Commit graph

  • 0dd46da2f7 chore(llm-security): STATE — v7.8.0 tagged + catalog ref synced main Kjell Tore Guttormsen 2026-06-20 11:59:03 +02:00
  • 731d61f801 chore(llm-security): STATE — codename scrub complete (history rewritten + force-pushed) Kjell Tore Guttormsen 2026-06-20 11:40:27 +02:00
  • a19e9eb8b2 docs(llm-security): drop internal codename from v7.8.0 notes Kjell Tore Guttormsen 2026-06-20 11:37:28 +02:00
  • 405874c0c4 chore(llm-security): STATE — v7.8.0 released (Session C); only F-4 (optional) left Kjell Tore Guttormsen 2026-06-20 11:23:42 +02:00
  • 6d3c4b5052 chore(llm-security): v7.8.0 — TRG/SIG/AST scanners v7.8.0 Kjell Tore Guttormsen 2026-06-20 11:23:11 +02:00
  • 614971c71a chore(llm-security): STATE — Session B (F-2 + F-3) done; next = Session C (release) Kjell Tore Guttormsen 2026-06-20 11:10:24 +02:00
  • dfb663fa61 fix(llm-security): F-2/F-3 — contain path traversal + kill npm-view shell injection Kjell Tore Guttormsen 2026-06-20 11:09:13 +02:00
  • f5988f9500 chore(llm-security): STATE — Session A (F-1 + F-5/F-6) done; next = Session B Kjell Tore Guttormsen 2026-06-20 10:19:20 +02:00
  • e46b5a3256 fix(llm-security): F-1 — eliminate shell-injection RCE in git-forensics scanner Kjell Tore Guttormsen 2026-06-20 10:18:41 +02:00
  • a96e3b947f chore(llm-security): STATE — security-fix track plan (F-1/F-2/F-3 must-fix) over multiple sessions Kjell Tore Guttormsen 2026-06-20 10:09:11 +02:00
  • 089623af89 chore(llm-security): STATE — TRG/SIG/AST done; v7.8.0 deferred behind security-fix brief Kjell Tore Guttormsen 2026-06-20 09:51:28 +02:00
  • fc7cf57da6 docs(llm-security): document TRG/SIG/AST scanners and package knowledge/ Kjell Tore Guttormsen 2026-06-20 09:46:14 +02:00
  • b0314418f4 feat(llm-security): wire AST scanner into orchestrator and policy Kjell Tore Guttormsen 2026-06-20 09:41:32 +02:00
  • 40a1e34ee9 feat(llm-security): add AST Python-taint scanner with python3 fallback Kjell Tore Guttormsen 2026-06-20 09:38:36 +02:00
  • e46bf12b86 feat(llm-security): wire SIG scanner into orchestrator and policy Kjell Tore Guttormsen 2026-06-20 09:32:23 +02:00
  • 9e0a09ab1f feat(llm-security): add SIG signature scanner with decode-pipeline matching Kjell Tore Guttormsen 2026-06-20 09:28:52 +02:00
  • 9f1156866c feat(llm-security): wire TRG scanner into orchestrator and policy Kjell Tore Guttormsen 2026-06-20 09:24:23 +02:00
  • 92bd99f2a8 docs: security fix brief for next session — F-1 RCE + F-2/F-3 sinks Kjell Tore Guttormsen 2026-06-20 09:23:19 +02:00
  • 616e7ff18c feat(llm-security): add TRG trigger-abuse scanner Kjell Tore Guttormsen 2026-06-20 09:19:54 +02:00
  • ff9bd13c6f docs: add full-depth plugin review (2026-06-20) Kjell Tore Guttormsen 2026-06-20 09:14:11 +02:00
  • 7736c0bde2 docs(llm-security): TRG/SIG/AST gap analysis + reviewed execution plan Kjell Tore Guttormsen 2026-06-20 09:00:24 +02:00
  • 0ef780fd69 chore(gitignore): add session/local-state baseline (polyrepo split) Kjell Tore Guttormsen 2026-06-18 10:21:13 +02:00
  • 3db6b65aba chore(llm-security): v7.7.2 — language consistency pass v7.7.2 Kjell Tore Guttormsen 2026-05-19 06:47:44 +02:00
  • b626ba0c5e chore(llm-security): v7.7.1 release — formaliser playground UX-strip-fixes Kjell Tore Guttormsen 2026-05-18 21:38:27 +02:00
  • 02a66f3c77 fix(llm-security): playground topbar — fjern orgName fra breadcrumb Kjell Tore Guttormsen 2026-05-18 21:09:02 +02:00
