Skip to content

Release Notes โ€” v0.3.7 (2026-03-09)

๐ŸŽฏ Overview

Version v0.3.7 focuses on high-performance execution of security decorators and strengthened robustness of internal utility guards. This release significantly reduces the computational overhead of path traversal checks and function signature binding while expanding test coverage for critical edge cases.

๐Ÿš€ Key Improvements

โšก Performance & Efficiency

  • Signature Caching: Security decorators now cache function signatures, drastically improving performance for high-frequency validated calls.
  • Optimized Path Traversal: Refactored guard_path_traversal to use pre-lowercased string evaluations and efficient frozenset lookups for traversal patterns.

๐Ÿ›ก๏ธ Security & Robustness

  • Critical Path Fix: Patched a high-severity path traversal bypass involving symlink resolution in guard_path_traversal (PR #150).
  • Command Existence: Improved internal check logic to prevent failures when environment commands are missing or incorrectly configured.
  • Extension Normalization: Explicit validation and normalization logic for file extensions to prevent case-sensitivity bypasses.

๐Ÿ› ๏ธ Technical Changes

Refactoring & Code Health

  • Unified Exceptions: Extracted duplicated RetryError logic into a reusable internal component.
  • Code Cleanup: Removed redundant internal comments across the utility layer to improve code readability for developers.

๐Ÿงช Documentation & Quality

  • Coverage Expansion: Integrated new property-based and edge-case tests for filesystem guards.
  • CI/CD Alignment: All checks (Safety, Bandit, MyPy, and 100% Coverage) verified for the new performance implementations.

[!TIP] This version is fully backward compatible with the v0.3.x series. Upgrading is highly recommended for applications making intensive use of TaipanStack's security decorators.