v0.6.95 (2025-12-16) – Package Reorganization & Security Defaults

v0.6.95 (2025-12-16) – Package Reorganization & Security Defaults

Highlights

DSPy Compiled Artifact Pipeline (Phases 1-4)

• Compiled artifact registry – Fail-fast enforcement ensures DSPy modules are pre-compiled before production use, eliminating runtime compilation overhead.
• Preloaded decision modules – Routing, quality, and analysis modules are loaded at startup for faster first-request response times.
• Parallel optimization support – GEPA optimizer can run training in parallel for faster model optimization.
• Phase integration tests – Comprehensive test suite validates the complete compilation → loading → execution pipeline.

Optimization & Self-Improvement Dashboard

• Optimization APIs – REST endpoints for triggering DSPy optimization, evaluation runs, and self-improvement cycles.
• Dashboard integration – Monitor optimization progress, view evaluation metrics, and track self-improvement results.
• History-based learning – System learns from execution history to improve routing decisions over time.

Performance & Reliability

• 2x faster config loading – Configuration caching reduces repeated YAML parsing overhead.
• History indexing – Execution history now indexed for faster queries and analysis.
• 70% code deduplication – Helper extraction and delegation patterns reduced code redundancy.
• Enhanced WebSocket stability – Improved heartbeat handling and reconnection logic with exponential backoff.

Secure-by-Default Tracing

• capture_sensitive defaults to false – All tracing configurations now default to secure mode across schema, YAML, and built-in defaults.
• Task preview redaction – Cache telemetry redacts task previews by default; opt-in via ENABLE_SENSITIVE_DATA=true.

Package Reorganization

• Utils subpackages – Split utils/ into focused modules for better maintainability:
  • utils/infra/ – Tracing, resilience, telemetry, logging
  • utils/storage/ – Cosmos, persistence, history management
  • utils/cfg/ – Configuration utilities
• Import path updates – Changed from agentic_fleet.utils.config to from agentic_fleet.utils.cfg for consistency.

Cosmos DB Improvements

• Partition-key fixes – query_agent_memory() now uses single-partition queries for better performance.
• User-scoped history – History loads are user-scoped when userId is available.

Frontend Enhancements

• New UI components – Added Skeleton, Tabs, Textarea, Tooltip (shadcn/ui).
• Theme context – Centralized theme management via ThemeContext.
• Frontend restructure (partial) – Implemented features/chat/ and features/dashboard/ structure with components, hooks, stores, and types.
• PromptInput accessibility – Improved ARIA labels and keyboard navigation.
• Textarea styling consistency – Unified styling across all input components.

Documentation Overhaul

• Comprehensive System Overview – New docs/developers/system-overview.md (1,150+ lines) providing in-depth technical guide covering:
  • 5-phase pipeline architecture with diagrams
  • Agent system (Factory, Roles, Tools, Handoffs)
  • DSPy integration (GEPA, Training, Self-improvement)
  • User interfaces (CLI, Python API, Web Frontend)
  • Observability (Events, OpenTelemetry, Middleware)
• Enriched User Documentation – React-docs style transformation:
  • docs/users/overview.md: Complete rewrite (84 → 446 lines) with problem/solution framework, visual diagrams, and FAQ
  • docs/users/getting-started.md: Enriched (277 → 491 lines) with "Hello World" tutorial, progressive examples, and troubleshooting
• README.md Updates – Enhanced with 5-phase pipeline diagram, system architecture overview, and split documentation sections (Users/Developers)

Repository Cleanup

• Removed legacy tracking files – Deleted redundant root-level files:
  • GEMINI.md, PLANS.md, PLANS_previous.md (consolidated into docs/plans)
  • PR_SUMMARY.md, TRACING_STATUS.md, PHASE3_PHASE4_IMPLEMENTATION.md (temporary tracking)
  • docs/plans/archive/ (old version-specific plans)
• Cleaned .gitignore – Removed duplicate entries, kept docker/ and infrastructure/ tracked (useful deployment templates)
• Untracked generated files – report/jscpd-report.json now properly excluded

Changes

Backend

• src/agentic_fleet/utils/: Reorganized into infra/, storage/, and cfg/ subpackages.
• Import paths: Updated all imports from config to cfg module for consistency.
• evaluate_routing function: Enhanced with detailed docstring and type hinting.
• optimize_reasoner script: Updated import paths for clarity.
• ChatSSEService: Streamlined workflow_id handling; added session creation assertion.
• DSPyService: Cleaner async task creation in compile_module_async.

