Skip to content

pipeline-cli: v0.13.0

Choose a tag to compare

View all tags
@deefactorial deefactorial released this 10 Jun 01:41
pipeline-cli-v0.13.0
05e7f7e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

0.13.0 (2026-06-10)

Features

  • AISDLC-480 surface dispatched-session decisions to Decision Catalog (async escape hatch) (#830) (80cd5a7)
  • AISDLC-481 dispatch-session heartbeat reaper + cancel back-channel (v1 cancel-only) (#827) (9adc050)
  • AISDLC-483 default code/test review to Codex harness (cost control) (#826) (6ff5c39)
  • ci: wire RFC-0043 AQ2 InferenceProxy in sandbox-run (AISDLC-520) (#868) (b23d87d)
  • cli-decisions priority/timebox/resolve/auto-expire — AISDLC-463 core slice (#797) (631d6de)
  • inference.local credential-withholding proxy (AISDLC-510) (#858) (19f3583)
  • orchestrator: AISDLC-449 reverify cached blockers before extending passive heartbeat (#804) (93c3671)
  • orchestrator: instrument parallel-dispatch profiling (AISDLC-479) (#774) (424372e)
  • real DockerSandboxDriver — isolation, enforcement, teardown (AISDLC-508) (#857) (5d01aad)
  • rfc-0043 phase 1 — trust classifier + AST gate + drift workflow (AISDLC-497) (#843) (a94dad8)
  • rfc-0043 phase 2 — report schema + Zod validator + clean-room signer (AISDLC-498) (#844) (e615cb0)
  • rfc-0043 phase 3 — sandbox runner + driver abstraction + resource limits (AISDLC-499) (#845) (7eeced5)
  • rfc-0043 phase 4 — hardened reviewer matrix + prompt-injection hardening (AISDLC-500) (#846) (886d640)
  • rfc-0043 phase 5 — untrusted-pr-gate workflow + flag + degradation (AISDLC-501) (#847) (5927c3d)
  • rfc-0043 phase 7 — differential test execution in sandbox (AISDLC-509) (#859) (68b84a2)
  • rfc-0043 phase 7 — in-sandbox reviewer execution + real verdicts (AISDLC-511) (#860) (fd2ecde)
  • rfc-0043 phase 7 integration glue and resolveModelClient hard error (AISDLC-512) (#861) (44afbb2)

Bug Fixes

  • AISDLC-482 guard rm -rf on possibly-empty path vars (autonomous-run safety) (#823) (afb54d9)
  • ci: AISDLC-475 remove per-SHA v6 attestation bridge — kill the re-sign loop (#808) (e2f17ad)
  • harden 17 ReDoS-prone regexes (CodeQL js/polynomial-redos) (#820) (070864e)
  • orchestrator: anchor **/ glob prefix to separator boundary (AISDLC-505) (#855) (2ca1bc4)
  • orchestrator: narrow DoR Gate 7 regex to dep-phrase + tracked-work-id pairs (AISDLC-457) (#748) (4308763)
  • RFC-0043: port fork-proven UCVG AQ2 fixes to ai-sdlc main (AISDLC-522) (#871) (d6010dd)
  • security: harden command-injection sites (CodeQL js/shell-command-constructed-from-input) (#812) (be944e9)

Dependencies

  • The following workspace dependencies were updated
    • dependencies
      • @ai-sdlc/reference bumped to 0.13.0
Assets 2
Loading