Releases: agentfront/enclave
Releases · agentfront/enclave
Release list
v2.14.1
Release v2.14.1
Release type: stable
Release line: 2.14.x
Branch: release/2.14.x
Published Packages
@enclave-vm/core@2.14.1@enclave-vm/types@2.14.1@enclave-vm/stream@2.14.1@enclave-vm/broker@2.14.1@enclave-vm/client@2.14.1@enclave-vm/react@2.14.1@enclave-vm/runtime@2.14.1@enclave-vm/ast@2.14.1
[2.14.1] - 2026-06-19
Added
- Added
@types/estreedependency to@enclave-vm/core. - Introduced
additionalEntryPointsinproject.jsonfor distributed entry handling.
Fixed
- Formatted code blocks for better readability.
- Streamlined exports in
worker.tsby merging type exports into a single line.
v2.14.0
Release v2.14.0
Release type: stable
Release line: 2.14.x
Branch: release/2.14.x
Published Packages
@enclave-vm/core@2.14.0@enclave-vm/types@2.14.0@enclave-vm/stream@2.14.0@enclave-vm/broker@2.14.0@enclave-vm/client@2.14.0@enclave-vm/react@2.14.0@enclave-vm/runtime@2.14.0@enclave-vm/ast@2.14.0
[2.14.0] - 2026-06-18
Added
- Introduced
InterpreterAdapterandInterpreter, a dependency-free, runtime-agnostic execution path without QuickJS, WASM, or node:vm dependencies. - Added
libs/core/src/adapters/interpreter-adapter.tsandlibs/core/src/interpreter/interpreter.tsfor INDEPENDENT sandbox operations. - A worker-safe entry point added at
libs/core/src/worker.tsthat exposes only the dependency-free execution path.
Changed
- Upgraded all packages to version 2.14.0.
- Updated several package dependencies and reorganized module exports.
Fixed
- Minor package.json configuration amendments for consistency.
Security
- Enhanced security measures by ensuring no host globals are exposed in the
Interpreter.
v2.13.0
Release v2.13.0
Release type: stable
Release line: 2.13.x
Branch: release/2.13.x
Published Packages
@enclave-vm/core@2.13.0@enclave-vm/types@2.13.0@enclave-vm/stream@2.13.0@enclave-vm/broker@2.13.0@enclave-vm/client@2.13.0@enclave-vm/react@2.13.0@enclave-vm/runtime@2.13.0@enclave-vm/ast@2.13.0
[2.13.0] - 2026-04-02
Added
- Introduced OpenAPI integration in
@enclave-vm/broker, facilitating automatic tool generation and polling. - Implemented
OpenApiSource,OpenApiSpecPoller, andOpenApiToolLoaderfor managing API specifications and tool synchronization. - Added
CatalogHandlerfor exposing HTTP catalog of actions from OpenAPI sources.
Changed
- Enhanced
BrokerSessionto include deadline management and partial error reporting. - Improved session cancellation handling and progress event emissions.
Fixed
- Fixed session state transitions to handle race conditions more robustly.
v2.12.0
Release v2.12.0
Release type: stable
Release line: 2.12.x
Branch: release/2.12.x
Published Packages
@enclave-vm/core@2.12.0@enclave-vm/types@2.12.0@enclave-vm/stream@2.12.0@enclave-vm/broker@2.12.0@enclave-vm/client@2.12.0@enclave-vm/react@2.12.0@enclave-vm/runtime@2.12.0@enclave-vm/ast@2.12.0
[2.12.0] - 2026-02-25
Added
- Introduced a new
@enclave-vm/browserlibrary for browser sandbox runtime using double iframe isolation. - Added a browser demo application with React integration for showcasing Enclave's capabilities.
- Implemented Playwright e2e tests for
@enclave-vm/browser.
Changed
- Updated
@enclave-vm/ast,@enclave-vm/broker,@enclave-vm/stream, and other core modules to version 2.12.0.
Security
- Enhanced sandbox security with improved blocking mechanisms for
eval()and object constructor access.
Fixed
- Fixed client disconnect handling in streaming demos for Node 20+, ensuring proper cleanup.
v2.11.1
Release v2.11.1
Release type: stable
Release line: 2.11.x
Branch: release/2.11.x
Published Packages
@enclave-vm/core@2.11.1@enclave-vm/types@2.11.1@enclave-vm/stream@2.11.1@enclave-vm/broker@2.11.1@enclave-vm/client@2.11.1@enclave-vm/react@2.11.1@enclave-vm/runtime@2.11.1@enclave-vm/ast@2.11.1
[2.11.1] - 2026-02-22
Added
- Introduced
coercion-utils.tsin@enclave-vm/ast, which provides utilities for detecting JavaScript coercion patterns in AST nodes.
Changed
- Enhanced
disallowed-identifier.rule.tsandno-global-access.rule.tsto leverage new static key coercion detection fromcoercion-utils. - Improved detection of computed property key expressions that resolve to disallowed identifiers.
