nfemmanuel/iranti

v0.2.1 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 2mo AI Agents & Assistants

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

auth rbac

Summary

AI summary

Namespace-aware API key authorization added for entity-bound KB routes with new scoped permissions.

Full changelog

0.2.1

Added

Namespace-aware API key authorization for entity-bound KB routes
Access-control test suite with 8/8 baseline
Access-control feature spec and expanded security guidance for namespaced scopes

Changed

KB authorization now supports:
- kb:read:project/acme
- kb:write:project/*
- kb:deny:project/rival
Existing global scopes remain backward-compatible
GET /kb/search, POST /kb/batchQuery, and /memory/* remain coarse global-scope endpoints in this release

Notes

No KB/archive schema change in this release
This is an API-layer authorization improvement focused on multi-tenant and namespace-scoped deployments

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track nfemmanuel/iranti

Get notified when new releases ship.

About nfemmanuel/iranti

Persistent shared memory for AI coding agents. Stores facts as `entity/key/value` triples with hybrid semantic search, task checkpoints, and conflict resolution — shared across Claude Code, Codex CLI, and GitHub Copilot.

All releases →