Frontend

• src/frontend/src/components/ui/: Added Skeleton, Tabs, Textarea, Tooltip components.
• src/frontend/src/contexts/: Added ThemeContext for centralized theme management.

Documentation

• docs/plans/2025-12-15-frontend-restructure-design.md (NEW): Approved design for feature-based frontend structure.
• provision_cosmos script: Updated documentation with usage examples and container descriptions.

Bug Fixes

• Fixed load_config import path – Resolved module import error in reasoner that could cause startup failures.
• Fixed reasoning effort cleanup – Proper cleanup on workflow timeout prevents resource leaks.
• Fixed LiteLLM test teardown – Suppressed noisy cleanup errors during test execution.
• Fixed ChatMessage field preservation – Pydantic model cloning ensures all fields are properly propagated.
• Fixed predictor initialization – Corrected DSPy predictor setup for version compatibility.
• Fixed conversation context injection – Proper injection of conversation history into workflow context.
• Fixed Jaeger image version – Pinned to stable version preventing tracing failures.

Security

• Log injection prevention – Addressed CodeQL alerts #164, #165, #166, #167, #169 by sanitizing user input before logging.

Tests

• Phase 3 & 4 integration tests – Validates compiled module loading and caching.
• Tracing initialization tests – Ensures YAML config properly initializes OpenTelemetry.
• FastPath detector tests – Unit tests for simple task routing logic.
• EventNarrator tests – Coverage for DSPy-based event narration.
• Profiling utility tests – Tests for performance monitoring decorators.
• TTL cache tests – Comprehensive tests for time-based caching.
• Background quality evaluation tests – Tests for async quality assessment.

Migration Notes

• Update imports: from agentic_fleet.utils.config → from agentic_fleet.utils.cfg
• Legacy compatibility: Re-exports maintained in package __init__.py files for backward compatibility.
• No breaking changes: Existing workflows continue to work without modification.

Stats

• 93 commits in this release
• 390 files changed
• +36,121 insertions, -16,352 deletions
• 55 test files added or updated

---

Full Changelog: v0.6.9...v0.6.95

v0.6.9 – DSPy Typed Signatures, Workflow Refactor & Docs

v0.6.9 – DSPy Typed Signatures, Workflow Refactor & Docs

Highlights

Typed Pydantic Models for Structured Outputs

• Pydantic-based output models – New typed_models.py module provides validated, type-safe outputs from DSPy predictions.
• Automatic coercion – Comma-separated strings automatically convert to lists; scores clamp to valid ranges.
• 8 typed output models – RoutingDecisionOutput, TaskAnalysisOutput, QualityAssessmentOutput, ProgressEvaluationOutput, ToolPlanOutput, WorkflowStrategyOutput, HandoffDecisionOutput, CapabilityMatchOutput.
• Field validators – Normalize execution modes to lowercase, validate literal values, and enforce constraints.

DSPy Assertions for Routing Validation

• Expanded assertions module – Comprehensive validation functions for routing decisions.
• Hard constraints – assert_valid_agents(), assert_valid_tools(), assert_mode_agent_consistency() for critical validations.
• Soft suggestions – suggest_valid_agents(), suggest_valid_tools(), suggest_mode_agent_consistency() for optimization hints.
• Task type detection – detect_task_type() classifies tasks as research/coding/analysis/writing/general with keyword sets.
• Routing assertions decorator – @with_routing_assertions() for assertion-driven backtracking.

