wazionapps/nexo

v6.3.0 Breaking

This release includes breaking changes for platform teams planning a safe upgrade.

Published 1mo MCP Developer Tools

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

ai-memory atkinson-shiffrin autonomous-agent claude-code claude-code-plugin codex

+14 more

cognitive-architecture knowledge-graph local-first mcp mcp-server memory metacognition model-context-protocol natural-forgetting llm semantic-search shared-brain trust-scoring vector-db

Affected surfaces

auth rbac

Summary

AI summary

Critical dead‑code fix restores T4 LLM gate functionality and prevents silent suppression of destructive rules.

Full changelog

Coordinated with NEXO Desktop v0.18.0.

Plan Consolidado wave 2 closes the remaining Guardian roadmap items that do not require an invasive structure migration:

Extended cognitive_sentiment shape (is_correction / valence / intent enum).
Entities schema extension (aliases / metadata / source / confidence / access_mode) via idempotent migration m44.
21 labelled rule fixtures + R13 spike gates (FP < 5%, P95 < 3s).
Fase F telemetry loops (aggregate_per_rule, FP grouping, FN candidate promotion) + Deep Sleep phase_guardian_analysis report.
Local zero-shot classifier skeleton pinned to MoritzLaurer/mDeBERTa-v3-base-xnli-multilingual-nli-2mil7 @ b5113eb (previous pin failed model_type load under transformers 5.x). Consumer wired into src/hooks/auto_capture.py with threshold 0.65 + 40-char minimum + regex fast-path short-circuit.
hook_guardrails respects NEXO_MIGRATING=1 (F0.0.4).
personal_scripts gains origin column (F0.1) via idempotent migration m45.
T4 LLM classifier gate wraps R15 / R23e / R23f / R23h with byte-parity between src/enforcement_engine.py and nexo-desktop/enforcement-engine.js.

Pre-release audit (2 parallel reviewers + re-audit pass):

CRITICAL F-01 — Desktop JS T4 wire was dead code (method-name casing + async/await mismatch); fixed with regression test at nexo-desktop/tests/t4-wire-enforcement-engine.test.js.
HIGH H1 — enforcement_classifier.classify conflated an explicit no with an unparseable conservative fallback, silently suppressing destructive rules on flaky backends; fixed with new tristate flag returning yes/no/unknown; unknown falls through to regex.
HIGH H2 — otra vez removed from CORRECTION_SIGNALS to stop false-positive on benign repeats.
F-02 — T4 gate degradations now log WARNING once per (rule_id, reason) so infra flakiness surfaces.
F-04 — is_correction fallback tightened (requires 2+ all-caps OR second-person + 2 neg signals).

Deferred to a future release (not missing): F0.3–F0.6 physical structure migration and v7.0.0 breaking symlink removal. Infrastructure is in place (migrations_applied table, origin column, core/personal/runtime layout with symlinks), but the physical move requires coordinated validation on Francisco + Nora live runtimes per learning #450.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track wazionapps/nexo

Get notified when new releases ship.

About wazionapps/nexo

Cognitive memory for AI agents with Atkinson-Shiffrin memory model (STM/LTM/sensory register), semantic RAG, Ebbinghaus decay, trust scoring, and 76+ MCP tools.

All releases →

wazionapps/nexo

Summary

Related context

Related tools