Skip to content

MaintainerGuard v0.3.0

Choose a tag to compare

View all tags
@xxxquide xxxquide released this 13 Jun 17:33
· 2 commits to main since this release
v0.3.0
bfc72ec
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

MaintainerGuard v0.3.0

Scanner trust and fixture-depth release.

Added

  • Scanner fixture coverage matrix documenting supported scanner shapes and support levels.
  • Sanitized CodeQL-like, Semgrep-like, Gitleaks-like, Dependabot-like, and Trivy configuration scanner fixtures.
  • v0.2.x to v0.3.0 upgrade notes.
  • v0.3.0 release-readiness sample data and rendered report.

Improved

  • SARIF duplicate grouping for matching scanner/rule/title/severity/category results while preserving unique affected locations.
  • SARIF severity and category normalization from rule metadata when result-level fields are sparse.
  • Scanner docs and examples now distinguish native adapters from generic JSON mappings.
  • Public Action examples, CLI defaults, workflows, package metadata, and launch docs are synchronized to v0.3.0.

Preserved

  • Trivy vulnerability normalization remains supported and covered by tests.
  • Safe defaults remain unchanged: dry-run enabled, AI disabled by default, comment publishing disabled by default, and no auto-merge behavior.
  • MaintainerGuard continues to explain supplied scanner output; it does not replace scanners or guarantee security.

Verification

  • Full unittest suite passed: 77 tests.
  • Compile check passed.
  • mg verify passed.
  • Wheel build passed for maintainerguard-0.3.0.
  • Clean venv install smoke passed.
  • GitHub CI and MaintainerGuard PR dry-run checks passed on PR #28.
Assets 2
Loading