Releases: HTTPeep/httpeep
Releases · HTTPeep/httpeep
Release list
HTTPeep v0.9.0
HTTPeep v0.9.0
HTTPeep v0.9.0
Released against v0.8.16..HEAD.
What's New
WebSocket Capture & Inspection
- Added end-to-end WebSocket frame capture: the proxy now relays, parses, and persists individual frames for every upgraded WebSocket session.
- Introduced a dedicated WebSocket Messages panel in the session detail view, with a frame details drawer for inspecting payloads and per-direction statistics (client ↔ server frame counts and byte volumes).
- Refined the request table to surface WebSocket frame counts in the relevant cell, so live and historical sessions show traffic at a glance.
- Added a new
websocket_framesstorage table and migration so captured frames survive across app restarts and are available for later inspection and replay tooling. - Extended the desktop bindings and Tauri command surface with WebSocket-specific commands, exposing frames, directional counts, and frame metadata to the UI in a type-safe way.
Session Details
- Added a
dns_envfield to session detail responses so the desktop UI and bundled CLI can show which DNS environment each session resolved against. - Refactored session detail handling for both the desktop app and the bundled CLI/MCP, producing a single shared model and cleaner serialization across surfaces.
- Bundled CLI gained a dedicated
session_detailMCP module, giving CLI/MCP consumers the same rich session detail payload (including DNS env, hooks, and protocol metadata) that the desktop UI uses.
Proxy Reliability
- Strengthened upstream self-connection detection across the HTTP/1, HTTP/2, HTTPS-CONNECT, and rule-first engines. The proxy now actively rejects upstream targets that would loop back into itself, preventing infinite forwarding loops and the runaway CPU/socket usage that could follow.
Bug Fixes
Session List & Details
- Fixed a regression where WebSocket sessions did not consistently update their frame counts and direction summaries in the live session list while traffic was still streaming.
Proxy & Connection Handling
- Resolved a class of hangs and error storms that occurred when a client (mis)configured HTTPeep as its own upstream, by detecting the self-connection at the engine layer and returning a clean rejection instead of recursing.
Notes
- The new WebSocket capture pipeline introduces a database migration; first launch on an existing install will apply the
2026-06-10-000011-add-websocket-framesmigration before captures become available.
Full changelog: httpeep.com/blog/changelog-v0.9.0
HTTPeep v0.8.16
HTTPeep v0.8.16
What's New
Deep Links & Configuration Import
- Added an overwrite confirmation flow for rule-import deeplinks when imported rule IDs already exist.
- Improved imported rule merging so overwritten rules keep their current position and new rules are appended after the existing list.
- Improved DNS override deeplink imports by normalizing rule-level DNS settings before writing them.
Session List & Details
- Improved session note handling across the request table, detail panel, saved filters, and sidebar filter counts by standardizing on the canonical
notefield. - Preserved sessions in filtered views when notes, saved state, colors, tags, or pin state are updated through metadata-only changes.
- Removed the Beta badge from the desktop toolbar for the stable release line.
Licensing & Payment
- Improved purchase attribution from the license activation dialog so pricing-page jumps keep the correct entry reason.
- Added clearer handling for expired activation responses in the desktop activation dialog.
App Startup & Platform Runtime
- Refined desktop and bundled CLI feature flags so desktop-only platform integrations are enabled explicitly while shared runtime crates can build without desktop-only dependencies.
- Switched the shared Sentry dependency to rustls-backed networking for better cross-platform compatibility.
Mobile Platform Foundation
- Added the first mobile runtime foundation for HTTPeep, including a dedicated
httpeep-mobilecrate and a smoke test that verifies the core proxy dependency chain can initialize with an injected mobile data root. - Added iOS and Android cross-compile checks for the shared Rust runtime, helping future mobile builds stay compatible with the desktop/CLI proxy core.
- Improved shared runtime setup with a mobile mode, injected data-root support, mobile-safe instance locking, and mobile fallback device identity handling.
Bug Fixes
Licensing & Payment
- Fixed the Unlock Pro button so it remains clickable inside disabled Pro-gated panels.
- Fixed revoked license activation handling so revoked codes show the proper business-status message and do not write a local license snapshot.
