You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Phase G11.0.1 (at-Tawbah) closes the genuine prospective
audit gaps the v0.11.0 + v0.11.1 ship did not absorb (per
Round 28 empirical state audit), plus closes Round 28 finding
F18 (flagship: backfill_github_releases.py --dry-run silently
no-op'd).
Round 28 state audit found that C-1, H-5, H-6, and M-7 were
already backported to the unified Python verifier in v0.11.0
via the G11.1 commits ee656ad + c6b219a. The genuine v0.11.2
work is:
- T01: extend SAFETY_INVARIANTS.md Invariant 6 step 6 to
document CASM-V-032 / CASM-V-035 / CASM-V-036 explicitly.
- T03: H-4 nested-generic recursion in Python signature
canonicalizer (the Python equivalent of the G11.1 amended_4
T03 rules 6 + 7). The pre-v0.11.2 implementation fell
through to ast.unparse(node.slice) for multi-arg generic
parameters, producing tuple-stringification artifacts; this
release recurses element-wise on Tuple slices and flattens
inner unions across the Subscript-Union boundary.
- T06: M-5 corrective applied to step5 docstring (references
Manifest.from_dict as canonical enforcement site); M-6
corrective applied to SECURITY.md N2 disclosure wording
(now names --expected-identity and CASM-V-035 explicitly).
- T08 (flagship F18): scripts/backfill_github_releases.py
rewritten with argparse; --dry-run / --apply mutually-
exclusive required; default no-flag exits 2 with usage.
F19 incidental closure: version filter excludes v0.11.1+
workflow-managed releases via _WORKFLOW_MANAGED_FLOOR.
Local verification (sandbox):
- pytest --collect-only -q -> 589 tests collected
(target: 589, +13 from v0.11.1's 576: 8 in
test_python_signature_h4.py, 5 in test_backfill_dry_run.py)
- pytest -q -> 543 passed, 46 skipped
- ruff check + ruff format --check + mypy clean
- furqan-lint version -> 'furqan-lint 0.11.2'
- Em-dash check (extended scope) clean
- release_sweep.py: clean (README pins synchronized to
v0.11.2)
After v0.11.2 the Python verifier's signature canonicalization
matches the Rust verifier's amended_4 T03 rules 6 + 7. The
remaining amended_4 defenses (C-1 identity policy, H-5
trusted_root threading, H-6 checker_set_hash Form A, M-7
typed identity-extraction errors) were already shared between
the two pipelines from v0.11.0; v0.11.2 acknowledges that and
pins the audit register state.
Co-authored-by: Claude (cowork) <claude+cowork@anthropic.com>
Replace `v0.11.1` with any tag from the [release history](https://github.com/BayyinahEnterprise/furqan-lint/releases) or `main` for the development tip.
47
+
Replace `v0.11.2` with any tag from the [release history](https://github.com/BayyinahEnterprise/furqan-lint/releases) or `main` for the development tip.
48
48
49
49
### Furqan dependency
50
50
51
-
furqan-lint requires `furqan>=0.11.0`, the Furqan programming-language tooling. As of 2026-05-03 the PyPI release of `furqan` is at v0.10.1; install v0.11.1 directly from GitHub:
51
+
furqan-lint requires `furqan>=0.11.0`, the Furqan programming-language tooling. As of 2026-05-03 the PyPI release of `furqan` is at v0.10.1; install v0.11.2 directly from GitHub:
0 commit comments