Skip to content

v0.1.0 — first stable release

Choose a tag to compare

View all tags
@Kvendra Kvendra released this 08 May 18:25
· 52 commits to main since this release
v0.1.0
cd8a68c

First stable release of kvendra — multi-platform CLI (macOS / Linux / Windows) with full structural security: allowlist gate, audit log HMAC chain, transport separation, consent gate on destructive ops.

Cumulative scope of all alpha series (alpha.1alpha.11) plus distribution documentation polish (ISSUE-KVD-CLI-041). Closes ROAD-KVD-CLI-001.

Install

From source (cargo install) — recommended

cargo install --git https://github.com/KvendraAI/kvendra-cli kvendra
kvendra --version

Works on macOS, Linux, and Windows (msvc). Requires Rust 1.75+.

Pre-built binaries

Download the unsigned binary for your platform from the assets below.

  • macOS: xattr -d com.apple.quarantine kvendra to bypass Gatekeeper warning.
  • Windows: SmartScreen → "More info" → "Run anyway".
  • Linux: chmod +x kvendra && ./kvendra --version.

See docs/install.md for the full per-platform guide.

Released features

  • Capability-based MCP broker — 7 primitives (git, github, npm, pypi, aws, http, shell) + escape hatch (unsafe.raw_token).
  • Zero-knowledge vault — Argon2id KDF + AES-256-GCM ciphers, master password never persisted (sentinel hash only).
  • Per-profile allowlist YAML — HMAC-signed (sub-key kvendra/allowlist-hmac/v1), TOCTOU-safe, full 22-field DSL.
  • Audit log HMAC chain (sub-key kvendra/audit-hmac/v1) with canonical boundary-event flags: allowlist_denied, profile_expired, unsafe_not_enabled, allowlist_hmac_migrated, recovery_code_replay_attempted, mcp_approval_biometric_*.
  • Transport separation — CLI=TTY (interactive), MCP=approval (consent gate via macOS modal / Windows-Linux dialog).
  • Recovery codes — 8 numeric one-time codes generated at init, regenerable via kvendra config recovery-codes regenerate (double-barrier: master password + TTY re-typed acknowledge).
  • Cross-platform CI matrix — Ubuntu / macOS / Windows, 284 cargo tests passed.
  • E2E smoke harnessscripts/e2e-smoke.sh for pre-tag validation (7 phases T1..F), runnable in GitHub Actions on macos-latest + ubuntu-latest.
  • Distribution docs — README install section, docs/install.md, docs/security.md.

Not in 0.1.0 (future tracks)

  • Touch ID-protected MCP password storage + Apple notarization + Homebrew formula → v0.2.0 (ROAD-KVD-CLI-002, requires Apple Developer ID). v0.1.0 default uses RAM-only cache with consent modal — secure in practice. See docs/security.md and PAT-KVD-CLI-001 (in our knowledge base).
  • Windows Authenticode signing + Linux GPG signing + reproducible builds → v0.3.0+ (ROAD-KVD-CLI-003).

Caveats

  • Smoke real Win+Linux: smoke harness automated en CI matrix (ubuntu-latest + macos-latest). Real-hardware Windows smoke deferred to community dogfooding post-stable. Documented in RUN-KVD-CLI-001.
  • Unsigned binaries: Gatekeeper warning on macOS, SmartScreen on Windows. Bypass instructions above and in docs/install.md.

Migration from alpha series

No breaking changes since alpha.11. Vault, audit log, allowlist YAML all backward-compatible. Alpha users can cargo install --force --git ... to upgrade.

Tag: v0.1.0
Predecessor: v0.1.0-alpha.11 (polish bundle)
ROAD closed: ROAD-KVD-CLI-001 (Path to 0.1.0 stable — multi-platform CLI sin code-signing)

Assets 2
Loading