Skip to content

Release v0.1.3#256

Merged
hello-args merged 16 commits into
mainfrom
develop
Jun 11, 2026
Merged

Release v0.1.3#256
hello-args merged 16 commits into
mainfrom
develop

Conversation

@hello-args

@hello-args hello-args commented Jun 11, 2026

Copy link
Copy Markdown
Collaborator

Summary

  • Merge develop into main for v0.1.3
  • Scoring v2 GA, dashboard overhaul, pentest fixes, issue templates, branch rulesets
  • Maintenance line preserved on main_0.1.2

Release

  • Version bumped to 0.1.3 in src/mcts/__init__.py
  • CHANGELOG [0.1.3] - 2026-06-12 section finalized
  • Tag v0.1.3 after merge to trigger PyPI release workflow

Made with Cursor

hello-args and others added 16 commits June 12, 2026 01:36
@hello-args
feat(scoring): integrate v2 multi-factor scoring on develop
9ba0e9e 
Ship parallel absolute_risk scoring alongside frozen legacy overall,
with corpus calibration, analyzer evidence emitters, and reporting
across CLI, API, dashboard, and CI while defaulting to dual-score mode.
@hello-args
feat(scoring): complete v2 GA wiring, CI gate, and pentest verdict
79242ac 
Wire min-category-score-v2 through Action and governance policy, fold
scoring-v2 into main CI, validate corpus rankings at rho>=0.80, and
derive pentest verdict from score_v2.risk_level when v2 is enabled.
@hello-args
docs: add scoring developer guide and sync v2 documentation
b4ef900 
Give developers a single entry point for dual-score mental models, CI gate
cheat sheets, and accurate examples so legacy and v2 metrics are easier to
find across README, getting-started, and platform/reporting docs.
@hello-args
fix(reporting): hide legacy score UI when v2 is present
c020a82 
Remove deprecated legacy gauge, letter grade, and terminal Legacy Index
from reports when score_v2 is available so v2 is the sole visible posture
signal while legacy metrics remain in JSON for CI compatibility.
@hello-args
fix(lint): resolve ruff violations in scoring and test modules
575c169 
Clear unused imports, line-length issues, zip(strict=), and style rules
so CI ruff check passes on the v2 scoring integration branch.
@hello-args
fix(scoring): use relative normalization for v2 dimension radar
3a9a4af 
Corpus p95 denominators were tiny (1–5), so high-risk scans saturated
every axis at 100. Normalize dimension_scores against the scan's own
peak axis so the factor radar shows which dimensions dominate.
@hello-args
fix(reporting): enforce hiding legacy score card when v2 is present
ec45fc6 
CSS display:flex on .score-card overrode the hidden attribute, so the
legacy gauge still appeared on v2 scans. Hide at render time and with
!important so only the v2 absolute-risk block shows.
@hello-args
feat(reporting): reorganize dashboard and adopt Logo 2 brand assets
cfea1e8 
Restructure the overview with a hero snapshot, side-by-side issues/risk
grid, and plain-language zones so v2 and legacy scans are easier to follow.
Switch terminal and HTML embeds to Logo 2 assets.
@hello-args
fix(pentest): skip attack_chains when zero MCP tools discovered (#215)
0776fbc 
Mark the attack_chains phase as skipped on prompt-only or empty tool
surfaces, expose pentest_limits coverage on PentestReport, and document
static-only behavior in the CLI reference.
@hello-args @sachinML
docs: credit @sachinML for pentest zero-tools fix (#215)
a4251e0 
Co-authored-by: sachinML <sachinML@users.noreply.github.com>
@hello-args
style: apply ruff format to fix CI format check
43ca7d1 
28 files were out of sync with ruff format; no logic changes.
@hello-args
feat(reporting): polish dashboard layout, trend history, and brand embed
f84df0e 
Equal-height side-by-side panels with scrollable trend and risk-breakdown
regions; expand scan history columns; standardize on Logo 2.jpg; update CHANGELOG.
@hello-args
docs: improve GitHub issue templates and align with label taxonomy
a999fab 
Structured bug, feature, security, and documentation forms with type/status
labels, triage checklists, and component/priority hints; sync labeling guide.
@hello-args
chore: add role-based branch rulesets for main and develop
3d2d926 
Split release (main/main_*) and integration (develop) protection with
maintainer vs admin bypass actors, scoring-v2 gate, and apply script fixes.
@hello-args
chore(release): prepare v0.2.0
4e60489 
Bump version and move Unreleased changelog entries for scoring v2 GA,
dashboard overhaul, and contributor tooling shipped on develop.
@hello-args
chore(release): correct release version to v0.1.3
ed32c47
github-advanced-security[bot]
github-advanced-security AI found potential problems Jun 11, 2026
View reviewed changes
Comment thread src/mcts/report/assets/dashboard.js
if (cs.analyzers_run) {
scoreLine += ` ${cs.analyzers_passed} of ${cs.analyzers_run} checks passed.`;
}
el.innerHTML = scoreLine;
@hello-args hello-args merged commit f5b5407 into main Jun 11, 2026
17 of 18 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

1 more reviewer

@github-advanced-security github-advanced-security[bot] github-advanced-security[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@hello-args @github-advanced-security