Typed Signatures for DSPy 3.x

• 7 typed signatures – TypedTaskAnalysis, TypedTaskRouting, TypedEnhancedRouting, TypedQualityAssessment, TypedProgressEvaluation, TypedToolPlan, TypedWorkflowStrategy.
• Pydantic output fields – Signatures use Pydantic models as dspy.OutputField() types for JSON schema compliance.
• DSPy 3.x compatibility – Leverages DSPy's native Pydantic support for structured outputs.

Workflow Refactor & Message Consolidation

• Consolidated Message Models – Merged message-related classes from messages.py into models.py for better organization.
• Streamlined Group Chat – Introduced GroupChatBuilder in group_chat_adapter.py and removed redundant builder files.
• API Versioning – Adjusted API versioning in frontend client and tests to align with new endpoint structure.

Documentation Updates

• Project Overview – Updated GEMINI.md with comprehensive project overview, structure, and development conventions.
• Tracing Configuration – Added comprehensive documentation for TracingConfig capture_sensitive field with security notes.
• Tavily MCP Tool – Added tests and documentation for Bearer token authentication.

Performance Optimization

• Routing cache – TTL-based caching for routing decisions to avoid redundant LLM calls.
• Cache configuration – enable_routing_cache, cache_ttl_seconds settings in workflow config.
• Lazy module initialization – Typed predictors initialized on first use.

Configuration

New settings in workflow_config.yaml:

dspy:
  optimization:
    use_typed_signatures: true # Use Pydantic output models
    enable_routing_cache: true # Cache routing decisions
    cache_ttl_seconds: 300 # Cache TTL (5 minutes)

Migration Notes

No breaking changes – Existing workflows continue to work.
Typed signatures enabled by default – Set use_typed_signatures: false to disable.
Routing cache enabled by default – Set enable_routing_cache: false to disable.
Field name consistency – RoutingDecisionOutput uses execution_mode (not mode).

Full Changelog

Backend Changes

New: typed_models.py with Pydantic models for all DSPy outputs.
New: assertions.py with comprehensive validation logic.
Updated: signatures.py with typed signature classes.
Updated: reasoner.py with routing cache and typed signature support.
Refactored: models.py consolidated message dataclasses.
Updated: src/agentic_fleet/tools/tavily_mcp_tool.py with Bearer token auth.
Tests
New: test_typed_models.py (44 tests).
New: test_assertions.py (39 tests).
Updated: tests/dspy_modules/test_reasoner

Major Changes : v0.6.6

Major Changes

1. 66% Latency Optimization (Highlight)
   • Removed JudgeRefineExecutor from workflow graph (deprecated
   with warning)
   • Pipeline simplified: analysis → routing → execution → progress
   → quality
   • DSPyReasoner.router changed from ChainOfThought → Predict
   • Added dspy.routing_model: gpt-5-mini configuration

2. API Architecture Overhaul (BREAKING)
   • Removed: src/agentic_fleet/api/ (entire package deleted)
   • Added: src/agentic_fleet/app/ (new FastAPI structure)
   • app/main.py - New entry point
   • app/routers/ - streaming.py, conversations.py, agents.py,
   etc.
   • app/dependencies.py - Lifespan and DI management
   • app/schemas.py - Unified Pydantic models

3. Frontend Modernization (80 files)
   • Removed QueryClientProvider wrapper
   • New useChat hook with conversation management
   • Added ChatContainerRoot, MessageBubble, InputBar components
   • Conversation history in sidebar with auto-generated titles
   • Message persistence fix for assistant responses

4. Runtime Data Consolidation
   • All runtime paths moved to .var/ directory
   • Compiled DSPy artifact: .var/logs/compiled_supervisor.pkl

──────────────────────────────────────────

Quality Gates Status

Check │ Status
----------------+--------------------------
Unit Tests │ 199 passed, 1 skipped
Type Check (ty) │ All checks passed
Ruff Lint │ Clean
Frontend Lint │ Clean

──────────────────────────────────────────

Breaking Changes

1. API Import Paths: agentic_fleet.api.* → agentic_fleet.app.*
2. JudgeRefineExecutor: Deprecated, emits warning if used
3. Workflow Output: QualityExecutor now yields FinalResultMessage
   directly

