Skip to content

Releases: hashgraph-online/codex-plugin-scanner

v1.4.2

04 Apr 00:57
@github-actions github-actions
v1.4.2
f1757d7
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.4.2 Latest
Latest

v1.4.2

What's Changed

  • feat: validate official marketplace source objects (#40) (f1757d7)

Installation

uv tool install codex-plugin-scanner==1.4.2

Full Changelog: v1.4.1...v1.4.2

Assets 3
Loading

v1.4.1

03 Apr 19:01
@github-actions github-actions
v1.4.1
834209d
This commit was signed with the committer’s verified signature.
kantorcodes Michael Kantor
GPG key ID: 9A7C38C78248BEEB
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.4.1

v1.4.1

What's Changed

  • fix: fetch tags before auto-versioning releases (834209d)
  • fix: auto-bump release version on main (#38) (dce17b2)
  • fix: remediate scorecard security findings (#37) (e16369e)
  • feat: align scanner with codex marketplace spec (#36) (a9217ae)
  • fix: refresh pypi version references (#35) (dce46d5)
  • docs: use real HOL registry scores for broker plugin example (#34) (ae56aa9)
  • docs: add HOL registry links and broker plugin example (#33) (c49376d)
  • chore: bump version to 1.4.0 (#32) (3ef4327)
  • fix: publish pyproject.toml version directly, no suffix (#31) (71f2396)
  • fix: use .post instead of .dev for stable post-release versions (#30) (c8b6b5a)
  • fix: publish to PyPI and create release on every main push (#29) (a217cd2)
  • fix: rewrite publish workflow from known-working baseline (#28) (756cf4a)
  • fix: replace heredoc with sed in stamp step to fix workflow parsing failure (#27) (1eae8ed)
  • docs: trigger CI re-check (#26) (13f229d)
  • Refactor publish workflow: compute version in-build, add canary publish, and robust release creation (#25) (e6d9e91)
  • Fix publish workflow conflicts and review issues (#22) (0de1cef)
  • Publish on every main commit and tolerate existing PyPI versions (#20) (ccbe7b3)
  • docs: reposition README to emphasize CI quality-gate and quick onboarding (#19) (5439e7d)
  • Refactor CLI into subcommands; add policy/baseline support, rule registry, verification, autofixes, and structured JSON reporting (#18) (dc9112b)
  • feat: improve scanner action ecosystem outputs (#17) (eaf0cb3)
  • fix: export composite action outputs (#16) (8db1da2)
  • fix: harden action publication workflow (#15) (8118d3c)
  • fix: make action publish workflow dispatchable (#14) (72bd396)
  • fix: repair main CI and automate action publication (#13) (b6a175a)
  • feat: automate plugin submission workflow (#12) (ef1f3df)
  • build(deps): Bump actions/setup-python from 5.6.0 to 6.2.0 (#9) (f11ad83)
  • build(deps): Bump actions/upload-artifact from 4.6.2 to 7.0.0 (#6) (ed6f441)
  • build(deps): Bump ossf/scorecard-action (#7) (1721fd5)
  • build(deps): Bump actions/download-artifact from 4.3.0 to 8.0.1 (#8) (aded995)
  • build(deps): Bump github/codeql-action (#10) (81d6e88)
  • build(deps): Bump actions/checkout from 4.3.1 to 6.0.2 (#11) (f8be086)
  • feat: harden marketplace action and scanner security (#5) (995d287)
  • feat: add GitHub Action + pre-commit hook (#4) (8fabb9c)
  • docs: refresh README (#3) (890737b)
  • fix: restore python 3.10 enum compatibility (7486a70)
  • fix: make integration max-points test deterministic (37d4286)
  • fix: apply ruff formatting for ci (d6d6faa)
  • feat: add operational hardening checks (d57f229)
  • Fix release job: handle tag push flow and exclude current tag from changelog (b7a3c89)
  • Automate PyPI publish and GitHub releases on main merge (6aaa67e)
  • Fix scorecard: move write permissions to job level (d1beaa2)
  • Fix scorecard workflow: pin actions to specific versions (fd32581)
  • fix: address PR review feedback (a0ae8cb)
  • Bump version to 1.0.1 (e8ce383)
  • feat: add cisco skill scanning and security ops reporting (adaade6)

Installation

uv tool install codex-plugin-scanner==1.4.1

Full Changelog: v1.0.0...v1.4.1

Loading

v1.4.0

01 Apr 13:33
@github-actions github-actions
v1.4.0
6b14f2c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.4.0

v1.4.0

What's Changed

Installation

pip install codex-plugin-scanner==1.4.0

Full Changelog: v1.3.0...v1.4.0

Loading

v1.3.0.post44

01 Apr 13:21
@github-actions github-actions
v1.3.0.post44
86d7589
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.3.0.post44

v1.3.0.post44

What's Changed

  • fix: use .post instead of .dev for stable post-release versions (#30) (86d7589)

