You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CHANGELOG.md
+10Lines changed: 10 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,6 +5,16 @@ All notable changes to Network-AI will be documented in this file.
5
5
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/),
6
6
and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
7
7
8
+
## [3.2.9] - 2026-02-19
9
+
10
+
### Fixed
11
+
-**Pinned-Dependencies** -- all GitHub Actions in `ci.yml`, `codeql.yml`, and `dependabot-auto-merge.yml` pinned to full commit SHA (Scorecard supply-chain requirement)
12
+
-**Token-Permissions** -- added `permissions: read-all` at workflow level in `codeql.yml`
13
+
-**Remaining TOCTOU** -- removed final `existsSync` + `readFileSync` race in `locked-blackboard.ts`; now reads directly and handles `ENOENT`
14
+
-**Unused imports** -- removed `existsSync`/`writeFileSync` from `security.ts` and `statSync` from `locked-blackboard.ts`
15
+
-**py/redundant-comparison** -- removed always-true `word_count > 0` ternary in `check_permission.py` (guaranteed `>= 3` by earlier guard)
16
+
-**py/empty-except** -- added explanatory comments to all bare `pass` except blocks in `blackboard.py`, `swarm_guard.py`, and `validate_token.py`
0 commit comments