- Fixed production desktop packaging so regular builds no longer default to the Microsoft Store distribution channel.
Proxy & Certificate Setup
- Fixed proxied Root CA downloads by recognizing
/sslcertificate requests in both origin-form and absolute-form URLs. - Improved local proxy host detection for built-in certificate downloads, including loopback and local network interface addresses.
Rules & Session Annotation
- Fixed note-based sidebar filters and saved-session filters so newly saved notes remain visible immediately.
- Fixed rule capture metadata flashes and saved-state calculations to use the canonical note field consistently.
Full changelog: httpeep.com/blog/changelog-v0.8.16
HTTPeep v0.8.15
HTTPeep v0.8.15
What's New
Rules & Sharing
- Added rule sharing from the rules list context menu, copying a Deeplink that can be imported by another HTTPeep client.
- Added clipboard permission support for the desktop context menu sharing flow.
- Refined rule list context-menu behavior so share actions are available without changing the selected rule.
CLI & Updates
- Added
hp update, with platform-aware update guidance for Linux installs, Homebrew installs, and desktop-bundled CLI builds. - Added DNS upsert support to the CLI so global or environment-specific DNS overrides can be created or updated directly from
hp dns. - Improved the bundled CLI command structure for launch, shell, runtime, license, and session workflows while keeping those commands available to desktop users.
- Added pagination and field selection support for
sessions list, making larger captures easier to inspect from the terminal. - Simplified the
hp dnscommand flow while preserving validation before DNS override changes are saved.
Packaging & Distribution
- Added Microsoft Store build configuration and packaging scripts for the desktop app.
- Refreshed desktop icon assets, including Windows Store and Android launcher asset sets used by Tauri packaging.
- Updated the desktop build flow so Store packaging can be produced alongside the regular desktop release artifacts.
Licensing & Payment
- Refined the purchase dialog entry point from bypass rules so the payment action is clearer and uses the updated button behavior.
Bug Fixes
Proxy & Connection Setup
- Fixed an issue where opening the external proxy dialog could pause the proxy unexpectedly.
- Fixed Chromium launch capture for loopback traffic by removing the loopback bypass argument that could trigger local redirect loops.
Session Filtering & Storage
- Fixed endpoint filtering so query strings and fragments are ignored when matching selected domain paths.
- Fixed root-path handling for domain path filters, allowing captures for
https://example.comto match the/endpoint consistently.
App Stability & Tests
- Fixed frontend unit tests around toolbar subscriptions, request filtering, rule sharing, and traffic sidebar interactions.
- Updated generated desktop bindings for the new session filter fields and command surface.
Full changelog: httpeep.com/blog/changelog-v0.8.15
HTTPeep v0.8.14
HTTPeep v0.8.14
What's New
Rules & Session Annotation
- Added a master switch for forward rules, including runtime persistence and toolbar status so rules can be paused without deleting or disabling individual rules.
- Added OR matching for query parameters and headers, with updated rule summaries that show whether conditions are matched with ALL or ANY logic.
- Improved the rules drawer with clearer bypass/pass-through mode cards, rule count/status pills, and stronger visual feedback for active DNS and rule states.
- Added an unsaved-change confirmation when closing the DNS override drawer with local edits still pending.
- Added semantic rule-file fingerprints so metadata-only changes such as timestamps do not trigger unnecessary rule sync churn.
- Improved rule annotation editing by fixing metadata/tag editability and refining highlight color handling.
CLI Capture & App Launch
- Added
hp launchsupport for launching browsers, Electron apps, terminals, and selected apps with HTTPeep proxy capture enabled. - Added automatic proxy startup before CLI launch/shell capture flows, reducing the setup needed before capturing traffic.
- Added Go runtime support to
hp shellterminal capture while keeping module proxy settings untouched. - Expanded the CLI
rulescommand with create, show, update, enable, disable, reorder, delete, list filters, structured file input, and validation workflows.
Traffic Filters & Capture Onboarding
- Added drag-selection for domain filters in the traffic sidebar, including filtered lists and auto-scroll while selecting many domains.
- Improved the empty request table capture actions with stable loading indicators for browser and terminal launch flows.
