Logatory

v0.6.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 7d Forensics & Incident Response

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

anomaly-detection cli devops fastapi llm log-analysis

+9 more

logging observability ollama pii python security self-hosted siem threat-detection

Summary

AI summary

Updates Plugins, New source adapters, and New parsers across a mixed release.

Changes in this release

Type	Severity	Summary	CVE
Feature
Feature	Medium	Adds Kubernetes pod log source adapter via kubectl Adds Kubernetes pod log source adapter via kubectl Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Medium	Adds Windows Event Log source adapter with JSON export and live tailing Adds Windows Event Log source adapter with JSON export and live tailing Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Medium	Adds S3 object storage source adapter using aws CLI Adds S3 object storage source adapter using aws CLI Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Medium	Adds Syslog listener supporting UDP/TCP (RFC 3164 & 5424) Adds Syslog listener supporting UDP/TCP (RFC 3164 & 5424) Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Medium	Adds AWS CloudWatch Logs source adapter Adds AWS CloudWatch Logs source adapter Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Medium	Adds GCP Cloud Logging source adapter Adds GCP Cloud Logging source adapter Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Medium	Adds logfmt parser with auto‑detection support Adds logfmt parser with auto‑detection support Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Medium	Adds CEF/LEEF parsers for security appliances Adds CEF/LEEF parsers for security appliances Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Low	Introduces source‑adapter registry as single source of truth Introduces source‑adapter registry as single source of truth Source: llm_adapter@2026-06-12 Confidence: high	—
Feature	Low	Adds structured xlsx log parsing with header-row detection and typed columns Adds structured xlsx log parsing with header-row detection and typed columns Source: granite4.1:30b@2026-06-12-audit Confidence: low	—
Feature	Low	Allows plugins to register custom parsers and source adapters Allows plugins to register custom parsers and source adapters Source: granite4.1:30b@2026-06-12-audit Confidence: low	—
Bugfix	Medium	Fixes German phone‑number PII false positive on date/time fragments Fixes German phone‑number PII false positive on date/time fragments Source: llm_adapter@2026-06-12 Confidence: high	—

Full changelog

Highlights

A big connectivity & extensibility release: six new log sources, two new parsers, and a plugin system that can now register parsers and adapters.

New source adapters

Kubernetes — pod logs via kubectl
Windows Event Log — JSON export + live tailing
S3 / object storage — via the aws CLI
Syslog listener — UDP/TCP (RFC 3164 & 5424)
AWS CloudWatch Logs
GCP Cloud Logging

New parsers

logfmt (key=value) with format auto-detection
CEF / LEEF for security appliances (firewalls, IDS/IPS, etc.)

Plugins

Plugins can now register custom parsers and source adapters, in addition to rules and PII patterns.

Improvements

New source-adapter registry as a single source of truth
Extracted HttpPollingAdapter base for HTTP-based sources
Structured xlsx log parsing (header-row detection, typed columns)
Fixed a German-phone-number PII false positive on date/time fragments
Full test coverage for the stdin and tail adapters (945 tests total)

Docs

Corrected README inaccuracies (rule operators, built-in rule IDs/severities, PII pattern list, LLM API-key env vars)
Added a troubleshooting note explaining why scans only appear in the dashboard with --track-errors

Full changelog: https://github.com/T0nd3/logatory/compare/v0.5.0...v0.6.0

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Logatory

Get notified when new releases ship.

About Logatory

All releases →