Commit Graph

  • c0b0671baa fix(report): omit SARIF provenance for multiple repos ssl-fixes bearsyankees 2026-07-10 09:34:58 -04:00
  • e53b0bd11f fix(ci): lower Linux release glibc baseline (#707) main Dustin Persek 2026-07-10 09:13:14 -04:00
  • 0bf992ecbf fix(logging): keep verbose openai.agents DEBUG off sandbox stdout (#704) Zizi 2026-07-10 13:00:40 +00:00
  • f7fa54c12d fix(container): allow configured Caido UI domains (#723) alex s 2026-07-10 00:38:29 -04:00
  • 8195e9753d fix(container): allow configured Caido UI domains ssl-main bearsyankees 2026-07-10 00:32:28 -04:00
  • e7fffb0721 fix(container): allow configured Caido UI domains ssl bearsyankees 2026-07-10 00:32:28 -04:00
  • b9994e2e0e fix(session): use HTTPS scheme for Caido endpoint if TLS is enabled (#722) alex s 2026-07-10 00:23:27 -04:00
  • 4523377b21 fix(session): use HTTPS scheme for Caido endpoint if TLS is enabled bearsyankees 2026-07-10 00:17:07 -04:00
  • 0fb005c73f fix(runtime): swallow torn-down docker socket in sandbox delete() (#721) seanturner83 2026-07-10 05:13:35 +01:00
  • e1940769de fix(providers): declare bedrock + vertex extras and add provider import-error hints (#588) Rome Thorstenson 2026-07-07 07:24:49 -07:00
  • 9f278b9a5c Add target list CLI option (#711) alex s 2026-07-06 23:33:08 -04:00
  • 2c470c9daa Handle target list comments and encoding errors agent/target-list bearsyankees 2026-07-06 23:29:01 -04:00
  • 7783fcac12 Add target list CLI option bearsyankees 2026-07-06 23:21:03 -04:00
  • 375fc9c3d0 feat(report): tag SARIF rules with STRIDE legs derived from CWE (#708) seanturner83 2026-07-07 02:19:53 +01:00
  • 754508c70b test: add report writer artifact tests (#667) Felix-Ayush 2026-07-06 21:15:29 +05:30
  • a5112f9433 fix(config): make env vars win over persisted JSON across all aliases (#689) sean-kim05 2026-07-06 08:36:41 -07:00
  • f28ebe3668 Update README (#705) Ahmed Allam 2026-07-06 07:38:52 -07:00
  • 90cab1bbe3 Add LLM Prompt Injection skill (vulnerabilities) (#616) Viper Droid 2026-07-06 13:52:24 +03:00
  • aec5f14455 fix(tui): show 'more content available' for view_request over 15 lines (#687) sean-kim05 2026-07-06 03:50:02 -07:00
  • 302efedca6 feat(report): SARIF 2.1.0 emitter for CI / code-scanning integration (#626) seanturner83 2026-07-03 15:43:31 +01:00
  • 7e808f7d34 Add five security skills: OAuth, AWS, prototype pollution, deserialization, Django (#617) Felix-Ayush 2026-07-03 09:45:53 +05:30
  • c3997cdb35 fix: report cost for streamed OpenRouter calls (#634) Sonai Biswas 2026-07-03 06:10:28 +02:00
  • 96cd61e458 some tools ads feat/add-security-skills bearsyankees 2026-07-03 00:07:59 -04:00
  • dc8b790cf8 fix: avoid note ID collisions (#630) Sadovoi Grigorii 2026-07-03 05:54:44 +03:00
  • 5a1e63aef7 fix grammer (#642) Chirag Singhal 2026-07-03 08:17:02 +05:30
  • e6ca4d2be6 fix(report): correct csv_path indentation in write_vulnerabilities (#637) Alex Schapiro 2026-07-02 15:23:51 -04:00
  • 639ce5b31a fix(report): correct csv_path indentation in write_vulnerabilities devin/1783018814-fix-writer-indentation bearsyankees 2026-07-02 19:20:47 +00:00
  • 5ee34481fe Fix non-atomic CSV and MD writes to prevent corruption on crash (#628) (#631) ASTITVA BHARDWAJ 2026-07-02 20:23:30 +05:30
  • d84930d947 Clarify S3 existence vs public listing checks in aws skill Ayush7614 2026-07-02 20:14:13 +05:30
  • ff5b96ea40 Address Greptile review feedback on AWS and deserialization skills Ayush7614 2026-07-02 00:38:03 +05:30
  • 100f561e91 Add five community security skills for agent specialization Ayush7614 2026-07-02 00:35:15 +05:30
  • 870cc68dc3 docs: add Vale vocabulary for Strix product/security terms devin/1782843308-scarf-docs-pixel Devin AI 2026-06-30 18:27:22 +00:00
