blank3rs/heso](https:

v0.1.5 Breaking

This release includes breaking changes for platform teams planning a safe upgrade.

Published 7d CLI & Terminal

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

auth deps

ReleasePort's take

Light signal

editorial:auto 7d

ReleasePort v0.1.5 adds a global `--timeout` flag to all network‑touching verbs and enhances click response data.

Why it matters: The new `--timeout <duration>` flag lets developers enforce per‑operation time limits on every network verb, improving reliability for long‑running tasks; click responses now expose the final URL and full redirect chain.

Summary

AI summary

Updates Release Notes, Install heso-cli 0.1.5, and Engine across a mixed release.

Changes in this release

Type	Severity	Summary	CVE
Feature
Feature	Medium	Adds global `--timeout <duration>` flag to all network‑touching verbs. Adds global `--timeout <duration>` flag to all network‑touching verbs. Source: llm_adapter@2026-05-27 Confidence: high	—
Feature	Medium	Click responses now include `final_url` and `redirects[]` chain. Click responses now include `final_url` and `redirects[]` chain. Source: llm_adapter@2026-05-27 Confidence: high	—
Feature	Medium	Unifies click, fill, and submit response envelopes to a common schema. Unifies click, fill, and submit response envelopes to a common schema. Source: llm_adapter@2026-05-27 Confidence: high	—
Feature	Medium	`stamp` step entries now carry `status`, `observed`, `started_at`, and `finished_at` timestamps. `stamp` step entries now carry `status`, `observed`, `started_at`, and `finished_at` timestamps. Source: llm_adapter@2026-05-27 Confidence: high	—
Feature	Medium	Restores `heso search <query>` as a top‑level verb while keeping the registry alias. Restores `heso search <query>` as a top‑level verb while keeping the registry alias. Source: llm_adapter@2026-05-27 Confidence: high	—
Deprecation	Low	Removes unused `SealOptions.tsa` and `SealOptions.noResign` from npm TypeScript types. Removes unused `SealOptions.tsa` and `SealOptions.noResign` from npm TypeScript types. Source: llm_adapter@2026-05-27 Confidence: high	—
Bugfix
Bugfix	Medium	Runs `is_bot_challenge` before HTTP‑status branch, surfacing Cloudflare/Imperva interstitials as `bot_challenge`. Runs `is_bot_challenge` before HTTP‑status branch, surfacing Cloudflare/Imperva interstitials as `bot_challenge`. Source: llm_adapter@2026-05-27 Confidence: high	—
Bugfix	Medium	Ecosystem `pull` now verifies BLAKE3 hash of downloaded platform binaries. Ecosystem `pull` now verifies BLAKE3 hash of downloaded platform binaries. Source: llm_adapter@2026-05-27 Confidence: high	—
Bugfix	Low	Updates Python wrapper docstrings to document the `timeout` kwarg on several verbs. Updates Python wrapper docstrings to document the `timeout` kwarg on several verbs. Source: llm_adapter@2026-05-27 Confidence: high	—
Refactor	Low	Removes duplicate unreachable `Some("search")` dispatch arm in Rust CLI code. Removes duplicate unreachable `Some("search")` dispatch arm in Rust CLI code. Source: llm_adapter@2026-05-27 Confidence: high	—

Full changelog

Release Notes

Added

Global --timeout <duration> flag on every network-touching verb
(open, read, click, fill, submit, eval-dom, batch,
stamp, refresh, meta, find, tree, ls, cat). Defaults to
30 seconds. On timeout the verb emits a structured envelope
{ok: false, error: {code: "timeout", timeout_ms, elapsed_ms, url}}
and exits 1. --timeout 0 opts out. The Python and Node wrappers
install a timeout + 5s process-kill backstop.
Click responses now include final_url (where the navigation
actually landed after following the destination's redirect chain)
and redirects[] (a {from, to, status} chain) alongside the
existing navigated / navigated_to fields.
Click, fill, and submit responses now share a unified writing-verb
envelope: {ok, op, url, ref, selector, element_id, value, result, console, error}. Selector misses surface as ok: false with
error.code: "selector_not_matched".
stamp step entries carry per-step status, observed payload,
and logical started_at / finished_at timestamps in addition to
the existing verb / action / url_before / url_after fields.
CONTRIBUTING.md, SECURITY.md, CODE_OF_CONDUCT.md, and this
changelog at the repo root.

