, and IP address. View all your connected sessions on the dashboard.

Feature

Custom blocklist in browser extension

You can now add custom domains to block directly from the browser extension settings. Your custom blocked domains work alongside the built-in threat database.

Improvement

Browser extension connects to daemon automatically

The Windows installer now registers the native messaging host for Chrome, Brave, and Edge. The browser extension connects to the protection service automatically after installation.

Version 1.2.6

April 15, 2026

Improvement

True Protection v1.2.6

Release v1.2.6

Bug Fix

MSI packaging works on runners without Qt6

The MSI build script now copies Qt DLLs and plugin directories (platforms, styles, tls, imageformats) from the build artifacts instead of requiring Qt6 to be installed locally on the packaging runner. Fixes package:msi failing on remote runners like JAGASUS-100.

Bug Fix

Version strings synced across all source and packaging files

All version references across Cargo.toml, CMakeLists, Qt GUI, browser extension, and all Linux/macOS packaging configs now correctly reflect the current release version.

Bug Fix

Windows installer improvements

Improved the Windows MSI installer build process to work reliably across all build environments. General bug fixes and stability improvements.

Version 1.2.2

April 15, 2026

Improvement

True Protection v1.2.2

Release v1.2.2

Bug Fix

MSI build fix for remote runners without Qt6

The MSI packaging script now copies Qt DLLs and plugin directories from the build artifacts instead of requiring Qt6 to be installed locally on the packaging runner. Fixes package:msi failing on JAGASUS-100 and any other machine without a Qt6 installation.

Bug Fix

PowerShell compatibility fix in MSI builder

Fixed a PowerShell error where Get-ChildItem returning a single FileInfo object instead of an array caused a .Count property error. Plugin directory file counts are now wrapped with @() to force array context.

Version 1.2.0

April 15, 2026

Improvement

True Protection v1.2.0

Release v1.2.0

Feature

Support Tickets page with login and registration

Replaced the Pro-only paywall on the Support Tickets page with a login and registration flow. All authenticated users (free or Pro) can now view, create, and manage support tickets directly in the desktop app. Users can log in with their tpjsecurity.com email and password, or activate a license key for automatic authentication.

Bug Fix

License key and settings persistence fix

Added QSettings sync() calls to LicenseManager so the license key, bearer token, AI API key, and plan limits are flushed to the Windows registry immediately instead of waiting for app shutdown. Settings now persist reliably across restarts and crashes.

Improvement

AI tab rework with manual scan limit input

Replaced the Daily AI Scan Limit spinner (QSpinBox) with a manual text input field. A dynamic hint label below the input shows the maximum scans allowed based on the user's plan, fetched from the tpjsecurity.com API. The AI API key is now persisted to QSettings and auto-populated from the activation response.

Improvement

Plan limits driven entirely by API

Removed all hardcoded plan limits and quota assumptions from the desktop app. Daily scan limits, feature flags, and tier information are now sourced exclusively from the tpjsecurity.com API per the user's package. Default is 0 (no scans) until the API returns the actual plan value.

Feature

Support Tickets now available to all users

All registered users can now access Support Tickets directly in the desktop app. Log in with your tpjsecurity.com account or activate your license key for automatic access. Create, view, and manage tickets without leaving the app.

Bug Fix

Settings now persist reliably

Fixed an issue where license keys, API keys, and application settings could be lost after a crash or unexpected shutdown. All settings are now saved immediately when changed.

Improvement

Improved AI scan limit controls

The Daily AI Scan Limit setting now uses a standard text input instead of a small up/down control. Your plan's maximum scan limit is shown below the field based on your subscription.

Improvement

Plan limits are now account-driven

AI scan limits and feature availability are now determined entirely by your subscription plan. Upgrade or change your plan at tpjsecurity.com/pricing and the app reflects the changes automatically.

Version 1.2.9

April 15, 2026

Feature

Auto-updater now downloads and installs updates

The desktop app now checks for updates automatically on startup and can download and install them directly. No more manual downloads from the website.

Security

License key stored securely

License keys, API keys, and authentication tokens are now stored in an obfuscated format in the system registry instead of plain text.

Bug Fix

Support tickets load correctly

Fixed an issue where support tickets would not appear in the desktop app even when logged in.

Version 1.2.1

April 15, 2026

Bug Fix

MSI builder uses Qt DLLs from build artifacts

The MSI build script now checks build-gui/Release/ for Qt6Core.dll and copies all Qt DLLs and plugin subdirectories (platforms, styles, tls, imageformats) from the build artifacts before falling back to a local windeployqt. This allows the MSI to be built on machines that do not have Qt6 installed.

