kobako 0.6.2-aarch64-linux → 0.8.0-aarch64-linux

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: dfa0224baa56613870533b63ab36dab0b968493c90acfeb7ec481073213d816a
-  data.tar.gz: 6c996a5f2bdd56cfa923ef60107b2d708e40273086bdc4f765aee9c48d4a8772
+  metadata.gz: b96bfbd5ac2202cd0231a33ff1cabfc026a43ae0e9e63cb9fa41ad3ae5d2146b
+  data.tar.gz: ec09bc9e303b0c47db458384af838f04471cac6e001e56bff4eeb2b3a4d0186c
 SHA512:
-  metadata.gz: 651602cf69bbe84599f79c3950b52b7754023097140391c6248961fbc2def5da8703d30743c5bac9d5d5bddabf352a7a326847e1bd68f06bcfbc30445af5f0ae
-  data.tar.gz: 7bf7d85195919f372e02123177788a7de4003613494df4adb2616b7a4a309482fc06ce5ccc8bcdb1081375407fa3e8d4086b04c7e62c26e86a295df4de18c91c
+  metadata.gz: 295a4114b872301d7fa766ce5915ee56ee139c134d81291146aa1b47607d0f1e904dcec8a4eb0eb687927f22f09cde163c5eb52a4806d310b3405be91a846fc3
+  data.tar.gz: 119f2ea27c2e2ab94bff8d5a69ad6c43b9d07a7d78971c8c0a844649ba39f655a63f286e57a9269569a17f81814654a827ac53796b62f3f15a0085657e340796

data/.release-please-manifest.json

@@ -1 +1 @@
-{".":"0.6.2"}
+{".":"0.8.0","wasm/kobako-core":"0.2.0"}

data/CHANGELOG.md

@@ -1,5 +1,35 @@
 # Changelog
 
+## [0.8.0](https://github.com/elct9620/kobako/compare/v0.7.0...v0.8.0) (2026-06-05)
+
+
+### Features
+
+* validate the Guest Binary ABI version at Sandbox construction ([63f22de](https://github.com/elct9620/kobako/commit/63f22deb88dc8acfeae56dccdbf31a7b3650da0d))
+* **wasm:** turn the Guest ABI into a trait + export_guest! macro ([3532dc2](https://github.com/elct9620/kobako/commit/3532dc20521ca8d9dd55bc39f01ff611d9df0d4b))
+
+
+### Bug Fixes
+
+* **build:** track every wasm workspace member in the rebuild check ([3f042a4](https://github.com/elct9620/kobako/commit/3f042a4fe28aa8d8b70bb313f6158e1865a2cbeb))
+
+## [0.7.0](https://github.com/elct9620/kobako/compare/v0.6.2...v0.7.0) (2026-06-03)
+
+
+### Features
+
+* **examples/async-io:** demo single-thread I/O overlap across Sandboxes ([858a0f7](https://github.com/elct9620/kobako/commit/858a0f70bb0730e5e3ad3f49a5caadf948f6ed7d))
+* **guest:** reject construction of Handle proxies (B-39) ([bda5e2b](https://github.com/elct9620/kobako/commit/bda5e2b5e48fe25adeefac19c47f1b93585091bf))
+* **guest:** reject construction of Member proxies (B-38) ([885c281](https://github.com/elct9620/kobako/commit/885c2812da8627e4ec7c185d9e04e4056c94a7fd))
+
+
+### Bug Fixes
+
+* **ext:** surface the buried root cause on non-cap traps ([dbd1ce5](https://github.com/elct9620/kobako/commit/dbd1ce51f25ab8c83d39daee64278192d763d5ef))
+* **guest:** bound the encoder walk so cycles and deep nesting fail cleanly ([90880ff](https://github.com/elct9620/kobako/commit/90880ffe6f0ee911b3c7c076ef6c86b9e08c62e1))
+* **guest:** stop an embedded NUL in a returned value from hard-trapping ([14fbb97](https://github.com/elct9620/kobako/commit/14fbb97ecb47b4263585602754e92237bb951d46))
+* **guest:** stop named-capture regexes from hard-trapping the sandbox ([a279ea1](https://github.com/elct9620/kobako/commit/a279ea1e2f196580b396342851e4e75ff9ea5cfa))
+
 ## [0.6.2](https://github.com/elct9620/kobako/compare/v0.6.1...v0.6.2) (2026-05-31)
 
 

data/README.md

@@ -283,6 +283,29 @@ sandbox.run(:Greeter, name: "world") # => "hello, world"
 
 Use the source form for snippets authored in your repo (compile errors fail fast at `#preload`); use the bytecode form when snippets ship as build artifacts from a separate `mrbc` pipeline. Both replay through the same per-invocation path.
 
+## Security
+
+kobako isolates the guest, but **what it may reach is whatever you `bind`** — and `bind`
+exposes *every* public method of the object. So bind a purpose-built object scoped to the
+task, not a capable one whose other methods leak more than you intend.
+
+```ruby
+class ThemeReader          # only #color is reachable; AppConfig.secret_key is not
+  def color = AppConfig.theme.color
+end
+
+sandbox = Kobako::Sandbox.new
+sandbox.define(:Cfg).bind(:Settings, ThemeReader.new)  # not: bind(:Settings, AppConfig)
+
+sandbox.eval('Cfg::Settings.color')  # => "#3366ff"  — every other method raises NoMethodError
+```
+
+Guest code can name any `<Namespace>::<Member>` path, but a forged name only resolves to
+something you bound — the real authorization gate is this host-side allowlist. Give each
+trust context its own Sandbox, and see [`docs/security.md`](docs/security.md) for the rest
+as security-design concerns: validating untrusted input, default-deny external effects,
+and controlling the return surface.
+
 ## Performance
 
 Order-of-magnitude figures on macOS arm64, Ruby 3.4.7, YJIT off. Absolute values vary by hardware but ratios are stable across machines. Full numbers, methodology, and the +10%-regression gate live in [`benchmark/README.md`](benchmark/README.md).

data/lib/kobako/version.rb

@@ -1,5 +1,5 @@
 # frozen_string_literal: true
 
 module Kobako
-  VERSION = "0.6.2"
+  VERSION = "0.8.0"
 end

data/release-please-config.json

@@ -7,6 +7,17 @@
       "component": "kobako",
       "include-component-in-tag": false,
       "release-type": "ruby"
+    },
+    "wasm/kobako-core": {
+      "component": "kobako-core",
+      "release-type": "rust",
+      "extra-files": [
+        {
+          "type": "toml",
+          "path": "/wasm/Cargo.lock",
+          "jsonpath": "$.package[?(@.name=='kobako-core')].version"
+        }
+      ]
     }
   },
   "extra-files": [

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: kobako
 version: !ruby/object:Gem::Version
-  version: 0.6.2
+  version: 0.8.0
 platform: aarch64-linux
 authors:
 - Aotokitsuruya
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2026-05-31 00:00:00.000000000 Z
+date: 2026-06-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: msgpack