This release brings powerful local LLM support, smoother request management, and new ways to save and share AI insights.

🚀 New Features

Local LLM Support (Ollama)

• Run AI locally using Ollama models directly on your machine.
• No API costs, save money while keeping everything private.
• Fast and offline-friendly request explanations.

Save AI Explanations and Attack Suggestions

• New save feature for Request Explanations and Attack Vector Suggestions.
• Easily share insights with teammates during pentests.
• Reduce token usage (RPD/TPM) by reusing saved results.

🎨 UI and Workflow Enhancements

Group Deletion for Multi-Tab Capture

• Delete any group when too many domains accumulate.
• Smooth fade-out animation for a cleaner experience.
• No modal dialogs, instant and seamless removal.

🛠️ Improvements and Fixes

• Polished UI transitions and animations.
• Improved performance during heavy multi-tab captures.
• Minor fixes related to grouping and AI interactions.

This release introduces a much more resilient parsing system for handling AI responses.

Improvements

• JSON Repair: Automatically attempts to fix slightly broken JSON returned by the AI.
• Regex Fallback: Extracts individual items using a regex if the main list parsing fails.
• Smarter Defaults: Requests that cannot be categorized now default to "General Request" instead of "Uncategorized".

This ensures smoother handling of complex or imperfect AI outputs.

This release addresses a couple of small but important bugs to improve usability in the Attack Surface view.

🛠️ Fixes & Improvements

• Expand/Collapse Issue: Fixed a bug where request panels didn’t expand or collapse properly.
• Attack Surface “All Requests” View: Resolved display issues ensuring all requests are correctly shown in the Attack Surface panel.

No new features were added; this release focuses on stability and smoother interaction.

This release brings major AI enhancements with Google Gemini support and powerful new ways to organize and analyze your traffic.

🚀 New Features

Google Gemini Integration

• New AI Provider: Added support for Google Gemini (Flash & Pro models).
• Multi-Model Choice: Switch between Anthropic Claude and Google Gemini in settings.

Per-Domain Attack Surface Analysis

• One-Click Analysis: Click the ⚡ button on any domain header to instantly analyze its security posture.
• Dynamic Categorization: AI automatically groups requests into security-relevant categories (e.g., Authentication, Payment Logic).
• Visual Insights: Color-coded categories with confidence badges.
• Toggle View: Easily switch between the standard request list and the attack surface view (📋/⚡).

🎨 Color Tagging & Filtering

• Request Tagging: Tag requests with Red, Green, Blue, Yellow, Purple, or Orange.
• Filter by Color: Quickly isolate interesting requests by filtering for specific color tags.

✨ Enhanced AI Context

• Full Context Analysis: "Explain Request" and "Suggest Attack Vectors" now analyze both the Request and Response together.

🛠️ Improvements & Fixes

• UI Polish: Improved button states and icons.
• Performance: Optimized rendering for large request lists.
• Bug Fixes: Resolved issues with domain visibility and recursion during analysis.

This release introduces powerful new ways to visualize request sequences and customize your workspace.

🚀 New Features

⏱️ Timeline Filter:

Debug and load sequences with ease.

• One-Click Context: Click the clock icon ⏱️ on any request to see exactly what loaded before it.
• Flat Chronological View: Automatically ungroups requests to show a pure, time-ordered list (newest first).
• Domain Badges: Color-coded badges make it easy to distinguish between first-party and third-party requests in the flat view.
• Toggle On/Off: Simply click the active clock icon again to return to the standard grouped view.

↔️ Layout Toggle

Customize rep+ to fit your screen and workflow.

• Split Pane Control: Switch between Horizontal (side-by-side) and Vertical (top-bottom) layouts for the Request/Response panes.
• Persistent Setting: Your layout preference is saved automatically.

👁️ Enhanced Response Views

Inspect data your way.

• Hex View: Analyze binary data with a classic hex dump view.
• Raw View: See the exact raw bytes of the response.
• Pretty View: Syntax-highlighted JSON, XML, and HTML.

Scanner Upgrades

Manage large scan results with ease.

• Pagination: Results are now paginated (10 per page), making it easier to navigate through hundreds of findings without scrolling forever.
• Domain Filtering: Focus your analysis by filtering scan results by specific domains.

Privacy-First Permissions

• On-Demand Access: If a request fails due to missing permissions, Rep+ now prompts you to grant access directly in the response pane. No more generic "Failed to fetch" errors—just click "Grant Permission & Retry" to keep working smoothly.

A cleaner, more organized Rep+ experience with smarter grouping, better secret detection, and key UI fixes.

Hierarchical Request Grouping

Requests are now grouped intelligently based on where they came from.

• Page-Based Groups (📄): Each main page gets its own group.
• Third-Party Nesting (🌐): CDNs, APIs, analytics automatically nest under their parent page.
• Smart Ordering: First-party requests always appear first.
• Clean View: Groups start collapsed + a new Collapse/Expand All button.

⭐ Group Starring & Auto-Star

Track flows with zero effort.

• Star Groups: Keep a Page or Domain group pinned to the top.
• Focused Tracking: Starring a Page Group stars only first-party requests.
• Auto-Star: New requests in starred groups get starred automatically.

Improved Secret Detection

More accuracy, less noise.

• Fewer false positives
• Better context and confidence scoring

Fixes & Improvements

• Multi-Tab Grouping Fix: Requests from other tabs now group correctly.
• Context Menu: Auto-closes after “Explain with AI.”
• UI Polish: Added the Collapse/Expand All button in the sidebar.

What’s New

Privacy-First Capture

rep+ now respects your privacy by default. Broad permissions (webRequest, <all_urls>) are not granted automatically. Full global capture is only activated when you click the 🌍 globe icon, giving you control over what you share.

Optional Permissions

• Global network capture is requested at runtime, only when needed.
• No silent monitoring, your workspace remains lightweight until you enable extra power.

Google Web Store Ready

This release is an important step toward publishing rep+ on the Chrome Web Store. By avoiding overly broad default permissions, we reduce the risk of being flagged by Google, while still keeping the extension fully functional.

Improved UX

• One-time permission prompt ensures Chrome compliance without disrupting your workflow.
• Multi-tab and global visibility continue to work seamlessly after enabling.

New Feature: Multi-Tab Capture

rep+ just got a major upgrade in how it captures traffic:

• Multi-Tab Capture: rep+ now captures network requests from all open browser tabs, not just the inspected one.
• Global Visibility: Monitor traffic across your entire browser session for broader testing coverage.
• Visual Indicators: Requests from non-inspected tabs are clearly marked with a 🌍 globe icon so you instantly know where they came from.

This unlocks more realistic workflows, better debugging, and easier multi-origin testing.

Install or update in Chrome DevTools and enjoy a smarter, wider view of your HTTP traffic. 😎

What’s New

• JS Endpoint Extraction: Automatically extract endpoints from JS files to speed up your testing workflow.
• Request/Response Search: Quickly search requests and responses with powerful filters.
• HTTP & Cookie Parameter Parsing: Analyze and manipulate request parameters more efficiently.
• Pseudo-Header & Submenu Improvements: Removed unnecessary pseudo-headers and fixed submenu positioning for smoother UX.
• Maintainers & Sponsors: Updated README to showcase project sponsors and maintainers.
• Bug Reporting Section: Added guidance for reporting issues directly in the repo.

Improvements

• Updated DevTools permission handling in the manifest.
• General README improvements.

Install the latest version in Chrome DevTools and enjoy faster, smarter, AI-assisted API testing! 😎