Fixed
- Fixed potential issues where certain coercion patterns were not detected, improving the security guard against CVE vulnerabilities.
v2.11.0
Release v2.11.0
Release type: stable
Release line: 2.11.x
Branch: release/2.11.x
Published Packages
@enclave-vm/core@2.11.0@enclave-vm/types@2.11.0@enclave-vm/stream@2.11.0@enclave-vm/broker@2.11.0@enclave-vm/client@2.11.0@enclave-vm/react@2.11.0@enclave-vm/runtime@2.11.0@enclave-vm/ast@2.11.0
[2.11.0] - 2026-02-20
Added
- Introduced
additionalDisallowedIdentifiersin@enclave-vm/astfor additional code safety. - Implemented a function to handle array-coered strings in
disallowed-identifier.rule.ts.
Changed
- Updated
@enclave-vm/*package dependencies to version2.11.0. - Improved handling of configuration scripts and object neutralization in
VmAdapterandParentVmBootstrap.
Fixed
- Resolved configuration and enumeration issues in memory tracking and sandbox adapter properties.
Security
- Enhanced security by neutralizing dangerous static methods on the intrinsic Object constructor to avoid prototype pollution.
- Defense-in-depth improvements: Removed host callbacks after capturing within sandbox scripts.
v2.10.1
Release v2.10.1
Release type: stable
Release line: 2.10.x
Branch: release/2.10.x
Published Packages
@enclave-vm/core@2.10.1@enclave-vm/types@2.10.1@enclave-vm/stream@2.10.1@enclave-vm/broker@2.10.1@enclave-vm/client@2.10.1@enclave-vm/react@2.10.1@enclave-vm/runtime@2.10.1@enclave-vm/ast@2.10.1
[2.10.1] - 2026-02-03
Security
- Introduced hardening against CVE-2023-29017 by implementing enhanced prototype freezing and error encapsulation within
parent-vm-bootstrap.ts. - Added resource exhaustion rule to
@enclave-vm/astto prevent computed access via dangerous string coercion.
Acknowledgments
- Thanks to @cristianstaicu (Endor Labs Security Research Team) for responsibly disclosing GHSA-x39w-8vm5-5m3p.
Changed
- Replaced template literals with string concatenation in
vm-adapter.tsandworker-script.tsto mitigate potential code injection risks. - Updated
minimatch,zod, and@babel/standalonedependencies to newer versions for better compatibility.
Fixed
- Addressed potential memory leaks by ensuring proper event handler binding and detachment in
worker-pool-adapter.ts.
Added
- New
build-worker-scripttarget tolibs/core/project.jsonfor optimized worker script builds using esbuild. - Added runtime prototype verification before user code execution to further enhance security validation.
v2.10.0
Release v2.10.0
Release type: stable
Release line: 2.10.x
Branch: release/2.10.x
Published Packages
@enclave-vm/core@2.10.0@enclave-vm/types@2.10.0@enclave-vm/stream@2.10.0@enclave-vm/broker@2.10.0@enclave-vm/client@2.10.0@enclave-vm/react@2.10.0@enclave-vm/runtime@2.10.0@enclave-vm/ast@2.10.0
[2.10.0] - 2026-02-01
Changed
- Reorganized library structure by renaming libraries for better consistency:
ast-guardis now@enclave-vm/astenclavejs-brokeris now@enclave-vm/brokerenclavejs-clientis now@enclave-vm/client- Other corresponding paths and references have been updated accordingly.
v2.9.2
Release v2.9.2
Release type: stable
Release line: 2.9.x
Branch: release/2.9.x
Published Packages
@enclave-vm/core@2.9.2@enclave-vm/types@2.9.2@enclave-vm/stream@2.9.2@enclave-vm/broker@2.9.2@enclave-vm/client@2.9.2@enclave-vm/react@2.9.2@enclave-vm/runtime@2.9.2@enclave-vm/ast@2.9.2
[2.9.2] - 2026-01-30
Added
- Introduced support for NDJSON streaming with encryption via
@enclave-vm/stream. - Added React hooks and components in
@enclave-vm/reactfor enhanced integration.
Fixed
- Resolved bugs in the
@enclave-vm/clientSDK for improved browser and Node.js compatibility.
Security
- Enhanced CVE protection within
ast-guardfor better threat detection.
v2.9.1
Release v2.9.1
Release type: stable
Release line: 2.9.x
Branch: release/2.9.x
Published Packages
@enclave-vm/core@2.9.1@enclave-vm/types@2.9.1@enclave-vm/stream@2.9.1@enclave-vm/broker@2.9.1@enclave-vm/client@2.9.1@enclave-vm/react@2.9.1@enclave-vm/runtime@2.9.1@enclave-vm/ast@2.9.1
[2.9.1] - 2026-01-30
Changed
- No specific changes detailed in this release cycle.
Fixed
- General stability improvements and minor bug fixes.