v2.2.1

2.2.1 (2026-03-13)

Bug Fixes

• server: enforce command contracts and protocol purity (579aa1c)

v2.2.0

2.2.0 (2026-03-12)

Features

• router: add get_tree command with bounded traversal (1fd12ee)

Bug Fixes

• server: harden transport and lifecycle boundaries (efcceb9)
• session-store: harden cross-instance metadata locking (f2bba0b)

v2.1.0

2.1.0 (2026-03-03)

Features

• add durable command journal foundation (level 4) (e23ae1e)
• durable-journal: harden append strictness, invariants, and chaos coverage (01e9533)
• protocol: add navigate_tree RPC command for session tree navigation (0e281eb)
• session-manager: emit debug diagnostics for npm env sanitization (672de5e)

Bug Fixes

• validation: harden session path and navigate_tree checks (161021d)

v2.0.1

2.0.1 (2026-03-01)

Bug Fixes

• ci: add explicit build step to publish workflow (5ab6870)

v2.0.0

2.0.0 (2026-03-01)

⚠ BREAKING CHANGES

• security: load_session now rejects paths outside allowed directories

Bug Fixes

• security: add path validation to load_session + protocol docs

v1.1.0

1.1.0 (2026-02-28)

Features

• circuit-breaker: implement LLM provider circuit breaker (ADR-0010) (b7a350a)
• governor: add generation-based rate limit refund and periodic cleanup (25bcec5)
• implement bash circuit breaker for non-LLM commands (bfde12f)
• infra: add auth, metrics, logging, and bounded-map utilities (ab302ba)
• metrics: add ThresholdAlertSink for pluggable alerting (4b166c8)
• server: integrate auth, metrics, logging, and stdio backpressure (40d7642)
• server: wire ThresholdAlertSink with default thresholds (82584b5)
• session-manager: enforce maxSessionLifetimeMs with periodic cleanup (cf6703f)

Bug Fixes

• address pre-existing lint warnings (3a173d6)
• core: enforce terminal command outcomes (46a1352)
• prevent race conditions and improve error handling (1b44aef)
• prevent resource leaks and memory exhaustion (bec028c)
• resolve race conditions and add safety bounds from deep review (db09bdf)
• session-store: close readline interface in finally block (087b043)
• session: sanitize npm prefix during agent session creation (9f67477)

v1.0.0

1.0.0 (2026-02-26)

Features

• core: extract command execution stores and engine (ADR-0001) (3ded1eb)
• Phase 3 - Extension UI wiring via bindExtensions (1ecd2af)
• Phase 3.5 - Critical fixes (validation, timeout, tests) (da2fad9)

Bug Fixes

• ci: add package-lock.json for reproducible builds (c6743b3)
• close critical protocol gaps + harden validation/rate-limits (ec2506d)
• Deep review findings - broadcast safety, error handling (b628bda)
• packaging: exclude test artifacts from npm tarball (5139785)
• replay: implement atomic outcome storage (ADR-0001) (1dbb35d)
• review: address deep review findings from prompt-snippets.md (8059076)
• server: harden causal command execution and replay safety (f1f4ed3)
• test: update timeout replay test for ADR-0001 invariant (85c2693)