🚀 Veritensor v1.9.1: Policy-as-Code, Improvements & Fixes
🔥 Major Features
🔄 Policy-as-Code Sync (GitOps)
CISOs can now manage global security thresholds, restricted licenses, and protected branches via version control.
By defining rules in a local veritensor.yaml file, developers can push the configuration directly to the Enterprise Control Plane. The server validates the YAML, updates the global database, and logs the action in the Immutable Audit Trail.
veritensor scan . --sync-policy --api-key "vt_..."📉 Smart Baseline & Silent Model Replacement
When running with --baseline, the CLI now fetches the exact threat history of the artifact from the Control Plane. It mathematically hides legacy noise, showing only newly introduced threats.
Crucially, it verifies the artifact's SHA-256 fingerprint against the baseline. If the fingerprint changes but the filename remains the same, the baseline is invalidated, protecting against Silent Model Replacement attacks.
🛠️ Improvements & Fixes
-
Multiprocessing Fix in BiasAggregator — Replaced
lambdafunctions with standard dictionaries to preventCan't pickle local objectcrashes during parallel dataset scanning. -
JSONL Single-Pass Parsing — Optimized
.jsonlingestion. The engine now extracts JSON keys for Toxic Column Detection and streams data for Prompt Injection scanning simultaneously in a single pass. -
SSRF Protection in Streaming — Completely rewrote
networking.py. Replaced globalsocket.getaddrinfomonkey-patching with a thread-safeurllib3custom connection creator. Prevents DNS Rebinding and SSRF attacks when downloading remote models. -
Safetensors Metadata Scanning — Added
.safetensorsand.gguftoHEAVY_EXTS. The CLI now routes these files to the Enterprise Server to scan embedded metadata fields for hidden prompt injections. -
Zero-Byte File Handling — The Enterprise Scanner integration now gracefully skips 0-byte files, preventing
411 Length Requirederrors from strict S3/MinIO storage backends.
🔄 How to Upgrade
pip install --upgrade "veritensor[all]"