chore: Release v1.51.0 (SPLADE viz Stage 2b + 4 red-team security fixes)#2090
Merged
Conversation
SPLADE-viz Stage 2b (the eval-gold "where hybrid wins" tour + R@K-delta panel) plus four security fixes from a post-v1.50.1 red-team pass (4 confirmed / 0 false-positive across serve/MCP/relay/parse/path): the leading-directive "ignore all previous" gap, the comment-marker strip-set (/* -- %), the unscanned full-file read relay, and the /api/search_legs flag-injection. Scoring is byte-identical to v1.50.1 (the diff touches only the injection scanner, the read/serve relay surfaces, and docs — the src/search/scoring, embedder, query.rs, fusion diff is empty), so retrieval carries unchanged: 47.2 / 70.7 / 86.7 (R@1/R@5/R@20), no recall A/B needed. Full suite 841 passed, 0 failed; clippy --all-targets clean. The heuristic widening was empirically proven inert (0 newly-flagged chunks on the real 17.5k corpus). SECURITY.md updated to list the full-file read as a scanned relay surface. Co-Authored-By: Claude Opus 4.8 (1M context) <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Release v1.51.0
The SPLADE-viz Stage 2b feature + four security fixes from a post-v1.50.1 red-team pass.
Stage 2b (Added)
The eval-gold "where hybrid wins" stratified tour + R@K-delta panel: a new
/api/eval_goldroute + a cluster-3d gold-tour mode that shows, per gold query, the dense-leg→fused-leg rank movement (rescued vs hurt), stratified across all 8 categories including the zero/negative-uplift ones. Live-verified: the showcase deltas (121→2, 69→4, 4→24, 2→8) reproduce the standalone legs analysis exactly.Security (4 red-team findings, all confirmed / 0 false-positive)
ignore all previous instructions(filler "all" defeated the exact-prefix match) — now a normalized kill-verb family./*/**--%;— a directive behind them was relayed unflagged.cqs readrelayed the whole file verbatim with no scan — now scans the exact relayed bytes./api/search_legsforwarded the client query with no--separator (flag-injection) — now flags-first +--+ query.The heuristic widening was empirically proven inert: 0 newly-flagged chunks on the real 17.5k-chunk corpus. SECURITY.md updated.
Recall — carries unchanged
The scoring path is byte-identical to v1.50.1 (the diff touches only the injection scanner, the read/serve relay surfaces, and docs — the
src/search/scoring/ embedder /query.rs/ fusion diff is empty). So 47.2 / 70.7 / 86.7 (R@1/R@5/R@20) carries — no recall A/B needed (the empty diff is stronger proof than an eval run with HNSW noise).Gates
Full suite 841 passed, 0 failed;
clippy --all-targets --features cuda-indexclean;fmt --checkclean; provenance clean. Arelease.ymlcross-build dry-run (all 3 targets) runs before tagging — the v1.50.0 lesson.After merge: dry-run-green → tag
v1.51.0→ release.yml binaries + GitHub release →cargo publish→ deploy (security fixes + viz to the daemon).