Releases: reglet-dev/reglet
Releases · reglet-dev/reglet
Reglet v0.4.5-alpha
Reglet v0.4.5-alpha - Alpha Release
Infrastructure compliance validation with WASM plugins.
What's New in v0.2.0-alpha
- ✅ WASM Plugin Runtime - Sandboxed execution with wazero
- ✅ 6 Built-in Plugins - file, command, http, dns, tcp, smtp
- ✅ Fine-grained Capabilities - Permission system for plugin safety
- ✅ Multiple Output Formats - Table, JSON, YAML, JUnit, SARIF
- ✅ Profile System - OSCAL-aligned declarative configuration
- ✅ 7 Example Profiles - Quick start templates included
- ✅ Multi-platform Support - Linux, macOS, Windows (amd64/arm64)
Installation
Homebrew (macOS/Linux):
brew install reglet-dev/tap/regletDocker:
docker pull ghcr.io/reglet-dev/reglet:v0.4.5-alphaManual Download:
Download the appropriate archive for your platform below, extract and move to your PATH.
⚠️ Alpha Status
This is an early alpha release. APIs may change. Not recommended for production use.
See roadmap for planned features.
Changelog
Features
- 528a911: feat(cli): add CLI variable overrides (--set, --set-file, --set-env) (#35) (@whiskeyjimbo)
- 6cf70b2: feat(remote-profiles): add profile trust, pull, list, prune and outdated (#38) (@whiskeyjimbo)
- d8a3e2c: feat: Implement remote profile fetching with check command (mvp) (#36) (@whiskeyjimbo)
Bug Fixes
- fb0edd3: fix: dns plugin expecting int instead of string for port caused capabilities to fail (@whiskeyjimbo)
- 523049d: fix: remove replace in go.mod (@whiskeyjimbo)
Documentation
- 1f074e1: docs: update CHANGELOG for v0.4.0-alpha (@github-actions[bot])
- 7dee564: docs: update readme (@whiskeyjimbo)
Other Changes
- 68e21d7: Revise version numbers and feature checklists (@whiskeyjimbo)
- 05f5bf7: Update version status in README.md (@whiskeyjimbo)
- 24ce187: chore(deps)(deps): bump github.com/theupdateframework/go-tuf/v2 (#39) (@dependabot[bot])
Full Changelog: https://github.com/reglet-dev/reglet/commits/v0.4.5-alpha
Contributors
whiskeyjimbo and dependabot
Assets 13
Reglet v0.4.0-alpha
Reglet v0.4.0-alpha - Alpha Release
Infrastructure compliance validation with WASM plugins.
Installation
Docker:
docker pull ghcr.io/reglet-dev/reglet:v0.4.0-alphaManual Download:
Download the appropriate archive for your platform below, extract and move to your PATH.
⚠️ Alpha Status
This is an early alpha release. APIs may change. Not recommended for production use.
See roadmap for planned features.
