vstack 0.48.0
vstack 0.48.0
Organizational behavior, practiced on AI agents. vstack is a curated library
of 34 diagnostic patterns drawn from organizational behavior, social psychology,
and group dynamics — each rewritten for the domain of AI agents rather than
human teams.
Install
pip install valanistack==0.48.0Optional extras: [anthropic], [openai], [ollama], [mcp], [api],
[browser], [langchain], [langgraph], [crewai], [llamaindex],
[pydantic-ai], [adapters], [all].
Docker:
docker pull ghcr.io/valani9/vstack:0.48.0What changed in this release
SARIF output — vstack findings now flow into GitHub code scanning (Security
tab + PR annotations).
Added
vstack-diagnose --sarif— emit a SARIF 2.1.0 report instead of
Markdown/JSON. Each pattern becomes a SARIF rule; each finding a result
whoselevelmaps from severity (critical/high → error, medium/moderate →
warning, low/trace → note). Results carry the trace path as their
artifact location.vstack.diagnose.to_sarif(report, *, trace_uri=..., version=...)— the
public renderer behind the flag.- GitHub Action
sarifinput + output — setsarif: vstack.sarifto also
write a SARIF report (single diagnose run) and upload it with
github/codeql-action/upload-sarif; the example workflow shows the upload.
Findings then appear in the Security tab and as inline PR annotations.
Compatibility
- All tests pass (7 SARIF + 1 Action-SARIF test added). No breaking changes —
--sarifis opt-in.
Verify the install
vstack-doctor # 25+ install checks
vstack-hello # 30-second end-to-end demoResources
- Docs — hosted mkdocs site
- CHANGELOG — full history
- Patterns index — all 34 patterns + literature anchors
- Security policy