Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
47 commits
Select commit Hold shift + click to select a range
bf9df15
Merge pull request #60 from InnerWarden/development
maiconburn Apr 6, 2026
c04360c
chore(deps): bump redis from 1.1.0 to 1.2.0
dependabot[bot] Apr 6, 2026
ca74bfb
chore(deps): bump redb from 3.1.1 to 4.0.0
dependabot[bot] Apr 6, 2026
eb62bd0
chore(deps): bump libc from 0.2.183 to 0.2.184
dependabot[bot] Apr 6, 2026
89a1a85
docs: rewrite README hero, fix numerical inconsistencies, add compari…
maiconburn Apr 6, 2026
11decf0
fix: update collectors count 20 → 22 in gym README
maiconburn Apr 6, 2026
e81994d
fix: use fixed daytime timestamp in suspicious_login test
maiconburn Apr 6, 2026
6347d25
Merge pull request #61 from InnerWarden/dependabot/cargo/redis-1.2.0
maiconburn Apr 6, 2026
3c1df02
Merge remote-tracking branch 'origin/main' into dependabot/cargo/redb…
maiconburn Apr 6, 2026
d556860
Merge pull request #62 from InnerWarden/dependabot/cargo/redb-4.0.0
maiconburn Apr 6, 2026
033cf8a
Merge remote-tracking branch 'origin/main' into dependabot/cargo/libc…
maiconburn Apr 6, 2026
3b95e3d
chore(deps): bump tree-sitter from 0.26.7 to 0.26.8
dependabot[bot] Apr 6, 2026
2029cdf
chore(deps): bump fancy-regex from 0.14.0 to 0.17.0
dependabot[bot] Apr 6, 2026
460b9c0
Merge pull request #63 from InnerWarden/dependabot/cargo/libc-0.2.184
maiconburn Apr 6, 2026
d18a7c3
Merge pull request #64 from InnerWarden/dependabot/cargo/tree-sitter-…
maiconburn Apr 6, 2026
8792896
Merge pull request #65 from InnerWarden/dependabot/cargo/fancy-regex-…
maiconburn Apr 6, 2026
f18f5d0
feat: consolidate satellite modules into workspace + dashboard UX ove…
maiconburn Apr 6, 2026
6beefad
fix: dashboard broken JS from script tag inside template literal
maiconburn Apr 6, 2026
df8e4e5
fix: remove duplicate esc() declaration that broke dashboard JS
maiconburn Apr 6, 2026
85eb264
fix: allow dashboard actions over HTTP when auth is configured
maiconburn Apr 7, 2026
22f2596
feat: operator IP protection — never block active trusted SSH sessions
maiconburn Apr 7, 2026
c84e72b
fix: use publickey auth method for operator IP detection
maiconburn Apr 7, 2026
58ad615
Merge pull request #74 from InnerWarden/feat/consolidate-satellite-mo…
maiconburn Apr 7, 2026
3ab8ed1
fix: remove unused Duration import in killchain tracker
maiconburn Apr 7, 2026
36ccc9d
Merge branch 'feat/consolidate-satellite-modules'
maiconburn Apr 7, 2026
01358d2
feat: neural model advisory-only — observe but never block or notify
maiconburn Apr 7, 2026
9c9b75d
release: v0.9.4 — consolidated workspace + neural advisory mode
maiconburn Apr 7, 2026
991d1cc
fix: CI security checks — remove stale advisory, fix license
maiconburn Apr 7, 2026
059fb08
fix: suppress clippy lints in migrated crates, update yanked russh
maiconburn Apr 7, 2026
cf92e1c
fix: update Cargo.lock — downgrade russh from yanked 0.58.1 to 0.58.0
maiconburn Apr 7, 2026
26b673a
fix: CI — add io_other_error clippy allow, re-add RUSTSEC-2026-0074 i…
maiconburn Apr 7, 2026
daf7b03
fix: CI — use clippy::all allow for migrated crates, ignore notify ad…
maiconburn Apr 7, 2026
edbd56b
fix: hypervisor timing asm — rbx is reserved by LLVM
maiconburn Apr 7, 2026
d304b55
fix: resolve 4 clippy lints from Rust 1.94
maiconburn Apr 7, 2026
e8587d2
style: cargo fmt — format all migrated and new files
maiconburn Apr 7, 2026
a975557
fix: release — allow openclaw Docker build to fail without blocking
maiconburn Apr 7, 2026
62416b1
fix: live feed shows only real external attacks with attacker IP
maiconburn Apr 7, 2026
5ea6fba
fix: live feed uses rolling 24h window (today + yesterday)
maiconburn Apr 7, 2026
efdd00a
style: cargo fmt
maiconburn Apr 7, 2026
d42c348
fix(ctl): change responder dry_run arg from Option<String> to Option<…
maiconburn Apr 7, 2026
181727a
fix(agent): prevent auto-block gates from blocking operator/trusted IPs
maiconburn Apr 7, 2026
4227463
feat(agent): dynamic operator IP protection with session-based expiry
maiconburn Apr 7, 2026
b6849ef
feat(ctl): restructure CLI from 40 commands to 8 intent-based groups
maiconburn Apr 7, 2026
5306612
fix(agent): reduce notification spam — 3 critical fixes
maiconburn Apr 7, 2026
69860fe
style: cargo fmt ctl
maiconburn Apr 7, 2026
4fc6019
style: cargo fmt telegram
maiconburn Apr 7, 2026
c85f8fa
style: cargo fmt agent main.rs
maiconburn Apr 7, 2026
File filter

