CalvinBackup/gstack
1
0
Fork 0
mirror of https://github.com/garrytan/gstack.git synced 2026-05-02 03:35:09 +02:00
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 4d260db78a feat(v1.5.2.0): Opus 4.7 migration — model overlay, voice, routing gstack 2026-04-21 05:57:02 +00:00
  • 54d4cde773 security: tunnel dual-listener + SSRF + envelope + path wave (v1.6.0.0) (#1137) Garry Tan 2026-04-21 21:58:27 -07:00
  • 89480291f5 fix(sidebar): killAgent resets per-tab state; align tests with current agent event format garrytan/sec-wave Garry Tan 2026-04-21 21:34:30 -07:00
  • 499f2ade92 fix(make-pdf): write --from-file payload to /tmp, not os.tmpdir() Garry Tan 2026-04-21 21:19:44 -07:00
  • 3bff673671 docs: update project documentation for v1.6.0.0 Garry Tan 2026-04-21 21:11:55 -07:00
  • c7583f7f02 fix: pre-landing review findings (4 auto-fixes) Garry Tan 2026-04-21 21:07:35 -07:00
  • 596a130d60 merge: origin/main into garrytan/injection-tuning; bump v1.5.1.0 → v1.5.2.0 Garry Tan 2026-04-21 20:50:02 -07:00
  • cb71b72ce3 release(v1.6.0.0): bump VERSION + CHANGELOG for security wave Garry Tan 2026-04-21 20:48:52 -07:00
  • f5ad22c3bb test(E1): end-to-end pair-agent flow against a spawned daemon Garry Tan 2026-04-21 20:45:31 -07:00
  • 580f54d3e1 docs(E2): document dual-listener tunnel architecture in ARCHITECTURE.md Garry Tan 2026-04-21 20:43:18 -07:00
  • 80dfc988a1 security(N2): document Windows v20 ABE elevation path on CDP port Garry Tan 2026-04-21 20:42:15 -07:00
  • 13a7528697 security(N1): replace ?token= SSE auth with HttpOnly session cookie Garry Tan 2026-04-21 20:41:07 -07:00
  • 49263b3d10 security(E3): gate GSTACK_SLUG on /welcome path traversal Garry Tan 2026-04-21 20:37:37 -07:00
  • 202b4308b1 fix(scripts): drop shell:true from slop-diff npx invocations Mohammed Qazi 2026-04-18 15:59:56 -07:00
  • de4832ba1a fix(design): escape url.origin when injecting into served HTML Mohammed Qazi 2026-04-18 15:59:49 -07:00
  • 693eadf6f3 security: validate --from-file payload paths for parity with direct paths gus 2026-04-20 14:28:29 -03:00
  • 1372a4f631 security: extend hidden-element detection to all DOM-reading channels gus 2026-04-16 20:33:09 -03:00
  • d9e78dd548 security: route splitForScoped through envelope sentinel escape gus 2026-04-16 19:58:31 -03:00
  • b7cf46d6e6 security: gate download + scrape through validateNavigationUrl (SSRF) gus 2026-04-16 19:47:19 -03:00
  • 7dd5dbba83 chore(release): v1.5.1.0 — cut Haiku FP 44% → 23% Garry Tan 2026-04-21 20:32:24 -07:00
  • b86ef06706 test(security): live + fixture-replay bench harness with 500-case capture Garry Tan 2026-04-21 20:32:15 -07:00
  • de972b514f test(security): add source-level guards for dual-listener architecture Garry Tan 2026-04-21 20:31:56 -07:00
  • 6cedecd585 feat(security): v2 ensemble tuning — label-first voting + SOLO_CONTENT_BLOCK Garry Tan 2026-04-21 20:31:53 -07:00
  • 67a511c0b1 feat(security): dual-listener tunnel architecture Garry Tan 2026-04-21 20:31:43 -07:00
