Skip to content

v0.43.1

Choose a tag to compare

View all tags
@zr9959 zr9959 released this 26 May 04:45
· 20 commits to main since this release
v0.43.1
1659cb5
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

v0.43.1

Patch release focused on hosted hardening and release consistency.

Changed

  • Fail closed when Cloudflare hosted repository rate-limit KV state is corrupt.
  • Ignore unsafe GitHub API base URL overrides and keep GitHub API calls on safe public HTTPS roots.
  • Use the documented x-github-api-version header in the Cloudflare Worker.
  • Stop the local hosted staging harness from persisting rawSource into worker sandbox files.
  • Fix the MCP policy template YAML indentation for the shell deny rule.
  • Let the composite GitHub Action accept and pass through format: summary.
  • Include --base <baseSha> --json in hosted Check Run local reproduction commands.

Release Gate

  • GitHub PR #107 CI passed: test, fuzz, actionlint, zizmor, CodeQL.
  • Local npm ci passed.
  • Local npm test passed: 201/201 tests.
  • Local node dist/cli.js scan --root . --json returned 0 findings.
  • Local SARIF generation returned 0 results.
  • Local npm audit --audit-level=high --registry=https://registry.npmjs.org returned 0 vulnerabilities.
  • Local npm pack --dry-run --json produced candidate ai-saas-guard@0.43.1.
  • Release tarball candidate was unpacked and the packaged CLI help plus packaged scan smoke passed.

This release does not add billing, pricing, paid packaging, marketplace conversion, or sales-funnel behavior. It is not a pentest, certification, or full security audit.

Assets 2
Loading