Filigran XTM Browser Extension v0.0.19
Added
New TLD Support: Added .me and .company TLDs for domain detection, enabling detection of domains like example[.]me and example[.]company commonly seen in threat intel reports
Fixed
IOC List Highlighting: Fixed partial highlighting of defanged observables in IOC lists (e.g., on threat intel blog posts). When multiple observables exist in the same text node, all occurrences are now properly highlighted. The fix deduplicates matches by position, sorts for proper DOM traversal order, and applies highlights from end to start to prevent node reference invalidation
First IOC Not Highlighted: Fixed first domain in IOC lists not being highlighted when preceded by a sentence ending with a period (e.g., "Sinkholed by MSTIC." followed by "sopatrasoftware[.]net"). The boundary checker now correctly recognizes DOM text node boundaries, so punctuation from a previous paragraph doesn't incorrectly reject the first item as being "inside an identifier"
PDF IOC Highlighting: Applied same highlighting fix to PDF scanner for consistent behavior when multiple entities appear in the same text region
URL Path File Detection: Fixed incorrect detection of filenames at the end of URLs (e.g., public-index.7162a3fd.js in hxxps://account.proton.me/assets/static/public-index.7162a3fd.js). Files following a / in a URL path are no longer detected as separate entities

Filigran XTM Browser Extension v0.0.18
Changed
Scenario Creation UX: After clicking "Generate Scenario with AI", users are now redirected to step 2 (inject selection) instead of being stuck on step 1
Fixed
Panel Mode Cancel Button: Fixed "Cancel" button not working in Create Scenario when using panel mode
AI Inject Selection: Fixed "Select using AI" button in Create Scenario not selecting any injects. The AI prompt now properly includes attack pattern IDs and available inject information for accurate matching