v0.2.3

Binary asset sha256: sha256:60d0484b52a7041dcaddfc4ce5a69f790332eed7f2784786db6e111d1de2fe68

What's Changed

• Align detection-only.yml AWF apiProxy config with gh-aw threat-detection by @davidslater with @Copilot in #373
• Remove unused --usage-output / THREAT_DETECTION_USAGE reporting by @davidslater in #376

Full Changelog: v0.2.2...v0.2.3

v0.2.2

Binary asset sha256: sha256:b75ac42b770fdfd9153eeca7fe27ec941971946fe63c600594cf74202bbc395a

What's Changed

• Remove lifecycle registry and yank-release machinery by @davidslater in #366

Full Changelog: v0.2.1...v0.2.2

main (edge build 1b63c01)

Unverified branch build from 1b63c01. Binary asset sha256: sha256:8d5afc20be0c1c55f4887808374a49c369b397bf9d4ccd92bea485ec34e22cb6. The Latest release continues to track the most recently promoted version.

v0.2.1

Binary asset sha256: sha256:f8fcb8f38df28c74277daa34927ee715f900f8fd13f7045c140817d9607f068e

What's Changed

• Distribute threat-detect as a release-asset binary instead of a conta… by @davidslater in #361

Full Changelog: v0.2.0...v0.2.1

v0.2.0

Container image digest: ghcr.io/github/gh-aw-threat-detection@sha256:7f0ab33c89a4855496dfa52b4a260510782f108557630dfa576f31b8f7e40937

What's Changed

• fix(smoke): set OPENAI_API_KEY for codex container sibling so AWF api-proxy steers it by @davidslater in #336
• Route Codex through AWF OpenAI proxy in container smoke by @davidslater in #341
• Align threat-detection-job strictness and model handling with gh-aw by @Copilot in #340
• simplify detection turn/credit controls; wire maxTurns into AWF config by @Copilot in #350
• Fix json.Number dead branches and JSON injection in awf config (PR #350 follow-up) by @Copilot in #351
• feat(detection): emit a structured JSON verdict artifact and conclude in this repo by @davidslater in #354

Full Changelog: v0.1.2...v0.2.0

v0.1.2

Container image digest: ghcr.io/github/gh-aw-threat-detection@sha256:557fff55b294545c9f7eb3be97bd539d31b221e3b8f1a3983e328497d18ee67f

What's Changed

• add aw max ai credits by @davidslater in #328
• fix(smoke): pass explicit detection model in container siblings for AWF BYOK by @davidslater in #329

Full Changelog: v0.1.1...v0.1.2

v0.1.1

Container image digest: ghcr.io/github/gh-aw-threat-detection@sha256:fdc2c93811c57d139845d782b396fbd9f48fab2823c86d44405228235fecec3b

What's Changed

• Emit structured terminal status line on stderr by @davidslater in #322
• [WIP] Fix failing GitHub Actions job 'activation' by @Copilot in #321
• fix copilot comments by @davidslater in #323

Full Changelog: v0.1.0...v0.1.1

v0.1.0

Container image digest: ghcr.io/github/gh-aw-threat-detection@sha256:d1bf17d74d3eab3f9030c7d6085e06e2e679cf3b466c915c492527829a84a2e6

What's Changed

• Remove redundant web-fetch capability test from Smoke Claude by @Copilot in #317
• Fix containerized threat detection result not reaching host detection log by @Copilot in #318
• Davidslater/multiple udates by @davidslater in #319
• Davidslater/further simplify by @davidslater in #320

Full Changelog: v0.0.6...v0.1.0

v0.0.6

Container image digest: ghcr.io/github/gh-aw-threat-detection@sha256:6a57abf49ffdb8b1e3d0e8a422628d5ff9cbd7b7dabf81c22c5cfd1623ebd3e7

What's Changed

• Publish :main and :main- container images on push to main by @Copilot in #127
• Add AOAI end-to-end test workflow (OIDC + API key) by @Copilot in #235
• Align AOAI E2E workflow request body with the responses API by @Copilot in #237
• Update and rename aoai-e2e.yml to aoai-endpoint-smoke-test.yml by @davidslater in #242
• chore(workflows): upgrade gh-aw smoke workflows to v0.77.5 and add copilot-requests permission by @Copilot in #241
• feat(detector): add a threat_detection_result reporting command to replace post-hoc transcript parsing by @Copilot in #239
• chore(workflows): upgrade gh-aw tooling, smoke workflows, and sibling script to v0.79.6 by @Copilot in #298

Full Changelog: v0.0.5...v0.0.6

v0.0.5

Container image digest: ghcr.io/github/gh-aw-threat-detection@sha256:04e717dadfabd57048f49af6e3b0ef96bb2fe7572bd8b9ff41b892c4e89261a2

What's Changed

• Log reflect responses for detection debugging by @davidslater in #122

Full Changelog: v0.0.4...v0.0.5