chernistry/bernstein

v1.10.8 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 21d AI Agents & Assistants

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

agent-framework agent-orchestrator agentic-ai ai-agents ai-coding aider

+14 more

anthropic claude-code cli-tool codex-cli coding-agent deterministic-scheduler hmac-audit llm mcp-server model-context-protocol multi-agent parallel-worktrees python swe-bench

Affected surfaces

auth crypto_tls

ReleasePort's take

Light signal

editorial:auto 13d

Bernstein v1.10.8 removes the deprecated `--full-auto` flag from the Codex adapter and adds required X509 extensions to cluster bootstrap‑ca chains for OpenSSL 3 strict mode.

Why it matters: If you use the Codex adapter, update your commands immediately; if you run clusters with OpenSSL 3, upgrade to v1.10.8 now to avoid certificate validation failures.

Summary

AI summary

Fixed Codex adapter deprecated flag removal and cluster bootstrap‑ca cert chain now meets OpenSSL 3 strict‑mode requirements.

Changes in this release

Type	Severity	Summary	CVE
Feature
Feature	Medium	`bernstein adapters list` enumerates every registered adapter with binary + install status `bernstein adapters list` enumerates every registered adapter with binary + install status Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	`bernstein analyze` performs an orchestration-readiness scan over a repo `bernstein analyze` performs an orchestration-readiness scan over a repo Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	`bernstein eval run --tier smoke` now works out of the box — fixtures ship in the wheel `bernstein eval run --tier smoke` now works out of the box — fixtures ship in the wheel Source: llm_adapter@2026-05-21 Confidence: high	—
Feature	Medium	`bernstein doctor`'s airgap socket-guard check works without a live run `bernstein doctor`'s airgap socket-guard check works without a live run Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix
Bugfix	Medium	`bernstein doctor` accepts Jinja2 / YAML role templates, not only `.md` `bernstein doctor` accepts Jinja2 / YAML role templates, not only `.md` Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Codex adapter uses `--sandbox workspace-write`; deprecated `--full-auto` flag is gone Codex adapter uses `--sandbox workspace-write`; deprecated `--full-auto` flag is gone Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	Cluster bootstrap-ca chain emits SubjectKeyIdentifier, AuthorityKeyIdentifier, and KeyUsage extensions — required by OpenSSL 3.x strict mode Cluster bootstrap-ca chain emits SubjectKeyIdentifier, AuthorityKeyIdentifier, and KeyUsage extensions — required by OpenSSL 3.x strict mode Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	Adapter registry and `bernstein adapters list` now agree on 44 Adapter registry and `bernstein adapters list` now agree on 44 Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	README star/fork counts and adapter count reconciled against repo state README star/fork counts and adapter count reconciled against repo state Source: llm_adapter@2026-05-21 Confidence: low	—

Full changelog

v1.10.8 — bughunt close-out

Ten PRs land the demo-blockers found by the 14-probe bughunt matrix. codex adapter stops calling a flag the upstream CLI removed, bernstein doctor agrees with reality, bernstein eval run --tier smoke ships its fixtures inside the wheel, the cluster bootstrap-ca cert chain becomes OpenSSL-3-strict-mode clean.

What's new

bernstein adapters list enumerates every registered adapter with binary + install status
bernstein analyze performs an orchestration-readiness scan over a repo (@kite-builds, #1234)
bernstein eval run --tier smoke now works out of the box — fixtures ship in the wheel
bernstein doctor's airgap socket-guard check works without a live run

What's fixed

Codex adapter uses --sandbox workspace-write; the deprecated --full-auto flag is gone (#1235)
bernstein doctor accepts Jinja2 / YAML role templates, not only .md (#1238)
Cluster bootstrap-ca chain emits SubjectKeyIdentifier, AuthorityKeyIdentifier, and KeyUsage extensions — required by OpenSSL 3.x strict mode (#1237)
Adapter registry and bernstein adapters list now agree on 44 (#1242)
README star/fork counts and adapter count reconciled against repo state (#1236)

Why we shipped this

The 14-probe matrix exists so that the things we say work on the README still work three months later. This release closes that loop. No new architecture, no new abstraction — just every demo-blocker the matrix surfaced, fixed and verified.

Install

pipx install --upgrade bernstein

Contributors: @chernistry, @kite-builds

Compare: https://github.com/sipyourdrink-ltd/bernstein/compare/v1.10.7...v1.10.8

Breaking Changes

Codex adapter flag `--full-auto` removed

Security Fixes

Cluster bootstrap‑ca certificate chain now includes SubjectKeyIdentifier, AuthorityKeyIdentifier, and KeyUsage extensions to satisfy OpenSSL 3 strict mode requirements (#1237)

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track chernistry/bernstein

Get notified when new releases ship.

About chernistry/bernstein

Deterministic multi-agent orchestrator for 18 CLI coding agents (Claude Code, Codex, Cursor, Aider, Gemini CLI, OpenAI Agents SDK, and more). MCP server mode (stdio + HTTP/SSE) exposes the orchestrator to any MCP client. Git worktree isolation per agent, HMAC-chained audit trail, cost-aware model routing via contextual bandit. ~11K monthly PyPI downloads, Apache 2.0.

All releases →