Changelog
Features
- 596763c: feat(cli): add reglet init command with interactive wizard (#33) (@whiskeyjimbo)
- 856119b: feat(loops): add loop functionality with shared utilities and test optimizations (@whiskeyjimbo)
- 356f1f8: feat: Enable remote plugin distribution using OCI registries (@whiskeyjimbo)
- 72f3512: feat: add dry-run validation with plan (@whiskeyjimbo)
- 08f132c: feat: add env variable security tiers and capability grants (@whiskeyjimbo)
- 309cced: feat: add watch mode for continuous monitoring (#32) (@whiskeyjimbo)
- f90f276: feat: impelement reglet validate command for pre-flight validation (@whiskeyjimbo)
Bug Fixes
- 7ec8ab7: fix: Fix another race condition in redactor (@whiskeyjimbo)
- f9e814f: fix: address integer overlow issue in secret matching (@whiskeyjimbo)
- 6079ab0: fix: command plugin error (@whiskeyjimbo)
- 0537504: fix: enforce max request size before mem allocation (@whiskeyjimbo)
- b9a2add: fix: ensure correct cache invalidation for secret matcher (@whiskeyjimbo)
- 7c90787: fix: fix race condition in redactor.go walkthrough (@whiskeyjimbo)
- 9136b77: fix: loop items and regular items had different evidence settings (@whiskeyjimbo)
- 387e0c5: fix: observation total, details flag not working properly (@whiskeyjimbo)
- 2f56c17: fix: prevent path traversal in plugin config (@whiskeyjimbo)
- b6fcb47: fix: ssrf vulnerabilty 0.0.0.0 (@whiskeyjimbo)
- 0289b1b: fix: stack overflow risk in cycle detection (@whiskeyjimbo)
Performance
- 7221abb: perf: optimize redactor performance with aho-corasick (@whiskeyjimbo)
Full Changelog: https://github.com/reglet-dev/reglet/commits/v0.4.0-alpha
Contributors
whiskeyjimbo
Assets 13
Reglet v0.3.5-alpha
Reglet v0.3.5-alpha - Alpha Release
Infrastructure compliance validation with WASM plugins.
Installation
Homebrew (macOS/Linux):
brew install reglet-dev/tap/regletDocker:
docker pull ghcr.io/reglet-dev/reglet:v0.3.5-alphaManual Download:
Download the appropriate archive for your platform below, extract and move to your PATH.
⚠️ Alpha Status
This is an early alpha release. APIs may change. Not recommended for production use.
See roadmap for planned features.
Changelog
Features
- 356f1f8: feat: Enable remote plugin distribution using OCI registries (@whiskeyjimbo)
- 08f132c: feat: add env variable security tiers and capability grants (@whiskeyjimbo)
Bug Fixes
- 7ec8ab7: fix: Fix another race condition in redactor (@whiskeyjimbo)
- f9e814f: fix: address integer overlow issue in secret matching (@whiskeyjimbo)
- 28858d4: fix: command plugin error (@whiskeyjimbo)
- 0537504: fix: enforce max request size before mem allocation (@whiskeyjimbo)
- b9a2add: fix: ensure correct cache invalidation for secret matcher (@whiskeyjimbo)
- 7c90787: fix: fix race condition in redactor.go walkthrough (@whiskeyjimbo)
- 2f56c17: fix: prevent path traversal in plugin config (@whiskeyjimbo)
- b6fcb47: fix: ssrf vulnerabilty 0.0.0.0 (@whiskeyjimbo)
- 0289b1b: fix: stack overflow risk in cycle detection (@whiskeyjimbo)
Documentation
- 035694d: docs: update CHANGELOG for v0.3.0-alpha (@github-actions[bot])
Performance
- 7221abb: perf: optimize redactor performance with aho-corasick (@whiskeyjimbo)
Other Changes
- b1941ef: Apply suggested fix to internal/infrastructure/wasm/runtime.go from Copilot Autofix (#15) (@whiskeyjimbo)
- b796562: Apply suggested fix to internal/infrastructure/wasm/runtime.go from Copilot Autofix (#17) (@whiskeyjimbo)
- ad018a0: Potential fix for code scanning alert no. 3: Size computation for allocation may overflow (#21) (@whiskeyjimbo)
- 9309265: Potential fixes for 2 code quality findings (#13) (@whiskeyjimbo)
- 429a06e: Potential fixes for 3 code quality findings (#16) (@whiskeyjimbo)
- ea243b8: Potential fixes for 4 code quality findings (#11) (@whiskeyjimbo)
- b991428: Update versioning and status information in README (@whiskeyjimbo)
Full Changelog: https://github.com/reglet-dev/reglet/commits/v0.3.5-alpha
Contributors
whiskeyjimbo
Assets 13
Reglet v0.3.0-alpha
Reglet v0.3.0-alpha - Alpha Release
Infrastructure compliance validation with WASM plugins.