- Added Root CA dialog copy for host and port context, making first-run capture setup clearer.
- Added app and browser capture icons, including Go capture support in the connect-apps flow.
Telemetry & Diagnostics
- Added desktop PostHog event forwarding for onboarding, paywall, purchase, and first-capture milestones when analytics collection is enabled.
- Improved desktop Sentry initialization with a release-safe default DSN, Tauri HTTP transport, privacy scrubbing, consent-aware breadcrumbs, and startup environment tags.
- Added tracing around app bootstrap readiness, install skip reporting, rule master switch updates, rule-file fingerprints, and runtime connection closes for easier field diagnostics.
- Added a shared app config crate and configuration snapshot plumbing used by the desktop runtime.
Bug Fixes
Proxy & Rules Runtime
- Fixed rule master-switch behavior so disabling forward rules removes them from the runtime engine while preserving saved rule definitions.
- Fixed browser bypass updates not taking effect immediately by sharing live matcher handles and closing active proxy connections after routing changes.
- Unified default system-service bypass groups and restored built-in entries during normalization.
- Fixed DNS override active environment defaults so the app no longer silently falls back to
prodwhen no environment is selected. - Fixed query-parameter rules with empty values so they round-trip as existence checks instead of unsavable exact matches.
- Fixed HTTP/2 sessions that could remain pending after stream completion.
- Fixed HTTP/2 to HTTP/1.1 conversion edge cases in the protocol converter.
HTTP Client
- Fixed the HTTP client proxy assist state so the displayed proxy URL stays in sync with the running HTTPeep proxy host and port.
- Added proxy-config loading for the send request panel when it opens before proxy settings are already available.
App Startup & Packaging
- Fixed a packaged desktop white-screen path caused by Tauri config and frontend readiness notification timing.
- Fixed frontend Sentry reporting in packaged Tauri builds by allowing the Sentry ingest host and using the Tauri HTTP transport.
- Fixed macOS WebView dark-mode flashing by switching affected surfaces to the shared base card component.
- Fixed Windows LAN IP selection to prefer active gateway-backed physical adapters over virtual, tunnel, proxy, CGNAT, or host-only interfaces.
- Fixed unsafe TLS connections by tightening the relevant transport behavior.
UI & Theming
- Fixed rule list and editor styling around duplicate/delete/toggle controls, drag handles, and disabled rule states.
- Fixed Map Local/Map Remote target URL tooltip positioning.
- Fixed WebKit text selection behavior by moving the user-select setting to inline styles where required.
- Fixed the request table loading state and virtual scrolling tests around loading more sessions.
- Fixed terminal shell banner characters that rendered poorly in some terminals.
Full changelog: httpeep.com/blog/changelog-v0.8.14
HTTPeep v0.8.13
HTTPeep v0.8.13
What's New
Rules & Session Annotation
- Added support for OR matching in Query and Header rules, with clearer AND/OR mode labels in the rule editor.
- Refined the matcher editor and rule pipeline so URL matching behaves more consistently across rule types.
App Startup & Stability
- Added startup tracing around app bootstrap and install-skip paths to make launch issues easier to diagnose.
- Improved main-window readiness handling to reduce startup regressions and unnecessary render scheduling.
UI & Theming
- Fixed
user-select: allstyling in packaged builds so copy and selection behavior works consistently in viewers and rule editors.
App Startup & Stability
- Fixed the packaged app blank-window issue by correcting the desktop startup path.
- Fixed legacy startup behavior so the client no longer depends on unnecessary render-time work during boot.
Full changelog: httpeep.com/blog/changelog-v0.8.13
HTTPeep v0.8.12
HTTPeep v0.8.12
What's New
Connection Setup
- Changed the default proxy port to
8800and added quick port presets in the toolbar for common alternatives such as8888,9900, and9999. - Improved proxy startup when the preferred port is busy by trying a fixed set of fallback ports and saving the selected port back into the app configuration.
- Added trace logs for the port retry path so bind attempts, failures, reuse, and selected-port persistence are easier to diagnose.
App Launch & Capture
- Added Ghostty as a terminal launch option for proxy-ready terminal sessions on supported platforms.
