Skip to content

v0.1.0-alpha.4

Pre-release
Pre-release

Choose a tag to compare

View all tags
@github-actions github-actions released this 04 Jun 10:13
· 2 commits to main since this release
v0.1.0-alpha.4
bbeee9a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

OpenWebDoc v0.1.0-alpha.4

OpenWebDoc v0.1.0-alpha.4 is a public-readiness contract release for HTMLX
Document Package validation, examples, release assets, and the tag-pinned
GitHub Action validator.

This is still an alpha prerelease. OpenWebDoc does not publish npm packages
during the public preview phase.

Highlights

  • Strengthens the fixed-stage profile contract so fixed-stage packages must
    declare editing metadata before they are accepted as self-editable packages.
  • Keeps public examples, packed .htmlx files, and bundled app copies under the
    release drift gate.
  • Keeps npm package tarballs inspection-ready with package-local license files.
  • Keeps GitHub Action examples pinned to a release tag for external repository
    adoption.
  • Adds a release consistency gate that catches stale active release references
    and mismatched CLI/package versions before tagging.

Security and Profile Contract

HTMLX packages remain untrusted input. The validator continues to reject unsafe
package paths, scripts, inline event handlers, remote resources, stale resource
integrity, stale LLM metadata, and profile mismatches.

The public profile taxonomy is:

  • flow-document for browser-reflowing pageless documents
  • fixed-stage-document for proportional visual documents that declare editing
    stage metadata
  • slide-deck for HTMLX-native 16:9 presentations with presentation metadata

Fixed-stage packages now need package-owned editing metadata. This prevents
visual documents from being treated as self-editable without declaring the
runtime geometry and editing boundary that the OpenWebDoc app needs.

GitHub Action Pin

Use the release tag when adding the validator to another repository:

- uses: lhy0718/OpenWebDoc/.github/actions/validate-htmlx@v0.1.0-alpha.4
  with:
    paths: |
      documents/**/*.htmlx

Use @main only when intentionally testing unreleased validator behavior.

Release Assets

The GitHub Release attaches:

  • npm tarballs for @openwebdoc/spec, @openwebdoc/core,
    @openwebdoc/cli, and @openwebdoc/ui
  • valid example .htmlx packages
  • the static site manifest
  • the spec/docs snapshot archive

The intentionally invalid security fixture is not published as a release asset.

Known Limitations

  • npm registry publication is intentionally deferred.
  • OpenWebDoc app editing remains limited to micro-edits. Larger structural
    changes should use the unpacked package workflow.
  • The GitHub Action is an alpha validation surface, not a long-term stable API.
  • .pptx, .docx, .hwpx, and PDF import/export are outside the alpha scope.

Validation

The release gate is:

pnpm release:check
pnpm smoke:e2e
pnpm pages:smoke

The security-invalid fixture is expected to fail validation.

Links

Assets 22
Loading