v0.4.0
·
526 commits
to main
since this release
Changes
- fix!: prevent plaintext API key storage via setup wizard (#97)
- refactor: use Symfony Uuid::v7() instead of manual UUID generation
- fix!: prevent plaintext API key storage via setup wizard
- chore(deps): update dependency @types/node to v24.12.0 (#96)
- chore(deps): update dependency @types/node to v24.12.0
- chore(deps): update dependency @types/node to v24.11.2 (#95)
- chore(deps): update dependency @types/node to v24.11.2
- chore(deps): update step-security/harden-runner action to v2.15.1 (#94)
- fix: cast ExtensionConfiguration timeout values to int
- chore(deps): update step-security/harden-runner action to v2.15.1
- chore(deps): update valkey/valkey docker tag to v9 (#89)
- chore(deps): update mariadb docker tag to v12 (#87)
- chore(deps): update actions/setup-node action to v6.3.0 (#93)
- chore(deps): update actions/setup-node action to v6.3.0
- chore: add pre-push tag version validation
- chore(deps): update valkey/valkey docker tag to v9
- chore(deps): update mariadb docker tag to v12
Installation
composer require netresearch/nr-llmSecurity
All release artifacts are signed with Sigstore keyless signing.
Verify signatures
cosign verify-blob \
--bundle nr-llm-0.4.0.zip.bundle \
--certificate-identity-regexp "https://github.com/netresearch/.*" \
--certificate-oidc-issuer "https://token.actions.githubusercontent.com" \
nr-llm-0.4.0.zipVerify checksums
sha256sum -c checksums.txtSoftware Bill of Materials (SBOM)
SBOMs are provided in both SPDX and CycloneDX formats for supply chain transparency.