v0.7.0

What's Changed

• feat(policy): intent/scope, decision trace, and stable reason codes by @dgenio in #78

Full Changelog: v0.6.0...v0.7.0

v0.6.0

What's Changed

• feat: declarative policy engine, denial explanation, and dry-run mode by @dgenio in #67
• feat: OpenAI and Anthropic tool-format adapters with middleware (#55, #50, #40) by @dgenio in #69
• Add cross-invocation budget manager (issue #44) by @dgenio in #70

Full Changelog: v0.5.0...v0.6.0

v0.5.0

What's Changed

• feat: declare weaver-spec v0.1.0 compatibility + add conformance CI stub by @Copilot in #65
• feat: add built-in MCPDriver with stdio and Streamable HTTP transports by @dgenio in #66

Full Changelog: v0.4.0...v0.5.0

v0.4.0

What's Changed

• feat: add GitHub Release step to publish workflow by @dgenio in #62
• test: close coverage gaps in summarize.py, http.py, and transform.py by @Copilot in #63
• feat: add sliding-window rate limiting to DefaultPolicyEngine by @dgenio in #64

Full Changelog: v0.3.0...v0.4.0

agent-kernel v0.2.0 — Token Revocation & Secrets Enforcement

Added

• Token revocation support: revoke_token() and revoke_all() on Kernel (#33, #57).
• SECRETS sensitivity tag enforcement in policy engine and redaction (#56).

Fixed

• Policy engine now strips whitespace from justification before length check.
• Policy engine reports both raw and stripped length in justification errors.
• Policy engine checks role before justification in all safety/sensitivity blocks.
• Redaction preserves field-name context in API key and connection string patterns.
• revoke_all() drops _principal_tokens entry after revoking.