# Changelog ## Sep 2025 See what’s new and improved in our September update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### Jsmon 2.0 Launched! * **New UI/UX:** Fully revamped to give improved user experience. * **Central Pane:** For monitoring, rescan and overview of scans. * **Intercom:** Support added via Intercom to have chat with technical team or support team. * **Add Ons:** Add ons added for Monitoring, JS Scans to purchase additional API calls. {% endcolumn %} {% endcolumns %}

Improved

* Revamped whole UI/UX

Fixed

* Fixes in microservices

*** ## Feb 2025 See what’s new and improved in our February update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### Free API calls, Bulk Delete, Severe Issues * **Freee API Calls:** Jsmon Free Plan now contains free API calls to test out the Jsmon platform by a new user. * **Bulk Deletion:** Users can now delete multiple JS URLs, domains and file scans in one-click. * **Severe Issues:** A section of severe issues is added in the dashboard that only shows critical, high and medium severity issues found in Jsmon scans. {% endcolumn %} {% endcolumns %}

Improved

* Improved regex detection for S3 buckets. * Secret values are now visible instead of kind of secret in the Keys & Secrets section. * Services field is deprecated in change monitoring section now.

Fixed

* Fixed a bug that was sending exhaustion limits email for cronjob every minute. * Fixed a bug in enterprise query form (HTML sanitization). * Fixed a bug in API call limit exceeded service.

*** ## Jan 2025 See what’s new and improved in our January update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### Fuzzing, Subdomains and False Positives * **JS fuzzing:** URL extractor integrated in the domain scans now automatically fuzzes for common JS files like main.js, common.js, config.js, app.js, bundle.js, etc. * **Subdomain Scan:** Increase your attack surface by turning on subdomain scans when doing a domain scan. It'll auto extract and scan JS files from the main domain and the subdomains of the main domain as well. * **FP filters:** Global false positive filters are implemented to exclude common false positives occuring in the JS intelligence and Keys & Secrets service. {% endcolumn %} {% endcolumns %}

Improved

* Performance improvements in microservices.

Fixed

* Fixed few bugs in microservices intercommunication.

*** ## Dec 2024 See what’s new and improved in our December update. {% columns %} {% column width="50%" %}

{% endcolumn %} {% column width="50%" %} #### Workspaces, Google Oauth and more! * **Workspaces:** Jsmon now supports workspaces. You can seggregate your data between different workspaces. Jsmon CLI uses -wkspId flag along with every flag now to insert/fetch data to/from a particular workspace. * **Google Oauth:** You can now sigin/signup with Google. If you've signed up with a Gmail work account or a normal Gmail account via Gmail, you can still login via Google using the same email. [Checkout Workspaces now!](https://jsmon.sh/workspace) {% endcolumn %} {% endcolumns %}

Improved

* API caching layers are added to reduce API response times. * Shorthand notations in Jsmon CLI are added: -urls, -files and -domains.

Fixed

* Fixed bugs in JS intelligence table and export options.

*** ## Nov 2024 See what’s new and improved in our November update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### Fixes * **Jsmon CLI:** -words is now optional for -scanDomain flag. It automatically fetches the root word from the domain name if not provided. [Download Jsmon CLI now!](https://github.com/rashahacks/jsmon-cli) {% endcolumn %} {% endcolumns %}

Improved

* Improved UI in JS Intelligence.

Fixed

* Fixed API parsing errors in Jsmon CLI.

*** ## Oct 2024 See what’s new and improved in our October update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### Bug Fixes! * Month spent on customer calls and bug fixes. [Go to Jsmon now!](https://jsmon.sh/) {% endcolumn %} {% endcolumns %}

Improved

* Improved Jsmon CLI's help menu.

Fixed

* Parsing errors in various flags.

