Skip to content

feat(v0.2.0): security upgrade#26

Merged
mirabelenkiy-circle merged 1 commit into
masterfrom
hardening
Jul 1, 2026
Merged

feat(v0.2.0): security upgrade#26
mirabelenkiy-circle merged 1 commit into
masterfrom
hardening

Conversation

@mirabelenkiy-circle

Copy link
Copy Markdown
Contributor

This API breaking change closes a security vulnerability by adding intent verification during execution.

  • API breaking change Tools no longer need to take wfid as an argument.
  • Security fix Fixed vulnerability that allowed LLM to mix-and-match wfid and intent. This is now checked and enforced by OOAK framework.
  • Tool failure support The SecurityContext can supply an optional on_invoke_tool_failure hook that runs when a tool raises an exception.
  • Added bind_to_instance on InstanceAgent — optional runtime object id for instance identity to avoid name collisions across agents.

@mirabelenkiy-circle
mirabelenkiy-circle merged commit 0c3f333 into master Jul 1, 2026
5 checks passed
@mirabelenkiy-circle
mirabelenkiy-circle deleted the hardening branch July 1, 2026 12:03
nexx88 pushed a commit that referenced this pull request Jul 1, 2026
🤖 I have created a release *beep* *boop*
---


##
[0.2.0](v0.1.0...v0.2.0)
(2026-07-01)


### Features

* **v0.2.0:** security upgrade
([#26](#26))
([0c3f333](0c3f333))


### Miscellaneous Chores

* **ci:** bump GitHub Actions to Node 24
([#25](#25))
([75a9415](75a9415))
* **stepsecurity:** apply security best practices
([#20](#20))
([d69708f](d69708f))

---
This PR was generated with [Release
Please](https://github.com/googleapis/release-please). See
[documentation](https://github.com/googleapis/release-please#release-please).
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants