Skip to content

v0.2.4 — security: secret-read gate + sanitizer hardening

Choose a tag to compare

View all tags
@aura-farming aura-farming released this 29 May 12:17
· 20 commits to main since this release
v0.2.4
71bb566
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

PQA 0.2.4

Recommended for anyone running PQA in auto mode — this release hardens two of the enforcing safety hooks.

Security

  • security_gate now blocks secret reads via xxd/od/hexdump/strings/dd/sed/awk/grep/egrep/fgrep — the previous list was cat/less/head-only, so a byte reader or stream processor bypassed it. Blocked only when targeting a secret path.
  • sanitize now neutralizes forged </UNTRUSTED_RESEARCH> delimiters embedded in research content, so untrusted web text can't break out of the wrapper and be read as instructions.

Added

  • End-to-end tests for the quantum-jump tie-break (and a guard that evidence still beats it).

Fixed / Docs

  • install.sh no longer tells users to set ANTHROPIC_API_KEY (PQA runs on the Claude Code subscription).
  • Corrected the config.py model-alias comment; cross-referenced the duplicated conviction regex.

Updating

  • Plugin: update via Claude Code's /plugin flow (re-sync pqa-marketplace).
  • Manual (install.sh): re-run the installer — your hook copies are frozen at install time:
    ```bash
    git pull && ./scripts/install.sh project # or: system
    ```

Full changelog: https://github.com/aura-farming/pqa/blob/main/CHANGELOG.md

Assets 2
Loading