chernistry/bernstein

v1.6.9

The largest internal restructuring in Bernstein's history - a full module decomposition of the monolithic core/ directory into focused subpackages, plus 100+ CI fixes to make all 927 tests pass.

Module decomposition

The 4,000+ line god-modules have been broken into focused, maintainable subpackages:

• orchestrator.py (4,198 lines) -> 7 sub-modules in core/orchestration/
• spawner.py (2,914 lines) -> 4 sub-modules in core/agents/
• task_store.py (1,853 lines) -> deduplicated into task_store_core.py
• seed.py (1,795 lines) -> 3 sub-modules in core/config/
• gate_runner.py (1,290 lines) -> 3 sub-modules in core/quality/

207+ modules moved into 15 subpackages: agents/, config/, cost/, git/, knowledge/, observability/, orchestration/, persistence/, planning/, plugins_core/, protocols/, quality/, routing/, security/, tasks/, tokens/.

All backward-compatible - existing imports through shim modules continue to work.

Code quality

• Resolved all SonarCloud BLOCKER vulnerabilities and security hotspots (0 remaining)
• Hardened 25+ regex patterns against ReDoS
• Reduced code duplication from 9.6% to under 3% on new code
• 927 tests passing across Python 3.12, 3.13 on Linux, macOS, Windows

Security

• Added Zip Slip path traversal validation for archive extraction
• Seeded RNG for non-cryptographic test data generation
• Annotated localhost URLs and intentional signal handling

External contributions

• PR #724 by @vbhavh - cost-per-line efficiency metric
• PR #726 by @oldschoola - Windows compatibility for terminal handling

Bug fixes

• Fixed circular imports in server subpackage
• Fixed midnight-boundary timezone flake in quality metrics test
• Updated 120+ test mock patch targets for decomposed modules
• Fixed cancel-in-progress CI setting to allow test runs to complete