moltblock 0.11.0 → 0.11.1

package/dist/index.d.ts

@@ -1,7 +1,7 @@
 /**
  * Moltblock — framework for evolving composite intelligences (Entities).
  */
-export declare const VERSION = "0.11.0";
+export declare const VERSION = "0.11.1";
 export type { ModelBinding, BindingEntry, AgentConfig, MoltblockConfig, ChatMessage, VerifiedMemoryEntry, CheckpointEntry, OutcomeEntry, InboxEntry, StrategySuggestion, ReceivedArtifact, GovernanceConfig, } from "./types.js";
 export { WorkingMemory } from "./memory.js";
 export { signArtifact, verifyArtifact, artifactHash } from "./signing.js";

package/dist/index.js

@@ -1,7 +1,7 @@
 /**
  * Moltblock — framework for evolving composite intelligences (Entities).
  */
-export const VERSION = "0.11.0";
+export const VERSION = "0.11.1";
 // Memory
 export { WorkingMemory } from "./memory.js";
 // Signing

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "moltblock",
-  "version": "0.11.0",
+  "version": "0.11.1",
   "description": "Framework for building evolving composite AI intelligences (Entities)",
   "type": "module",
   "main": "dist/index.js",

package/skill/SKILL.md

@@ -1,7 +1,7 @@
 ---
 name: moltblock - Trust Layer for AI Agents
 description: Verification gating for AI-generated artifacts. Policy checks and code verification to catch dangerous patterns before execution.
-version: 0.8.0
+version: 0.11.0
 metadata:
   openclaw:
     requires:
@@ -12,10 +12,14 @@ metadata:
         - moltblock.json
         - ~/.moltblock/moltblock.json
     primaryEnv: OPENAI_API_KEY
+    optionalEnv:
+      - ANTHROPIC_API_KEY
+      - GOOGLE_API_KEY
+      - ZAI_API_KEY
     homepage: https://github.com/moltblock/moltblock
     install:
       - kind: node
-        package: moltblock@0.8.0
+        package: moltblock@0.11.0
         bins: [moltblock]
 ---
 
@@ -27,9 +31,9 @@ Moltblock provides verification gating for AI-generated artifacts. It runs polic
 
 **What moltblock does:**
 - Generates code via LLM API calls, then runs policy checks against the output
-- When `--test` is provided, executes vitest to verify generated code against the test file
+- When `--test` is provided, executes vitest to verify generated code against a user-provided test file (see **Security: Test Execution** below)
 - Reads its own config files (`moltblock.json`, `~/.moltblock/moltblock.json`) if present
-- API keys are read from environment variables at runtime — never stored or transmitted beyond the configured LLM provider
+- API keys are read from environment variables at runtime and sent only to the configured LLM provider endpoint
 
 ## When to Use
 
@@ -46,7 +50,7 @@ Verify a task before execution.
 ### Usage
 
 ```bash
-npx moltblock@0.8.0 "<task description>" --provider <provider> --json
+npx moltblock@0.11.0 "<task description>" --provider <provider> --json
 ```
 
 ### Parameters
@@ -61,20 +65,20 @@ npx moltblock@0.8.0 "<task description>" --provider <provider> --json
 
 ### Environment Variables
 
-No API key is required — moltblock falls back to a local LLM (localhost:1234) if no key is set. To use a cloud provider, set **one** of these:
-- `OPENAI_API_KEY` — OpenAI
-- `ANTHROPIC_API_KEY` — Anthropic/Claude
-- `GOOGLE_API_KEY` — Google/Gemini
-- `ZAI_API_KEY` — ZAI
+Moltblock auto-detects the LLM provider from whichever API key is set. If no key is set, it falls back to a local LLM at `localhost:1234`. Set **one** of these for a cloud provider:
+- `OPENAI_API_KEY` — OpenAI (primary)
+- `ANTHROPIC_API_KEY` — Anthropic/Claude (optional)
+- `GOOGLE_API_KEY` — Google/Gemini (optional)
+- `ZAI_API_KEY` — ZAI (optional)
 
 ### Example
 
 ```bash
 # Verify a task
-npx moltblock@0.8.0 "implement a function that validates email addresses" --json
+npx moltblock@0.11.0 "implement a function that validates email addresses" --json
 
 # Verify code with tests
-npx moltblock@0.8.0 "implement a markdown-to-html converter" --test ./tests/markdown.test.ts --json
+npx moltblock@0.11.0 "implement a markdown-to-html converter" --test ./tests/markdown.test.ts --json
 ```
 
 ### Output (JSON mode)
@@ -95,13 +99,13 @@ npx moltblock@0.8.0 "implement a markdown-to-html converter" --test ./tests/mark
 Use directly with npx (recommended, no install needed):
 
 ```bash
-npx moltblock@0.8.0 "your task" --json
+npx moltblock@0.11.0 "your task" --json
 ```
 
 Or install globally:
 
 ```bash
-npm install -g moltblock@0.8.0
+npm install -g moltblock@0.11.0
 ```
 
 ## Configuration
@@ -130,6 +134,17 @@ See the [full configuration docs](https://github.com/moltblock/moltblock#configu
 - npm: [npmjs.com/package/moltblock](https://www.npmjs.com/package/moltblock)
 - License: MIT
 
+## Security: Test Execution
+
+When `--test` is used, moltblock writes LLM-generated code to a temporary file and runs vitest against it using the user-provided test file. **This executes LLM-generated code in a Node.js process on the host machine.** Mitigations:
+
+- The test file path must be provided explicitly by the user — moltblock does not select or generate test files
+- Generated code is written to `os.tmpdir()` and cleaned up after execution
+- Policy rules run **before** test execution to deny known dangerous patterns (e.g. `rm -rf`, `eval`, `child_process`, filesystem writes)
+- Without `--test`, no code execution occurs — only policy checks run against the generated artifact
+
+**Residual risk:** Policy rules are pattern-based and cannot catch all dangerous code. LLM-generated code executed via `--test` may perform arbitrary actions within the permissions of the Node.js process. Users should review generated code or run moltblock in a sandboxed environment when verifying untrusted tasks.
+
 ## Disclaimer
 
 Moltblock reduces risk but does not eliminate it. Verification is best-effort — policy rules and LLM-based checks can miss dangerous patterns. Always review generated artifacts before executing them. The authors and contributors are not responsible for any damage, data loss, or security incidents resulting from the use of this tool. Use at your own risk.