*** ## Sep 2024 See what’s new and improved in our September update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### Expansion and SES * Added new detections S3 Bucket Takeovers, GraphQL fragments, Domains Statuses and 50 more hardcoded secrets in JS files. * Migrated to AWS SES for sending emails across the whole platform. #### Jsmon CLI * Reverse search flag for searching JS URLs by fields like API paths, URLs, domains, IP addresses, emails, GraphQL operations, GUIDs, etc. * New flags: -getResultsByFileId, -getResultsByJsmonId, -totalAnalysisData to show results for a file scan, for a url scan and all the JS intelligence data respectively. [Download Jsmon CLI now!](https://github.com/rashahacks/jsmon-cli) {% endcolumn %} {% endcolumns %}

Improved

* Backend performance improvement by optimizing heavy DB queries. * Added more DB indexes for reducing the database load.

Fixed

* Fixed bugs in scan file and scan domain endpoints.

*** ## Aug 2024 See what’s new and improved in our August update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### Jsmon CLI * Launched Jsmon CLI for the first-time with flags to scan a JS URL, a file filled with JS URLs, a domain, and fetch data from Jsmon APIs. * Added -gqlOps flag to get GraphQL operations from the analysis service data. [Download Jsmon CLI now!](https://github.com/rashahacks/jsmon-cli) {% endcolumn %} {% endcolumns %}

Improved

* Domain scan is improved now.

Fixed

* A bug is fixed in forgot password. * A bug is fixed in Slack webhook updation.

*** ## July 2024 See what’s new and improved in our July update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### New Services * **Analysis Service:** Looks for URLs, domains, IP addresses, emails, API paths, GraphQL operations inside JS code. * **Scanner service:** Looks for 100+ hardcoded secrets inside JS files. #### Deprecated Services * JS URL Extractor as a service is deprecated and now integrated in the domain scan itself. [Scan with Jsmon now!](https://app.gitbook.com/u/79qTmuOhPBPmycS7yqmmqp1kJgy1) {% endcolumn %} {% endcolumns %}

Improved

* Performance improvement in hash creation of JS responses. * Compare code now happens on the client side instead of server side. * HTTP calls are now made on serverless functions instead of on server.

Fixed

* Fixed few bugs in the url extraction service.

*** ## Mar 2024 See what’s new and improved in our March update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### Change Monitoring * Added Slack webhook URL in notification channels to receive change reports directly on Slack. [Go to Change Monitoring!](https://app.gitbook.com/u/79qTmuOhPBPmycS7yqmmqp1kJgy1) #### Domain Scan * Users can delete the scan results of a domain scan directrly from the Domain Scan section. #### Export * Export JS Intelligence results in .json format. * Export Keys & Secrets results in .json format. * Export JS URLs in .json format. [Go to JS Intelligence now!](https://jsmon.sh/intelligence) {% endcolumn %} {% endcolumns %}

Improved

* Deletion in Domain Scan. * Export in JS Intelligence, URLs, and Keys & Secrets. * Added Slack in Notification Channels.

Fixed

* Fixed few bugs in monitoring backend service.

*** ## Feb 2024 See what’s new and improved in our February update. {% columns %} {% column %}

{% endcolumn %} {% column %} #### **Jsmon Launched!** * **JS Extraction**: Implemented recursive JavaScript URL discovery that crawls up to 3 levels deep to find embedded JavaScript files across domain pages. * **JS Scanner**: Implemented scanning engine that detects 100+ API keys and sensitive data patterns in JavaScript files. * **Compare**: Added diff viewer to track and visualize changes between JavaScript file versions. * **Upload URL**: Added capability to analyze individual JavaScript files via URL submission. * **Rescan URL**: Implemented one-click rescanning of previously analyzed JavaScript URLs to detect changes. * **Upload File**: Added bulk processing support through file uploads containing multiple JavaScript URLs. * **Rescan File**: Enabled batch rescanning of all JavaScript URLs from previously uploaded files. * **Scan All**: Added bulk scanning capability for all JavaScript URLs discovered by the extractor. * **Save All:** Implemented batch export of discovered JavaScript URLs to the Files section for future reference. [Scan with Jsmon now!](https://jsmon.sh/) {% endcolumn %} {% endcolumns %} --- # Agent Instructions: Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter: ``` GET https://knowledge.jsmon.sh/changelog/readme.md?ask= ``` The question should be specific, self-contained, and written in natural language. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.