Skip to content

chore: release#3059

Merged
henrypark133 merged 2 commits into
mainfrom
release-plz-2026-04-29T04-24-54Z
Apr 29, 2026
Merged

chore: release#3059
henrypark133 merged 2 commits into
mainfrom
release-plz-2026-04-29T04-24-54Z

Conversation

@ironclaw-ci
Copy link
Copy Markdown
Contributor

@ironclaw-ci ironclaw-ci Bot commented Apr 29, 2026
edited by henrypark133
Loading

🤖 New release

  • ironclaw: 0.26.0 -> 0.27.0
  • ironclaw_common: 0.3.0 -> 0.4.0 (⚠ API breaking changes)
  • ironclaw_safety: 0.2.1 -> 0.2.2 (✓ API compatible changes)
  • ironclaw_skills: 0.2.0 -> 0.3.0 (⚠ API breaking changes)

ironclaw_common breaking changes

--- failure enum_no_repr_variant_discriminant_changed: enum variant had its discriminant change value ---

Description:
The enum's variant had its discriminant value change. This breaks downstream code that used its value via a numeric cast like `as isize`.
        ref: https://doc.rust-lang.org/reference/items/enumerations.html#assigning-discriminant-values
       impl: https://github.com/obi1kenobi/cargo-semver-checks/tree/v0.46.0/src/lints/enum_no_repr_variant_discriminant_changed.ron

Failed in:
  variant AppEvent::MissionThreadSpawned 30 -> 31 in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:494
  variant AppEvent::PlanUpdate 31 -> 32 in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:505

--- failure enum_variant_added: enum variant added on exhaustive enum ---

Description:
A publicly-visible enum without #[non_exhaustive] has a new variant.
        ref: https://doc.rust-lang.org/cargo/reference/semver.html#enum-variant-new
       impl: https://github.com/obi1kenobi/cargo-semver-checks/tree/v0.46.0/src/lints/enum_variant_added.ron

Failed in:
  variant AppEvent:ChildThreadCompleted in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:487
  variant AppEvent:CodeExecuted in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:530
  variant AppEvent:Warning in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:547
  variant AppEvent:CodeExecutionFailed in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:565
  variant AppEvent:LeaseGranted in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:580
  variant AppEvent:LeaseRevoked in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:593
  variant AppEvent:LeaseExpired in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:605
  variant AppEvent:SelfImprovement in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:624
  variant AppEvent:OrchestratorRollback in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_common/src/event.rs:637

ironclaw_skills breaking changes

--- failure constructible_struct_adds_field: externally-constructible struct adds field ---

Description:
A pub struct constructible with a struct literal has a new pub field. Existing struct literals must be updated to include the new field.
        ref: https://doc.rust-lang.org/reference/expressions/struct-expr.html
       impl: https://github.com/obi1kenobi/cargo-semver-checks/tree/v0.46.0/src/lints/constructible_struct_adds_field.ron

Failed in:
  field SkillCredentialSpec.path_patterns in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_skills/src/types.rs:293
  field SkillCredentialSpec.path_patterns in /tmp/.tmp6HMIAI/ironclaw/crates/ironclaw_skills/src/types.rs:293
Changelog

ironclaw

0.27.0 - 2026-04-29

Added

  • (engine-v2) add canonical capability status vocabulary for the v2 runtime contract (#2825)
  • (engine-v2) centralize action-vs-capability surface policy across the prompt, runtime, bridge projection, and tool surface (#2827)
  • (bridge) project 3 previously dropped engine events into AppEvents for gateway/runtime consumers (#2797)
  • (bridge) project 7 additional engine events into AppEvents, expanding runtime event visibility (#2844)
  • (debug-panel) expand Activity tab coverage for CodeAct execution, warnings, and richer event display (#2850)
  • (missions) redesign the Missions overview surface with richer mission dossiers and project/thread context (#2894)
  • (credentials) add path-based credential matching for per-endpoint auth and route the credential scope through WASM tools, HTTP tools, and sandbox proxy policy (#2168)
  • (engine) add short-title support for v2 threads so sidebars and thread lists can display concise labels (#2776)
  • (tooling) add fork support to the GitHub tool (#2139)
  • (canary) add canary reporting for live workflow coverage (#2874)