Installation

pip install codex-plugin-scanner==1.3.0.post44

Full Changelog: v1.3.0.dev43...v1.3.0.post44

Loading

v1.3.0.dev43

01 Apr 13:12
@github-actions github-actions
v1.3.0.dev43
e52e18d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.3.0.dev43

v1.3.0.dev43

What's Changed

  • fix: publish to PyPI and create release on every main push (#29) (e52e18d)
  • fix: rewrite publish workflow from known-working baseline (#28) (5f2df64)
  • fix: replace heredoc with sed in stamp step to fix workflow parsing failure (#27) (b57d57e)
  • docs: trigger CI re-check (#26) (748e01b)
  • Refactor publish workflow: compute version in-build, add canary publish, and robust release creation (#25) (29d12e3)
  • Fix publish workflow conflicts and review issues (#22) (9263093)
  • Publish on every main commit and tolerate existing PyPI versions (#20) (220b633)
  • docs: reposition README to emphasize CI quality-gate and quick onboarding (#19) (43784f0)
  • Refactor CLI into subcommands; add policy/baseline support, rule registry, verification, autofixes, and structured JSON reporting (#18) (c177626)
  • feat: improve scanner action ecosystem outputs (#17) (6e4d235)
  • fix: export composite action outputs (#16) (5b6d3b5)
  • fix: harden action publication workflow (#15) (cf6002e)
  • fix: make action publish workflow dispatchable (#14) (374600d)
  • fix: repair main CI and automate action publication (#13) (fe32601)
  • feat: automate plugin submission workflow (#12) (ef1f3df)
  • build(deps): Bump actions/setup-python from 5.6.0 to 6.2.0 (#9) (f11ad83)
  • build(deps): Bump actions/upload-artifact from 4.6.2 to 7.0.0 (#6) (ed6f441)
  • build(deps): Bump ossf/scorecard-action (#7) (1721fd5)
  • build(deps): Bump actions/download-artifact from 4.3.0 to 8.0.1 (#8) (aded995)
  • build(deps): Bump github/codeql-action (#10) (81d6e88)
  • build(deps): Bump actions/checkout from 4.3.1 to 6.0.2 (#11) (f8be086)
  • feat: harden marketplace action and scanner security (#5) (995d287)
  • feat: add GitHub Action + pre-commit hook (#4) (8fabb9c)
  • docs: refresh README (#3) (890737b)
  • fix: restore python 3.10 enum compatibility (7486a70)
  • fix: make integration max-points test deterministic (37d4286)
  • fix: apply ruff formatting for ci (d6d6faa)
  • feat: add operational hardening checks (d57f229)
  • Fix release job: handle tag push flow and exclude current tag from changelog (b7a3c89)
  • Automate PyPI publish and GitHub releases on main merge (6aaa67e)
  • Fix scorecard: move write permissions to job level (d1beaa2)
  • Fix scorecard workflow: pin actions to specific versions (fd32581)
  • fix: address PR review feedback (a0ae8cb)
  • Bump version to 1.0.1 (e8ce383)
  • feat: add cisco skill scanning and security ops reporting (adaade6)

Installation

pip install codex-plugin-scanner==1.3.0.dev43

Full Changelog: v1.0.0...v1.3.0.dev43

Loading

v1.3.0

01 Apr 13:28
@github-actions github-actions
v1.3.0
a44f74e
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.3.0

v1.3.0

What's Changed

  • fix: publish pyproject.toml version directly, no suffix (#31) (a44f74e)

Installation

pip install codex-plugin-scanner==1.3.0

Full Changelog: v1.3.0.post44...v1.3.0

Loading

v1.2.0

30 Mar 01:49
@github-actions github-actions
v1.2.0
0962861
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

Choose a tag to compare

View all tags
v1.2.0

v1.2.0

What's Changed

  • fix: restore python 3.10 enum compatibility (5441d5e)
  • fix: make integration max-points test deterministic (d5ae5d6)
  • fix: apply ruff formatting for ci (c0d4339)
  • feat: add operational hardening checks (eee5baa)
  • Fix release job: handle tag push flow and exclude current tag from changelog (1dd226f)

Installation

pip install codex-plugin-scanner==1.2.0

Full Changelog: v1.1.0...v1.2.0

Loading

v1.1.0

29 Mar 12:35
@internet-dot internet-dot
v1.1.0
8ddb856

Choose a tag to compare

View all tags
v1.1.0

v1.1.0

What's Changed

  • feat: add Cisco skill scanning and security ops reporting (69a6517)
  • Fix publish workflow: handle tag push vs workflow_dispatch correctly (0ee0b60)
  • Update publish workflow to match standards-sdk-py trusted publisher model (9fe2b9e)
  • Fix license field format for PyPI upload compatibility (ed9affe)
  • Fix scorecard workflow: pin actions to specific versions (fd32581)
  • Fix scorecard: move write permissions to job level (d1beaa2)
  • Automate PyPI publish and GitHub releases on main merge (8ddb856)

Installation

pip install codex-plugin-scanner==1.1.0

Cisco Skill Scanning

pip install "codex-plugin-scanner[cisco]"
codex-plugin-scanner ./my-plugin --cisco-skill-scan on

Full Changelog: v1.0.0...v1.1.0

Loading