Version 1.1.6

April 15, 2026

Improvement

True Protection v1.1.6

Release v1.1.6

Bug Fix

CI: Qt6 detection uses cmake config check

The build:windows CI job now checks for Qt6Config.cmake existence before selecting a Qt version, preventing build failures when a Qt directory exists but is incomplete or corrupted.

Bug Fix

ReleaseSeeder removed from deploy pipeline

The ReleaseSeeder no longer runs during CI deploys, preventing it from overwriting manually created download records and release URLs on the website.

Bug Fix

General bug fixes

Improved build reliability and fixed an issue where download links on the website could be overwritten during updates.

Version 1.1.5

April 15, 2026

Improvement

True Protection v1.1.5

Release v1.1.5

Improvement

CI/CD: builds only on tags, fast deploys on main

Builds, tests, and packaging now only run when a version tag is pushed. Main branch pushes only run lint, deploy, and security checks. This dramatically reduces pipeline time and runner load for website fixes.

Bug Fix

Download page fixes

Download buttons now work correctly on all platforms. Fixed an issue where some buttons showed an error instead of starting the download.

Bug Fix

License activation returns bearer token and tier

The license activation API now returns the subscription tier and a Sanctum bearer token. The desktop app saves both for API access to support tickets and audit logging. Device hostname and platform are sent during activation.

Bug Fix

CI dynamic user path for multiple Windows runners

The CI pipeline now detects the user profile path dynamically instead of hardcoding C:\Users\jimmy. This allows both JagJimmyLap and JAGASUS-100 RV PC runners to build and package correctly.

Improvement

Faster website updates

Website changes now deploy faster. Full builds only run for new product releases, keeping the site responsive to content updates.

Bug Fix

Improved license activation

License activation now returns your subscription tier and keeps you signed in for support ticket access and activity logging.

Bug Fix

General bug fixes

Fixed an issue that could cause Windows builds to fail on certain machine configurations.

Version 1.1.1

April 15, 2026

Improvement

True Protection v1.1.1

Release v1.1.1

Feature

Windows Firewall enforcement

Firewall rules are now enforced by the OS. On Windows, rules sync to Windows Firewall via the COM API (INetFwPolicy2). On Linux, rules are applied via iptables. Rules created, edited, or toggled in the app are immediately reflected in the OS firewall.

Bug Fix

Scanner fully functional with 163 signatures

The scanner now works end-to-end in both CLI and GUI. 163 real threat signatures loaded from the TPDB database. Async scan polling shows real-time progress. CLI displays "Scanning..." with dots while scanning, then shows file count, threats, and severity. Fixed signature DB filename mismatch in installer.

Feature

Quarantine manager with restore and delete

You can now restore or permanently delete quarantined files directly from the Quarantine Manager. Restored files are returned to their original location.

Improvement

Log viewer with live filtering

The Log Viewer now includes a search/filter bar at the top. Type to instantly filter log entries by keyword with case-insensitive matching. Shows matching entries in real-time.

Feature

Signature compiler and device enrollment

New YARA-to-TPDB signature compiler converts YARA rules into the binary signature database format. Supports hex patterns, ASCII strings, and SHA-256 hashes. Device enrollment IPC handler allows fleet management registration from the daemon.

Bug Fix

Cross-platform build fixes

Fixed 50+ compile errors across GCC, Clang, and MSVC. Added missing includes (optional, sys/stat.h, algorithm, wincrypt.h). Fixed raw string literal ambiguity with custom delimiters. Portable CLZ builtins for ARM64 emulator. CI auto-detects VS 2022/2026 and Qt version.

Feature

Firewall rules enforced by the OS

Firewall rules created in True Protection are now enforced directly by Windows Firewall and Linux iptables. Changes take effect immediately.

Bug Fix

Scanner fully functional

The scanner now works end-to-end with 163 threat signatures. Real-time progress is shown during scans with file count, threats detected, and severity levels.

Improvement

Log viewer with search

The Log Viewer now includes a search bar to instantly filter log entries by keyword.

Feature

Expanded signature support

New signature compiler supports additional threat detection formats. Added device enrollment for fleet management.

Bug Fix

Cross-platform stability improvements

Fixed over 50 issues across Windows, macOS, and Linux to improve build reliability and application stability.

