skillscript-runtime v0.27.3
Upgrade impact: none (additive). One dashboard rendering fix + docs; no runtime behavior change.
- Dashboard: fixed the skill-source security highlighter leaking character offsets into the rendered body. The approval-review source viewer was showing stray numbers glued to mutation ops and
approved=kwargs (e.g.$ data_write2861 … approved="…"3021). The highlight pass's single-capture-group patterns were treatingString.replace's third callback argument — the match offset, a number — as a capture group, and rendering it. Fixed (typeof p2 === "string"guard); added a regression test that fails on the leak. The stored skill source was never affected — this was render-only. - Adopter-facing docs audit (
adopter-agent-guide.md,adopter-playbook.md,connector-contract-reference.md). Pre-announcement pass for accuracy + no internal leakage:- Removed internal-process references (thread ids, internal-agent names, dev-cadence/roadmap phrasing, an internal substrate name used as an example) and stripped version-provenance citations, keeping only the genuine
v1.0contract-version mentions. - Accuracy: the
SkillStorecontract block + ship-status table were missingmanifest()(claimed 8 methods, listed 7) — corrected, andDataStoremade consistent; theAgentConnectorWakeReceiptinterface block was missingwarnings?: string[]— added; the agent-guide MCP tool reference completed from 13 to the full 17 tools.
- Removed internal-process references (thread ids, internal-agent names, dev-cadence/roadmap phrasing, an internal substrate name used as an example) and stripped version-provenance citations, keeping only the genuine
language-reference.mdre-rendered from atoms — the# OnError:deprecation section now states removal is planned for a post-launch release (after 0.30), replacing the earlier reference to a version that will be skipped.