Skip to content

v0.18.2

Choose a tag to compare

View all tags
@HeadyZhang HeadyZhang released this 10 Mar 01:23
· 13 commits to master since this release
v0.18.2
251fb14

What's Changed

Bug Fixes

  • Fix rule loading pathscan.py now correctly resolves agent_audit/rules/builtin/ (3 parents instead of 2), so PyPI installs load all rules properly
  • Sync all 5 YAML rule files into the package — adds langchain_security_v030.yaml and mcp_security_v030.yaml, updates asi_coverage_v030.yaml
  • Fix unused imports flagged by ruff (F401)
  • Fix mypy type errors in skill scanner integration
  • Use dynamic version in e2e tests instead of hardcoded string

New Features

  • SKILL.md security scanners (AGENT-058~064) — detects obfuscated shell commands, daemon persistence, sandbox overrides, and supply chain risks in Claude Code skill files
  • New rules: AGENT-052 (sensitive data logging), AGENT-053 (agent self-modification)

Full Changelog

v0.17.0...v0.18.2

Install

```bash
pip install agent-audit==0.18.2
```

Assets 4
Loading