Memory Vault

Maintenance release — dependency updates, CI/runtime alignment, and small code-quality cleanups. No API or behavioral changes; drop-in replacement for v1.0.2.

What's in this release

Runtime upgrades

• Docker base images: python:3.11-slim → python:3.14-slim, node:20-slim → node:26-slim
• CI runners aligned to the same Python 3.14 / Node 26 (previously tests ran on 3.11/20 while the image shipped on 3.14/26 — a tested-vs-shipped divergence now closed)
• Tailwind CSS v3 → v4 (web dashboard): full migration via official codemod, including PostCSS plugin rename and config-as-CSS via @theme
• GitHub Actions: actions/checkout@v4 → v6, actions/cache@v4 → v5, plus 5 Dependabot-bumped CI actions

Dependency updates

Python: fastapi >=0.136.1, numpy >=2.4.5, pytest >=9.0.3, ruff >=0.15.13, python-dotenv >=1.2.2.

Web: react 19.2.6, react-router-dom 7.15.0, @tanstack/react-query 5.100.9, vite 8.0.11, eslint 10.4.0, tailwindcss 4.3.0, plus minor/patch bumps across 12 grouped deps.

Code quality

• Documented 4 intentional empty-except fallback sites (CodeQL "Empty except") in chat.py, adapters/base.py, diagnose.py, tests/test_chat_api.py. No behavior change — comments only.

What's NOT in this release

• No security fixes in the v1.0.2 sense — v1.0.2 closed real CodeQL vulnerabilities; this release is hygiene.
• No new features. Deployment-hardening docs (per #18) are deferred to v1.1.

Upgrade

docker compose pull
docker compose up -d

Or pin explicitly:

docker pull ghcr.io/mihaibuilds/memory-vault:1.0.3

170 tests passing in CI on Python 3.14 + Postgres 16 + pgvector.

Full changelog

Compare: v1.0.2...v1.0.3