Releases: chanceryhq/chancery
Releases · chanceryhq/chancery
Release list
v0.1.0
Changelog
- da257f7 Cask post-install hook: strip Gatekeeper quarantine from the binary
- 21d0677 Ignore local Stitch design exports
- ae93783 Dashboard visual redesign from the Stitch design system
- 3bda521 Dashboard readability: plain-English events, relative times, capability chips
- e87f007 RFC-014: embedded read-only dashboard at /ui
- ba10d2e Playbook step 5: document response ordering and the stub's id:0
- db1a4e2 Add docs/testing-playbook.md: guided run of every feature (001-013)
- 33a6c83 RFC-013: browser sessions and tokens as governed credentials
- 4d19a05 RFC-012: dynamic agent creation — writ-gated runtime spawn
- 9a125b8 Fix 4 findings from live Vantage dogfooding
- 9a9575a Add docs/verify.md (verify each RFC by hand) + agent version command
- c6ed6e3 docs: governing any agent (MCP-first, not MCP-only)
- 0588ee1 Add CONTRIBUTING.md: build, test, repo layout, RFC-to-test map
- f131570 Add LAUNCH.md — go-live runbook and gates
- 3bf6018 release: use the tap PAT for the Homebrew cask push
- 3ca5aa7 weeks4-8: real-server quickstart, examples, shadow-agent obs, Go SDK, docs
- ac96528 weeks2-3: release packaging — goreleaser, cosign, SBOM, Docker, brew
- f712908 week1: route CLI through the service layer; add audit --follow
- 7d2dbe6 gitignore: exclude local tooling state
- 57463e9 Free-domain path: GitHub Pages + private vulnerability reporting
- 6a86663 RFC-011: open-core boundary — the test, the ledger, the two promises
- c006c95 RFC-010: MVP scope — the 90-day build, demo locked, cutlines named
- 9a1385a RFC-000/009 addenda: extended question set and agentic Top 10 mapping
- 61d1ed6 RFC-009: threat model — STRIDE, OWASP LLM Top 10, and the honest gap table
- bb12309 RFC-008: data model and APIs — REST/JSON /v1, service layer, chancery serve
- a277951 RFC-007: lifecycle and revocation — locked state machines, terminal means terminal
- 05f6f7f RFC-006: audit and attribution — hash-chained, metadata-only evidence
- 26b52f6 RFC-005: runtime enforcement — the MCP proxy, in-path and unbypassable
- 44e030d RFC-004: policy and authorization — layered PDP, locked grammar
- d739d54 RFC-003: credential broker — sealed store, agents never hold secrets
- 9b1b9e5 chancery: registry, identity documents, and writs — first working slice
- 2ca61e7 RFC-002: lineage and delegation — the writ
- 779f3c5 RFC-001: agent identity model
- a70c336 RFC-000: vision and plan for Chancery, the identity provider for AI agents
Verify a download:
cosign verify-blob --certificate checksums.txt.pem \
--signature checksums.txt.sig \
--certificate-identity-regexp 'https://github.com/chanceryhq/chancery' \
--certificate-oidc-issuer https://token.actions.githubusercontent.com \
checksums.txt
Known MVP security gaps are documented in SECURITY.md.