Filter by extension

Filter by extension


Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
1 change: 1 addition & 0 deletions .github/workflows/release.yml
Original file line number Diff line number Diff line change
Expand Up @@ -240,6 +240,7 @@ jobs:
maiconburn/innerwarden-agent:${{ steps.version.outputs.version }}

- name: Build and push agent-openclaw image
continue-on-error: true # OpenClaw upstream may break; don't block the release
uses: docker/build-push-action@v6
with:
context: docker
Expand Down
8 changes: 6 additions & 2 deletions CLAUDE.md
Original file line number Diff line number Diff line change
Expand Up @@ -6,10 +6,14 @@ Sensor (eBPF) + Agent (AI triage) + CTL (CLI). Open source (Apache-2.0).

```
crates/
sensor/ 49 detectors, 40 eBPF hooks, 20 collectors
sensor/ 49 detectors, 40 eBPF hooks, 22 collectors
agent/ AI pipeline, dashboard, skills, correlation, notifications
ctl/ CLI: setup, configure, scan, harden, upgrade
agent-guard/ AI agent protection (ATR rules, MCP inspection)
smm/ Ring -2 firmware/UEFI/SMM security audit (migrated from standalone repo)
hypervisor/ Ring -1 hypervisor security — VM detection, KVM monitoring (migrated from standalone repo)
killchain/ Kill chain detection — 8 attack patterns via bitmask tracking (migrated from standalone repo)
dna/ Threat DNA — behavioral fingerprinting, anomaly detection, MITRE chain tracking (migrated from standalone repo)
core/ Shared types: Event, Incident, Severity
sensor-ebpf/ eBPF bytecode (no_std, bpfel target)
sensor-ebpf-types/ Shared eBPF ↔ userspace types
Expand All @@ -32,7 +36,7 @@ make replay-qa # validacao E2E

## Estado (2026-04-04)

- 49 detectors, 40 eBPF hooks, 65 MITRE IDs, 40 correlation rules (CL-001 to CL-040, includes 5 AlphaZero V4 discoveries)
- 49 detectors, 40 eBPF hooks, 65 MITRE IDs, 43 correlation rules (CL-001 to CL-043, includes 5 AlphaZero V4 discoveries + 3 hypervisor rules)
- Server producao: ver config local (nao expor no repo publico)
- Branches: main = stable, develop = bleeding edge
- CI: `make check` + `make test` + `make spec-check`
Expand Down
Loading