  • f962796f07 feat(security): add tunnel-denial-log module for attack visibility Garry Tan 2026-04-21 20:31:14 -07:00
  • 12fdc6391c refactor(security): loosen /connect rate limit from 3/min to 300/min Garry Tan 2026-04-21 20:31:03 -07:00
  • dcc820f070 fix(stealth): address adversarial code review — 7 findings feature/stealth-patches gstack 2026-04-21 03:10:13 +00:00
  • 1eae837260 fix(stealth): address security review findings gstack 2026-04-21 03:08:06 +00:00
  • 8df1c003b5 test(stealth): comprehensive unit + e2e tests, fix platform mismatch gstack 2026-04-21 03:06:40 +00:00
  • 46b2e35917 feat(browse): comprehensive anti-bot stealth patches gstack 2026-04-21 02:45:00 +00:00
  • e23ff280a1 fix(v1.4.1.0): /make-pdf — page numbers, entity escape, Linux fonts (#1098) Garry Tan 2026-04-20 22:32:58 +08:00
  • 109994b6b0 Merge remote-tracking branch 'origin/main' into garrytan/makepdf-patch garrytan/makepdf-patch Garry Tan 2026-04-20 22:22:21 +08:00
  • 72d94c3df3 chore: anonymize test fixtures, drop VC-partner framing Garry Tan 2026-04-20 22:19:55 +08:00
  • 97584f9a59 feat(security): ML prompt injection defense for sidebar (v1.4.0.0) (#1089) Garry Tan 2026-04-20 22:18:37 +08:00
  • 2b4a2c7840 test(security): assert block stops further tool calls, allow lets them through garrytan/prompt-injection-guard Garry Tan 2026-04-20 22:03:29 +08:00
  • 53202b5a14 docs(todos): P0 Haiku FP tuning + P1-P3 follow-ups from bench data Garry Tan 2026-04-20 22:00:16 +08:00
  • 372a5aa382 docs(changelog): measured BrowseSafe-Bench lift from Haiku unbreak Garry Tan 2026-04-20 21:57:16 +08:00
  • 7e98052195 chore: bump version and changelog (v1.4.1.0) Garry Tan 2026-04-20 21:54:45 +08:00
  • db33e52e70 fix(make-pdf): Liberation Sans font fallback for Linux rendering Garry Tan 2026-04-20 21:42:53 +08:00
  • 70b59ec91b fix(make-pdf): decode HTML entities in titles and TOC to prevent double-escape Garry Tan 2026-04-20 21:41:32 +08:00
  • cf875d1e41 fix(make-pdf): single-source page numbers via CSS, honor --no-page-numbers end-to-end Garry Tan 2026-04-20 21:40:27 +08:00
  • b515f31400 feat(security): always run Haiku on tool outputs (drop the L4 gate) Garry Tan 2026-04-20 21:15:57 +08:00
  • 5d968c43ec fix(security): unbreak Haiku transcript classifier — wrong model + too-tight timeout Garry Tan 2026-04-20 21:15:44 +08:00
  • 8f9bb84f3f test(security): full-stack review E2E — real classifier + mock-claude Garry Tan 2026-04-20 20:55:45 +08:00
  • 6d6aa3be3c test(security): mock-claude scenario for tool-result injection path Garry Tan 2026-04-20 20:55:25 +08:00
  • 3a5a174e4c test(security): sidepanel review E2E — Playwright drives Allow/Block Garry Tan 2026-04-20 20:55:16 +08:00
  • f4e31ef5d8 test(security): review-flow regression tests Garry Tan 2026-04-20 20:25:37 +08:00
  • b12a28654f feat(ui): reviewable security banner with suspected-text + Allow/Block Garry Tan 2026-04-20 20:25:29 +08:00
  • 13b8db9e7a feat(security): wait-for-decision instead of hard-kill on tool-output BLOCK Garry Tan 2026-04-20 20:25:20 +08:00
