Skip to content

MaintainerGuard v0.2.0

Choose a tag to compare

View all tags
@xxxquide xxxquide released this 10 Jun 19:04
· 7 commits to main since this release
v0.2.0
b2d7d9c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

MaintainerGuard v0.2.0

v0.2.0 is a focused feature release for policy presets and stronger scanner evidence.

Added

  • Built-in policy presets: minimal, security, strict, and docs
  • mg presets
  • mg init --preset minimal|security|strict|docs
  • SARIF startLine evidence rendered as path:line
  • SARIF path-only fallback when no region line is present
  • SARIF rule metadata fallback for sparse scanner results
  • SARIF rule default severity support when result-level severity is missing

Preserved

  • Trivy vulnerability normalization from v0.1.4
  • Safe defaults: dry-run enabled, AI disabled, comment publishing disabled
  • Human-in-the-loop wording and evidence-first reports
  • No auto-merge behavior

Verification

Validated before release with:

  • python3 -m unittest discover -s tests -v
  • python3 -m compileall -q maintainerguard
  • ./mg verify
  • python3 -m pip wheel . --no-deps
  • Trivy parser smoke test

No breaking changes are intended.

Assets 2
Loading