Skip to content

Releases: shcherbak-ai/tethered

v0.4.0

29 Mar 19:16
@SergiiShcherbak SergiiShcherbak
Immutable release. Only release title and notes can be modified.
v0.4.0
288a181

Choose a tag to compare

View all tags
v0.4.0 Latest
Latest

Added

  • C extension (_guardian.c) for tamper-resistant locked mode. Snapshots the identity
    of every critical Python object at activation time and verifies integrity on every
    socket event. Detects config replacement, method monkey-patching, frozen field mutation
    via object.__setattr__, and bytecode swapping. On tamper detection, blocks ALL network
    access (fail-closed) and writes a tamper alert to stderr via os.write(fd 2).
  • The C extension is now required — installation fails without a C compiler (pre-built
    wheels include the compiled extension for all platforms).
  • cibuildwheel CI job builds platform-specific wheels with the compiled C extension
    for Linux, macOS, and Windows across Python 3.10–3.14.
  • Publish workflow split into a separate GitHub Actions workflow, triggered via
    workflow_run after CI succeeds.
  • CodeQL now scans both Python and C/C++ code.
  • cppcheck static analysis for C code via Docker-based pre-commit hook.

Changed

  • Build backend switched from hatchling to setuptools for native C extension support.
Assets 3
Loading

v0.3.3

22 Mar 15:33
@SergiiShcherbak SergiiShcherbak
Immutable release. Only release title and notes can be modified.
v0.3.3
ae5a202

Choose a tag to compare

View all tags
v0.3.3

Fixed

  • lock_token now rejects internable types (str, int, float, bytes, bool) when
    locked=True. CPython interns these types, so separate literals can share identity and
    defeat the lock. Use object() or a custom instance instead.

Changed

  • Moved _reset_state() logic from production code to test fixtures.
Loading

v0.3.2

22 Mar 02:05
@SergiiShcherbak SergiiShcherbak
Immutable release. Only release title and notes can be modified.
v0.3.2
0c9601e

Choose a tag to compare

View all tags
v0.3.2

Added

  • Context-local scope() API for narrowing allowed destinations within a block of code.
    Usable as both a context manager (with tethered.scope(allow=[...]):) and a decorator
    (@tethered.scope(allow=[...])). Supports log_only, fail_closed, allow_localhost,
    and on_blocked options. Scopes use intersection semantics — they can only narrow the
    global policy, never widen it. Safe for concurrent use across threads and async tasks.
  • Input validation on activate() and scope() parameters (type checks for allow,
    on_blocked, locked, log_only, fail_closed, allow_localhost).
  • Runnable examples in examples/.
Loading

v0.2.0

15 Mar 18:19
@SergiiShcherbak SergiiShcherbak
v0.2.0
bcfe6cc

Choose a tag to compare

View all tags
v0.2.0

Added

  • Unicode NFC normalization and fullwidth dot normalization for hostnames and allow rules.
  • Hostname validation rejects control characters, null bytes, and invisible Unicode.
  • gethostbyaddr reverse-DNS lookups are now subject to policy enforcement.

Changed

  • activate(locked=True) now requires lock_token (raises ValueError if omitted).
  • activate() over a locked policy now requires the correct lock_token (raises TetheredLocked).
  • getaddrinfo hook forwards all caller arguments (family, socktype, proto, flags) to C-level resolver.
  • Locked mode documentation clarified to better reflect the security model.

Fixed

  • IP-to-hostname map now refreshes existing entries on re-resolution.
  • Config and IP map updates are now atomic under nested locks.

Security

  • Documented shared-IP/CDN cache mapping as a known limitation in the security model.
  • Documented localhost relay risk with default allow_localhost=True in the security model.
Loading