Skip to content

vstack 0.48.0

Choose a tag to compare

@github-actions github-actions released this 23 Jun 12:58

vstack 0.48.0

Organizational behavior, practiced on AI agents. vstack is a curated library
of 34 diagnostic patterns drawn from organizational behavior, social psychology,
and group dynamics — each rewritten for the domain of AI agents rather than
human teams.

Install

pip install valanistack==0.48.0

Optional extras: [anthropic], [openai], [ollama], [mcp], [api],
[browser], [langchain], [langgraph], [crewai], [llamaindex],
[pydantic-ai], [adapters], [all].

Docker:

docker pull ghcr.io/valani9/vstack:0.48.0

What changed in this release

SARIF output — vstack findings now flow into GitHub code scanning (Security
tab + PR annotations).

Added

  • vstack-diagnose --sarif — emit a SARIF 2.1.0 report instead of
    Markdown/JSON. Each pattern becomes a SARIF rule; each finding a result
    whose level maps from severity (critical/high → error, medium/moderate →
    warning, low/trace → note). Results carry the trace path as their
    artifact location.
  • vstack.diagnose.to_sarif(report, *, trace_uri=..., version=...) — the
    public renderer behind the flag.
  • GitHub Action sarif input + output — set sarif: vstack.sarif to also
    write a SARIF report (single diagnose run) and upload it with
    github/codeql-action/upload-sarif; the example workflow shows the upload.
    Findings then appear in the Security tab and as inline PR annotations.

Compatibility

  • All tests pass (7 SARIF + 1 Action-SARIF test added). No breaking changes —
    --sarif is opt-in.

Verify the install

vstack-doctor          # 25+ install checks
vstack-hello           # 30-second end-to-end demo

Resources