Fixed

  • (auth) prevent OAuth URL parameter truncation in callback and launch flows (#2746)
  • (auth) harden error boundaries, TEE secrets, pairing, auth rehydration, and related bug-bash failures (#2753)
  • (bridge) surface latent WASM provider actions to the LLM instead of hiding available provider affordances (#2891)
  • (bridge) fix restart approval floor handling so restart requests keep the correct permission baseline (#2978)
  • (engine) recover flattened tool calls in the v2 adapter path (#2757)
  • (engine) stop failed missions from respawning after terminal failure (#2760)
  • (engine) enforce real tool use for stop, pause, and cancel commands (#2814)
  • (engine) make mission threads_today reset with timezone-aware boundaries (#2989)
  • (engine) centralize tool permission defaults to avoid drift between projection and execution paths (#3041)
  • (gateway) serve Responses API routes under the /api/v1/ prefix (#2748)
  • (gateway) use conversation-only chat sidebar state and remove non-conversation entries from chat history navigation (#2867)
  • (gateway) resolve empty "Fetch available models" results for NEAR AI in settings (#2890)
  • (gateway) drop plan_update and approval_needed SSE events that do not carry a thread id (#2986)
  • (gateway) keep the Routines tab visible after engine v1 to v2 upgrades (#2992)
  • (gateway) surface the NEAR AI session token to the configure UI (#3014)
  • (llm) shape tool schemas correctly for NEAR AI provider compatibility (#2951)
  • (llm/config) harden model provider configuration across web and CLI paths (#2572)
  • (tools) fix v2 tool_info action inventory lookup (#2994)
  • (tools) make available actions callable-only for providers blocked from executing unavailable tools (#2868)
  • (wasm) remove the stale 10M fuel limit from settings databases and align libSQL migrations (#2851)
  • (cli) fix -m handling so it does not quit unexpectedly (#2150)
  • (release) correct the staged ironclaw version after a bad release metadata state (#2981)

Security

  • (document-extraction) prevent zip-bomb denial of service while extracting uploaded documents (#2093)
  • (orchestrator) scope orchestrator credentials to the job creator so sandboxed jobs cannot reuse another user's credentials (#2698)
  • (safety) add projection-exempt linting for gateway event sources to keep event projection coverage explicit and auditable (#2840)
  • (auth/live-canary) tighten auth flows and unify live canary coverage for auth-sensitive runtime paths (#2367)

Changed

  • (engine) bump Monty to v0.0.16 and update CodeAct orchestration docs and prompts to match the runtime (#2784)
  • (registry) update WASM artifact SHA256 checksums for Feishu, Slack, Telegram, GitHub, and Portfolio artifacts (#2775)
  • (registry) bump GitHub tool and Slack channel registry versions after artifact/source updates (#3057)
  • (rust) update the documented minimum Rust version to 1.92 (#2931)

CI / Release

  • (docker) release versioned Docker images from the release process (#2795)
  • (live-canary) consolidate Live Canary scheduling into one daily 02:00 UTC slot (#2831)
  • (release) stop tracking ignored live trace .log diagnostics so release-plz can create clean release PRs (#3058)

Docs

  • (architecture) update the engine v2 architecture plan to match verified runtime behavior (#2801)
  • (reborn) add the contract-freeze review packet for filesystem, runtime, host API, auth, tool, and storage contracts (#2983)

Tests

  • (tests) close the staging test backlog and bring the full suite back to green (#2744)
  • (e2e) stabilize multi-tenant widget isolation and portfolio nudge recovery (#2790)
  • (test-harness) add Phase 2 replay and gateway coverage (#2896)
  • (e2e) update approval E2E expectations for the latest approval and gate flows (#3054)

ironclaw_common

0.4.0 - 2026-04-29

Added

  • (debug-panel) expand Activity tab coverage with CodeAct + warnings (#2850)
  • (bridge) project 7 more engine events to AppEvents (#2844)
  • (bridge) project 3 dropped engine events to AppEvents (#2797)

Fixed

  • bug bash 4/16 triage — error boundary, TEE secrets, pairing, rehydration (#2753)

Other

ironclaw_safety

0.2.2 - 2026-04-29

Added

  • (debug-panel) expand Activity tab coverage with CodeAct + warnings (#2850)

ironclaw_skills

0.3.0 - 2026-04-29

Added

  • (credentials) path-based credential matching for per-endpoint auth (#2168)

Other

This PR was generated with release-plz.

Staging promotion batches since v0.21.0

No structured staging promotion merges found since v0.21.0.

Auto-updated from structured staging promotion merge bodies on main.

@github-actions github-actions Bot added scope: docs Documentation scope: dependencies Dependency updates size: S 10-49 changed lines risk: medium Business logic, config, or moderate-risk modules contributor: core 20+ merged PRs labels Apr 29, 2026
@henrypark133 henrypark133 merged commit 9728ee0 into main Apr 29, 2026
30 of 33 checks passed
@henrypark133 henrypark133 deleted the release-plz-2026-04-29T04-24-54Z branch April 29, 2026 04:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@henrypark133 henrypark133 henrypark133 approved these changes

Assignees

No one assigned

Labels

contributor: core 20+ merged PRs risk: medium Business logic, config, or moderate-risk modules scope: dependencies Dependency updates scope: docs Documentation size: S 10-49 changed lines

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@henrypark133