- Improved browser, terminal, and Electron launch flows so loading states wait for the external app handoff instead of stopping as soon as the launch command returns.
- Added frontend trace logs for external app launches, including command return, window blur detection, timeouts, and failures.
- Added capture launch loading states in the empty session table so users can see when HTTPeep is opening a browser or terminal for first capture.
Rules & Session Annotation
- Made Query and Header matchers available in the Free plan, including both frontend and Rust runtime entitlement validation.
- Split rule-level upstream proxy gating from global downstream proxy gating, so Pro labels and enforcement match the exact feature being used.
- Added Pro labels and entitlement checks to request context menu actions for gated rule actions, DNS environments, breakpoints, and retry-with-breakpoint flows.
- Refined the rule matcher URL editor with multiline input, clearer preview placement, browser-capture loading feedback, and improved extra-domain display.
- Reordered DNS override actions in the request context menu so global override remains available even when environment-specific DNS configs exist.
Licensing & Payment
- Added a trial confirmation dialog before starting the toolbar Pro trial, with a reusable trial offer panel shared with onboarding.
- Added support for displaying license device limits in the activation dialog and device list responses.
- Added Microsoft Store distribution handling that hides official web purchase links when the app is built for the store channel.
- Added loading states when opening purchase pages from activation and payment dialogs to prevent duplicate clicks.
- Updated pricing and entitlement copy in the desktop client to distinguish Solo and Pro device limits.
Onboarding
- Improved root certificate setup on Windows with guidance for system prompts that may appear behind the HTTPeep window.
- Added automatic progression to the first capture step once the root certificate is trusted.
- Reused the new trial offer panel in onboarding for a more consistent trial/free-choice experience.
- Added loading indicators while onboarding opens a browser or runs the terminal capture request.
App Startup & Stability
- Added legacy frontend build support and polyfills for older WebView runtimes.
- Added startup breadcrumbs around bootstrap and main-window readiness to help diagnose blank-window or early-render failures.
- Updated app and tray icons, including dedicated tray icon assets.
Bug Fixes
Rules & DNS
- Fixed
Ctrl+Son Windows/Linux for saving DNS and Rules changes by using the sharedCmdOrCtrl+Sshortcut matcher. - Fixed gated request-menu actions so locked Pro features show a clear upgrade message before attempting to create unsupported rules.
Media Preview & Inspection
- Fixed JSON Preview and JSON to TypeScript tools so compressed request and response bodies are decompressed before being sent to the tool window.
- Improved body decoding for case-insensitive and multi-value
content-encodingheaders, with fallback behavior when decompression fails. - Added breadcrumbs for JSON tool openings that record direction, content encoding, decompression status, and fallback usage.
Licensing & Updates
- Fixed purchase and renewal links so Microsoft Store builds do not expose official web checkout entry points.
- Fixed device-limit persistence so activation and device refresh flows keep the latest limit in local license state.
App Launch & UI
- Fixed launch buttons that could be clicked repeatedly while an external browser, terminal, or Electron app was still starting.
- Fixed browser and terminal capture buttons in the empty session state to show progress instead of appearing idle during launch.
Full changelog: httpeep.com/blog/changelog-v0.8.12
HTTPeep v0.8.11
HTTPeep v0.8.11
What's New
Timing & Session Accuracy
- Added a dedicated Prepare Request phase to the HTTP timing breakdown, making setup time visible instead of grouping it under unattributed time.
- Improved timing timeline rendering for zero-duration phases and CONNECT sessions so the timing panel stays readable across more captured traffic types.
Send Request
- Added explicit HTTP/1.1 and HTTP/2 request version selection for the built-in HTTP client.
- Changed the Send Request default from automatic protocol selection to HTTP/1.1, while keeping HTTP/2 available through the existing toggle.
DNS Override
- Refined the DNS Override page so global DNS entries remain editable while DNS environments stay behind the Pro entitlement boundary.
- Improved DNS host row editing with better keyboard flow, row-level save behavior, and IP validation before changes are committed.
- Removed the special global DNS highlight from the session list to keep rule highlights as the primary row-level visual annotation.