What's Changed

• fix(security): Pin GitHub Actions to commit SHAs and resolve untrusted code checkout vulnerability by @Copilot in #265
• fix(security): Pin GitHub Actions to commit SHAs to resolve CodeQL alerts by @Copilot in #267
• refactor(frontend): restructure components with feature-based organiz… by @Zochory in #269
• chore(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 by @dependabot[bot] in #276
• chore(deps): bump openai/codex-action from 0cb7e270ce49747f8c51ebb61d1a169ed67b5764 to f3036cd34d4257a8df0c846c9c4988166860b304 by @dependabot[bot] in #274
• chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by @dependabot[bot] in #273
• Refactor by @Zochory in #280
• Enhance Qlaus agent documentation and guidelines by @Zochory in #285
• Improve MessageList: use descriptive variable names and stable React keys by @Copilot in #286
• feat(core): Add Magentic One orchestration framework by @Zochory in #291
• feat(agents): Add five specialist agents with prompts by @Zochory in #292
• feat(models): Add Pydantic models and utility functions by @Zochory in #294
• feat(workflows): Add MagenticBuilder and workflow orchestration by @Zochory in #295
• feat(api): Add OpenAI Responses API with SSE streaming by @Zochory in #293
• feat(frontend): Enhance UI with chain-of-thought display by @Zochory in #296
• feat(testing): Add comprehensive test suite and load testing by @Zochory in #297
• feat(config): Update configuration and documentation by @Zochory in #298
• Remove hardcoded development path from documentation by @Copilot in #306
• Fix CI failure from missing Git LFS object in microsoft/agent-framework by @Copilot in #310
• fix(frontend): Resolve security vulnerabilities and build errors by @Zochory in #312
• Replace hardcoded absolute path with PROJECT_PATH environment variable by @Copilot in #305
• Remove unused k6 Python package causing build failures by @Copilot in #311
• Potential fix for code scanning alert no. 118: Log Injection by @Zochory in #307
• Clarify integration test exceptions and coverage exclusion policies in testing spec by @Copilot in #304
• Potential fix for code scanning alert no. 120: Log Injection by @Zochory in #303
• Security: Prevent log injection and information disclosure in error handling by @Copilot in #319
• Chore/sync 20251104 by @Zochory in #313
• fix: skip Git LFS during release workflow dependency installation by @Copilot in #324
• feat(fast-path): implement fast-path routing, classifier, and tests by @Zochory in #326
• Feature/persistence chat by @Zochory in #334
• Fix/backend optimization by @Zochory in #338
• Add SQLite persistence and consolidate schemas by @Zochory in #340
• Refactor tests: Replace hardcoded values with constants and improve patterns by @Copilot in #341
• chore(deps): bump actions/setup-node from 4.1.0 to 6.0.0 by @dependabot[bot] in #344
• Breaking refactor by @Zochory in #349
• chore(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 in /src/frontend in the npm_and_yarn group across 1 directory by @dependabot[bot] in #353
• documentation and configuration by @Zochory in #355
• Refactor persistence test setup: factory pattern, async fixtures, precise assertions by @Copilot in #356
• chore(deps): bump actions/setup-node from 4.1.0 to 6.0.0 by @dependabot[bot] in #354
• Cosmos db integration by @Zochory in #358
• Refactor test files: improve error handling, testability, and code clarity by @Copilot in #359
• Cleaning and Refactoring: Architecture Overhaul, API Enhancements, and DSPy Integration by @Zochory in #361
• chore(deps): bump actions/dependency-review-action from 46a3c492319c890177366b6ef46d6b4f89743ed4 to 3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 by @dependabot[bot] in #367
• chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 by @dependabot[bot] in #363
• chore(deps): bump astral-sh/setup-uv from 1 to 7 by @dependabot[bot] in #364
• chore(deps): bump actions/create-github-app-token from 2.1.1 to 2.2.0 by @dependabot[bot] in #365
• chore(deps): bump actions/checkout from 3 to 6 by @dependabot[bot] in #362
• Refactor code structure for improved readability and maintainability by @Zochory in #369
• Update project configuration, documentation, and remove obsolete frontend code by @Zochory in #371
• Feat/frontend streaming cleanup by @Zochory in #376
• chore: code quality improvements and workflow modernization by @Zochory in #379
• Add uv venv step to CI workflow to fix virtual environment error by @Copilot in #389
• feat: Refactor structure, add Discussion mode, and enhance DSPy integration by @Zochory in #381
• Refactor duplicated MCP tool code into BaseMCPTool base class by @Copilot in #391
• Apply code review fixes: configurable thresholds, specific exceptions, refactored fast-path by @Copilot in #392
• Refactor and enhance AgenticFleet application architecture by @Zochory in #394
• – Latency Optimization, Frontend Overhaul & Conversation History by @Zochory in #401
• chore(deps): bump actions/labeler from 5 to 6 by @dependabot[bot] in #399
• chore(deps): bump actions/setup-node from 4.4.0 to 6.0.0 by @dependabot[bot] in #397
• chore(deps-dev): bump express from 5.1.0 to 5.2.1 in /src/frontend in the npm_and_yarn group across 1 directory by @dependabot[bot] in #402
• chore(deps): bump actions/upload-artifact from 4...