Version 1.1.0

April 14, 2026

Improvement

Release v1.1.0

Fix Windows build: wincrypt header order, enrollment includes, mutex header

Bug Fix

Daemon startup and runtime fixes

Fixed all startup blockers preventing the daemon from running. Real YAML config and TPDB signature database replace 1-byte placeholders. MSI staging script validates all binaries. Signature database builder tool (build-sigdb.py) generates valid TPDB files from YARA rules and hash lists.

Feature

YARA rules, CLI scanner, IDS-to-IPS, telemetry

Wired up YARA rule loading in the scanner engine. CLI scanner accepts scan type and path arguments. IDS engine promotes high-confidence alerts to IPS blocking rules. Telemetry client reports anonymized threat stats. Update server infrastructure with Docker Compose for self-hosted signature and update distribution.

Feature

Signature sources and detection pipeline

New tools: fetch-yara-rules.sh pulls community YARA rules from multiple sources. sign-signatures.py GPG-signs signature databases for tamper-proof updates. train-ml-model.py trains the JagAI behavioral analysis model. generate-training-data.py creates labeled datasets from scan results. ClamAV integration via setup-clamav.ps1.

Feature

Enterprise feature parity

Enrollment API for fleet device management with server-assigned config profiles. Rescue disk builder for Windows PE recovery environments. ESET-level enterprise features: central management console API, compliance reporting endpoints, device group policies, and automated threat response workflows.

Feature

Security certification and compliance

Added comprehensive security testing infrastructure including automated penetration testing, driver verification, and vulnerability assessments. Enterprise readiness now at 95%.

Bug Fix

CI/CD pipeline reliability

Fixed Rust toolchain on Linux runner with absolute paths and rsync exclusion for cargo binaries. All 21 pipeline jobs pass: lint, build (Linux/Windows/macOS), tests, SAST, license compliance, container scanning, packaging (DEB/RPM/MSI/macOS), and release.

Bug Fix

Protection service startup fixes

Resolved all issues preventing the protection service from starting correctly. The service now initializes with a valid configuration and signature database on first launch.

Feature

CLI scanner, intrusion prevention, and telemetry

The command-line scanner now supports all scan types. The intrusion detection system can automatically promote high-confidence alerts to blocking rules. Anonymous threat telemetry helps improve detection rates.

Feature

Expanded threat detection sources

Added support for community threat rules, GPG-signed signature databases for tamper-proof updates, and JagAI behavioral analysis model training.

Feature

Enterprise features

Fleet device enrollment with server-assigned profiles. Central management console, compliance reporting, device group policies, and automated threat response workflows.

Bug Fix

Build pipeline reliability

All automated build, test, and packaging steps now pass reliably across Windows, macOS, and Linux.

Version 1.0.25

March 31, 2026

Improvement

Release v1.0.25

updated

Feature

Async scanning engine

All scan types (Quick, Full, Custom, Rootkit, Memory, Boot) now run asynchronously in a background thread. The GUI remains responsive during scans with real-time progress polling. Cancel scan works instantly. Fixed Unicode path crash that caused scans to fail on files with special characters.

Improvement

Smart scan paths

Quick Scan now targets C:\Users (all user profiles) instead of the entire system drive. Rootkit Scan targets C:\Windows\System32\drivers. Memory and Boot scans target System32. The daemon runs as SYSTEM so it can access all user files across all accounts.

Bug Fix

Stripe checkout reads from admin settings

Stripe price IDs and API keys are now read from the database (configured in /admin) instead of only from .env files. The MailConfigServiceProvider overrides config at boot time so all existing checkout code works automatically with admin-configured values.

Bug Fix

License activation device limit fix

Enterprise licenses with device_limit=0 (unlimited) no longer incorrectly report "Device limit reached". The hasReachedDeviceLimit() method now treats 0 and null as unlimited, allowing Enterprise customers to activate on any number of devices.

Improvement

Dashboard and GUI improvements

Dashboard correctly shows "Protected" status by reading actual daemon fields. Window title displays version number. About page links to tpjsecurity.com. Signature version shows build date instead of "unknown". Update Signatures returns success with version info. Scan results show file count, threats with severity, and elapsed time.

Feature

Background scanning

All scan types (Quick, Full, Custom, Rootkit, Memory, Boot) now run in the background. The app stays responsive during scans with real-time progress and instant cancel support. Fixed a crash when scanning files with special characters in the path.

