v0.3.0

[Polliog]

This pull request introduces LogWard v0.3.0, focusing on major new features for security operations, improved deployment and scaling, and enhanced documentation. The highlights include a full-featured SIEM dashboard and incident management system, official C#/.NET SDK, IP reputation enrichment, organization invitations, and significant improvements to Docker deployment for horizontal scaling. Documentation and configuration files have been updated to reflect these changes and provide clearer setup instructions.

Major Feature Additions

• SIEM Dashboard & Incident Management: A comprehensive security dashboard with real-time widgets, MITRE ATT&CK mapping, incident workflow, collaboration, PDF export, and live updates is now available. [1] [2] [3]
• C# / .NET SDK: Official SDK for .NET 6/7/8 with advanced features like batching, retries, circuit breaker, distributed tracing, and ASP.NET Core middleware. [1] [2]
• IP Reputation & GeoIP Enrichment: Backend now supports IP reputation lookups and GeoIP enrichment, with UI integration in incident details.
• Organization Invitations: Users can invite team members, assign roles, manage invitations, and handle expiration.

Deployment & Scaling Improvements

• Horizontal Scaling with Traefik: Added docker/docker-compose.traefik.yml for reverse proxy, load balancing, and multi-instance scaling; updated .env.example and documentation for new scaling workflow. [1] [2] [3] [4]
• Docker Compose & .env Updates: Simplified and clarified configuration, added version pinning for images, and improved environment variable documentation for secure and scalable deployments. [1] [2] [3] [4] [5] [6]

Documentation & UI Updates

• README & Changelog Enhancements: Added SIEM dashboard screenshots, new SDKs, updated setup instructions, and improved feature lists to reflect v0.3.0. [1] [2] [3] [4] [5] [6] [7] [8]

Bug Fixes

• PDF Export Connection: Incident detail page PDF export now correctly wired via the onExportPdf prop.

Versioning & Image Updates

• Updated to v0.3.0: All references and Docker images updated to the new version for consistency and stability. [1] [2] [3] [4]

Let me know if you have questions about any specific changes or want to dive deeper into the new SIEM features or scaling setup!

Closes: #5, Closes: #9, Closes: #20

[codecov]

Codecov Report

❌ Patch coverage is 79.97131% with 698 lines in your changes missing coverage. Please review.

Files with missing lines	Patch %	Lines
packages/backend/src/modules/siem/ipsum-service.ts	22.46%	107 Missing ⚠️
...kages/backend/src/modules/siem/geolite2-service.ts	31.65%	95 Missing ⚠️
packages/backend/src/modules/siem/routes.ts	89.47%	74 Missing ⚠️
packages/backend/src/modules/siem/sse-events.ts	54.48%	71 Missing ⚠️
packages/backend/src/modules/siem/service.ts	86.37%	56 Missing ⚠️
packages/backend/src/modules/invitations/routes.ts	81.33%	42 Missing ⚠️
...es/backend/src/queue/jobs/incident-notification.ts	60.37%	42 Missing ⚠️
packages/backend/src/modules/sigma/service.ts	46.77%	33 Missing ⚠️
packages/backend/src/modules/sigma/routes.ts	42.59%	31 Missing ⚠️
...ckages/backend/src/modules/organizations/routes.ts	77.96%	26 Missing ⚠️
... and 16 more

📢 Thoughts on this report? Let us know!