v0.6.5

What's Changed

• fix(security): Pin GitHub Actions to commit SHAs and resolve untrusted code checkout vulnerability by @Copilot in #265
• fix(security): Pin GitHub Actions to commit SHAs to resolve CodeQL alerts by @Copilot in #267
• refactor(frontend): restructure components with feature-based organiz… by @Zochory in #269
• chore(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 by @dependabot[bot] in #276
• chore(deps): bump openai/codex-action from 0cb7e270ce49747f8c51ebb61d1a169ed67b5764 to f3036cd34d4257a8df0c846c9c4988166860b304 by @dependabot[bot] in #274
• chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by @dependabot[bot] in #273
• Refactor by @Zochory in #280
• Enhance Qlaus agent documentation and guidelines by @Zochory in #285
• Improve MessageList: use descriptive variable names and stable React keys by @Copilot in #286
• feat(core): Add Magentic One orchestration framework by @Zochory in #291
• feat(agents): Add five specialist agents with prompts by @Zochory in #292
• feat(models): Add Pydantic models and utility functions by @Zochory in #294
• feat(workflows): Add MagenticBuilder and workflow orchestration by @Zochory in #295
• feat(api): Add OpenAI Responses API with SSE streaming by @Zochory in #293
• feat(frontend): Enhance UI with chain-of-thought display by @Zochory in #296
• feat(testing): Add comprehensive test suite and load testing by @Zochory in #297
• feat(config): Update configuration and documentation by @Zochory in #298
• Remove hardcoded development path from documentation by @Copilot in #306
• Fix CI failure from missing Git LFS object in microsoft/agent-framework by @Copilot in #310
• fix(frontend): Resolve security vulnerabilities and build errors by @Zochory in #312
• Replace hardcoded absolute path with PROJECT_PATH environment variable by @Copilot in #305
• Remove unused k6 Python package causing build failures by @Copilot in #311
• Potential fix for code scanning alert no. 118: Log Injection by @Zochory in #307
• Clarify integration test exceptions and coverage exclusion policies in testing spec by @Copilot in #304
• Potential fix for code scanning alert no. 120: Log Injection by @Zochory in #303
• Security: Prevent log injection and information disclosure in error handling by @Copilot in #319
• Chore/sync 20251104 by @Zochory in #313
• fix: skip Git LFS during release workflow dependency installation by @Copilot in #324
• feat(fast-path): implement fast-path routing, classifier, and tests by @Zochory in #326
• Feature/persistence chat by @Zochory in #334
• Fix/backend optimization by @Zochory in #338
• Add SQLite persistence and consolidate schemas by @Zochory in #340
• Refactor tests: Replace hardcoded values with constants and improve patterns by @Copilot in #341
• chore(deps): bump actions/setup-node from 4.1.0 to 6.0.0 by @dependabot[bot] in #344
• Breaking refactor by @Zochory in #349
• chore(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 in /src/frontend in the npm_and_yarn group across 1 directory by @dependabot[bot] in #353
• documentation and configuration by @Zochory in #355
• Refactor persistence test setup: factory pattern, async fixtures, precise assertions by @Copilot in #356
• chore(deps): bump actions/setup-node from 4.1.0 to 6.0.0 by @dependabot[bot] in #354
• Cosmos db integration by @Zochory in #358
• Refactor test files: improve error handling, testability, and code clarity by @Copilot in #359
• Cleaning and Refactoring: Architecture Overhaul, API Enhancements, and DSPy Integration by @Zochory in #361
• chore(deps): bump actions/dependency-review-action from 46a3c492319c890177366b6ef46d6b4f89743ed4 to 3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 by @dependabot[bot] in #367
• chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 by @dependabot[bot] in #363
• chore(deps): bump astral-sh/setup-uv from 1 to 7 by @dependabot[bot] in #364
• chore(deps): bump actions/create-github-app-token from 2.1.1 to 2.2.0 by @dependabot[bot] in #365
• chore(deps): bump actions/checkout from 3 to 6 by @dependabot[bot] in #362
• Refactor code structure for improved readability and maintainability by @Zochory in #369
• Update project configuration, documentation, and remove obsolete frontend code by @Zochory in #371
• Feat/frontend streaming cleanup by @Zochory in #376
• chore: code quality improvements and workflow modernization by @Zochory in #379
• Add uv venv step to CI workflow to fix virtual environment error by @Copilot in #389
• feat: Refactor structure, add Discussion mode, and enhance DSPy integration by @Zochory in #381
• Refactor duplicated MCP tool code into BaseMCPTool base class by @Copilot in #391
• Apply code review fixes: configurable thresholds, specific exceptions, refactored fast-path by @Copilot in #392

