Skip to content

Release v0.7.0

Latest
Latest

Choose a tag to compare

View all tags
@github-actions github-actions released this 18 Dec 23:32
· 24 commits to main since this release
v0.7.0
db43dec

What's Changed

Other Changes

  • docs: add pr description length guidance to agents.md by @Copilot in #93
  • feat: write exit code to stderr on process termination by @Copilot in #95
  • feat: add cosign signing for docker images in release pipeline by @Copilot in #89
  • feat: run agent container processes as non-root user by @Copilot in #90
  • fix: use version from package.json in cli by @Copilot in #91
  • test: add smoke testing by @Mossaka in #97

Full Changelog: v0.6.0...v0.7.0

CLI Options

Usage: awf [options] [command] [args...]

Network firewall for agentic workflows with domain whitelisting

Arguments:
  args                                           Command and arguments to execute (use -- to separate from options)

Options:
  -V, --version                                  output the version number
  --allow-domains <domains>                      Comma-separated list of allowed domains. Supports wildcards:
                                     github.com        - exact domain + subdomains
                                     *.github.com      - any subdomain of github.com
                                     api-*.example.com - api-* subdomains
  --allow-domains-file <path>                    Path to file containing allowed domains (one per line or comma-separated, supports # comments)
  --log-level <level>                            Log level: debug, info, warn, error (default: "info")
  --keep-containers                              Keep containers running after command exits (default: false)
  --tty                                          Allocate a pseudo-TTY for the container (required for interactive tools like Claude Code) (default: false)
  --work-dir <dir>                               Working directory for temporary files (default: "/tmp/awf-1766100732533")
  --build-local                                  Build containers locally instead of using GHCR images (default: false)
  --image-registry <registry>                    Container image registry (default: "ghcr.io/githubnext/gh-aw-firewall")
  --image-tag <tag>                              Container image tag (default: "latest")
  -e, --env <KEY=VALUE>                          Additional environment variables to pass to container (can be specified multiple times) (default: [])
  --env-all                                      Pass all host environment variables to container (excludes system vars like PATH, DOCKER_HOST) (default: false)
  -v, --mount <host_path:container_path[:mode]>  Volume mount (can be specified multiple times). Format: host_path:container_path[:ro|rw] (default: [])
  --container-workdir <dir>                      Working directory inside the container (should match GITHUB_WORKSPACE for path consistency)
  --dns-servers <servers>                        Comma-separated list of trusted DNS servers. DNS traffic is ONLY allowed to these servers (default: 8.8.8.8,8.8.4.4) (default: "8.8.8.8,8.8.4.4")
  --proxy-logs-dir <path>                        Directory to save Squid proxy logs to (writes access.log directly to this directory)
  -h, --help                                     display help for command

Commands:
  logs [options]                                 View Squid proxy logs from current or previous runs

Installation

Binary Installation (Recommended)

Linux (x64):

curl -L https://github.com/githubnext/gh-aw-firewall/releases/download/v0.7.0/awf-linux-x64 -o awf
chmod +x awf
sudo mv awf /usr/local/bin/

NPM Installation (Alternative)

# Install from tarball
npm install -g https://github.com/githubnext/gh-aw-firewall/releases/download/v0.7.0/awf.tgz

Requirements

  • Docker and Docker Compose must be installed
  • For iptables manipulation, run with sudo: sudo awf ...
  • Container images will be pulled automatically from GHCR on first run

Verification

Verify checksums after download:

sha256sum -c checksums.txt

Quick Start

# Basic usage with domain whitelist
sudo awf --allow-domains github.com,api.github.com -- curl https://api.github.com

# Pass environment variables
sudo awf --allow-domains api.github.com -e GITHUB_TOKEN=xxx -- gh api /user

# Mount additional volumes
sudo awf --allow-domains github.com -v /my/data:/data:ro -- cat /data/file.txt

# Set working directory in container
sudo awf --allow-domains github.com --container-workdir /workspace -- pwd

See README.md for full documentation.

Container Images

Published to GitHub Container Registry:

  • ghcr.io/githubnext/gh-aw-firewall/squid:0.7.0
  • ghcr.io/githubnext/gh-aw-firewall/agent:0.7.0
  • ghcr.io/githubnext/gh-aw-firewall/squid:latest
  • ghcr.io/githubnext/gh-aw-firewall/agent:latest

Image Verification

All container images are cryptographically signed with cosign for authenticity verification.

# Verify image signature
cosign verify \
  --certificate-identity-regexp 'https://github.com/githubnext/gh-aw-firewall/.*' \
  --certificate-oidc-issuer 'https://token.actions.githubusercontent.com' \
  ghcr.io/githubnext/gh-aw-firewall/squid:0.7.0

For detailed instructions including SBOM verification, see docs/image-verification.md.

Contributors

Mossaka
Assets 5
Loading