Skip to content

CHANGELOG.md

Latest commit

 

History

History
165 lines (97 loc) · 11.5 KB

CHANGELOG.md

File metadata and controls

165 lines (97 loc) · 11.5 KB

Changelog

0.7.1 (2026-06-16)

Features

  • add defend_tool_results_async for npm batch parity (a05783c)
  • Python parity with @stackone/defender 0.7.1 (Tier 3) (c58a17c)
  • Tier 3 provider interface and cascade orchestration (TS 0.7.1 parity) (f2b4109)

Bug Fixes

  • address Copilot PR review on Tier 3 orchestration (570f567)
  • tighten Tier3ClassifyResult type and batch doc wording (2515772)

0.7.0 (2026-05-29)

⚠ BREAKING CHANGES

  • The default ONNX model directory changed from minilm-full-aug to minilm-multihead-v5. Custom code that hardcoded the old path will no longer load.

Features

  • parity with TS defender 0.7.0 (75d046a)

0.6.3 (2026-05-26)

⚠ BREAKING CHANGES

  • When tier2_fields is unset, Tier 2 scans all strings (no fallback to Tier 1 risky_field_names).

Features

  • align Python package with @stackone/defender 0.6.3 (a91a904)

Bug Fixes

  • ENG-269: Python parity with @stackone/defender 0.6.3 (7c312f1)

Miscellaneous Chores

  • prepare release 0.6.3 (8ef9888)
  • retrigger release workflow after gh actions outage (72f586b)

0.6.2 (2026-04-22)

⚠ BREAKING CHANGES

  • Drop ToolSanitizationRule, config/sanitizer tool_rules, use_default_tool_rules, and get_tool_rule/should_skip_field. Matches @stackone/defender post ENG-12594.

Features

  • add missing functions for full TS API parity (aec0c5b)
  • add PyPI publishing setup with Release Please CI (2e28373)
  • add tier2_fields filter and export ToolSanitizationRule (cb7fd93)
  • align Python defender with Node (Tier 2 scoping, ONNX cache) (482bfdd)
  • ENG-12402: add PyPI publishing setup with Release Please CI (f979748)
  • ENG-12699: TypeScript parity and synced ONNX bundle (0449800)
  • port stackone-defender from TypeScript to Python (e3ff70d)
  • remove tool rules; batch Tier2 ONNX; lock ONNX load (26c95c2)
  • sanitizer: remove dead use_tier2_classification from ToolResultSanitizer (4646179)
  • sync Python package with TypeScript parity (e1836dd)
  • upgrade ML classifier to jbv2 model (AgentShield 73.7 → 79.8) (bcd27f8)
  • upgrade ML classifier to jbv5 (AgentShield 79.8 → 81.1) (781dd10)

Bug Fixes

  • address Copilot/cubic review (Tier2 scope, tokens, SFE, thresholds) (bf173ac)
  • ci: avoid fasttext-wheel on Python 3.13 (a6cda76)
  • classifier: surface classification errors in classify_by_sentence skip_reason (bd94639)
  • default enable_tier2 to True to match TypeScript SDK behaviour (d66773b)
  • defender: fix _extract_strings filtering, None checks, and cache ONNX load failure (bf4ce99)
  • defender: sync hasThreats blocking logic and tool rules precedence from JS package (a217c3e)
  • enable tier2 by default to match TypeScript package (f1fe990)
  • sync Python with TypeScript parity (cec0813)
  • tier2: apply max_text_length truncation in classify_by_sentence (a67d2c6)
  • upgrade ML classifier to jbv2 (AgentShield 73.7 → 79.8) (b452b39)
  • upgrade ML classifier to jbv2 (AgentShield 73.7 → 79.8) (ccb1204)
  • use uv instead of pip in README installation instructions (519759f)

Dependencies

  • sfe: switch optional FastText bindings to fasttext-ng (bc9cc28)

Documentation

  • add README adapted from TypeScript package (a03c757)
  • update README — enable_tier2 defaults to True (af0d059)
  • update README to reflect changes in package name and Python version (d2fc2ca)

Miscellaneous Chores

  • prepare patch release 0.6.2 (7b3c105)

0.6.1 (2026-04-21)

Features

  • align Python package behavior with @stackone/defender 0.6.1
  • add SFE preprocessing support (use_sfe) with fail-open optional runtime loading
  • add packed-chunk Tier 2 batching and density-adjusted scoring
  • add dangerous-key traversal hardening (__proto__, constructor, prototype)
  • add cumulative-risk fractional thresholds to reduce list-response false positives

Bug Fixes

  • use fasttext-ng instead of fasttext-wheel for the [sfe] extra and dev tests so Python 3.13 CI can install maintained FastText bindings (NumPy 2.3+).

Breaking Changes

  • Python package version jumps from 0.1.2 to 0.6.1 to align release train with TypeScript parity.
  • DefenseResult now includes fields_dropped and truncated_at_depth.

0.1.2 (2026-04-08)

Bug Fixes

  • upgrade ML classifier to jbv2 (AgentShield 73.7 → 79.8) (b452b39)

Documentation

  • update README to reflect changes in package name and Python version (d2fc2ca)

0.1.1 (2026-04-08)

Features

  • add missing functions for full TS API parity (aec0c5b)
  • add PyPI publishing setup with Release Please CI (2e28373)
  • add tier2_fields filter and export ToolSanitizationRule (cb7fd93)
  • ENG-12402: add PyPI publishing setup with Release Please CI (f979748)
  • port stackone-defender from TypeScript to Python (e3ff70d)
  • sanitizer: remove dead use_tier2_classification from ToolResultSanitizer (4646179)
  • sync Python package with TypeScript parity (e1836dd)

Bug Fixes

  • classifier: surface classification errors in classify_by_sentence skip_reason (bd94639)
  • defender: fix _extract_strings filtering, None checks, and cache ONNX load failure (bf4ce99)
  • defender: sync hasThreats blocking logic and tool rules precedence from JS package (a217c3e)
  • enable tier2 by default to match TypeScript package (f1fe990)
  • sync Python with TypeScript parity (cec0813)
  • use uv instead of pip in README installation instructions (519759f)

Documentation

  • add README adapted from TypeScript package (a03c757)

Changelog