v0.5.5
Highlights
-
Completed Slack support closeout with secure Events API integration, no-skip R124/R125 gates, and synchronized docs/roadmap.
-
Completed post-wave E closeout across three bundles:
- Bundle A: route-plane governance and MAE invariant-gated validation.
- Bundle B: safe_io egress convergence and CI/local preflight parity.
- Bundle C: adversarial gate parity, dual-lane retry partition, and SOP/pre-push alignment.
Security and Reliability
- Fixed local LLM loopback SSRF regression and unified outbound pre-check/request-time validation.
- Added R123 real-backend model-list SSRF parity lane and enforced no-skip CI/SOP/full-gate checks.
- Enforced MAE no-skip CI gates and added key/token lifecycle SOP coverage (rotation/revocation/DR).
- Added R122 real-backend low-mock E2E lane for stronger backend-path coverage.
- Hardened R118 mutation gate with explicit module baseline, non-zero fail semantics, and stale-report/bytecode guards.
CI and Test Infrastructure
-
Resolved CI failures caused by missing cryptography:
- install required dependency in CI/pre-push flows
- add requirements.txt baseline
- harden no-crypto fallback behavior for registry signature and secret store tests.
Documentation and Operations
- Updated deployment/runtime/env-var docs to match current S56/S62 and SSRF posture.
- Replaced sidecar.md with a deprecated stub to preserve legacy links while redirecting to current guidance.