Full Changelog: v0.5.4...v0.6.5

AgenticFleet v0.6.4

What's Changed

• chore(deps): bump actions/dependency-review-action from 46a3c492319c890177366b6ef46d6b4f89743ed4 to 3c4e3dcb1aa7874d2c16be7d79418e9b7efd6261 by @dependabot[bot] in #367
• chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 by @dependabot[bot] in #363
• chore(deps): bump astral-sh/setup-uv from 1 to 7 by @dependabot[bot] in #364
• chore(deps): bump actions/create-github-app-token from 2.1.1 to 2.2.0 by @dependabot[bot] in #365
• chore(deps): bump actions/checkout from 3 to 6 by @dependabot[bot] in #362
• Refactor code structure for improved readability and maintainability by @Zochory in #369
• Update project configuration, documentation, and remove obsolete frontend code by @Zochory in #371
• Feat/frontend streaming cleanup by @Zochory in #376
• chore: code quality improvements and workflow modernization by @Zochory in #379

Full Changelog: v0.6.2...v0.6.4

v0.6.2

What's Changed

• fix(security): Pin GitHub Actions to commit SHAs and resolve untrusted code checkout vulnerability by @Copilot in #265
• fix(security): Pin GitHub Actions to commit SHAs to resolve CodeQL alerts by @Copilot in #267
• refactor(frontend): restructure components with feature-based organiz… by @Zochory in #269
• chore(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 by @dependabot[bot] in #276
• chore(deps): bump openai/codex-action from 0cb7e270ce49747f8c51ebb61d1a169ed67b5764 to f3036cd34d4257a8df0c846c9c4988166860b304 by @dependabot[bot] in #274
• chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by @dependabot[bot] in #273
• Refactor by @Zochory in #280
• Enhance Qlaus agent documentation and guidelines by @Zochory in #285
• Improve MessageList: use descriptive variable names and stable React keys by @Copilot in #286
• feat(core): Add Magentic One orchestration framework by @Zochory in #291
• feat(agents): Add five specialist agents with prompts by @Zochory in #292
• feat(models): Add Pydantic models and utility functions by @Zochory in #294
• feat(workflows): Add MagenticBuilder and workflow orchestration by @Zochory in #295
• feat(api): Add OpenAI Responses API with SSE streaming by @Zochory in #293
• feat(frontend): Enhance UI with chain-of-thought display by @Zochory in #296
• feat(testing): Add comprehensive test suite and load testing by @Zochory in #297
• feat(config): Update configuration and documentation by @Zochory in #298
• Remove hardcoded development path from documentation by @Copilot in #306
• Fix CI failure from missing Git LFS object in microsoft/agent-framework by @Copilot in #310
• fix(frontend): Resolve security vulnerabilities and build errors by @Zochory in #312
• Replace hardcoded absolute path with PROJECT_PATH environment variable by @Copilot in #305
• Remove unused k6 Python package causing build failures by @Copilot in #311
• Potential fix for code scanning alert no. 118: Log Injection by @Zochory in #307
• Clarify integration test exceptions and coverage exclusion policies in testing spec by @Copilot in #304
• Potential fix for code scanning alert no. 120: Log Injection by @Zochory in #303
• Security: Prevent log injection and information disclosure in error handling by @Copilot in #319
• Chore/sync 20251104 by @Zochory in #313
• fix: skip Git LFS during release workflow dependency installation by @Copilot in #324
• feat(fast-path): implement fast-path routing, classifier, and tests by @Zochory in #326
