Release 0.6.0: version bump and installation docs#30
Merged
Conversation
Update workspace version and all inter-crate dependency versions from 0.5.0 to 0.6.0. Add clear installation instructions (crates.io, from source, verify) to all CLI tool READMEs and `cargo add` sections to library crate READMEs. Reorganize root README Getting Started with explicit install paths and add tap-mcp to CLI tools listing. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
pelle
added a commit
that referenced
this pull request
Feb 22, 2026
* Bump version to 0.6.0 and improve installation docs across all READMEs Update workspace version and all inter-crate dependency versions from 0.5.0 to 0.6.0. Add clear installation instructions (crates.io, from source, verify) to all CLI tool READMEs and `cargo add` sections to library crate READMEs. Reorganize root README Getting Started with explicit install paths and add tap-mcp to CLI tools listing. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Add crypto-p256 and crypto-secp256k1 to tap-agent default features Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Add comprehensive 0.6.0 changelog entries Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Add release documentation update requirements to CLAUDE.md Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Update changelogs with TAIP-18, TAIP-15, TAIP-3 and decision CLI changes Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Update happy-dom to v20 to fix critical VM escape vulnerability Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * bump a few deps --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com>
pelle
added a commit
that referenced
this pull request
Feb 22, 2026
* Update security audit with comprehensive findings across all crates Full static analysis of tap-agent, tap-msg, tap-node, tap-http, tap-mcp, tap-wasm, tap-cli, tap-caip, tap-ivms101, and tap-ts packages. 47 findings: 1 critical (SQL injection in MCP), 9 high, 18 medium, 14 low, 5 informational. Includes prioritized remediation roadmap. https://claude.ai/code/session_01ALedUuACxHFYsgqVp1vjJa * Release 0.6.0: version bump and installation docs (#30) * Bump version to 0.6.0 and improve installation docs across all READMEs Update workspace version and all inter-crate dependency versions from 0.5.0 to 0.6.0. Add clear installation instructions (crates.io, from source, verify) to all CLI tool READMEs and `cargo add` sections to library crate READMEs. Reorganize root README Getting Started with explicit install paths and add tap-mcp to CLI tools listing. Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Add crypto-p256 and crypto-secp256k1 to tap-agent default features Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Add comprehensive 0.6.0 changelog entries Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Add release documentation update requirements to CLAUDE.md Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Update changelogs with TAIP-18, TAIP-15, TAIP-3 and decision CLI changes Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * Update happy-dom to v20 to fix critical VM escape vulnerability Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com> * bump a few deps --------- Co-authored-by: Claude Opus 4.6 <noreply@anthropic.com> * Fix security vulnerabilities identified in audit Address 14 findings from the security audit across all severity levels: Critical: SQL injection in MCP database tools via table name interpolation High: SQL read-only filter bypass (add PRAGMA query_only=ON), internal error details leaked to HTTP clients, missing request body size limit, unbounded agent creation, NaN/Infinity in financial amount validation Medium: Fail-open authorization validator, DID path traversal, panicking unwrap on DB deserialization, LIKE pattern injection, external process tool responses not returned to caller Low: Panic on missing home directory, hand-rolled URL encoding https://claude.ai/code/session_01ALedUuACxHFYsgqVp1vjJa --------- Co-authored-by: Claude <noreply@anthropic.com>
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Summary
@taprsvp/agentnpm package)cargo installfrom crates.io, from source, verify, prerequisitescargo addsectionstap-mcpto CLI listing, added library and TypeScript SDK sectionsTest plan
cargo fmt --all --checkpassesRUSTFLAGS="-D warnings" cargo clippy --workspace --all-targets --releasepassescargo buildcompiles all 10 crates at v0.6.0🤖 Generated with Claude Code