Licensing & Payment
- Refined the Unlock Pro button styling with a more prominent call to action in gated desktop flows.
Bug Fixes
DNS Override
- Fixed a free-plan save failure where stale DNS environment data in the draft could incorrectly trigger a Pro entitlement error when editing Global DNS settings.
- Fixed runtime DNS entitlement handling so global DNS host overrides can still be applied for free users while environment-specific DNS data is preserved but ignored unless the plan allows it.
- Fixed DNS environment controls so environment add, rename, duplicate, delete, and host edit actions are disabled consistently when the current entitlement does not allow DNS environments.
Send Request
- Fixed the built-in HTTP client so the selected HTTP version is actually applied to outgoing requests.
- Updated redirect default coverage to match the current Send Request redirect limit behavior.
Timing & Session Accuracy
- Fixed timing attribution by moving leftover request setup time into Prepare Request and removing the previous unattributed segment from the timeline.
- Added coverage for timing metric mapping and timing viewer behavior around the new Prepare Request phase.
App Startup & Stability
- Fixed release and CLI packaging workflows so the bundled client-side license public key is available during release builds, preventing packaged binaries from missing license verification configuration.
Full changelog: httpeep.com/blog/changelog-v0.8.11
HTTPeep v0.8.10
HTTPeep v0.8.10
What's New
iOS Simulator Setup
- Added a dedicated iOS Simulator setup flow for macOS, including booted simulator detection, Root CA installation, simulator restart, and direct access to Apple's Simulator app.
- Added setup status checks for Xcode availability, Root CA trust state, certificate path, and currently booted simulator devices.
- Added the iOS Simulator option to the client connection guide so mobile HTTPS debugging can be configured from the desktop app.
Rules & Session Annotation
- Added rule-level capture metadata so sessions matched by a rule can be automatically saved and annotated with importance, background color, notes, and tags.
- Added persistent session tags and visual markers to the session list, with supporting database migration and session update APIs.
- Added strict URL path matching for rule matchers, with UI controls and validation for exact path behavior.
- Improved the rule matcher editor with clearer URL parsing, extra domain handling, host validation, and safer protocol/path serialization.
Media Preview & Inspection
- Enhanced media response preview performance for images and videos.
- Added media metadata inspection from the Session Bar, including format, content type, file size, dimensions, aspect ratio, duration, bitrate, codec information, and range support.
- Added direct navigation from the media resource badge to the response body preview.
- Added body file path access for cached response bodies so large media assets can be previewed through the app asset protocol more efficiently.
Session List & Details
- Improved Session Bar status badges and resource metadata display.
- Added richer Notes and Tools panel styling, including better contrast and highlight color handling.
- Refined highlight color opacity across session annotations and related UI components for better readability.
- Added frontend trace breadcrumbs around media metadata loading and media preview navigation to make preview issues easier to diagnose.
Connection Setup
- Updated terminal setup completion messaging to clearly indicate that traffic from the terminal is now captured automatically.
- Improved the Connect Apps and connection documentation dialogs with better dark-mode behavior and additional setup options.
Licensing & Payment
- Improved the license activation dialog with clearer "where is my code" guidance.
- Refined the purchase-success activation page, activation code presentation, delivery notes, and comparison table layout.
- Fixed the trial entry so users who have already used a trial no longer see the trial request path.
- Moved shared license runtime logic into core code so desktop and CLI license verification can stay consistent.
Bug Fixes
Proxy & System Proxy
- Fixed the top toolbar system proxy switch state when another proxy application owns the system proxy settings.
- Improved system proxy protocol toggles so occupied system proxy states are shown as disabled instead of incorrectly appearing controllable.
- Changed the default proxy port to
9900and improved port bind failure messaging. - Added a frontend proxy auto-start failure event so startup failures can be surfaced in the desktop client.
DNS Override
- Fixed the Session List context menu action for adding a DNS Override from a captured request.
- Fixed free-plan DNS master switch persistence by updating DNS configuration validation to account for enabled state and environment changes.
Rules
- Fixed Delay action editing so toggling Delay no longer drops the existing value or silently restores defaults.
- Fixed MapLocal video drag behavior.
- Improved strict URL matcher validation and conflict handling in the matcher editor.