• Feature/persistence chat by @Zochory in #334
• Fix/backend optimization by @Zochory in #338
• Add SQLite persistence and consolidate schemas by @Zochory in #340
• Refactor tests: Replace hardcoded values with constants and improve patterns by @Copilot in #341
• chore(deps): bump actions/setup-node from 4.1.0 to 6.0.0 by @dependabot[bot] in #344
• Breaking refactor by @Zochory in #349
• chore(deps-dev): bump js-yaml from 4.1.0 to 4.1.1 in /src/frontend in the npm_and_yarn group across 1 directory by @dependabot[bot] in #353
• documentation and configuration by @Zochory in #355
• Refactor persistence test setup: factory pattern, async fixtures, precise assertions by @Copilot in #356
• chore(deps): bump actions/setup-node from 4.1.0 to 6.0.0 by @dependabot[bot] in #354
• Cosmos db integration by @Zochory in #358
• Refactor test files: improve error handling, testability, and code clarity by @Copilot in #359
• Cleaning and Refactoring: Architecture Overhaul, API Enhancements, and DSPy Integration by @Zochory in #361

Full Changelog: v0.5.4...v0.6.2

v0.5.5b

What's Changed

• fix(security): Pin GitHub Actions to commit SHAs and resolve untrusted code checkout vulnerability by @Copilot in #265
• fix(security): Pin GitHub Actions to commit SHAs to resolve CodeQL alerts by @Copilot in #267
• refactor(frontend): restructure components with feature-based organiz… by @Zochory in #269
• chore(deps): bump actions/download-artifact from 5.0.0 to 6.0.0 by @dependabot[bot] in #276
• chore(deps): bump openai/codex-action from 0cb7e270ce49747f8c51ebb61d1a169ed67b5764 to f3036cd34d4257a8df0c846c9c4988166860b304 by @dependabot[bot] in #274
• chore(deps): bump actions/upload-artifact from 4.6.2 to 5.0.0 by @dependabot[bot] in #273
• Refactor by @Zochory in #280
• Enhance Qlaus agent documentation and guidelines by @Zochory in #285
• Improve MessageList: use descriptive variable names and stable React keys by @Copilot in #286
• feat(core): Add Magentic One orchestration framework by @Zochory in #291
• feat(agents): Add five specialist agents with prompts by @Zochory in #292
• feat(models): Add Pydantic models and utility functions by @Zochory in #294
• feat(workflows): Add MagenticBuilder and workflow orchestration by @Zochory in #295
• feat(api): Add OpenAI Responses API with SSE streaming by @Zochory in #293
• feat(frontend): Enhance UI with chain-of-thought display by @Zochory in #296
• feat(testing): Add comprehensive test suite and load testing by @Zochory in #297
• feat(config): Update configuration and documentation by @Zochory in #298
• Remove hardcoded development path from documentation by @Copilot in #306
• Fix CI failure from missing Git LFS object in microsoft/agent-framework by @Copilot in #310
• fix(frontend): Resolve security vulnerabilities and build errors by @Zochory in #312
• Replace hardcoded absolute path with PROJECT_PATH environment variable by @Copilot in #305
• Remove unused k6 Python package causing build failures by @Copilot in #311
• Potential fix for code scanning alert no. 118: Log Injection by @Zochory in #307
• Clarify integration test exceptions and coverage exclusion policies in testing spec by @Copilot in #304
• Potential fix for code scanning alert no. 120: Log Injection by @Zochory in #303
• Security: Prevent log injection and information disclosure in error handling by @Copilot in #319
• Chore/sync 20251104 by @Zochory in #313
• fix: skip Git LFS during release workflow dependency installation by @Copilot in #324

