Changelog
New features, improvements, and fixes shipped to SpoofSentry.
April 6, 2026
NewOutcome measurement dashboard — before/after enforcement proof, TTD/TTR metrics, and ROI widget
NewEnhanced onboarding wizard with role capture, milestone tracking, and guided next actions
NewPublic status page at /status with real-time component health monitoring
NewTrust center at /trust with security controls, compliance frameworks, and subprocessor list
NewEnterprise procurement pack with downloadable security documentation
ImprovedBaseline posture snapshot now auto-captured when a domain is verified
ImprovedDaily outcome snapshots for all verified domains via background worker
March 29, 2026
NewSpoofing campaign timeline reconstruction with IP attribution and volume progression
NewSender Chain of Custody — tamper-evident audit trail for sender authorization lifecycle
NewAI Enforcement Simulator — what-if analysis against real historical traffic
NewDMARC Debt Score — 0-100 daily score with industry percentile benchmarking
ImprovedCompliance evidence bundles now cover 8 frameworks including NIS2 and Australia SMB1001
SecurityResolved OIDC challenge TOCTOU race condition (BH-01)
SecurityFixed SAML ACS tenant isolation gap (BH-02A)
SecurityAI token budget guard now fails closed (BH-03)
March 22, 2026
NewHealthcare BAA management with HIPAA evidence mapping and PHI domain tracking
NewSEC cybersecurity disclosure export for Form 10-K reporting
NewSLA-backed enforcement guarantee with contractual timeline and credit mechanism
NewBIMI/VMC marketplace integration (DigiCert and Entrust)
ImprovedSIEM integrations now support CEF format alongside Splunk HEC, Elastic, Sentinel, and Datadog
ImprovedPSA/RMM integration expanded with billing summary push to ConnectWise and Autotask
FixedFixed rare duplicate sender discovery alerts during high-volume report ingestion
March 15, 2026
NewPrivileged Access Management — grant-based platform roles with break-glass emergency access
NewIP allowlist per tenant with MSSP bypass controls
NewDangling DNS / SubdoMailing detection with risk assessment
ImprovedRBAC expanded to 127 granular permissions across 17 resource types
ImprovedRow-level security now covers 51 database tables
March 1, 2026
NewMSSP multi-tenant platform with portfolio dashboard and pooled billing
NewOIDC + SAML 2.0 SSO with SCIM 2.0 automated provisioning
NewWebAuthn / passkey authentication support
NewTerraform IaC provider for DMARC policy management
ImprovedLookalike domain scanning now detects combo-squats and homoglyphs