v0.1.16

Full Changelog: v0.1.14...v0.1.16

v0.1.14

Full Changelog: v0.1.13...v0.1.14

v0.1.13

Full Changelog: v0.1.12...v0.1.13

v0.1.12

Full Changelog: https://github.com/daedalus/ImpactGuard/commits/v0.1.12

v0.1.11

Full Changelog: v0.1.10...v0.1.11

v0.1.10

Bug fixes and testing improvements

v0.1.9

What's Changed

• Evaluating runtime intelligence and static analysis in multiple languages by @Copilot in #32
• feat: add semantic behavior analysis beyond signature-level compatibility by @Copilot in #33
• Analyzing internal wiring blindspots by @Copilot in #34
• Resolve current lint failures and normalize Ruff baseline by @Copilot in #35
• Deduplicate C/C++ language extractor logic via shared abstract base by @Copilot in #36
• fix: replace hardcoded /tmp path with tempfile.gettempdir() in post-commit hook by @Copilot in #37
• Fix CodeQL warnings: narrow overly-broad except Exception clauses by @Copilot in #38
• Clean up Codacy-reported lint noise in exports and language extractors by @Copilot in #39
• Refactor complexity hotspots to clear lizard threshold violations by @Copilot in #40
• Promote CST fix generation to a first-class pipeline stage by @Copilot in #41

Full Changelog: v0.1.6...v0.1.9

v0.1.8

What's Changed

• Refactored all 12 lizard CCN >15 functions into 14 helper functions across zig, go, swift, typescript, suggest_fixes, pipeline, main, risk_gate
• Added 121 new coverage tests across test_pipeline_uncovered.py, test_config.py, test_shared.py, test_c_extractor.py
• Fixed mypy type annotation issue in shared.py (redefined import name)
• Coverage increased from 71.79% to 75.29%
• Version bumped from 0.1.7 to 0.1.8

v0.1.6

Changes

Security Hardening

• Harden path validation against Windows-style payloads, null-byte injection, and other malicious diff path attacks
• Centralize path length constraint into is_safe_path
• Harden CLI against malformed inputs and stdin hang
• Address code review findings from black-box red team audit

Reliability & CI

• Harden CI gating with reproducible smoke reliability checks
• Add pipeline analysis status and structured reliability counters
• Add comprehensive adversarial testing coverage
• Add pipeline diff-commit integration tests

Dependency Fixes

• Widen tree-sitter-kotlin and tree-sitter-zig upper bounds to <2 for broader Python version compatibility

Chores

• Bump version 0.1.5 → 0.1.6

v0.1.5

Security Fixes

Fixes 7 security findings from a black-box red team audit:

• RT-001 (Critical): Path traversal via crafted diff headers — reject ../ in diff file paths
• RT-002 (Critical): Symlink-following file writes — resolve symlinks before safety check
• RT-003 (High): Config poisoning via auto-discovery — stop at project boundary (.git)
• RT-004 (High): Unvalidated config-path in feedback calibrate — add path validation
• RT-005 (Medium): Env var IMPACTGUARD_FEEDBACK controls write target
• RT-006 (Medium): Binary stdin crashes with stack trace — catch UnicodeDecodeError
• RT-007 (Low): Unquoted template variables in generated GitHub workflow