§ CHANGELOG
What's new in Execlave
Governance policy types, SIEM exporters, SDK releases, and platform hardening — the latest changes to the Execlave AI agent governance platform.
- June 2026
SIEM exporters + compliance PDF export
- ▸New OpenTelemetry (OTLP), Splunk HEC, and Microsoft Sentinel trace exporters — stream every agent trace to your SIEM, off the enforcement path.
- ▸SIEM credentials are envelope-encrypted (AES-256-GCM) at rest, never stored as plaintext.
- ▸Compliance evidence packages now export as signed PDF, alongside HTML and JSON.
- ▸New public EU AI Act overview mapping Execlave to the high-risk (Annex III) obligations — dated 2 August 2026, with a proposed Omnibus postponement to December 2027.
- June 2026sdk-js / sdk-python v1.4.0 · cli v1.1.0
HMAC request signing + federated policy export
- ▸Optional HMAC request signing across the JS and Python SDKs — replay-safe, opt-in request authentication.
- ▸Signed, portable policy export/verify and a federation export endpoint for multi-environment policy sync.
- ▸Built-in policy types expanded to 19, covering tool integrity, response groundedness, OPA Rego, and agent lineage.
- May–June 2026
Enforcement hardening
- ▸Audit-log atomicity and hash-chain hardening; append-only immutability enforced at the database trigger level.
- ▸Prompt-injection ReDoS guards and a semantic-classifier circuit breaker.
- ▸Approval-workflow TOCTOU fix and per-namespace enforcement rate limiting.
- ▸Multilingual prompt-injection and PII detection across 13 languages.
- May 2026sdk-js / sdk-python v1.2.0
Framework integrations + tool-integrity governance
- ▸SDK integrations for LlamaIndex, MCP, OpenAI, and AutoGen.
- ▸Tool-integrity governance: baseline expected tools and detect drift in agent tool usage.
- ▸Per-evaluator enforcement modes (monitor / warn / require approval / block) with configurable failure modes.
§ DETAILS
Per-package release notes
The SDKs and CLI ship their own versioned CHANGELOGs in the repository; this page summarizes platform-level changes.