Changed

heso search <query> is a top-level verb again. The
heso registry search ... form continues to work as the
registry-namespace alias.
README rewritten to lead with eval-dom, drop the manifest tone,
and name the verified medium-tier WAF pass-throughs (Zillow,
Walmart, CoinGecko, LinkedIn anonymous, TripAdvisor, Yahoo Finance,
old.reddit). The status note now scopes bot_challenge honestly to
the nine WAF needles plus __cf_chl_opt.
npm package README is sourced from the root README.md at publish
time by scripts/deploy.ps1 and .github/workflows/pypi.yml, so
the GitHub homepage and the npm package can no longer drift
independently. Stale unpack / plat-* blocks gone.
spec/HESO-1.0.md is now a thin pointer; the canonical spec lives
at https://heso.ca/spec.
heso --help banner rewritten to match the current dispatch —
removed stale entries for verbs that were collapsed into the
polymorphic surface or moved under heso registry, and removed
footer links to internal-only ADR files.
Engine: response bodies are capped before DOM parsing
(engine-js), and registry / Wikipedia / SearXNG responses are
capped at 4–16 MiB each.
Engine: cli enforces a wall-clock cap on open and read.
serve: live-pages store bounded at 32 entries.
Trace / primitives: Action and PrimitiveOp inputs now reject
unknown fields rather than silently dropping them.

Fixed

is_bot_challenge runs before the HTTP-status branch in
partial_reason_for_status, so Cloudflare / Imperva interstitials
surface as partial_reason: "bot_challenge" regardless of the
wrapper status (200 / 403 / 429 / 503).
Ecosystem pull now verifies the downloaded plat's BLAKE3 hash
against the requested content address.
Module docstring and cmd_replay stderr in
crates/heso-cli/src/main.rs no longer reference removed verbs or
internal-only docs.
README no longer links to ADR files under decisions/, which is
gitignored in the public repo.
SealOptions.tsa and SealOptions.noResign removed from the npm
TypeScript types (they were declared but never wired through the
CLI). The Python seal docstring drops the same unimplemented
flags.
Python wrappers document the timeout kwarg on click, fill,
submit, meta, ls, cat, find, tree, and refresh — the
flag has worked since the global --timeout landed but was missing
from the docstrings.
Duplicate Some("search") dispatch arm in crates/heso-cli/src/main.rs
removed (the second occurrence was unreachable).

Releases prior to this changelog are documented at
https://github.com/blank3rs/heso/releases.

Install heso-cli 0.1.5

Install prebuilt binaries via shell script

curl --proto '=https' --tlsv1.2 -LsSf https://github.com/blank3rs/heso/releases/download/v0.1.5/heso-cli-installer.sh | sh

Install prebuilt binaries via powershell script

powershell -ExecutionPolicy Bypass -c "irm https://github.com/blank3rs/heso/releases/download/v0.1.5/heso-cli-installer.ps1 | iex"

Download heso-cli 0.1.5

| File | Platform | Checksum |
|--------|----------|----------|
| heso-cli-aarch64-apple-darwin.tar.gz | Apple Silicon macOS | checksum |
| heso-cli-x86_64-apple-darwin.tar.gz | Intel macOS | checksum |
| heso-cli-x86_64-pc-windows-msvc.zip | x64 Windows | checksum |
| heso-cli-aarch64-unknown-linux-gnu.tar.gz | ARM64 Linux | checksum |
| heso-cli-x86_64-unknown-linux-gnu.tar.gz | x64 Linux | checksum |

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track blank3rs/heso](https:

Get notified when new releases ship.

About blank3rs/heso](https:

All releases →

Related context

Related tools

Earlier breaking changes

v0.3.0 `heso search` defaults to Mojeek, Brave, Marginalia, Wikipedia (plus SearXNG) instead of DuckDuckGo.
v0.2.0 Removes the plat registry, `publish`, `pull`, and `list` verbs.
v0.1.8 `run` now verifies input platform integrity before replaying and exits on mismatch (exit 1).
v0.1.8 `read` no longer fetches external `<script src=...>` by default; opt‑in with `--js-fetch`.