From dc0f90500d241f505474021a9580c363ab36232c Mon Sep 17 00:00:00 2001 From: "github-actions[bot]" <41898282+github-actions[bot]@users.noreply.github.com> Date: Fri, 3 Jul 2026 12:56:51 +0000 Subject: [PATCH] chore(master): release 0.9.1 --- .release-please-manifest.json | 2 +- CHANGELOG.md | 26 +++++++++++++++++++ core/package.json | 2 +- package-lock.json | 4 +-- package.json | 2 +- runners/cli/package.json | 2 +- runners/cli/ui/package.json | 2 +- runners/extension/manifest.json | 13 +++++++--- runners/extension/package.json | 2 +- runners/mcp/package.json | 2 +- runners/sdk/package.json | 2 +- .../e2e/agents/customer-support/package.json | 2 +- tests/e2e/agents/vanilla-chat/package.json | 2 +- .../e2e/agents/vulnerable-memory/package.json | 2 +- tests/e2e/mcp/vulnerable-server/package.json | 2 +- 15 files changed, 50 insertions(+), 17 deletions(-) create mode 100644 CHANGELOG.md diff --git a/.release-please-manifest.json b/.release-please-manifest.json index 76d5538a..b28fea99 100644 --- a/.release-please-manifest.json +++ b/.release-please-manifest.json @@ -1,3 +1,3 @@ { - ".": "0.9.0" + ".": "0.9.1" } diff --git a/CHANGELOG.md b/CHANGELOG.md new file mode 100644 index 00000000..5a08f71c --- /dev/null +++ b/CHANGELOG.md @@ -0,0 +1,26 @@ +# Changelog + +## [0.9.1](https://github.com/KeyValueSoftwareSystems/agent-opfor/compare/v0.9.0...v0.9.1) (2026-07-03) + + +### Features + +* stream run lifecycle events as ndjson via a run-listener ([#159](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/159)) ([ccc99dc](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/ccc99dc161121f40ecdaf56182c5bd4c91b99dc1)) +* support listing mcp suites from the sdk ([#144](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/144)) ([6b68b42](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/6b68b4292d5f8f9b1a86df1b40dba8c6f02a0769)) + + +### Bug Fixes + +* broken gitleaks ci for fork ([#158](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/158)) ([e0be561](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/e0be561283febd7a237db7677059bb4124f638bb)) +* bump zod to ^4.0.0 to satisfy claude-agent-sdk peer dependency ([#148](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/148)) ([bcd970e](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/bcd970e4e53a805386e3a84c439d8d6f96b12264)) +* conditional reasoning instruction and stricter section() parsing ([15b598f](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/15b598f64739cae5cf3df529ba3ceb11832ebd9c)) +* declare mcp dep, add createRequire banner, fix atlas-data resolution for bundled runners ([#134](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/134)) ([b8ff91f](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/b8ff91fa2032d7cd09b6a9af9f1cf0b65ec61143)) +* harden mcp baseline scanner against false negatives and crashes ([#155](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/155)) ([cd36f85](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/cd36f8567fa655217ffe245f9f4c574e6adefc89)) +* make agent judge reason before stating its verdict ([3b551c6](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/3b551c68144e0426d86e52b5dc4678eb8ecda259)) +* make agent judge reason before stating its verdict ([60dacc8](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/60dacc89a9ee12a3459fd0a7a8dd506007499647)) +* make hunt work from a published install ([#157](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/157)) ([ac468ea](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/ac468ea824c4bd6ec63a8e5a9daeff7e54825393)) +* rename 'Risk Score' to 'Safety Score' in extension popup ([#133](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/133)) ([4c955a0](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/4c955a0cf202e553a20d57a9f4906d0930cef7b0)) +* revert gitleaks trigger from pull_request_target to pull_request ([#161](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/161)) ([ea7315e](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/ea7315e8609b212e98b01b04bd3d00d9342edbd0)) +* run gitleaks binary in ci to unblock fork pull requests ([#162](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/162)) ([be307b2](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/be307b27b7fd4880211ab08f20e47b81ecf3f01e)) +* use simple tag format for release-please ([9e7a8e6](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/9e7a8e6ede254af8c3ef59e56cdd9942bd20362c)) +* validate mcp tool inputs with zod and return actionable errors ([#143](https://github.com/KeyValueSoftwareSystems/agent-opfor/issues/143)) ([ad749bc](https://github.com/KeyValueSoftwareSystems/agent-opfor/commit/ad749bc917303db92ae1076a6bf97036427c8fa5)) diff --git a/core/package.json b/core/package.json index 2e97ef28..b3284862 100644 --- a/core/package.json +++ b/core/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-core", - "version": "0.9.0", + "version": "0.9.1", "description": "Opfor core engine — attacker prompt generation, judge, and execution shared by all runners", "license": "Apache-2.0", "private": true, diff --git a/package-lock.json b/package-lock.json index e35e8fac..9c61c058 