Full Changelog: v0.5.4...v0.5.5b

v0.5.4

What's Changed

• Implement modular Magentic workflow architecture with tool-agent integration and dynamic CLI by @cto-new[bot] in #251
• Fix type errors, clean up documentation, and overhaul UI by @Zochory in #254
• Fix expression injection vulnerability in CI workflow by @Copilot in #256
• Potential fix for code scanning alert no. 17: Workflow does not contain permissions by @Zochory in #257
• Add agent docs, structured SSE events, HITL risk handling, frontend U… by @Zochory in #258
• Add memory-bank instructions and enhance AGENTS documentation by @Zochory in #260
• Improve developer onboarding and enhance typing by @Zochory in #262

New Contributors

• @cto-new[bot] made their first contribution in #251

Full Changelog: v0.5.3...v0.5.4

v0.5.3

What's Changed

• Add MIT LICENSE file to the repository by @Copilot in #205
• Enhance OpenTelemetry support and agent configurations by @Zochory in #208
• Auto-fix failing CI via Codex by @github-actions[bot] in #210
• fix(ci): prepare codex server info file by @Zochory in #211
• feat: Add OpenTelemetry tracing and observability by @Zochory in #236
• feat(backend): Implement workflow_as_agent reflection pattern by @Zochory in #239
• feat(notebooks): Add and update comprehensive notebook examples (#220, #221) by @Zochory in #241
• Feature/notebooks examples by @Zochory in #243
• Add comprehensive documentation and improve code formatting by @Zochory in #244
• chore(deps): bump actions/create-github-app-token from 2.1.1 to 2.1.4 by @dependabot[bot] in #246
• chore(deps): bump peter-evans/create-pull-request from 6 to 7 by @dependabot[bot] in #247
• chore(deps): bump actions/github-script from 7.0.1 to 8.0.0 by @dependabot[bot] in #245
• Fix missing lib files and TypeScript errors in React frontend by @Copilot in #249
• Add React frontend with SSE chatbot and HITL approval UI by @Zochory in #248

Full Changelog: v0.5.2...v0.5.3

v0.5.2

What's Changed

• Update label-sync action to v1.3.0 by @Copilot in #173
• Enhance documentation and guidelines for AgenticFleet by @Zochory in #175
• Add comprehensive codebase analysis and optimization roadmap for microsoft/agent-framework features by @Copilot in #176
• chore(deps): bump astral-sh/setup-uv from 3 to 7 by @dependabot[bot] in #188
• [OPT-01] Replace Custom Workflow with WorkflowBuilder Pattern by @Copilot in #189
• Implement Workflow Checkpointing for Resume and Audit Capabilities by @Copilot in #190
• Add Human-in-the-Loop (HITL) Approval System for Sensitive Operations by @Copilot in #191
• Fix environment variable handling to make AZURE_AI_PROJECT_ENDPOINT optional by @Copilot in #193
• Implementation-magentic by @Zochory in #192
• fix(ci): ensure Codex server info file exists before running Codex action by @Copilot in #194
• Implement workflow checkpointing and human-in-the-loop features by @Zochory in #201
• Merge main into agent-framework-fallback: resolve conflicts by @Zochory in #203
• Documentation 0.5.x by @Zochory in #204

Full Changelog: v0.5.0...v0.5.2