  • 26fd1b2825 feat(security): POST /security-decision + relay reviewable banner fields Garry Tan 2026-04-20 20:25:12 +08:00
  • a487205605 feat(security): decision file primitives for human-in-the-loop review Garry Tan 2026-04-20 20:25:04 +08:00
  • 10a7ab8a62 fix(security): k-anon suppression in community-pulse attack aggregate Garry Tan 2026-04-20 19:39:42 +08:00
  • 24274c97b0 Merge origin/main into garrytan/prompt-injection-guard Garry Tan 2026-04-20 14:09:09 +08:00
  • d0782c4c4d feat(v1.4.0.0): /make-pdf — markdown to publication-quality PDFs (#1086) Garry Tan 2026-04-20 13:20:30 +08:00
  • 2294104372 docs(changelog): rewrite v1.4.0.0 headline — positive voice, no VC framing garrytan/perfect-pdf Garry Tan 2026-04-20 12:48:27 +08:00
  • 2eb093f8c8 docs: document sidebar prompt injection defense across user docs Garry Tan 2026-04-20 11:13:15 +08:00
  • 375a317f5f docs: CHANGELOG hardening section + TODOS mark Read/Glob/Grep shipped Garry Tan 2026-04-20 11:09:22 +08:00
  • c51ebdf456 test(security): regression tests for 4 adversarial-review fixes Garry Tan 2026-04-20 11:07:27 +08:00
  • 88b12c2b4c fix(security): tool-output context allows single-layer BLOCK Garry Tan 2026-04-20 11:07:18 +08:00
  • 407c36b48a fix(security): rolling-buffer canary detection + tool_output in Haiku prompt Garry Tan 2026-04-20 11:07:06 +08:00
  • 4179390799 fix(ui): escapeHtml must escape quote characters too Garry Tan 2026-04-20 11:06:54 +08:00
  • 808ce0de8e fix(security): wrap snapshot output in untrusted-content envelope Garry Tan 2026-04-20 11:06:45 +08:00
  • d6084fa6c3 fix(dashboard): use jq for brace-balanced JSON parse when available Garry Tan 2026-04-20 07:17:37 +08:00
  • c98ef05c03 fix(sidebar-agent): evict tool-use registry entries on tool_result Garry Tan 2026-04-20 07:17:31 +08:00
  • 905d5a2e29 fix(security): cache device salt in-process to survive fs-unwritable Garry Tan 2026-04-20 07:17:23 +08:00
  • 7f7249d3d2 fix(security): make GSTACK_SECURITY_OFF a real kill switch Garry Tan 2026-04-20 07:17:16 +08:00
  • 461a6e6b18 fix(ui): use textContent for security banner layer labels Garry Tan 2026-04-20 07:17:07 +08:00
  • 6538e8019f chore: bump version and changelog (v1.4.0.0) Garry Tan 2026-04-20 07:14:34 +08:00
  • 21f0e5163d fix(tests): repair stale test expectations + emit _EXPLAIN_LEVEL / _QUESTION_TUNING from preamble Garry Tan 2026-04-20 07:14:09 +08:00
  • 9bbfa26597 test(security): source-level contracts for the security wiring Garry Tan 2026-04-20 07:09:52 +08:00
  • ac41d9fffd fix(preamble): emit EXPLAIN_LEVEL + QUESTION_TUNING bash echoes Garry Tan 2026-04-20 07:05:43 +08:00
  • 4953cdf3fd Merge remote-tracking branch 'origin/main' into garrytan/perfect-pdf Garry Tan 2026-04-20 06:31:28 +08:00
  • 34876e9337 test(security): sidepanel DOM tests via Playwright — shield + banner render Garry Tan 2026-04-20 05:40:54 +08:00
  • c98f360ad0 test(security): full-stack E2E — the security-contract anchor Garry Tan 2026-04-20 05:40:54 +08:00
  • 5765bef8fe test(security): mock claude binary for deterministic E2E stream-json events Garry Tan 2026-04-20 05:40:54 +08:00
