roeyk/Bywaf

v0.11.0 Feature

This release adds 3 notable features for engineering teams evaluating rollout.

Published 13d Offensive & Pentesting

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Affected surfaces

auth deps

Summary

AI summary

Major internal refactor into smaller modules with provider-owned triggers, signed plugin manifests, and key-management policy.

Changes in this release

Type	Severity	Summary	CVE
Security	High	Implements signed plugin manifests and catalogs. Implements signed plugin manifests and catalogs. Source: granite4.1:30b@2026-05-27-audit Confidence: low	—
Security	High	Establishes key-management policy for maintainer signing keys including rotation, overlap handling, and revocation. Establishes key-management policy for maintainer signing keys including rotation, overlap handling, and revocation. Source: granite4.1:30b@2026-05-27-audit Confidence: low	—
Feature
Feature	Medium	Introduces provider-owned triggers with lifecycle audit events. Introduces provider-owned triggers with lifecycle audit events. Source: granite4.1:30b@2026-05-27-audit Confidence: low	—
Feature	Medium	Adds watchdog-on-network-access behavior for providers. Adds watchdog-on-network-access behavior for providers. Source: granite4.1:30b@2026-05-27-audit Confidence: low	—
Feature	Medium	Adds explicit developer trust bypass flags for plugins. Adds explicit developer trust bypass flags for plugins. Source: granite4.1:30b@2026-05-27-audit Confidence: low	—
Feature	Low	Provides plugin author documentation covering triggers, trust metadata, process execution, and secrets. Provides plugin author documentation covering triggers, trust metadata, process execution, and secrets. Source: granite4.1:30b@2026-05-27-audit Confidence: low	—
Feature	Low	Creates documentation roadmap with hyperlinked indexes for core model documents. Creates documentation roadmap with hyperlinked indexes for core model documents. Source: granite4.1:30b@2026-05-27-audit Confidence: low	—
Dependency	Low	Builds and smoke-tests Pip, Debian, and RPM release artifacts. Builds and smoke-tests Pip, Debian, and RPM release artifacts. Source: granite4.1:30b@2026-05-27-audit Confidence: low	—
Refactor	Low	Refactors internal code into smaller, higher-cohesion modules. Refactors internal code into smaller, higher-cohesion modules. Source: llm_adapter@2026-05-27 Confidence: high	—

Full changelog

Highlights

Major internal refactor into smaller, higher-cohesion modules.
Provider-owned triggers with lifecycle audit events and watchdog-on-network-access behavior.
Signed plugin manifests, signed plugin catalogs, and explicit developer trust bypass flags.
Plugin author documentation for triggers, trust metadata, process execution, and secrets.
Key-management policy for maintainer signing keys, rotation, overlap, and revocation.
Documentation roadmap plus hyperlinked indexes for core model documents.
Pip, Debian, and RPM release artifacts built and smoke-tested.

Artifacts

Python wheel and source distribution
Debian package and build metadata
RPM binary and source packages

Full Changelog: https://github.com/roeyk/Bywaf/compare/v0.10.0...v0.11.0

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track roeyk/Bywaf

Get notified when new releases ship.

About roeyk/Bywaf

All releases →

roeyk/Bywaf

Summary

Changes in this release

Highlights

Artifacts

Related context

Related tools