This release adds 3 notable features for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Topics
+8 more
Summary
AI summaryUpdates @prashar32, ci, and deps across a mixed release.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
Adds Slack channel for human-in-the-loop gate Adds Slack channel for human-in-the-loop gate Source: llm_adapter@2026-06-13 Confidence: high |
— |
| Feature | Medium |
Adds compliance evidence export with tamper‑evident event log Adds compliance evidence export with tamper‑evident event log Source: llm_adapter@2026-06-13 Confidence: high |
— |
| Feature | Medium |
Adds reusable named policy bundles referenced by policyRef Adds reusable named policy bundles referenced by policyRef Source: llm_adapter@2026-06-13 Confidence: high |
— |
| Feature | Medium |
Adds policy‑as‑code via riskkernel.yaml with dry‑run support Adds policy‑as‑code via riskkernel.yaml with dry‑run support Source: llm_adapter@2026-06-13 Confidence: high |
— |
| Dependency | Low |
Bumps actions/setup-node in GitHub Actions CI workflow Bumps actions/setup-node in GitHub Actions CI workflow Source: llm_adapter@2026-06-13 Confidence: high |
— |
| Dependency | Low |
Bumps modernc.org/sqlite from 1.51.0 to 1.52.0 Bumps modernc.org/sqlite from 1.51.0 to 1.52.0 Source: llm_adapter@2026-06-13 Confidence: high |
— |
Full changelog
Changelog
- 2e763f7b291e7823a544af05a3c42516ce176d1f: chore(ci): bump actions/setup-node in the github-actions group (#116) (@dependabot[bot])
- 99617f655e51d20e9b4d43af445b724a47bcc381: chore(deps): bump modernc.org/sqlite from 1.51.0 to 1.52.0 (#115) (@dependabot[bot])
- e6f9cf6d4bd0ea1bce59769779a7bd7dd182475a: feat(approval): Slack channel for the human-in-the-loop gate (#111) (@prashar32)
- 1b8214e545074007a9054c4bbef98b996f12466f: feat(audit): compliance evidence export with a tamper-evident event log (#114) (@prashar32)
- f9722c37d9c3bddc7197abe935005561180c77bd: feat(policies): reusable named policy bundles referenced by policyRef (#112) (@prashar32)
- c100e464d4ba4261b776328740102f17e713f9e4: feat(policy): policy-as-code via riskkernel.yaml + dry-run (#113) (@prashar32)
- 739100346578d0256795d720e4e4095bf93d0518: release: v0.6.0 (#118) (@prashar32)
Self-hosted. Your keys. No telemetry. See SECURITY.md to verify.
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About RiskKernel
All releases →Related context
Beta — feedback welcome: [email protected]