All notable changes to the UnboxAPI Safety Proxy skeleton are recorded here. The format follows Keep a Changelog and this project adheres to Semantic Versioning.
- Initial public release of the safety-proxy / context-injection interface skeleton.
CallContext,HookResult,HookActiondataclasses / enum.SafetyHookandSafetyProxyProtocol definitions.LoggingHooktrivial reference hook (logs context; unconditional ALLOW).- README with prominent NOT PRODUCTION SAFETY banner.
- SECURITY.md with coordinated-disclosure policy.
- Threat-model memo (
docs/threat-model.md). - CODEOWNERS, CI workflow (gitleaks + semgrep + osv-scanner + mypy).
- Sigstore-signed release tag and CycloneDX SBOM.
- No production safety rules, classifiers, or prompt-injection detection.
- No spend-cap or quantity-cap enforcement.
- No external contributions accepted at this tag.