YantrikDB

v0.7.12 Feature

This release adds 1 notable feature for engineering teams evaluating rollout.

Published 21d AI Agents & Assistants

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

agent-memory ai-agents anthropic claude-code cognitive-memory database

+12 more

embeddings hnsw knowledge-graph llm llm-memory mcp memory persistent-memory python rust semantic-memory vector-db

Affected surfaces

breaking_upgrade

ReleasePort's take

Light signal

editorial:auto 13d

YantrikDB v0.7.12 fixes the `yantrikdb import` command to correctly write edges to the claims table, addressing edge graph loss after migration from V16 to V17.

Why it matters: If you perform V16→V17 migrations using `yantrikdb import`, upgrade to v0.7.12 immediately to prevent data loss.

Summary

AI summary

Fixed yantrikdb import dropping edge graphs and a clippy borrow error.

Changes in this release

Type	Severity	Summary	CVE
Security	Medium	SLSA build provenance attestation now applied to every published wheel. SLSA build provenance attestation now applied to every published wheel. Source: llm_adapter@2026-05-21 Confidence: low	—
Security	Medium	Enabled SLSA build provenance attestation on every published wheel via GitHub Actions CI workflow. Enabled SLSA build provenance attestation on every published wheel via GitHub Actions CI workflow. Source: granite4.1:30b@2026-05-22-audit Confidence: low	—
Feature	Medium	Optional `[mcp]` extra installed automatically, providing MCP integration for tool/resource providers. Optional `[mcp]` extra installed automatically, providing MCP integration for tool/resource providers. Source: llm_adapter@2026-05-21 Confidence: low	—
Feature	Low	Added optional `[mcp]` extra (`mcp>=1.0.0`) and included it in the `[all]` extra for automatic MCP integration. Added optional `[mcp]` extra (`mcp>=1.0.0`) and included it in the `[all]` extra for automatic MCP integration. Source: granite4.1:30b@2026-05-22-audit Confidence: low	—
Dependency	Medium	`[mcp]` extra added, automatically includes `mcp>=1.0.0` for MCP users. `[mcp]` extra added, automatically includes `mcp>=1.0.0` for MCP users. Source: llm_adapter@2026-05-21 Confidence: low	—
Dependency	Low	Added `[mcp]` extra to project metadata, pulling in the `mcp` package automatically when requested. Added `[mcp]` extra to project metadata, pulling in the `mcp` package automatically when requested. Source: granite4.1:30b@2026-05-22-audit Confidence: low	—
Performance	Medium	No performance changes mentioned. No performance changes mentioned. Source: llm_adapter@2026-05-21 Confidence: low	—
Deprecation	Medium	No deprecations noted in this changelog. No deprecations noted in this changelog. Source: llm_adapter@2026-05-21 Confidence: low	—
Bugfix	Medium	`yantrikdb import <export.json>` now writes edges to claims table, fixing edge graph loss post-V16→V17 migration. `yantrikdb import <export.json>` now writes edges to claims table, fixing edge graph loss post-V16→V17 migration. Source: llm_adapter@2026-05-21 Confidence: high	—
Bugfix	Medium	Borrow check error in `recall.rs` resolved by using HashSet<String> ownership. Borrow check error in `recall.rs` resolved by using HashSet<String> ownership. Source: llm_adapter@2026-05-21 Confidence: low	—
Refactor	Medium	No explicit refactor notes beyond code fixes. No explicit refactor notes beyond code fixes. Source: llm_adapter@2026-05-21 Confidence: low	—
Refactor	Low	Implemented branch protection requiring PRs and status checks for `main` across related repositories. Implemented branch protection requiring PRs and status checks for `main` across related repositories. Source: granite4.1:30b@2026-05-22-audit Confidence: high	—

Full changelog

User-impact bug fixes + governance / CI hardening release. Wheels in flight; once landed on PyPI, pip install --upgrade yantrikdb picks it up.

User-impact bug fixes

yantrikdb import <export.json> was broken for edges since the V16→V17 migration (~2026-04). The CLI tried INSERT INTO edges, but edges has been a backward-compat VIEW (real table is claims) since RFC 006 Phase 5 landed. SQLite rejects modifications to views, so any export-import round trip dropped the edge graph. Fixed in src/yantrikdb/cli.py:381 — now writes to claims with claim_id directly. The export side already reads through the view, which keeps working.

This bug escaped because the test that catches it (tests/test_cli.py::TestExportImport) was never running in CI. Today's PR #12 (CI workflows) was the first time pytest gated anything in the engine repo — and surfaced this plus 5 other test-suite drifts. If you've been running yantrikdb export + yantrikdb import workflows in production, your edge graph was being silently dropped on import. v0.7.12 fixes that.

Engine recall.rs E0502 borrow check error in a feature-gated code path. Visible under cargo clippy --all-features only — default builds were fine. Fixed via HashSet<String> ownership instead of borrowing &str from fts_rids.

New optional dependency extra

[mcp] extra added = ["mcp>=1.0.0"], also included in [all]. Users wiring YantrikDB as an MCP tool/resource provider via yantrikdb.mcp.{server,tools,resources} now get the mcp package automatically:

pip install yantrikdb[mcp]      # just the MCP integration
pip install yantrikdb[all]      # everything including MCP

Previously these users had to install mcp separately or hit ModuleNotFoundError at runtime.

CI / governance

Branch protection adopted on yantrikos/yantrikdb, yantrikos/yantrikdb-hermes-plugin, yantrikos/yantrikdb-models. Direct push to main blocked; all changes go through PR + required status checks. Driven by donbowman's governance suggestion 2026-05-13.
SLSA build provenance attestation on every wheel published from now on, via actions/attest-build-provenance@v2 in .github/workflows/pypi.yml. Surfaces on PyPI as "Verified attestations."
5 follow-up issues filed for re-tightening the day-one-soft CI gates: #16 clippy cleanup, #17 pylint W cleanup, #18 examples + benches drift, #19 macOS native linker flags, #20 pyo3 0.28 cleanup.
CONTRIBUTORS.md added — explicit attribution for donbowman (substance of PRs #11 + #12 + governance) and alienos (plugin issue reports driving v0.7.9 + v0.7.10).

Known issues

#15 — set_embedder_named("potion-multilingual-128M") fails to extract because v0.2.0 tarball layout differs from v0.1.0 (files at root vs prefix dir). Tracked for v0.7.13.
#22 — compactor_drains_delta_periodically test is flaky on slower CI runners (Windows, macOS-14). Only test code; released engine is unaffected. Tracked for v0.7.13.

Coordination

PR #14: real fixes + CI infrastructure (139dc1a)
PR #21: version bumps (53b937f)
Engine v0.7.12 tag landed on main 53b937f.

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track YantrikDB

Get notified when new releases ship.

About YantrikDB

All releases →

Related context

Related tools

Earlier breaking changes

v0.7.20 `correct()` now mutates in place, preserving rid and adding revision history (BREAKING CHANGE).
v0.7.9 Pure-additive; existing engines keep English models on v0.1.0.