github luckyPipewrench/pipelock v2.8.0
on GitHub

latest release: v2
5 hours ago

Changelog

  • a728e24 Add Enterprise Fleet Receipt Report minting (#749)
  • 0c023e7 Add Fleet Receipt Report verifier foundation (#748)
  • 2f0f898 Receipt evidence: clean-A2A allow receipts + fleet-receipt conformance (#801)
  • 0e5ebb2 ci: Update ci-actions to v7 (#798)
  • 4d44bbf deps: Update docker-base-images (#734)
  • 524e068 deps: Update docker-base-images (#764)
  • 0a0c854 deps: Update docker-base-images (#777)
  • fce5a64 deps: Update docker-base-images (#789)
  • 03e6299 deps: Update docker-base-images (#800)
  • 5ff537a deps: Update go-deps to v0.9.0 (#781)
  • 9abd09a deps: Update go-deps to v1.52.0 (#793)
  • 8b14341 deps: Update go-deps to v2.7.0 (#754)
  • 6634a00 deps: Update k8s-images (#747)
  • ca519a5 deps: Update ts-verifier to v24.13.0 (#765)
  • c01c561 deps: Update ts-verifier to v24.13.1 (#787)
  • 480d06e docs(metrics): complete Prometheus metric catalog (#756)
  • 939f8d5 feat(cli): add 'explain' command for remediable block explanations (#750)
  • c2ec807 feat(cli): add 'keys status' unified signing-key inventory (#752)
  • d49fb60 feat(cli): add 'support bundle' diagnostics command (#753)
  • 2c542a3 feat(cli): add 'update' self-update command (#757)
  • c036238 feat(conductor): offline fleet-report export and verification (#791)
  • 2e72b0f feat(conductor): operator credential and enrollment-token lifecycle (#792)
  • a240b9e feat(conductor): operator recovery commands for the fleet control plane (#763)
  • 1b54c20 feat(conductor): operator stream observability + publish-error clarity (#758)
  • be8c25f feat(conductor): verify emergency-control signatures at all leader read paths (#776)
  • 5a641c9 feat(conductor): wire follower audience labels into policy, rollback, and remote-kill apply paths (#772)
  • 07621dc feat(contain): install/UX hardening for first-run and older hosts (#761)
  • 2425c2e feat(contain): publishable offline containment conformance artifact with must-fail fixture (#773)
  • a917feb feat(doctor): flag inert exemptions and semantic config mismatches (#751)
  • 70faa8a feat(license): add 'license crl inspect' and 'license crl verify' (#762)
  • 026b7f2 feat(license): gate CLI issuance on paid capability + signed service import table (#779)
  • 7d2b4ba feat(license): monotonic CRL generation with consumer rollback rejection (#770)
  • 19bd993 feat(license): require-intermediate enforcement, issuer-side intermediate revocation, CRL freshness (#775)
  • 8f658d4 feat(mcp): defer authorization action with fail-closed resolution (#799)
  • b9bdfdd feat(mcp): per-server response suppression + airlock reset for first-party tools (#774)
  • 3482757 feat(playground): bundle generator + stable published orchestrator key (#795)
  • 26ce17d feat(playground): gated live-chat backend (stream seam, gate, fail-closed limits, SSE server) (#802)
  • 6ec8b4e feat(playground): honest live-chat demo backend (bundle, caps, trust-class) (#812)
  • bbaaf4d feat(playground): honest live-chat demo for the agent firewall (#809)
  • af5f0dd feat(playground): live demo engine with offline-verifiable evidence (#784)
  • 9fdd1b1 feat(playground): live model-backed agent for the demo (#804)
  • 1437a0f feat(playground): live-demo spend controls + polish (#807)
  • 3a5423a feat(playground): split-proof contained mode with signed host-containment witness (#785)
  • d7dfaab feat(receipts): freeze v1 fixtures and publish versioning policy (#755)
  • 1de117a fix(chart): render valid Conductor image refs (digest vs tag) (#790)
  • 3f5a7bb fix(conductor): tolerate abandoned fork siblings + offline recovery (#786)
  • 49d660b fix(deps): bump Python verifier cryptography to 48.0.1 (GHSA-537c-gmf6-5ccf) (#788)
  • 5236c74 fix(license): evaluate token expiry against the injected verification clock (#780)
  • 4fa9952 fix(mcp): opt-in stdio response timeout + self-update downgrade warning (#810)
  • 1a30205 fix(playground): harden live demo adversarial edges (#808)
  • 90812be fix(proxy): make redaction config key invariant to per-agent config deep-copy (#783)
  • 1413a09 fix(scanner): direction-anchor Credential Solicitation to stop documentation false positives (#760)
  • b3807cd fix(scanner): fail closed on over-depth JSON and stacked URL DLP encodings (#803)
  • bb33140 fix(wsutil): treat Windows Winsock close errnos as expected WS teardown (#769)
  • 08538ae fix: close stacked-encoding DLP bypass, freeze receipt v1 canonical, correct dropped-action accounting (#814)
  • d897e51 fix: operability, UX, and support-bundle secret-redaction fixes (#805)
  • edad608 fix: verify raw action receipt chain jsonl (#771)
  • f8bf755 refactor(license): extract splitToken helper and rename Decode to DecodeUnverified (#782)
  • ac614ac test(certgen): make read-only-dir tests portable (#767)
  • a73ce53 test(cli): make read-only-dir/config tests portable on Windows (#766)
  • abce869 test(mcp): close recorder in receipt harness to fix Windows TempDir cleanup (#768)
Check out latest releases or
releases around luckyPipewrench/pipelock v2.8.0

Don't miss a new pipelock release

NewReleases is sending notifications on new releases.

Get notifications