releasesecurityenterprise
OmniMon v4.5.0: Enterprise Consolidation & Security Hardening
Enterprise-grade security hardening, consolidated CI/CD pipelines, and production-ready stability improvements across all platforms.
What’s New in v4.5.0
OmniMon v4.5.0 is a stability and security-focused release that brings enterprise-grade improvements across the entire stack.
Highlights
- Security Hardening — Enhanced IPC validation, AppleScript RCE mitigation, and WebSocket path traversal prevention. All Tauri commands now have strict runtime type guards.
- Consolidated CI/CD — Unified GitHub Actions pipeline for all platforms with automated code signing, notarization (macOS), and artifact publishing.
- SEV1/SEV2 Remediation — Critical bug fixes across Rust core, Svelte UI, and infrastructure layers resolved in parallel remediation sprints.
- AI Rules Schema Update — Temporal correlation support added to the dynamic alert rules engine, enabling multi-event pattern detection.
- Playwright E2E Tests — Full end-to-end test suite with Playwright covering all desktop GUI flows.
- Stabilized Telemetry IPC — Finalized the AI rules bridge and stabilized real-time telemetry flow for consistent event delivery.
Security Improvements
| Area | Improvement |
|---|---|
| IPC | Runtime type guards on all commands |
| AppleScript | RCE mitigation via input sanitization |
| WebSocket | Path traversal prevention |
| Credentials | OS-native keyring for all secrets |
| Audit | Encrypted heartbeat snapshots |
Installation
macOS:
brew tap chochy2001/omnimon
brew install --cask omnimonLinux:
curl -fsSL https://get.omnimon.dev | bashWindows: Download the .msi installer from the releases page.