This release fixes issues for SREs watching stability and regressions.
✓ No known CVEs patched in this version
Affected surfaces
ReleasePort's take
Light signalmacOS release v0.3.0 fixes a bug that prevented Rig from controlling Ghostty due to lost automation permissions.
Why it matters: Patch macOS builds to v0.3.0 immediately to restore Rig's automation control over Ghostty.
Summary
AI summaryFixed macOS permission loss that blocked Rig from controlling Ghostty.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
Added entitlements verification step to the release pipeline. Added entitlements verification step to the release pipeline. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Dependency | Medium |
Dual-licensed under MIT and Apache 2.0. Dual-licensed under MIT and Apache 2.0. Source: llm_adapter@2026-05-21 Confidence: low |
— |
| Bugfix | Medium |
Automation permission preserved on macOS 26 release builds. Automation permission preserved on macOS 26 release builds. Source: llm_adapter@2026-05-21 Confidence: high |
— |
Full changelog
Fixes
- Fix Automation permission on macOS 26: release builds now preserve the
com.apple.security.automation.apple-eventsentitlement. Previously the post-build codesign stripped it, so macOS silently blocked Rig from controlling Ghostty and the TCC prompt never appeared. (#2) - Added entitlements verification step to the release pipeline to prevent this class of bug in future releases.
Other
- Dual-licensed under MIT and Apache 2.0 (#4)
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About Rig
All releases →Related context
Beta — feedback welcome: [email protected]