This release adds 5 notable features for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Topics
Summary
AI summaryAdds multiple new lint and sanitization rules to scripts/ Python tree.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Low |
Add Pyright type-check to scripts/ Python tree Add Pyright type-check to scripts/ Python tree Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Feature | Low |
Add pytest suite for scripts/ helpers Add pytest suite for scripts/ helpers Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Feature | Low |
Add unicode-invisibles-strip rule Add unicode-invisibles-strip rule Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Feature | Low |
Add noscript-strip rule Add noscript-strip rule Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Feature | Low |
Add json-ld-sanitize rule Add json-ld-sanitize rule Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Feature | Low |
Add attribute-injection-scrub rule Add attribute-injection-scrub rule Source: granite4.1:30b@2026-06-03-audit Confidence: low |
— |
| Refactor | Low |
Centralize data-abs-* DOM markers in lib/dom-markers.ts Centralize data-abs-* DOM markers in lib/dom-markers.ts Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Refactor | Low |
Split _judge.py — pure helpers go strict, LLM client stays standard Split _judge.py — pure helpers go strict, LLM client stays standard Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Refactor | Low |
Promote _stagehand.py to pyright strict Promote _stagehand.py to pyright strict Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Refactor | Low |
Promote _blockcheck.py to pyright strict Promote _blockcheck.py to pyright strict Source: llm_adapter@2026-06-03 Confidence: high |
— |
| Refactor | Low |
Standardize rule-ID verbs (hide / redact / sanitize / strip / annotate) Standardize rule-ID verbs (hide / redact / sanitize / strip / annotate) Source: llm_adapter@2026-06-03 Confidence: high |
— |
Full changelog
What's Changed
- Add Pyright type-check to scripts/ Python tree by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/93
- Add pytest suite for scripts/ helpers by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/94
- Centralize data-abs-* DOM markers in lib/dom-markers.ts by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/95
- Split _judge.py — pure helpers go strict, LLM client stays standard by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/96
- Promote _stagehand.py to pyright strict by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/97
- Add unicode-invisibles-strip rule by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/98
- Promote _blockcheck.py to pyright strict by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/99
- Add noscript-strip rule by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/100
- Add json-ld-sanitize rule by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/101
- Lint demo-site with unicorn/prevent-abbreviations by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/102
- Add attribute-injection-scrub rule by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/103
- Add meta-injection-strip rule by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/104
- Standardize rule-ID verbs (hide / redact / sanitize / strip / annotate) by @twschiller in https://github.com/pixiebrix/agent-browser-shield/pull/105
Full Changelog: https://github.com/pixiebrix/agent-browser-shield/compare/v2026.6.2.14...v2026.6.3.15
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About Agent-browser-shield
All releases →Related context
Related tools
Earlier breaking changes
- v2026.6.2.13 Enforce lib/↔rules/ import boundary via no-restricted-paths
Beta — feedback welcome: [email protected]