welsberr
/
ThreeGate
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
ThreeGate/CHANGELOG.md

671 B
Raw Permalink Blame History

Changelog

All notable changes to this project will be documented here.

[Unreleased]

Added

  • CI workflow running validators + adversarial static tests.
  • Documentation: execution backends, threat model, security audit checklist.
  • Monty TOOL-EXEC-Lite backend stubs (pure compute).
  • Redirect-safe, size-capped allowlisted URL fetcher.
  • Crossref-by-DOI metadata fetcher.

Changed

  • Tool Request validator supports backend=monty and enforces Inputs (JSON) identifier keys.

Security

  • Redirect handling: default deny; allowlisted per-hop enforcement when enabled.
  • Separation of duties maintained: CORE no-exec/no-net; FETCH no-exec; TOOL-EXEC gated.