ErenAri/Aegis-BPF

AegisBPF v0.5.1

This release is a stabilization and release-hardening update on top of v0.5.0.

Highlights

• Hardened the release pipeline with provenance self-verification before publication
• Added OpenSSF Scorecard workflow and project governance scaffolding
• Added automated AWS soak tooling and published 24-hour soak evidence
• Added comparison automation and supporting benchmark/install scripts
• Expanded positioning, standards, and limitations documentation
• Polished the operator web console and added a local console preview path

Why this is a patch release

No major new core daemon/BPF enforcement surface was introduced after v0.5.0.
The changes since that release are primarily operational hardening, supply-chain verification, evidence publication, documentation quality, and console polish.

Release integrity

This release strengthens artifact trust and project hygiene:

• provenance verification is enforced in release automation
• signed artifacts remain part of the release path
• SBOM generation is included in release output
• governance and standards posture are now documented more clearly

Evidence and documentation

This release also improves the project’s evidence quality:

• published soak artifacts and soak writeup
• benchmark/comparison automation improvements
• documentation updated to better separate measured claims from aspirational ones
• clearer positioning and limitations for evaluators and adopters

Upgrade notes

• no intentional policy format breakage
• recommended for users who want stronger release verification, current evidence, and updated project documentation

Maintainer note

Before cutting this release, bump the project version in CMakeLists.txt to 0.5.1 so:

• aegisbpf --version
• package metadata
• Git tag
• release artifacts

all report the same version.