CHANGELOG · CRYPTOGRAPHIC EVIDENCE CUSTODY · v0.9 SERIES

Platform evolution ledger.

Every meaningful change to the Déjà platform — engineering, spec, integration, security, patent. Each release is anchored to specific work and tagged for scanability. Tracked by Heads of Risk, CISOs, audit-firm technologists, and security teams at firms operating under SOC 2 Type II, ISO 27001, NYDFS Part 500, DORA, or SR 11-7 — change history is itself an audit deliverable, and verifying the running version matches the audited version is part of every audit engagement at firms such as KPMG, Deloitte, EY, PwC, BDO, Grant Thornton, and independent firms. The v0.9 series is the pre-1.0 release ledger; the v1.0 milestone is the public-stability target. Subscribe via email to receive new releases as they ship.

v0.9 series · pre-1.0 release ledger. Public release ledger begins with v0.9.0. Earlier development versions are internal. The v1.0 milestone is the public-stability target — it locks DSR/1.0 v1.0 spec, freezes the receipt schema, and triggers SOC 2 Type II report issuance. v0.9 releases are forward-compatible with v1.0.

v0.9.5

LATEST
·commit: 98775ab·tag: v0.9.5

Phase 4 write-path migration complete (all 13 providers), integration hardening, and the publication of the Status and Integrations Directory pages. Audit ledger enforcement strengthened at the storage layer.

[INFRA]
Phase 4 write-path migration: All 13 integration providers migrated to new persistence layer. Migration complete.
[INTEGRATION]
New Relic upstream connector latency improvements. Validation pass against customer beta cohort completed.
[SECURITY]
Cross-tenant isolation enforcement strengthened at the row-level security layer. Audit pass: 0 findings.
[DOCS]
Status page and Integrations Directory published. deja_status.html and deja_integrations.html resolved from data-todo placeholders.
[SPEC]
DSR/1.0 v0.9 verifier CLI compatibility validated against backward-compat test suite. Forward-compat behavior confirmed for v0.9 → v1.0 receipt verification path.

v0.9.4

·tag: v0.9.4

Trust gate composition formalized. Receipt signature canonicalization documented. System Documentation reference page published with the dual-density (anchored + placeholder) approach.

[SPEC]
Trust gate composition formalized: strict-AND, single-failure-halt. FAIL_POLICY: silent — gate failures log to audit ledger, never propagate as customer alerts.
[SPEC]
Receipt signature canonicalization documented in signature.fields_signed array. Modifying any signed field invalidates the receipt and is detectable offline.
[INTEGRATION]
ServiceNow connector promoted to Beta. Customer validation cohort onboarding begins. Authentication mode: OAuth.
[DOCS]
System Documentation published. 9 anchored sections (Core concepts, Data model, Normalization, Validation orchestrator, Lifecycle, Integration specs, Security, Change management, Glossary) + 6 sections marked "documentation in progress" with explicit forward-looking previews.
[SECURITY]
Append-only audit ledger DB-level trigger enforcement deployed. UPDATE and DELETE permissions revoked at role level. Schema-enforced via triggers in addition to application-layer guards.

v0.9.3

·tag: v0.9.3

DSR/1.0 v0.9 specification frozen for the charter customer cohort. Verifier CLI v1.1.0 pre-release build available — npm publication planned for public release Q3 2026. Cross-tenant isolation hardening completes.

[SPEC]
DSR/1.0 v0.9 frozen for charter customer cohort. No spec field changes will occur in remaining v0.9.x releases — only additions in MINOR versions per change management policy.
[SPEC]
dsr-verifier-cli v1.1.0 pre-release build available. Standalone receipt verification, no Déjà platform dependency. Apache-2.0 licensed. npm publication planned for public release Q3 2026.
[SECURITY]
Cross-tenant isolation hardening: row-level security policies applied to all customer-data tables. Storage-layer enforcement now matches application-layer guards.
[DOCS]
Integration spec finalized for first 5 Live providers: Datadog, Sentry, GitHub, Slack, PagerDuty. Webhook payloads, authentication modes, and signature contracts documented.
[PERF]
Webhook ingestion path latency target published: 54ms p99. SLO commitment, not measurement — live measurement begins after 90-day production telemetry baseline.

v0.9.2

·tag: v0.9.2

CIP patent application filed covering cryptographic receipt generation and append-only ledger. The Engine page (architectural proof) published.

[PATENT]
Continuation-in-part application filed March 19, 2026. Claims 25–31 cover cryptographic receipt generation procedure and append-only ledger enforcement. Builds on provisional 19/430,349 (filed Dec 2025).
[SECURITY]
Cryptographic receipt generation finalized: Ed25519 sealed at issuance. Receipt signing key rotation schedule documented. Tenant-scoped key derivation deployed.
[INFRA]
Append-only ledger schema migration applied. audit_log table enforces append-only via DB triggers in addition to revoked role permissions.
[SPEC]
R2-F (fix-confirmed) and R2-R (recurrence) receipt classes documented in DSR/1.0 spec. Adds the resolution side of the attribution lifecycle.
[DOCS]
The Engine page published. Documents the four-phase SDE pipeline, AST_Parser, CCS Math Engine (W1–W8 weights), receipt anatomy, and trust gate composition.

v0.9.1

·tag: v0.9.1

Codebase audit completion sprint. 20 LLM/OpenAI dependencies removed from the attribution path — the engine is now strictly deterministic, consistent with the "no magic, just math" claim. Health score: 9.7 / 10.

[INFRA]
Codebase health audit completion sprint: 9.7 / 10 score reached. 12-section audit covered architecture, security, types, error handling, persistence, and dependency posture.
[INFRA]
20 LLM/OpenAI dependencies removed from attribution path. Engine is now deterministic-only. Resolves contradiction with "no magic, just math" brand claim.
[SECURITY]
Exposed-credential scan completed. 0 findings across all repository history and live config.
[SECURITY]
Unauthenticated route audit completed. 0 findings. All ingest paths require HMAC-verified signatures or scoped tokens.
[SECURITY]
Cross-tenant leak vector audit completed. 0 findings. RLS policies and signing-key isolation verified independently.
[DOCS]
Public reporting begins on the Status page. 90-day uptime grid initialized.

v0.9.0

·tag: v0.9.0 · initial

Public release ledger begins. DSR/1.0 v0.9 published. Charter customer cohort onboarding begins. First 5 Live and 4 Beta integrations available.

[SPEC]
DSR/1.0 v0.9 specification published. Apache-2.0 licensed. Defines receipt schema, signing procedure, classification thresholds (0.80 / 0.90), and verifier CLI exit-code semantics.
[SPEC]
Public release ledger initiated. v0.9 series numbering begins. v1.0 reserved for spec-stability + SOC 2 Type II issuance.
[INTEGRATION]
First 5 first-party integrations Live: Datadog, Sentry, GitHub, Slack, PagerDuty. Production-validated against charter cohort.
[INTEGRATION]
First 4 Beta integrations: New Relic, GitLab, Jira, ServiceNow. Customer validation in progress.
[INFRA]
Charter customer cohort onboarding begins. Up to 15 founding seats, $30K/year pricing locked for life, DSR/1.0 working group seat.
[PATENT]
Non-provisional continuation-in-part (CIP) application 19/430,349 filed December 2025. This is the non-provisional CIP of 18/668,178 — not the SDE provisional. Covers Schema Deduction Engine and CCS scoring methodology.