  • 52afd12cc1 feat(llm-security): playground v7.7.1 — katalog som eneste levende overflate Kjell Tore Guttormsen 2026-05-18 21:01:18 +02:00
  • adffb60908 fix(llm-security): playground hardkodet versjon v7.6.1 → v7.7.0 Kjell Tore Guttormsen 2026-05-18 20:49:05 +02:00
  • 7f9e57bb37 feat(llm-security): v7.7.0 — HTML-rapport for alle 18 skill-kommandoer Kjell Tore Guttormsen 2026-05-18 13:12:21 +02:00
  • c7748d56ba feat(llm-security): playground v7.6.2-dev — render-report CLI + wire 4 skills (scan, audit, posture, deep-scan) [skip-docs] Kjell Tore Guttormsen 2026-05-18 12:56:03 +02:00
  • 01a894701e refactor(llm-security): playground v7.6.2-dev — extract 18 renderers til scripts/lib/report-renderers.mjs [skip-docs] Kjell Tore Guttormsen 2026-05-18 12:42:28 +02:00
  • ea8da55ee0 feat(llm-security): playground v7.6.2-dev — prosjekt-surface opprydding + topbar-splitt [skip-docs] Kjell Tore Guttormsen 2026-05-18 12:23:57 +02:00
  • ef1f8d97e9 chore: WIP marketplace doc adjustments across plugins Kjell Tore Guttormsen 2026-05-18 12:04:02 +02:00
  • de23a630b8 feat(llm-security): playground v7.6.2-dev — katalog list-view + builder-pane [skip-docs] Kjell Tore Guttormsen 2026-05-18 11:56:44 +02:00
  • a66f7f28c9 chore: roll up in-progress changes across plugins Kjell Tore Guttormsen 2026-05-16 21:02:23 +02:00
  • 6b3ece96a8 docs: add Communication patterns section to all plugin CLAUDE.md Kjell Tore Guttormsen 2026-05-16 21:01:45 +02:00
  • 330dca4b71 docs(llm-security): tre doc-nivåer oppdatert for v7.6.1 Kjell Tore Guttormsen 2026-05-06 14:44:55 +02:00
  • 97b054c703 fix(llm-security): playground v7.6.1 — visuelle bugs i v7.6.0 Kjell Tore Guttormsen 2026-05-06 14:33:19 +02:00
  • 0a70c6f44f feat(llm-security): playground v7.6.0 — Tier 3 referanse-case komplett Kjell Tore Guttormsen 2026-05-06 14:12:59 +02:00
  • 4c4a5ec562 feat(llm-security): playground v7.6.0 fase 5e-h — Tier 3 spesialkomponenter (del 2) [skip-docs] Kjell Tore Guttormsen 2026-05-06 14:00:04 +02:00
  • 569542d6eb feat(llm-security): playground v7.6.0 fase 5a-d — Tier 3 spesialkomponenter (del 1) [skip-docs] Kjell Tore Guttormsen 2026-05-06 13:25:35 +02:00
  • 8197957f84 feat(llm-security): playground v7.6.0 fase 3-4 — scope-identitet + Tier 3 form-progress [skip-docs] Kjell Tore Guttormsen 2026-05-06 13:13:03 +02:00
  • eb8f6761e1 feat(llm-security): playground v7.6.0 fase 1-2 — fjern DS-duplikater + page-shell harmonisering Kjell Tore Guttormsen 2026-05-06 12:55:25 +02:00
  • e64343be86 feat(llm-security): playground Fase 3 — v7.5.0 med 18 parsere/renderere Kjell Tore Guttormsen 2026-05-05 22:15:47 +02:00
  • 992fd8edfe feat(llm-security): playground Fase 1 — single-file SPA skjelett [skip-docs] Kjell Tore Guttormsen 2026-05-05 18:47:45 +02:00
  • 8c3de5c09e chore(llm-security): v7.4.0 — examples + e2e suite minor Kjell Tore Guttormsen 2026-05-05 15:34:02 +02:00
  • 5e21ebdc91 feat(llm-security): add pre-compact-poisoning example for PreCompact hook [skip-docs] Kjell Tore Guttormsen 2026-05-05 15:22:28 +02:00
  • 4f5857f452 feat(llm-security): add toxic-agent-demo example for TFA scanner [skip-docs] Kjell Tore Guttormsen 2026-05-05 15:15:04 +02:00
  • e7e332bcd6 feat(llm-security): add 3 more runnable threat examples [skip-docs] Kjell Tore Guttormsen 2026-05-05 15:01:20 +02:00
  • 24b65b3f27 feat(llm-security): add lethal-trifecta + mcp-rug-pull example contents [skip-docs] Kjell Tore Guttormsen 2026-05-05 14:45:39 +02:00