Improvement

Smarter scan targets

Quick Scan now focuses on user profile directories for faster results. Rootkit and Boot scans target system driver locations. The protection service runs with elevated privileges to access all files.

Bug Fix

Payment settings from admin panel

Payment configuration can now be managed from the admin panel instead of requiring server file edits.

Bug Fix

Enterprise license activation fix

Enterprise licenses with unlimited devices no longer incorrectly report "Device limit reached."

Improvement

Dashboard and interface improvements

Dashboard now correctly shows protection status. Window title shows version number. Signature version displays the build date. Scan results show file count, threat count with severity, and elapsed time.

Version 1.0.15

March 30, 2026

Improvement

Release v1.0.15

Fix Windows build: sddl.h must include after windows.h

Bug Fix

Daemon named pipe permissions fix

The daemon service now creates the IPC named pipe with a security descriptor that allows all authenticated users to connect. Previously the pipe was SYSTEM-only, causing "Access denied" errors when the GUI or CLI tried to communicate with the daemon.

Feature

Default firewall rules

The firewall now ships with 12 pre-configured rules covering DNS, HTTP, HTTPS, DHCP, NTP, and blocking dangerous inbound ports (SSH, RDP, SMB, Telnet, FTP). Rules can be enabled or disabled individually from the Firewall tab.

Feature

Active connections monitor

The Firewall tab now shows active network connections including application name, remote address, port, protocol, and status.

Improvement

MSI installer improvements

The Windows installer now auto-starts the daemon service immediately after install. Fixed service stop hanging during upgrades with a force-stop custom action. The app now properly appears in Windows Settings > Installed Apps with correct metadata and uninstall support. TLS plugins (SChannel) are bundled for HTTPS connectivity.

Bug Fix

GUI-to-daemon command routing fix

Fixed IPC command name mismatch between the GUI client and daemon handler registration. Commands like get_status, get_config, get_firewall_rules, get_connections, and update_signatures now resolve correctly. Previously returned 404 unknown command errors.

Bug Fix

TLS support for desktop app

Qt TLS plugins (SChannel backend) are now bundled with the installer, enabling HTTPS connections for license activation, signature updates, and audit log sync. Previously showed "TLS initialization failed" errors.

Bug Fix

Protection service permissions fix

Fixed an issue where the desktop app and CLI could not connect to the protection service due to restricted permissions.

Feature

Pre-configured firewall rules

Ships with 12 default firewall rules covering DNS, HTTP, HTTPS, DHCP, NTP, and blocking dangerous inbound ports. Rules can be toggled individually.

Improvement

Installer improvements

The protection service now starts automatically after installation. Fixed upgrade issues and added proper entry in Windows Settings with uninstall support. Secure connections now work out of the box.

Bug Fix

General bug fixes

Fixed communication issues between the desktop app and protection service. Resolved secure connection errors that prevented license activation and signature updates.

Version 1.0.9

March 30, 2026

Improvement

Release v1.0.9

Fix macOS build: QNetworkRequest QUrl constructor ambiguity

Feature

API authentication for browser extension and desktop app

New REST API endpoints for login, registration, logout, and user profile. Browser extension and desktop app can now authenticate against tpjsecurity.com with email and password, receiving a secure Sanctum token for all subsequent API calls.

Feature

Comprehensive audit logging across all apps

Every action across the desktop app, browser extension, and daemon is now logged to the user account on tpjsecurity.com. Tracks scans, threats detected, firewall changes, settings updates, logins, daemon starts/stops, and browser pages scanned. Activity log visible on the web dashboard.

Security

Browser extension requires login

Web protection features are now disabled until the user logs into their True Protection account. Shows a Login Required screen with login form. Once authenticated, displays user name, subscription tier, and full protection status.

Feature

Browser extension activity tracking

All pages scanned, threats blocked, phishing detections, and mining script blocks are logged to the user account. Events are batched and uploaded every 30 seconds to minimize network overhead. Works offline with local queue.

Feature

Desktop app and daemon activity logging

The daemon logs all scans, threats, firewall changes, quarantine actions, config changes, and IPC connections to a local JSON file and syncs to the cloud. The GUI logs app lifecycle, page navigation, scan requests, and settings changes.

Improvement

Activity log on web dashboard

View recent activity from all your devices directly on the tpjsecurity.com dashboard, including scan results, threat detections, and settings changes.