  • 1099eefedd docs: add Scarf usage-analytics pixel to docs + README Devin AI 2026-06-30 18:15:08 +00:00
  • f342808d2b test: add unit tests for config loader (strix/config/loader.py) (#596) Rome Thorstenson 2026-06-30 04:31:29 -07:00
  • f554523378 Remove collection of unhandled exception error messages from telemetry (#585) Dominic White 2026-06-30 04:22:06 +02:00
  • 69e82f0258 chore(deps): refresh uv.lock to latest compatible versions (#606) Ahmed Allam 2026-06-29 19:10:18 -07:00
  • 52ca641679 Update readme (#607) Ahmed Allam 2026-06-29 19:09:58 -07:00
  • 60d68d85f3 Readme update Ahmed Allam 2026-06-29 19:00:46 -07:00
  • 777005a42b fix: stop gracefully with resume hint on persistent RateLimitError (#261) (#593) Rome Thorstenson 2026-06-29 07:31:54 -07:00
  • 8cdf0683a3 fix(core): collapse child agent initial input into a single user message (#589) Rome Thorstenson 2026-06-29 06:51:47 -07:00
  • 4c9f56fcd5 Expand frontier LLM model recommendations devin/1782479089-llm-model-warning Devin AI 2026-06-26 16:32:54 +00:00
  • 8ca83e4c16 Tighten frontier model warning checks Devin AI 2026-06-26 13:19:09 +00:00
  • 94c361cbb6 Warn for non-frontier LLM selections Devin AI 2026-06-26 13:10:50 +00:00
  • 7141ccff62 Support large target repos with with bind-mount option. (#577) Mads Hvelplund 2026-06-22 18:41:42 +02:00
  • 962d4459d9 Add configurable token / cost usage limits (#576) Mads Hvelplund 2026-06-22 17:17:08 +02:00
  • 11e5d1c2b3 fix: route ollama models through ollama_chat so tool calling works (#562) Rudra Dudhat 2026-06-16 06:09:21 +05:30
  • cc23eeb65d Bump 1.0.3 -> 1.0.4 (#557) v1.0.4 Ahmed Allam 2026-06-09 09:41:44 -07:00
  • 7217abfe23 Strip ANSI escapes and control bytes from terminal tool output (#554) Ahmed Allam 2026-06-09 09:22:50 -07:00
  • f7e3af49bd Strip all images from session on vision-rejection, not just the latest (#553) Ahmed Allam 2026-06-09 02:48:30 -07:00
  • 6202131028 Swallow sandbox container races in the stream consumer (#552) Ahmed Allam 2026-06-09 01:46:23 -07:00
  • 45409cef0d Make TUI quit instant by SIGKILL-ing the sandbox container (#548) Ahmed Allam 2026-06-08 23:40:45 -07:00
  • 250fe2cf3e Bump 1.0.2 -> 1.0.3 (#537) v1.0.3 Ahmed Allam 2026-06-08 18:05:02 -07:00
  • 6c99829325 Simplify cost ledger to one bucket (#531) Ahmed Allam 2026-06-08 15:56:28 -07:00
  • 1c9ab993bb Use observed LiteLLM cost for LiteLLM-routed calls (#529) Ahmed Allam 2026-06-08 15:01:48 -07:00
  • 04eb03febe Gate Reasoning(effort=...) on registry support (#528) Ahmed Allam 2026-06-08 13:18:07 -07:00
  • ac0fef2ed7 Show "Send message to resume" on the left of the status bar (#525) Ahmed Allam 2026-06-07 17:41:06 -07:00
  • dcf3155a9a Use function-tool schema for non-reasoning OpenAI models 0xallam 2026-06-08 03:17:23 +03:00
  • 36b374bd1b Bump litellm 1.83.7 -> 1.88.0 0xallam 2026-06-08 02:46:28 +03:00
  • 1a329e8972 Suppress LiteLLM stdout banner spam 0xallam 2026-06-08 02:38:49 +03:00
  • 143b9e7040 Pre-warm-up unknown-model warning + LiteLLM streaming hardening 0xallam 2026-06-08 02:12:56 +03:00
  • 3665a7899f Strip model-aware branches from LLM configuration 0xallam 2026-06-08 01:30:21 +03:00
  • 232711be8c Stop exposing litellm/ prefix in user-facing model names 0xallam 2026-06-08 01:03:29 +03:00
  • 712c64f630 Drop tool_choice for registry-unknown reasoning-effort runs 0xallam 2026-06-08 00:18:44 +03:00
  • dee2a03d07 Hint at provider prefix when bare model 401s against OpenAI 0xallam 2026-06-08 00:11:49 +03:00
  • 1473fc7336 Use validate_environment to resolve provider env var 0xallam 2026-06-07 22:58:48 +03:00
