Releases: AgentSafe-AI/tooltrust-scanner
Releases · AgentSafe-AI/tooltrust-scanner
Release list
v0.3.19
What's Changed
- Update Homebrew formula for v0.3.18 by @brian93512 in #71
- feat: blacklist 9 MCP/AI malicious npm packages (AS-008, 0.3.19) by @brian93512 in #76
Full Changelog: v0.3.18...v0.3.19
v0.3.18
What's Changed
- chore: bump npm wrapper to v0.3.17 binary (1.1.12) by @brian93512 in #69
- Update Homebrew formula for v0.3.17 by @brian93512 in #68
- feat: blacklist claudechor (npm) — Claude typosquat (AS-008, 0.3.18) by @brian93512 in #70
Full Changelog: v0.3.17...v0.3.18
v0.3.17
What's Changed
- chore: bump npm wrapper to v0.3.16 binary (1.1.11) by @brian93512 in #66
- fix: AS-002 capability-disclosure summary + AS-006 expression FP (0.3.17) by @brian93512 in #67
Full Changelog: v0.3.16...v0.3.17
v0.3.16
What's Changed
- chore: bump npm wrapper to v0.3.15 binary (1.1.10) by @brian93512 in #63
- fix: stop attributing host project deps to scanned tools (AS-004, 0.3.16) by @brian93512 in #64
Full Changelog: v0.3.15...v0.3.16
v0.3.15
What's Changed
- Update Homebrew formula for v0.3.13 by @brian93512 in #39
- ci: make IOC candidates review-only by @brian93512 in #43
- ci: tighten IOC candidate compromise signals by @brian93512 in #47
- fix: remove loose IOC signals that fire on ordinary web-security CVEs by @brian93512 in #48
- feat: rebuild IOC pipeline to read OSV-confirmed malicious packages (MAL-) by @brian93512 in #49
- chore: ignore root ioc-candidates binary, sync VERSION to 0.3.13 by @brian93512 in #52
- data: blacklist openai-mcp + tiktoken-mcp (MCP supply-chain IOCs) by @brian93512 in #53
- feat: filter IOC candidates to MCP/AI-relevant malicious packages by @brian93512 in #54
- docs: backfill 0.3.13 changelog + cut 0.3.14 by @brian93512 in #58
- ci: make test check name version-stable by @brian93512 in #60
- fix: zero-FP tuning pass for risk-grading rules (0.3.15) by @brian93512 in #61
Full Changelog: v0.3.13...v0.3.15
v0.3.13
What's Changed
- Update Homebrew formula for v0.3.12 by @brian93512 in #30
- data: add cap-js supply chain IOCs by @brian93512 in #38
Full Changelog: v0.3.12...v0.3.13
v0.3.12
What's Changed
- Update Homebrew formula for v0.3.11 by @brian93512 in #29
Full Changelog: v0.3.11...v0.3.12
v0.3.11
What's Changed
- Update Homebrew formula for v0.3.10 by @brian93512 in #28
- sourcedetect: detect unauthenticated MCP route exposure by @brian93512 in #17
Full Changelog: v0.3.10...v0.3.11
v0.3.10
What's Changed
- feat: add Mini Shai-Hulud supply-chain IOCs by @brian93512 in #26
Full Changelog: v0.3.9...v0.3.10
v0.3.9
What's Changed
- [codex] fix broken README deployment link by @alexyorke in #11
Full Changelog: v0.3.8...v0.3.9