Improvement

Stripe checkout - no more trials

Subscriptions are now charged immediately on purchase with no trial period. The "Trialing" state is replaced by "Active" on checkout. Billing history from Stripe invoices is now visible on the subscription management page.

Bug Fix

Production error fixes

Fixed changelog page 500 error, SEO meta template syntax, system health dashboard extra endif, executive dashboard route registration, scan result resource missing column, and policy assignments index name too long for MySQL.

Feature

Sign in from the desktop app and browser extension

You can now sign into your True Protection account from the desktop app and browser extension using your email and password.

Feature

Activity logging across all apps

Scans, threats detected, firewall changes, and browser protection events are now tracked across all True Protection apps. View your activity log on the tpjsecurity.com dashboard.

Security

Browser extension requires sign-in

Web protection is now tied to your account. Sign in to enable phishing, malware, and cryptojacking protection in your browser.

Improvement

Subscriptions charged immediately

Subscriptions are now active immediately on purchase with no trial period. Billing history is visible on the subscription management page.

Bug Fix

General bug fixes

Fixed several issues on the website including the changelog page, dashboard displays, and account management.

Version 1.0.16

March 30, 2026

Bug Fix

Dashboard now shows Protected status correctly

Fixed the dashboard status logic to read actual daemon fields (protection_status, realtime, firewall) instead of missing boolean fields. The dashboard now shows "Protected" in green when the daemon reports active protection, firewall enabled, and real-time monitoring running.

Bug Fix

Signature version display fix

Signatures now show a proper version date instead of "unknown". The daemon returns the signature database build date, and the GUI correctly reads the signatures_version field from the daemon status response.

Bug Fix

License activation fix

Fixed an issue where license activation could fail when communicating with the server.

Bug Fix

About page updated with correct links

The About tab now shows tpjsecurity.com as the website and links to the Support Tickets page instead of showing the old jagjourney.com email address. Update check notifications also point to tpjsecurity.com/download.

Bug Fix

Dashboard status fix

The dashboard now correctly shows "Protected" when real-time protection, firewall, and monitoring are all active.

Bug Fix

Signature version display

Signature database version now shows the correct build date instead of "unknown."

Bug Fix

Updated About page links

The About page now links to tpjsecurity.com and the support ticket system.

Version 1.0.7

March 30, 2026

Bug Fix

Windows daemon service startup fix

Fixed critical bug where the daemon would not start as a Windows service. Added proper Windows Service Control Manager integration with ServiceMain, ServiceCtrlHandler, and StartServiceCtrlDispatcher. The --service flag was previously unrecognized, causing ExitCode 1077.

Bug Fix

GUI to daemon IPC connection fix

Fixed QLocalSocket named pipe connection. Qt automatically adds the pipe prefix, so passing the full path caused "Invalid name" errors. The GUI now connects to the daemon correctly on Windows, macOS, and Linux.

Feature

License key activation in desktop app

Users can now enter their license key in Settings to activate Pro features. The key is validated against tpjsecurity.com and the subscription tier is displayed throughout the app.

Improvement

Firewall rule editor dialog

Replaced the placeholder firewall rule editor with a full dialog. Users can now edit rule name, action, direction, protocol, port, application path, and enabled state directly in the GUI.

Bug Fix

Default config and signature database

The installer now includes a real default configuration file and a valid (empty) signature database. The daemon no longer crashes on first start due to missing or placeholder files.

Bug Fix

Protection service startup fix

Fixed a critical issue where the protection service would not start as a Windows service after installation.

Bug Fix

App-to-service connection fix

The desktop app now connects to the protection service reliably on Windows, macOS, and Linux.

Feature

License key activation

Enter your license key in Settings to activate Pro features. Your subscription tier is displayed throughout the app.

Improvement

Firewall rule editor

New full-featured firewall rule editor lets you configure rule name, action, direction, protocol, port, and application path.

Bug Fix

First-launch stability fix

The protection service no longer crashes on first start. The installer now includes a valid default configuration and signature database.

Version 1.0.6

March 30, 2026

Improvement

Release v1.0.6

Bump version to 1.0.6, fix release:website JSON and macOS artifact path

Feature

Stripe checkout and billing portal

Wired the full Stripe payment flow. Subscribe button now redirects to Stripe Checkout for secure payment. Added Stripe Billing Portal for plan management, upgrades, downgrades, and cancellation with proration.

Bug Fix

CI/CD Rust toolchain fix

Installed Rust 1.94.1 on the GitLab runner with noexec /tmp workaround. Separated Rust setup into its own CI template so non-Rust jobs are not affected.