  • dd1f816f7c Cover bare claude-/gemini- shorthands in env mirror 0xallam 2026-06-07 22:51:09 +03:00
  • 9ab70c6d61 Mirror LLM_API_KEY to provider env var (closes #504) 0xallam 2026-06-07 22:42:03 +03:00
  • 13046cc74a fix: gate reasoning_effort by LiteLLM model registry (closes #517) (#523) Ahmed Allam 2026-06-07 12:24:48 -07:00
  • 1aad460f6e fix: SDK tracing leak + orphan docker on TUI quit (closes #512) (#522) Ahmed Allam 2026-06-07 11:28:06 -07:00
  • d0321510d2 fix: reasoning models reject tool_choice=required; bump to 1.0.2 (closes #503, #505) (#508) v1.0.2 Ahmed Allam 2026-05-28 11:55:10 -07:00
  • 3bd9d56814 fix: PyInstaller bundle is broken (missing agents SDK data + wrongly excluded gql); bump to 1.0.1 (#502) v1.0.1 Ahmed Allam 2026-05-26 20:04:01 -07:00
  • 63faecd3b5 Strix v1.0.0 release v1.0.0 Ahmed Allam 2026-05-26 14:42:13 -07:00
  • d50827c2d4 Merge origin/main into harness-migration 0xallam 2026-05-26 14:30:30 -07:00
  • 9c20a8f911 Bump to 1.0.0 0xallam 2026-05-26 14:15:25 -07:00
  • 8414c59557 Strip narrative comments and module/helper docstrings 0xallam 2026-05-26 14:02:40 -07:00
  • 054eedf53f Tighten tool surface consistency 0xallam 2026-05-26 12:16:47 -07:00
  • 763df86f17 Collapse todo tools to a single list-based form 0xallam 2026-05-25 23:51:08 -07:00
  • d3ab3f836b Add TUI renderers for the seven previously-unstyled tools 0xallam 2026-05-25 23:22:56 -07:00
  • 393548c6e8 Add Scarf telemetry alongside PostHog 0xallam 2026-05-25 23:22:01 -07:00
  • 867a0c81fc Document the SDK-provided tools as stub dirs under strix/tools/ 0xallam 2026-05-25 22:23:14 -07:00
  • 8ed5311b8e Surface the previously-undocumented sandbox tools and unbreak two of them 0xallam 2026-05-25 22:02:15 -07:00
  • c88b2bbb99 Stabilize agent-browser launch and screenshot routing 0xallam 2026-05-25 21:28:36 -07:00
  • 565fd70d08 Drop prescriptive guidance from image-rejection placeholder 0xallam 2026-05-25 17:28:37 -07:00
  • 7e117bc500 Auto-recover when the provider rejects a view_image output 0xallam 2026-05-25 17:23:20 -07:00
  • a451766d97 Restore load_skill + surface skill catalog in system prompt 0xallam 2026-05-25 15:02:24 -07:00
  • 418eedcd41 Clean up SDK shell tool failure modes 0xallam 2026-05-25 14:05:42 -07:00
  • fdd8b71f4e Stop web_search from leaking upstream details into tool results 0xallam 2026-05-25 02:13:43 -07:00
  • 4f62adf820 Agents graph sweep: status taxonomy, stop_agent safety, skill validation 0xallam 2026-05-25 01:35:57 -07:00
  • 136e2e6ac2 Document HTTPQL footguns on list_requests 0xallam 2026-05-25 00:29:27 -07:00
  • a51e7820f9 Restore sitemap tools + unify proxy I/O contract 0xallam 2026-05-25 00:23:46 -07:00
  • 5921fec16c Proxy tool sweep: drop send_request, fix Caido SDK gotchas 0xallam 2026-05-24 19:16:06 -07:00
  • 940319f28a Align note IDs with todo IDs (6-char hex) 0xallam 2026-05-24 18:10:57 -07:00
  • bdc3c5470e Tighten todo + think tool contracts 0xallam 2026-05-24 16:58:09 -07:00
  • 2380cf55cb feat: add HTTP request smuggling skill (#405) Sandiyo Christan 2026-05-21 07:15:16 +05:30
  • dc395316ae Add Docker sandbox host mappings (#488) Chethas Dileep 2026-05-19 14:19:22 +05:30
  • 6b9bd4d5f2 Fix MiniMax tool calling (#456) n1majne3 2026-05-04 10:49:18 +08:00
  • e1f38f8339 perf(agent): wake on state change instead of 500ms polling (#305) Bala 2026-05-04 03:30:41 +01:00
  • 6942ecb33e add empty-array IDOR FP and OAST source-IP SSRF FP signals (#183) Jorge Moya 2026-05-03 20:19:57 -05:00
  • 8574119f4d Add SSTI and Header Injection vulnerability skills (#191) Modark 2026-05-04 04:54:04 +04:00
  • 67050d9133 fix(llm): include system prompt tokens in memory compressor budget (#381) 0xhis 2026-05-03 16:26:34 -07:00