What's New in v0.3.0-alpha
- Profile inheritance (extends: field)
- Lockfile for reproducible plugin versions (reglet.lock)
- Retry and backoff for resilient execution
- Secret management (env/files/local resolution)
- Evidence artifacts and size limits (size, count)
- Global timeout
Installation
Docker:
docker pull ghcr.io/reglet-dev/reglet:v0.3.0-alphaManual Download:
Download the appropriate archive for your platform below, extract and move to your PATH.
⚠️ Alpha Status
This is an early alpha release. APIs may change. Not recommended for production use.
See roadmap for planned features.
Changelog
Features
- 8af0513: feat: add global timeout with cancellation (@whiskeyjimbo)
- 709204e: feat: add retry and backoff (@whiskeyjimbo)
- 066b31e: feat: add secret resolution and sensitive data protection (@whiskeyjimbo)
- 777772a: feat: implement lockfile for plugins (@whiskeyjimbo)
- 632a736: feat: implement max evidence size limits. (@whiskeyjimbo)
- 15932c9: feat: profile inheritance (@whiskeyjimbo)
Bug Fixes
- 0e5b299: fix: fix codeql builds with a non-wasm stub (@whiskeyjimbo)
- b6fecf2: fix: lint/tests for lockfile were broken (@whiskeyjimbo)
- 15621dd: fix: linting workflow (@whiskeyjimbo)
- a049f7f: fix: race condition in execute (@whiskeyjimbo)
Documentation
- 7905ecd: docs: Update badge in README (@whiskeyjimbo)
- 2ec0fb0: docs: notes on homebrew not being available for pre-release (@whiskeyjimbo)
- caa2175: docs: update CHANGELOG for v0.2.0-alpha (@github-actions[bot])
- 1b90864: docs: update README (@whiskeyjimbo)
- 69a10ae: docs: update README (@whiskeyjimbo)
Other Changes
- 227c1ae: Modify CodeQL workflow for Go manual build (@whiskeyjimbo)
- adea233: Potential fix for code scanning alert no. 1: Workflow does not contain permissions (#9) (@whiskeyjimbo)
- 4019d3f: Potential fixes for 2 code quality findings (#10) (@whiskeyjimbo)
- cbf1f1e: Update golangci-lint version format in CI config (@whiskeyjimbo)
- 7e1f00b: chore(ci)(deps): bump actions/cache from 4 to 5 in /.github/workflows (#8) (@dependabot[bot])
- 9601e59: chore(ci)(deps): bump actions/setup-go from 5 to 6 in /.github/workflows (#7) (@dependabot[bot])
- 9492942: chore(ci)(deps): bump actions/upload-artifact in /.github/workflows (#6) (@dependabot[bot])
Full Changelog: https://github.com/reglet-dev/reglet/commits/v0.3.0-alpha
Contributors
whiskeyjimbo and dependabot
Assets 13
Reglet v0.2.0-alpha
Reglet v0.2.0-alpha - Alpha Release
Infrastructure compliance validation with WASM plugins.
What's New in v0.2.0-alpha
- ✅ WASM Plugin Runtime - Sandboxed execution with wazero
- ✅ 6 Built-in Plugins - file, command, http, dns, tcp, smtp
- ✅ Fine-grained Capabilities - Permission system for plugin safety
- ✅ Multiple Output Formats - Table, JSON, YAML, JUnit, SARIF
- ✅ Profile System - OSCAL-aligned declarative configuration
- ✅ 7 Example Profiles - Quick start templates included
- ✅ Multi-platform Support - Linux, macOS, Windows (amd64/arm64)
Installation
Homebrew (macOS/Linux):
brew install reglet-dev/tap/regletDocker:
docker pull ghcr.io/reglet-dev/reglet:v0.2.0-alphaManual Download:
Download the appropriate archive for your platform below, extract and move to your PATH.
⚠️ Alpha Status
This is an early alpha release. APIs may change. Not recommended for production use.
