Commit 8a2f0fc
release: v0.10.0
Phase G11.0 (Kiraman Katibin) closing release. Sigstore-CASM
Gate 11 v1.0 ships behind the opt-in [gate11] extra; default
install path unchanged.
Local verification (sandbox sigstore 3.6.7, rfc8785 0.1.4,
onnx 1.17.0, onnxruntime 1.23.2, numpy 2.2.6, onnx_tool installed):
- pytest --collect-only -q -> 511 tests collected (target: 511,
+70 from v0.9.4's 441: +67 across test_gate11_*.py modules,
+3 in test_regenerate_check_table.py)
- pytest -q -> 465 passed, 46 skipped
- ruff check . clean
- ruff format --check . clean
- mypy src/furqan_lint clean
- furqan-lint version -> 'furqan-lint 0.10.0'
- Em-dash check (extended scope; excludes CODE_OF_CONDUCT.md) clean
- Manifest sign-and-verify smoke (manifest_schema +
module_canonicalization + signature_canonicalization +
bundle + verification) round-trips with a stub Bundle and
raises CASM-V-NNN on each documented failure mode
- regenerate_check_table.py --check -> no drift on README
- CASM-V-INDETERMINATE surfaces on dynamic __all__ rather than
silent false-pass
- additive-only contract: manifest update refuses removals
(CASM-V-050) and signature drift on retained names
(CASM-V-051)
Closes finding F1 (README count drift).
Documents Shape A scope statements F4 (recursive linter trust)
and F7 (Rekor public-surface leakage).
Documents Newman 2022 disclosures N1 (OIDC compromise),
N2 (typosquatting), N3 (Rekor privacy), N4 (log retention).
Co-authored-by: Claude (cowork) <claude+cowork@anthropic.com>1 parent 6449b40 commit 8a2f0fc
3 files changed
Lines changed: 60 additions & 11 deletions
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
19 | 19 | | |
20 | 20 | | |
21 | 21 | | |
22 | | - | |
| 22 | + | |
23 | 23 | | |
24 | 24 | | |
25 | 25 | | |
| |||
30 | 30 | | |
31 | 31 | | |
32 | 32 | | |
33 | | - | |
34 | | - | |
35 | | - | |
36 | | - | |
37 | 33 | | |
38 | 34 | | |
39 | | - | |
| 35 | + | |
| 36 | + | |
| 37 | + | |
| 38 | + | |
| 39 | + | |
| 40 | + | |
| 41 | + | |
| 42 | + | |
| 43 | + | |
| 44 | + | |
| 45 | + | |
| 46 | + | |
| 47 | + | |
| 48 | + | |
| 49 | + | |
| 50 | + | |
| 51 | + | |
| 52 | + | |
| 53 | + | |
| 54 | + | |
| 55 | + | |
| 56 | + | |
| 57 | + | |
| 58 | + | |
| 59 | + | |
| 60 | + | |
| 61 | + | |
| 62 | + | |
| 63 | + | |
| 64 | + | |
| 65 | + | |
| 66 | + | |
| 67 | + | |
| 68 | + | |
| 69 | + | |
| 70 | + | |
| 71 | + | |
| 72 | + | |
| 73 | + | |
| 74 | + | |
| 75 | + | |
| 76 | + | |
| 77 | + | |
| 78 | + | |
| 79 | + | |
40 | 80 | | |
41 | 81 | | |
42 | 82 | | |
43 | | - | |
| 83 | + | |
| 84 | + | |
| 85 | + | |
| 86 | + | |
| 87 | + | |
| 88 | + | |
| 89 | + | |
| 90 | + | |
| 91 | + | |
44 | 92 | | |
45 | 93 | | |
46 | 94 | | |
47 | | - | |
48 | | - | |
| 95 | + | |
| 96 | + | |
| 97 | + | |
49 | 98 | | |
50 | 99 | | |
51 | 100 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
4 | 4 | | |
5 | 5 | | |
6 | 6 | | |
7 | | - | |
| 7 | + | |
8 | 8 | | |
9 | 9 | | |
10 | 10 | | |
| |||
| Original file line number | Diff line number | Diff line change | |
|---|---|---|---|
| |||
1 | 1 | | |
2 | 2 | | |
3 | | - | |
| 3 | + | |
4 | 4 | | |
5 | 5 | | |
6 | 6 | | |
| |||
0 commit comments