Skip to content

TaipanStack v0.4.0 Release Notes

Release Date: March 24, 2026

Version 0.4.0 consolidates the project by introducing enterprise resilience pillars. It is the largest architectural patch developed by the core team that encapsulates faulty external connections. The package expands the tool's native immunization by adding dynamic Self-learning layers (Machine Learning base parameters) over Circuits.

See interactive documentation at: Features.

🌉 Taipan Bridges

A plug-and-play modular ecosystem that injects resilience by design into the classic tools of the asynchronous ecosystem. * Imports Bridge (_imports.py): Lazy initialization returning safe encapsulations based on the Result Monad. * HTTP Bridge (http_bridge.py): SafeHttpClient client based on HTTPX. Embedded SSRF protection and natively connected to our retry mechanism and circuit breaker. * DB Bridge (db_bridge.py): Protective proxy for SQLAlchemy ACID Sessions and Redis async pools ensuring reconnection without bottlenecking event-loops. * Web Bridge (web_bridge.py): Implements the ASGI edge middleware TaipanMiddleware from scratch. Rate limits requests (Rate Limit Token Bucket), exposes native restrictive CSPs (Content Security Policies) headers, and standardizes non-leaking HTTP Error JSON outputs.

🐕 Watchdogs (Active Monitoring)

A parallel network of dedicated proactive auto-observability components. * HealthPinger: Resides in a cluster and attempts short background pings on infrastructures. If there is no return, it preemptively forces the web routes database circuit breaker to open. * ResourceWatcher: Monitors psutil defining alert windows or request throttling based on actual RAM and CPU %. * ConfigWatcher: Extracts encrypted hashes from .env or static files to signal manipulations or force reboots if secrets mutate.

🌌 Adaptive Resilience

Dynamic structural stabilization components. * AdaptiveCircuitBreaker: Replaces static numeric tolerances. This circuit monitors successes and failures in a rolling window and inflates or decreases its punishment threshold depending on how degraded the infrastructure is at the time. * AdaptiveRetry: Monitors the effectiveness of exponential backoff to adapt sleep latencies in the asyncio engine. * Bulkhead: Creates concurrency limit gates with a defined maximum queue, isolating excessive loads from the HTTP pipeline. * ResilienceOrchestrator: The new supreme object designed under the Builder Pattern that attaches Bulkheads -> Adaptive Circuits -> Numeric Retries -> Physical Timeouts -> Fallback Data in __call__ methods in a single stroke.

🛡️ Security / Performance / Quality (PR Integrations)

Version 0.4.0 also successfully absorbed and integrated over 30 tactical audit contributions, consolidating: * Hash Algorithm Hardening: Hardened guard_hash_algorithm against potential Enum input bypass mechanisms (PR #318). * SAST Code Auditing: Injected new custom Semgrep rules (.semgrep/taipanstack-rules.yml) to actively identify Insecure YAML loads and obsolete cryptographic digest algorithms (PR #326). * DoS Mitigation: Corrected a glaring vulnerability where a massive hash could overflow the Bcrypt library, invoking the fatal OverflowError stack error in password validation (PR #307). * Sanitize Filename: Execution speed of the sanitize_filename routine was significantly optimized for I/O intensive routines (PR #322). * Strict Type-Hinting: All utility signatures with native Coroutine / Any classes were standardized to Awaitable, ensuring total Mypy linter silence for devs (PR #323). * Edge Tests: Created additional test cases predicting contextual @retry Decorator interruption returns, expanding library stability (PR #327). * Massive Closure: Cleanly closed 26 obsolete Pull Requests, essentially encompassing transient legacy Circuit Breaker Concurrency bugs that caused Thundering Herd scenarios. The newly introduced v0.4.0 architecture natively encapsulated and blocked these structural anomalies.

🔐 Dependency Security Maintenance

The v0.4.0 release line also includes follow-up maintenance required by GitHub Actions and Dependabot: * Requests advisory remediated: the lockfile now resolves requests to 2.33.0, addressing the insecure temporary file reuse issue in extract_zipped_paths(). * Pygments advisory mitigated: Pygments remains pinned to 2.19.2, which is the newest upstream release currently available. The reported AdILexer ReDoS remains under monitoring until an upstream patched release exists. * Compatibility shims restored: legacy imports from taipanstack.utils.retry and taipanstack.utils.resilience now re-export the canonical taipanstack.resilience implementations without divergence. * CI hardening: Linux distro workflows now refresh package metadata more defensively and initialize the Arch keyring before full system upgrades.