Skip to content

Commit d7e9d20

Browse files
author
shahinyanm
committed
release: v0.6.0 — network egress allowlist + provider presets
Everything merged since v0.5.0: the full egress security epic (audit → allowlist enforcement with a Security-panel toggle/editor → fail-closed), provider presets (DeepSeek/GLM/Kimi/Qwen/MiniMax/MiMo via Accounts, aimux 0.17), token-pilot allowed by default, and the dead command-mode retired. See CHANGELOG.md.
1 parent 33ea5f3 commit d7e9d20

2 files changed

Lines changed: 33 additions & 2 deletions

File tree

CHANGELOG.md

Lines changed: 32 additions & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -6,6 +6,36 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
66

77
## [Unreleased]
88

9+
## [0.6.0] - 2026-06-22
10+
11+
### Added
12+
13+
- **Network egress allowlist** — a task's agent can be confined to a set of
14+
allowed hosts; anything off the list is refused. Off by default: first you
15+
**observe** (the agent's outbound hosts are logged and shown in the Security
16+
panel's Egress tab), then you turn on enforcement with a toggle and a hosts
17+
editor (defaults cover the model API, npm, GitHub, PyPI). Fails closed — if the
18+
filtering proxy can't start while enforcement is on, the agent gets no network
19+
rather than open network.
20+
- **Provider presets** — add DeepSeek, GLM, Kimi, Qwen, MiniMax, or MiMo as a
21+
one-token profile from Accounts → "Add provider". They run on the Claude CLI
22+
against the provider's Anthropic-compatible endpoint, so they keep the full
23+
toolset and resume natively; pick a provider per task from the task's account
24+
selector.
25+
26+
### Changed
27+
28+
- **aimux 0.17** — provider presets and the cross-CLI handoff.
29+
30+
### Fixed
31+
32+
- **token-pilot allowed by default** (gated/manual) — the agent no longer needs
33+
approval to use the token-efficient tools it's instructed to use.
34+
- **Retired the dead command-mode** — an old soft/enforce check that was never
35+
wired; the OS sandbox plus the command policy are the real enforcement.
36+
- **Per-stage model for non-Claude profiles** — a Codex/GLM profile runs its own
37+
model instead of being handed a Claude tier.
38+
939
## [0.5.0] - 2026-06-20
1040

1141
### Added
@@ -44,5 +74,6 @@ The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/).
4474
- **Task-journal availability** — every session reaches task-journal, so
4575
reasoning-chain events are recorded; confirmed working end-to-end.
4676

47-
[Unreleased]: https://github.com/Digital-Threads/loom/compare/v0.5.0...master
77+
[Unreleased]: https://github.com/Digital-Threads/loom/compare/v0.6.0...master
78+
[0.6.0]: https://github.com/Digital-Threads/loom/releases/tag/v0.6.0
4879
[0.5.0]: https://github.com/Digital-Threads/loom/releases/tag/v0.5.0

package.json

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -1,6 +1,6 @@
11
{
22
"name": "@digital-threads/loom",
3-
"version": "0.5.0",
3+
"version": "0.6.0",
44
"type": "module",
55
"description": "Loom — local AI-dev orchestrator: give it a task and it runs the work through an analysis → spec → code → review → PR pipeline on a board, with cost, reasoning memory and multi-account support. Public beta.",
66
"license": "MIT",

0 commit comments

Comments
 (0)