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "agent-opfor", - "version": "0.9.0", + "version": "0.9.1", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "agent-opfor", - "version": "0.9.0", + "version": "0.9.1", "license": "Apache-2.0", "workspaces": [ "core", diff --git a/package.json b/package.json index 93e24cb1..2d109b60 100644 --- a/package.json +++ b/package.json @@ -1,6 +1,6 @@ { "name": "agent-opfor", - "version": "0.9.0", + "version": "0.9.1", "description": "Opfor — security testing for AI agents and MCP servers (workspace root)", "license": "Apache-2.0", "private": true, diff --git a/runners/cli/package.json b/runners/cli/package.json index 6ee877b3..6c87c19b 100644 --- a/runners/cli/package.json +++ b/runners/cli/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-cli", - "version": "0.9.0", + "version": "0.9.1", "description": "Opfor CLI — security testing for AI agents and MCP servers (opfor setup|run|hunt)", "license": "Apache-2.0", "type": "module", diff --git a/runners/cli/ui/package.json b/runners/cli/ui/package.json index 68c5598d..dc93275e 100644 --- a/runners/cli/ui/package.json +++ b/runners/cli/ui/package.json @@ -1,7 +1,7 @@ { "name": "@keyvaluesystems/agent-opfor-autonomous-ui", "private": true, - "version": "0.9.0", + "version": "0.9.1", "type": "module", "scripts": { "dev": "vite", diff --git a/runners/extension/manifest.json b/runners/extension/manifest.json index bb47da20..3018dc97 100644 --- a/runners/extension/manifest.json +++ b/runners/extension/manifest.json @@ -1,7 +1,7 @@ { "manifest_version": 3, "name": "Agent OPFOR", - "version": "0.9.0", + "version": "0.9.1", "description": "Red-team any chat interface. Auto-detects chat widgets, runs adaptive attacks, and generates security reports.", "icons": { "16": "icons/icon16.png", @@ -21,8 +21,15 @@ "side_panel": { "default_path": "sidepanel.html" }, - "permissions": ["activeTab", "scripting", "storage", "sidePanel"], - "host_permissions": [""], + "permissions": [ + "activeTab", + "scripting", + "storage", + "sidePanel" + ], + "host_permissions": [ + "" + ], "background": { "service_worker": "service_worker.js", "type": "module" diff --git a/runners/extension/package.json b/runners/extension/package.json index 0ade64d0..ed75336f 100644 --- a/runners/extension/package.json +++ b/runners/extension/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-extension", - "version": "0.9.0", + "version": "0.9.1", "description": "Opfor browser extension (MV3) — chat UI injector for live testing", "license": "Apache-2.0", "private": true, diff --git a/runners/mcp/package.json b/runners/mcp/package.json index 5e0ab898..bb6280bb 100644 --- a/runners/mcp/package.json +++ b/runners/mcp/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-mcp", - "version": "0.9.0", + "version": "0.9.1", "description": "Opfor MCP server — expose red team tools to any MCP-compatible AI agent", "license": "Apache-2.0", "type": "module", diff --git a/runners/sdk/package.json b/runners/sdk/package.json index b9890b07..8eb874d0 100644 --- a/runners/sdk/package.json +++ b/runners/sdk/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-sdk", - "version": "0.9.0", + "version": "0.9.1", "description": "Opfor SDK — programmatic adversarial testing for AI systems", "license": "Apache-2.0", "type": "module", diff --git a/tests/e2e/agents/customer-support/package.json b/tests/e2e/agents/customer-support/package.json index f4a2c7f4..4a04090e 100644 --- a/tests/e2e/agents/customer-support/package.json +++ b/tests/e2e/agents/customer-support/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-test-agent-customer-support", - "version": "0.9.0", + "version": "0.9.1", "description": "Customer support test agent with PostgreSQL — tests BOLA, BFLA, RBAC, PII, and SQL injection evaluators", "private": true, "type": "module", diff --git a/tests/e2e/agents/vanilla-chat/package.json b/tests/e2e/agents/vanilla-chat/package.json index 10bf5dee..551b86de 100644 --- a/tests/e2e/agents/vanilla-chat/package.json +++ b/tests/e2e/agents/vanilla-chat/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-test-agent-vanilla-chat", - "version": "0.9.0", + "version": "0.9.1", "description": "Vanilla chat test agent — used for local developer testing of Opfor evaluators", "private": true, "type": "module", diff --git a/tests/e2e/agents/vulnerable-memory/package.json b/tests/e2e/agents/vulnerable-memory/package.json index f8f6843a..1f1da201 100644 --- a/tests/e2e/agents/vulnerable-memory/package.json +++ b/tests/e2e/agents/vulnerable-memory/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-test-agent-vulnerable-memory", - "version": "0.9.0", + "version": "0.9.1", "description": "Intentionally vulnerable agent — accepts and persists user-injected 'policies' into a global knowledge base across sessions", "private": true, "type": "module", diff --git a/tests/e2e/mcp/vulnerable-server/package.json b/tests/e2e/mcp/vulnerable-server/package.json index 8ac8f0cc..eca7c3b9 100644 --- a/tests/e2e/mcp/vulnerable-server/package.json +++ b/tests/e2e/mcp/vulnerable-server/package.json @@ -1,6 +1,6 @@ { "name": "@keyvaluesystems/agent-opfor-test-mcp-vulnerable", - "version": "0.9.0", + "version": "0.9.1", "description": "Intentionally vulnerable MCP server for opfor testing — DO NOT deploy", "private": true, "type": "module",