  • 075f159c1f feat(llm-security): add lethal-trifecta + mcp-rug-pull examples [skip-docs] Kjell Tore Guttormsen 2026-05-05 14:45:15 +02:00
  • b5d29f8cd6 test(llm-security): add e2e suite proving framework works as coordinated system Kjell Tore Guttormsen 2026-05-05 12:06:57 +02:00
  • c68c395927 docs: introduce GOVERNANCE.md and unify fork-and-own blurb Kjell Tore Guttormsen 2026-05-03 14:57:00 +02:00
  • 43ca4bd5e8 chore(privacy): scrub real-org references from plugin internals (phase 2) Kjell Tore Guttormsen 2026-05-03 04:28:15 +02:00
  • be41a22f1a fix(llm-security): correct distribution URLs to marketplace path Kjell Tore Guttormsen 2026-05-01 06:20:54 +02:00
  • fa16ffdd28 chore(llm-security): v7.3.1 — stabilization patch for forkers and downstream users Kjell Tore Guttormsen 2026-05-01 06:14:03 +02:00
  • 2979e57d8f docs(readme): total overhaul for v7.3.0 Kjell Tore Guttormsen 2026-05-01 05:37:42 +02:00
  • 46371395f5 chore(release): bump to v7.3.0 Kjell Tore Guttormsen 2026-05-01 05:28:45 +02:00
  • f49f9a7e4f docs(claude-md): 8.10 — fix hooks count + add doc-consistency test for hook-table sync Kjell Tore Guttormsen 2026-04-30 17:12:49 +02:00
  • 7f921b3cf3 feat(policy-loader): 8.7 — env-var deprecation warnings (v8.0.0 removal) Kjell Tore Guttormsen 2026-04-30 17:11:07 +02:00
  • 3912916013 docs(hardening-guide): 8.6 — sandbox-architecture rationale (no code consolidation) Kjell Tore Guttormsen 2026-04-30 16:55:45 +02:00
  • f80a1d70ea docs(severity): 8.4 — @deprecated annotation on riskScoreV1 Kjell Tore Guttormsen 2026-04-30 16:54:37 +02:00
  • 1b38af3946 feat(commands): E14 part 3 — /security mcp-baseline-reset slash command Kjell Tore Guttormsen 2026-04-30 16:49:01 +02:00
  • d3d07997eb feat(post-mcp-verify): E14 part 2 — cumulative-drift MEDIUM advisory [skip-docs] Kjell Tore Guttormsen 2026-04-30 16:40:52 +02:00
  • 3fd8cd90b3 feat(mcp-description-cache): E14 part 1 — baseline + history schema (cumulative drift) [skip-docs] Kjell Tore Guttormsen 2026-04-30 16:37:33 +02:00
  • 470019209d feat(workflow-scanner): E11 part 2 — re-interpolation + auth-bypass + WFL prefix + orchestrator Kjell Tore Guttormsen 2026-04-30 15:57:10 +02:00
  • 4e917c1d4a feat(workflow-scanner): E11 part 1 — core file-walk + 23-field blacklist + sink-restriction Kjell Tore Guttormsen 2026-04-30 15:48:48 +02:00
  • 6adf620f79 feat(pre-install-supply-chain): E13 — npm scope-hopping MEDIUM advisory with allowlist Kjell Tore Guttormsen 2026-04-30 15:38:28 +02:00
  • 25f4468807 feat(git-clone): E12 — .gitattributes filter-driver post-clone advisory Kjell Tore Guttormsen 2026-04-30 15:29:13 +02:00
  • bae94aacaf feat(injection): E3 — rot13 layer for comment-block injection Kjell Tore Guttormsen 2026-04-30 15:21:03 +02:00
  • 8e341ef63d feat(pre-bash-destructive): T8 — base64-pipe-shell idiom (E9) Kjell Tore Guttormsen 2026-04-30 15:15:29 +02:00
  • 2bf5ff5156 feat(bash-normalize): T7 — process substitution collapse (E8) Kjell Tore Guttormsen 2026-04-30 15:14:04 +02:00
  • f217fc73d1 feat(bash-normalize): T9 — one-level variable substitution (E10) Kjell Tore Guttormsen 2026-04-30 15:12:02 +02:00
  • b951f3a898 chore(llm-security): stage ignore patterns for session files Kjell Tore Guttormsen 2026-04-30 15:07:35 +02:00
  • 2d8cef63d7 chore(release): bump to v7.2.0 Kjell Tore Guttormsen 2026-04-29 15:40:15 +02:00
  • c635140666 feat(red-team): 8 new evasion-arsenal scenarios for v7.2.0 (E1/E4/E5/E7/E16/E17) Kjell Tore Guttormsen 2026-04-29 15:35:32 +02:00
