Skip to main content

Release History

Release notes are published on GitHub alongside each tagged release.

View releases on GitHub
Stable version
v0.12.8
Current wire format
interaction-record+jwt (stable)
Legacy wire format
peac-receipt/0.1 (frozen)
License
Apache-2.0

Recent Highlights

v0.12.8Apr 10, 2026
  • Go 1.26 SDK with Wire 0.2 parity (sign, verify, policy binding)
  • Python API-first proof (FastAPI middleware, evidence endpoints)
  • Hosted Issue alpha (BYO-key, provisional, disabled by default)
  • Managed Agents session evidence summary demo
  • Cross-language conformance vectors and CI parity
  • 35 packages, 7,241 tests, 219 conformance requirement IDs, 97 targets
v0.12.7
  • x402 V2 complete adapter (Layers A+B+C)
  • DID resolution adapter (did:key, did:web, caching)
  • A2A OAuth PKCE with Device Code types
  • gRPC carrier adapter with real SHA-256 receipt_ref
  • receipt_url resolution middleware with semaphore
  • in-toto v1.0 and SLSA v1.2 provenance mappings (2 new packages)
  • ERC-8128 conformance fixtures
  • 4 spec profile docs, 27 conformance requirement IDs
  • 35 packages, 7,241 tests, 219 conformance IDs, 95 targets
v0.12.5
  • Per-rail conformance parity: 40 execution-backed fixtures, 4 manifests
  • Cross-rail settlement equivalence and asymmetric safety invariant
  • AmountMinorStringSchema and isValidAmountMinor()
  • Commerce integration matrix
  • 59 package READMEs with kernel template
  • Security: path-to-regexp >=8.4.0, handlebars audit allowlist
  • 29 packages, 6,915 tests, 92 targets
v0.12.4
  • Commerce evidence across paymentauth, ACP, x402, and Stripe SPT
  • New package: @peac/mappings-paymentauth
  • x402 v2 dual-header read with upstream artifact separation
  • ACP session lifecycle evidence with explicit payment state
  • Experimental commerce bundle (peac.commerce-bundle/0.1-experimental)
  • 29 packages, 6,664 tests, 361 conformance requirements
v0.12.3
  • A2A v1.0.0 dual-version transition normalizer
  • MCP Registry published
  • Evaluator quickstarts and integration kits
  • AIPREF version constants exported
v0.12.2
  • 12 typed extension groups with schema validation
  • 10 type-to-extension mappings with strict/interop enforcement
  • 9 pillar usage profiles as document overlays
  • Commerce event field (6-value closed enum)
  • Codegen pipeline for registries
v0.12.1
  • x402 adapter with four-layer architecture
  • 5-layer verification API with opt-in crypto
  • Security dependency updates (undici, hono)
  • README rewrite
v0.12.0
  • Interaction Record format stable release (interaction-record+jwt)
  • 28 packages published on npm
  • CodeQL security-extended analysis
v0.12.0-preview.2
  • Release manifest and coherence gate
  • Wire 0.1 isolation
  • EAT passport adapter
  • Quality gates hardening
v0.12.0-preview.1
  • Wire 0.2 format (interaction-record+jwt)
  • 2-kind architecture (evidence and challenge)
  • JOSE hardening (reject embedded keys, crit, zip)
  • Policy binding with JCS (RFC 8785) and SHA-256
v0.11.3
  • Zero Trust Profile Pack: 7 sub-profiles as document overlays
  • Agent Identity: ActorBinding with 8 proof types and MVIS
  • Key rotation lifecycle: 5-state FSM with 30-day overlap
  • Reconcile CLI: peac reconcile for receipt reconciliation
  • Treaty extension: 4-level commitment_class
v0.11.2
  • Error recovery next_action hints: 7-value closed vocabulary
  • Content Signals observation model: 3-state allow/deny/unspecified
  • Evidence Carrier receipt_url locator hint (HTTPS-only)
  • Plugin Pack distribution contract for agent surfaces
  • MCP Registry JSON Schema validation for distribution
v0.11.1
  • Evidence Carrier Contract: PeacEvidenceCarrier + CarrierAdapter types
  • Transport size limits: MCP/A2A/UCP 64 KB, ACP/x402/HTTP 8 KB
  • receipt_ref = sha256(receipt_jws) with extraction verification
  • 3-step discovery: Agent Card, well-known, header probe
v0.11.0
  • Zod 4 migration (^4.3.6) across all packages
  • MCP Streamable HTTP transport with session isolation (CVE-2026-25536 defense)
  • Kernel constraint enforcement pipeline: fail-closed in issue() and verify()
  • Integrator kit with conformance harness for third-party implementations
v0.10.14
  • Conformance fixture versioning with schema_version field
  • Kernel constraints specification (KERNEL-CONSTRAINTS.md)
  • Editorial hygiene sweep and Zod 4 preparation
v0.10.13
  • @peac/mcp-server: open-source MCP tool server with 5 tools (verify, inspect, decode, issue, bundle)
  • Capability-based access control with structured outputs
  • Unicode scanner CLI regression tests, audit allowlist hardening, path-safety portable hardening
v0.10.12
  • @peac/capture-node: FileSpoolStore and FileDedupeIndex for durable Node.js capture
  • OpenClaw adapter: one-call activate() for Cloudflare Workers with generateSigningKey() and peac-keygen CLI
  • RFC 9421 proof capture profile with 5 conformance vectors
v0.10.11
  • @peac/rails-stripe: fromCryptoPaymentIntent() for x402 crypto payments
  • Registry v0.3.0 with interaction extension and toolcall advisory registries
  • @noble/ed25519 v3 upgrade (signAsync/verifyAsync API)
  • Supply chain hardening: SECURITY.md, audit gate, lockfile drift detection
v0.10.10
  • Dev toolchain improvements
  • Build system optimization