chore(release): v0.76.0 -- G1 multi-tenant memory isolation + WS-F trade-secret wheel gate#219
Merged
Merged
Conversation
…eel gate Adds CHANGELOG entries for: - 0.76.0: G1 ADR-225 multi-tenant memory service (provision() factory, validate_tenant_id() pipeline, ProvenanceEntry.tenant_id field), WS-F ADR-BIZ-001 trade-secret wheel gate (Layer 3 IP protection), studio/server static mount ordering fix, deploy-lambda.yml CI restore, ip_content_scan case-insensitive allowlist fix. 501 new tests. - 0.75.1: Studio reasoning fail-closed fix (ADR-220-A R2). Full upgrade notes included. No source code changes -- changelog only. Sentinel chain complete before tag push (ADR-209 compliant). Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
🛡️ GraQle PR Guardian💥 Blast Radius: 1 module affected
Total blast radius: 1 🏛️ Governance Verdict
|
| Metric | Value |
|---|---|
| Blast Radius | 1 |
| Files Analyzed | 1 |
| Blocked | 0 |
| SHACL Violations | 0 |
| Verdict | WARN |
🔬 Powered by GraQle PR Guardian v0.1.0 · Scan completed 2026-06-26T15:24:06.615405+00:00
harishquantamix
approved these changes
Jun 26, 2026
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
chore(release): v0.76.0 — G1 multi-tenant memory isolation + WS-F trade-secret wheel gate
What changed
ReasoningMemoryregistry with thread-safeprovision()factory.validate_tenant_id()normalisation pipeline blocks NUL bytes, double-encoding, unicode homographs, and path-traversal sequences._SCOPING_ONread at import-time as TOCTOU guard.merge_concurrent()androllback()validate every entrystenant_id` before committing.RECORDmanifest on every PR and tag push; fails build ifgraqle/governance/calibration*.pyappear. Stem matching covers compiled variants.app.mountmoved after allinclude_routercalls.ADR-209 Sentinel chain
graq_safety_checkgraq_review(all)x2graq_predictgraq_review(security)Private PR #208 merged on
quantamixsol/research-development-graqle. This is a cherry-pick of commit7631c71c(CHANGELOG only, no source code changes).Sole approver: Harish Kumar (CR-001 para 9).
After merging this PR
Tag
v0.76.0will be moved to this merge commit and PyPI publish will be triggered via CI OIDC trusted-publish.Upgrade notes (0.75.1 -> 0.76.0)
GRAQLE_TENANT_SCOPING=1required to use non-default tenant IDs.clear_registry()raisesRuntimeErrorunlessGRAQLE_TEST_MODE=1.