Timing & Session Accuracy
- Fixed Session Timing attribution issues around request/response phases.
- Fixed session persistence for missing parent connections by recreating the connection before saving the session, preventing foreign-key failures.
- Added serialized database writes to reduce concurrent SQLite write conflicts.
HAR Export
- Fixed HAR export so request and response body data are included correctly.
App Startup & Stability
- Added a startup bootstrap layer that buffers early frontend errors, initializes Sentry in the background, and flushes startup errors after initialization.
- Added main-window visibility checks and a longer frontend-ready timeout to reduce startup flicker and improve diagnostics when the window does not become ready.
- Fixed Windows startup failures caused by missing WebView2 Runtime by embedding the WebView2 bootstrapper in the desktop installer.
UI & Theming
- Fixed dark-mode flashing in Rules and Connect Apps dialogs by introducing a shared Card component style.
- Commented out the Beta banner in the navigation area to keep the toolbar layout stable.
- Improved border styling, panel corner radius, and component color opacity across the desktop UI.
Full changelog: httpeep.com/blog/changelog-v0.8.10
HTTPeep v0.8.9
HTTPeep v0.8.9
✨ What's New
Session List
- Added response throttling indicators with detailed tooltips; Session Bar now color-codes request duration levels for quick visual assessment
- Added a clear-filters button and refined the filtering logic
- Duration Filter now supports
durationHighlight— matching rows are highlighted for instant visibility - Timing info is now accessible directly from the Session Bar for rapid inspection
Detail Panel
- Timing breakdown now covers
BeforeRequestandAfterRequestphases, including delay and breakpoint overhead
Rules
- Added graceful handling for 403 rejected responses, ensuring request details and status codes display correctly in non-error states
- MapLocal / inline content rules now allow empty
contentto support header-only scenarios; removed the previous validation restriction - Match conditions now default to the HTTPS protocol when a protocol is specified during Match configuration, and browser preview opens accordingly
- Updated Action metadata, styling, icons, and color configuration
DNS Override
- Refreshed the visual style for DNS Override hits
🐛 Bug Fixes
Timing & Session Accuracy
- Fixed HTTP/2 Request Hold Timing attribution
- Fixed request delay being incorrectly counted toward Response Waiting time; now separately visible in TimingViewer
- Fixed an edge case where HTTP/2 negotiation fallback to HTTP/1.1 caused errors and duplicate Sessions due to
session_idnot being reused
Breakpoints & Rules
- Fixed breakpoint modal failing to appear under specific conditions
- Fixed Match Editor not surfacing URL validation errors immediately on submit, which caused conflict dialogs during subsequent edits
DNS & Proxy
- Fixed DNS Override being bypassed when Chrome downgraded from HTTP/2 to HTTP/1; simplified DNS Override invocation and implementation
UI & Theming
- Updated HTTPTimingViewer text styling with increased font weight
- Added theme-change handler to fix theme-switching logic across Settings and panels
Settings & Certificates
- Removed the MCP option from Settings (replaced by
httpeep-cliskills; MCP support may be reconsidered when a suitable use case arises) - Fixed certificate URL path from
/certto/ssl
Core
- Fixed
response_compare.beforeincorrectly writing a CONNECT response
Full changelog: httpeep.com/blog/changelog-v0.8.9
HTTPeep v0.8.8
HTTPeep v0.8.8
Here's the organized and translated version:
✨ What's New
- Added HTTPeep CLI SKILLS support (View Details) — enables AI to access network context
- Added SKILLS entry point
- Added Homebrew Cask documentation and update scripts for automated publishing
- Added certificate expiration display with two entry points:
- Certificate section in Settings → General
Expirationfield inhp cert statuscommand output
- Clicking "Open Keychain Access" now directly opens Keychain Access (macOS) or Certificate Manager (Windows)
- Fixed Toast z-index issue in settings modal — Toast should display above the modal
- Added proxy monitoring feature: auto-starts inactive proxies and optimized session time format display
🐛 Bug Fixes
- Fixed CLI not being added to system environment variables after GUI installation on Windows
Full changelog: httpeep.com/blog/changelog-v0.8.8