  • 27099584cc fix(entropy): E18 — rule 18 markdown-image CDN-aware + secret pre-check Kjell Tore Guttormsen 2026-04-29 15:18:37 +02:00
  • ff0f9cf9ad refactor(entropy): B5 — two-stage context-classified suppression pipeline Kjell Tore Guttormsen 2026-04-29 15:13:13 +02:00
  • 42885d84e0 feat(post-mcp-verify): E7 — scan HTML comment nodes for injection Kjell Tore Guttormsen 2026-04-29 15:01:56 +02:00
  • ebbf50629c feat(post-mcp-verify): E5 — scan SVG desc/title/metadata/foreignObject Kjell Tore Guttormsen 2026-04-29 14:54:58 +02:00
  • 983990e8bf feat(post-mcp-verify): E4 — scan markdown link titles for injection Kjell Tore Guttormsen 2026-04-29 14:52:30 +02:00
  • a1b2bf7304 fix(injection): E16 ASCII fast-path + UNI-003 expectation update (v7.2.0) Kjell Tore Guttormsen 2026-04-29 14:44:41 +02:00
  • c026fddc39 feat(post-session-guard): E17 — configurable escalation window + 20-call MEDIUM advisory Kjell Tore Guttormsen 2026-04-29 14:26:18 +02:00
  • b191ce6da3 feat(injection): E16 — homoglyph NFKC fold before every pattern match Kjell Tore Guttormsen 2026-04-29 14:22:05 +02:00
  • bab1eb300b feat(unicode): E1 — extend hidden-Unicode detection to PUA-A and PUA-B Kjell Tore Guttormsen 2026-04-29 14:18:49 +02:00
  • 95ae305651 fix(memory-poisoning): E15 — add .claude/agents/*.md to target glob Kjell Tore Guttormsen 2026-04-29 14:13:01 +02:00
  • d65bb70347 fix(dep): B7 — token-overlap typosquat heuristic alongside Levenshtein Kjell Tore Guttormsen 2026-04-29 14:10:53 +02:00
  • e1c29424e5 fix(taint-tracer): B6 — recognize destructuring + spread + rest patterns Kjell Tore Guttormsen 2026-04-29 14:05:34 +02:00
  • 137057dd02 docs(scoring): unify scan/audit/mcp-scanner/posture-assessor to v2 formula Kjell Tore Guttormsen 2026-04-29 13:58:25 +02:00
  • 9f3230be1c docs(severity): B3 — document info as scoring-inert (v7.2.0 prep) Kjell Tore Guttormsen 2026-04-29 13:56:11 +02:00
  • cd0708897c docs(llm-security): v7.1.1 — narrative coherence patch Kjell Tore Guttormsen 2026-04-29 12:57:54 +02:00
  • 3aac6c6a7a test(llm-security): narrative-coherence contract test (v7.1.1) Kjell Tore Guttormsen 2026-04-29 12:50:27 +02:00
  • b5b672c322 test(llm-security): hyperframes-like fixture for narrative coherence Kjell Tore Guttormsen 2026-04-29 12:49:19 +02:00
  • 8dab82d2bc fix(llm-security): skill-scanner-agent — context-first severity, v2 alignment, Suppressed Signals section Kjell Tore Guttormsen 2026-04-29 12:47:58 +02:00
  • 3d5aca5bb4 fix(llm-security): template — v1 → v2 risk constants + narrative_audit block Kjell Tore Guttormsen 2026-04-29 12:45:28 +02:00
  • 358425ce3c docs(llm-security): add v7.1.0 row to README version history Kjell Tore Guttormsen 2026-04-29 12:03:10 +02:00
  • b58c1f5095 chore(release): bump llm-security to v7.1.0 Kjell Tore Guttormsen 2026-04-29 11:57:16 +02:00
  • 88c2c75d73 docs(llm-security): A3 honesty-sweep — 7 sitater nedtonet (critical-review §9) Kjell Tore Guttormsen 2026-04-29 11:52:55 +02:00
  • 037befa985 fix(llm-security): A2 batch — JSDoc arithmetic + co-monotonicity test + CaMeL nedton Kjell Tore Guttormsen 2026-04-29 11:49:08 +02:00
  • 547b84865c fix(llm-security): B2 block-mode blocks all detected trifectas, not only high-confidence Kjell Tore Guttormsen 2026-04-20 00:04:36 +02:00
  • e0bdaf84c0 fix(llm-security): B1 pathguard regex — match multi-segment .env.*.* Kjell Tore Guttormsen 2026-04-19 23:59:38 +02:00