Changelog

All notable changes to the fluxrig project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

Phase 3: open & flexible logic

Version	Date	Status	Summary
Unreleased		Active	Sovereign Identity & Telemetry Hardening
v0.4.5	2026-04-29	Delivered	Documentation Hardening & Zero-Config
v0.4.4	2026-04-23	Delivered	Logic Extensibility & Secure Enrollment
v0.4.3	2026-02-19	Delivered	Operational Resilience & NATS V2
v0.4.2	2026-02-15	Delivered	Spec Management & E2E Automation
v0.4.1	2026-02-09	Delivered	Stateless Context & I/O Decoupling
v0.4.0	2026-02-01	Delivered	ISO8583 Native Gear & Telemetry QoS
v0.3.0	2026-01-21	Delivered	Bento Integration & Load Testing

Unreleased (v0.6.1-dev+b368db1-dev)

Added

[v0.5.0] - 2026-05-07

Changed

• Sovereign Identity Plane (v0.5.0 Foundation): Migrated the entire platform identity system to 128-bit UUID v7 (RFC 9562). This enhances entropy, ensures global uniqueness without centralized coordination, and provides time-ordered sequence integrity for high-performance storage indexes.
• Deduplication Logic: Updated NATS JetStream deduplication to utilize 128-bit identifiers, ensuring consistent exactly-once delivery across complex telemetry pipelines.
• Telemetry Hardening: Standardized dotted naming schema (e.g., fluxrig.gear.messages_in) across OTel, Prometheus, and DuckDB.

• Directional Monitoring: Split unified I/O counters into distinct Inbound and Outbound channels for precise protocol translation metrics.
• Resource Guardrails: Implemented mandatory MaxHops (64) and MaxPayloadSize (2MB) validation in fluxmsg to prevent bus exhaustion and "poison pill" scenarios.
• Concurrency Resilience: Integrated global PanicMiddleware to ensure Rack stability during individual Gear failures and hardened mutex locking for atomic hot-reloads.
• Mixer Reliability: Replaced fragile telemetry discovery with a robust recursive traversal engine, ensuring 100% visibility of historical Parquet data via the API.
• Certification & Core Test Hardening: Achieved 100% pass rate in critical certification shards (Mixer, PKI, ISO8583 IO).
• Certified Coverage: Consolidated core code coverage reached 60.1%.
• Enrollment Architecture: Implemented configuration-driven rack adoption with secure nonce-based passports.
• CBOR Migration: Transitioned internal wire-format to deterministic CBOR for 100% binary stability.
• Data-Plane Integrity: Enforced technical UTF-8 validation and hex-encoded binary metadata handling.
• IO Stabilization: Implemented robust connection polling and rate-limited background WAL replay.
• Security Hardening (CodeQL Certification):
  • Fixed high-severity path traversal in scenario management by implementing robust name sanitization.
  • Hardened TLS configuration in the snake server with CA-based client verification support.
  • Resolved integer overflow/truncation risks in telemetry ingestion and ISO8583 codecs.
  • Upgraded core dependencies (NATS Server v2.14, NATS Go v1.52) to address multiple upstream vulnerabilities.

CAUTION

DESTRUCTIVE CHANGE: This migration is a hard architectural break.

• Storage: Existing DuckDB databases (V3 and below) and cached .flux state files are incompatible with this version.
• API: REST handlers and NATS topics have transitioned from decimal integer IDs to standard UUID string representations.

v0.4.3 - 2026-02-19

Changed

• License Headers: Standardized all source files to SPDX format.

v0.4.2 - 2026-02-12

Added

• Spec & Scenario Manager: CAS-backed spec/scenario management with CLI (fluxrig spec, fluxrig scenario) and API integration.
• E2E Test Suite: Comprehensive test runner for spec lifecycle, API scenarios, and concurrent access.

Changed

• E2E Tests: Renamed from flat naming to numbered convention (01_simple/, 09_io_tcp/, etc.).
• Gear Rename: io_tcp → simple_tcp.

Removed

• Coat Check Gear: Removed in favor of Spec Manager pattern.
• Bus KV: Removed (~3,084 lines deleted across 63 files).

v0.4.1 - 2026-02-09

Added

• Coat Check Pattern: Implemented architectural pattern to handle "Detached State" during connection handovers.
• IO Refactor: Decoupled TCP connection management from protocol logic.

v0.4.0 - 2026-02-01

Added

• ISO8583 Native Gear (Alpha): First release of the high-performance payment switch gear.
• Telemetry Governor: Introduced QoS constraints for telemetry ingress to protect business traffic.

v0.3.0 - 2026-01-05

Added

• Bento Integration: Native support for the warpstreamlabs/bento ecosystem, enabling 100+ I/O connectors (AWS, SQL, Kafka, File).
• Load Testing Suite: Integrated e2e_load capabilities for stress testing.

Phase 2: core runtime

Version	Date	Status	Summary
v0.2.0	2025-12-28	Delivered	Observability Stack & TLS Foundations

v0.2.0 - 2026-01-08

Added

• Observability Stack: Full OTel integration (Metrics, Traces) with DuckDB backend.
• Configuration V2: Unified TOML-based configuration schema.
• TLS Support: Enabled mutual TLS for internal bus and HTTPS for management API.

Phase 1: architecture & foundation

Version	Date	Status	Summary
v0.1.0	2025-12-12	Delivered	Initial engine architecture and Snake Protocol

v0.1.0 - 2025-12-28

Added

• Foundation: Initial release of the 4-Repo Architecture.
• Snake Protocol: Secure tunneling implementation for Rack-to-Mixer connectivity.
• FluxMsg: Canonical JSON schema for inter-gear communication.