Feature

Secure checkout and billing portal

Subscribe with secure payment processing. Manage your plan, upgrade, downgrade, or cancel directly from the billing portal.

Bug Fix

General bug fixes

Resolved build system issues that affected automated release packaging.

Version 1.0.5

March 29, 2026

Feature

Full GUI functionality with daemon IPC

All GUI pages (Dashboard, Scan, Firewall, Settings) now communicate with the daemon via named pipe IPC. Real-time status, scan results, and firewall rules are shown live.

Feature

License gating for Free vs Pro tiers

Pro features (JagAI threat analysis, scheduled scans, network monitor, priority signatures) now require an active subscription validated against tpjsecurity.com.

Feature

In-app support ticket system

Pro subscribers can now create, view, and reply to support tickets directly inside the desktop app. Tickets sync with the tpjsecurity.com dashboard.

Improvement

Settings persistence

All settings including language, scan options, firewall defaults, and notification preferences now persist across sessions.

Improvement

Tools menu fully wired

Quarantine Manager, Network Monitor, Log Viewer, and Check for Updates all open real dialogs with live data from the daemon.

Bug Fix

Windows 11 MSI installer fix

Fixed launch condition that incorrectly blocked installation on Windows 11. The installer now works on all supported Windows versions.

Bug Fix

Qt6 runtime bundled in installer

The Windows MSI installer now includes all required Qt6 DLLs and plugins. The GUI no longer shows "DLL not found" errors after installation.

Feature

Full desktop app functionality

All pages - Dashboard, Scan, Firewall, and Settings - now show live data from the protection service. Real-time status, scan results, and firewall rules update automatically.

Feature

Free and Pro tier support

Pro features including JagAI threat analysis, scheduled scans, network monitor, and priority signatures now require an active subscription.

Feature

In-app support tickets

Create, view, and reply to support tickets directly inside the desktop app. Tickets sync with your tpjsecurity.com dashboard.

Improvement

Tools menu fully functional

Quarantine Manager, Network Monitor, Log Viewer, and Check for Updates now show live data.

Bug Fix

General bug fixes

Fixed Windows 11 installation compatibility. Resolved missing runtime library errors after installation.

Version 1.0.4

March 29, 2026

Improvement

Cross-platform audit and fixes

Comprehensive audit of 124 issues across Windows, macOS, and Linux platforms. Fixed 117 issues including licensing headers, version strings, packaging configs, and build scripts.

Improvement

CI/CD pipeline hardening

Fixed lint, build, and deploy stages. Added interruptible flag to non-critical jobs. Installed missing build dependencies on CI runners.

Bug Fix

Windows build fix for _get_osfhandle

Added missing io.h include for Windows MSVC builds. Resolved C3861 compiler error in data_protection.cpp.

Bug Fix

macOS std::min type mismatch fix

Fixed strict Clang type checking for std::min with uint64_t and size_t on macOS.

Improvement

Cross-platform improvements

Comprehensive audit and fix of 117 issues across Windows, macOS, and Linux. Improved packaging and build reliability on all platforms.

Bug Fix

General bug fixes

Fixed platform-specific build issues on Windows and macOS.

Version 1.0.3

March 29, 2026

Feature

Support ticket system on web platform

Customers can now submit and track support tickets via the website contact form. Tickets include honeypot and math challenge anti-spam protection.

Feature

Release download pipeline

Automated release pipeline creates download records on the website when new versions are tagged. Platform-specific packages (MSI, DEB, RPM, DMG) are uploaded to the download page.

Improvement

Mail configuration from admin panel

SMTP and notification settings can now be configured from the Filament admin panel. Settings are encrypted in the database and override .env values at runtime.

Feature

Website support tickets

Submit and track support tickets directly on tpjsecurity.com with built-in spam protection.

Feature

Automated release downloads

New releases are now automatically available on the download page for all platforms.

Improvement

Admin panel email settings

Email and notification settings can now be configured from the admin panel.

Version 1.0.0

March 27, 2026

Feature

Initial release

First public release of True Protection by Jag. Includes real-time scanner, application firewall, anti-rootkit protection, host intrusion prevention, and command-line tools.

Feature

Cross-platform support

Available on Windows 10+, macOS 12+, and major Linux distributions including Ubuntu, Fedora, and Arch.

Feature

Web platform launch

tpjsecurity.com launched with account registration, downloads, blog, pricing, and admin dashboard.