  • 80af7570a2 fix(ui): banner z-index above shield icon so close button is clickable Garry Tan 2026-04-20 05:40:54 +08:00
  • 2c21366cf9 fix(security): relay security_event through processAgentEvent Garry Tan 2026-04-20 05:40:54 +08:00
  • b524f9468c docs(skills): regenerate SKILL.md for make-pdf addition + browse pdf flags Garry Tan 2026-04-20 05:34:33 +08:00
  • bc2f1fc1e7 ci(make-pdf): matrix copy-paste gate on Ubuntu + macOS Garry Tan 2026-04-20 05:34:24 +08:00
  • 23d9f0880a chore(build): wire make-pdf into build/test/setup/bin + add marked dep Garry Tan 2026-04-20 05:34:15 +08:00
  • 3af86348f6 feat(make-pdf): new /make-pdf skill + orchestrator binary Garry Tan 2026-04-20 05:34:05 +08:00
  • 0708273e5a feat(resolvers): add MAKE_PDF_SETUP + makePdfDir host paths Garry Tan 2026-04-20 05:33:30 +08:00
  • 7d89dcb77a feat(browse): full $B pdf flag contract + tab-scoped load-html/js/pdf Garry Tan 2026-04-20 05:33:22 +08:00
  • a275aa5dde chore(release): bump to v1.4.0.0 + CHANGELOG entry for prompt injection guard Garry Tan 2026-04-20 05:07:50 +08:00
  • d66fac53bf Merge remote-tracking branch 'origin/main' into garrytan/prompt-injection-guard Garry Tan 2026-04-20 05:04:45 +08:00
  • 60a1531124 docs(todos): mark shield polling, ensemble, dashboard, test suites, bun-native SHIPPED Garry Tan 2026-04-20 05:02:59 +08:00
  • c257d72d7d test(security): bun-native tokenizer correctness + bench harness shape Garry Tan 2026-04-20 05:02:59 +08:00
  • 07edc70df1 feat(security): Bun-native inference research skeleton + design doc Garry Tan 2026-04-20 05:02:59 +08:00
  • 756875a734 feat(dashboard): add gstack-security-dashboard CLI Garry Tan 2026-04-20 04:58:09 +08:00
  • 2d10797849 feat(supabase): community-pulse aggregates attack telemetry Garry Tan 2026-04-20 04:58:08 +08:00
  • a5588ec061 feat(supabase): schema migration for attack_attempt telemetry fields Garry Tan 2026-04-20 04:58:08 +08:00
  • 7a815fa7f6 docs(security): document GSTACK_SECURITY_ENSEMBLE env var Garry Tan 2026-04-20 04:55:23 +08:00
  • 4e0516031b test(security): 4 new ensemble tests — 3-way agreement rule Garry Tan 2026-04-20 04:55:23 +08:00
  • 8e9ec52d6f feat(security): DeBERTa-v3 ensemble classifier (opt-in) Garry Tan 2026-04-20 04:55:23 +08:00
  • b4e49d080d feat(security): 3-way ensemble verdict combiner with deberta_content layer Garry Tan 2026-04-20 04:55:23 +08:00
  • afc6661f8c test(security): add BrowseSafe-Bench smoke harness (v1 baseline) Garry Tan 2026-04-20 04:50:53 +08:00
  • d5253215c5 fix(security-classifier): truncation + HTML preprocessing Garry Tan 2026-04-20 04:50:53 +08:00
  • b96775191c test(security): live Playwright integration — defense-in-depth E5 contract Garry Tan 2026-04-20 04:44:07 +08:00
  • 0098d574e6 test(security): assert tool-result ML scan surface (Read/Glob/Grep ingress) Garry Tan 2026-04-20 04:42:20 +08:00
  • f2e80dd77e feat(security): ML scan on Read/Glob/Grep/WebFetch tool outputs Garry Tan 2026-04-20 04:42:20 +08:00