See roadmap for planned features.
Changelog
Features
- 2382c7e: feat(capabilities): add Grant entity (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- a6b3249: feat(capabilities): add Policy domain service (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 762c787: feat(capabilities): extract FileStore infrastructure (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- f5d5d4b: feat(capabilities): extract TerminalPrompter infrastructure (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- c269b6e: feat(capabilities): move capability value object to domain (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 0cbd843: feat(cleanup): remove deprecated config files and update tests (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 7eae787: feat(cli): add CLI entry point and version package (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- d5604af: feat(cli): add check command with output format (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- ae779ef: feat(cli): improve table output formatting with colors and better evidence display (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 968991f: feat(command): add more outputs for command plugin (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- ed4d3ac: feat(config): implement profile configuration loader (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- fdf8a0a: feat(config): update config package to use domain entities (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 66ef097: feat(domain): add ControlFilter service (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- af50a60: feat(domain): add DependencyResolver service (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 0895ce7: feat(domain): add StatusAggregator service (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 02149bb: feat(domain): adding domain entities (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 3ef428e: feat(domain): complete Phase 3 entity enrichment (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- aa2edba: feat(domain): complete tactical DDD refactoring (Phase 1) (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- bed93f3: feat(domain): enrich entities with behavior (Phase 3) (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 4a74bea: feat(domain): implement Phase 2 Value Objects (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- f8ec98f: feat(domain): implement Repository Interfaces and Engine integration (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 1cf386a: feat(domain): implement StatusAggregator service (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 2062936: feat(domain): integrate ControlFilter service (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 99cc911: feat(domain): update services to use domain entities (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 171af2b: feat(engine): add owner field to filter expression environment (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 0e2bdc7: feat(engine): add parallel execution with configurable concurrency (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 9872d0f: feat(engine): add thread-safe result aggregation for parallel execution (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- f089096: feat(engine): implement tag and severity filtering (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 1511e43: feat(file): update file plugin with detailed metadata and hash support (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 1059b55: feat(http): add more outputs (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- e6cd0ec: feat(http): add sha256 for http body and configurable output length (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 9b3a9a7: feat(infra): add yaml profile loader (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 86cbcb2: feat(infra): move config logic to infrastructure (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 0329b40: feat(main): complete file wasm with end-to-end functionality (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- dad03ce: feat(network): support port ranges (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- e729c43: feat(output): add formatters for table, JSON, and YAML (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 4fc871d: feat(output): add junit output (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 528dfa0: feat(output): add sarif output support (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 159cacd: feat(plugin): add file plugin proof-of-concept (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 3d4afee: feat(plugin): define WIT interface for plugin contract (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 02f4e6f: feat(plugin/file): implement file plugin with Go 1.25 wasmexport (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- b8c1b09: feat(plugins): add DNS, HTTP, and TCP WASM plugins with host function integration (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- aeeb68b: feat(plugins): add more outputs for dns, file, tcp plugins (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 3e46bc0: feat(plugins): add plugin generator and development infrastructure (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- f5679ed: feat(redaction): add salt support for hash mode (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 9bd18d7: feat(redaction): implement evidence redaction system (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 3ee0bde: feat(redaction): switch to gitleaks library (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 134406f: feat(sdk): add custom error types for better error handling (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 864e218: feat(sdk): add explicit HTTP body size validation (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 6e602fa: feat(sdk): add go sdk to simplify plugin development (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- a615c33: feat(sdk): add version checking documentation and memory limits (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 11a2627: feat(sdk): implement context propagation throughout SDK (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 9da9cb2: feat(smtp): add smtp plugin (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- b893644: feat(wasm): Add various hostfunctions (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 892e31e: feat(wasm): implement WASM runtime with wazero (whiskeyjimbo 15094606+whiskeyjimbo@users.noreply.github.com)
- 34e775f: feat(wasm): implement full ca...