@intentsolutions/audit-harness 1.2.1 → 1.2.2
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +20 -0
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -10,6 +10,26 @@ _Nothing yet._
|
|
|
10
10
|
|
|
11
11
|
- **OTel event-name polish (iah-E07b/c).** The `agent.rollout.gate.evaluated` and `gate.decision.emitted` event names are already locked + tested on main (PRs #78, #81 per NORMATIVE `intent-eval-lab/000-docs/067-AT-SPEC`). Any further attribute-schema polish on those events is deferred to a routine v2.1 release rather than headlined here — it is additive telemetry refinement, not a 1.2.0 capability boundary.
|
|
12
12
|
|
|
13
|
+
## [1.2.2] - 2026-06-16
|
|
14
|
+
|
|
15
|
+
A patch release closing the polyglot publish loop. No CLI surface, runtime behavior,
|
|
16
|
+
or API boundary changes — only the release machinery moved. v1.2.1 published to npm
|
|
17
|
+
but failed PyPI (a twine bug) and crates.io (an account email-verification gate);
|
|
18
|
+
this release publishes all three registries cleanly.
|
|
19
|
+
|
|
20
|
+
### Fixed — PyPI publish (#92)
|
|
21
|
+
|
|
22
|
+
- **twine now uploads only built distributions, not the `.sigstore.json` bundles.** The
|
|
23
|
+
`publish-pypi` leg's `twine upload` call is scoped to `dist/*.whl dist/*.tar.gz`, so
|
|
24
|
+
the sigstore signature bundles emitted alongside the wheel + sdist are no longer
|
|
25
|
+
passed to twine (which rejected them and failed the v1.2.1 PyPI publish).
|
|
26
|
+
|
|
27
|
+
### Fixed — crates.io publish now active
|
|
28
|
+
|
|
29
|
+
- **crates.io publish goes live.** The account email-verification gate that blocked the
|
|
30
|
+
v1.2.1 crates.io publish is now resolved, so the `publish-crates` leg publishes on
|
|
31
|
+
this tag — closing the npm + PyPI + crates polyglot publish loop.
|
|
32
|
+
|
|
13
33
|
## [1.2.1] - 2026-06-16
|
|
14
34
|
|
|
15
35
|
A patch release: release-pipeline supply-chain hardening (polyglot signing) plus
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@intentsolutions/audit-harness",
|
|
3
|
-
"version": "1.2.
|
|
3
|
+
"version": "1.2.2",
|
|
4
4
|
"description": "Deterministic test-enforcement harness — escape-scan, hash-pinning, CRAP, architecture checks, bias detection, Gherkin lint. Companion to the audit-tests and implement-tests Claude Code skills.",
|
|
5
5
|
"license": "Apache-2.0",
|
|
6
6
|
"author": "Jeremy Longshore <jeremy@intentsolutions.io>",
|