chore(main): release 0.6.0

.release-please-manifest.json

@@ -1,3 +1,3 @@
 {
-  ".": "0.5.0"
+  ".": "0.6.0"
 }

CHANGELOG.md

@@ -1,5 +1,78 @@
 # Changelog
 
+## [0.6.0](https://github.com/gemini-cli-extensions/security/compare/v0.5.0...v0.6.0) (2026-04-01)
+
+
+### Features
+
+* add  folder to contain artifacts ([e03b2c6](https://github.com/gemini-cli-extensions/security/commit/e03b2c60d7b0ca3256533125175f43c9758236ce))
+* Add basic poc command functionality to the MCP server ([2f533fd](https://github.com/gemini-cli-extensions/security/commit/2f533fdb65368aa64219bd772d0228f73b544c36))
+* add folder to contain security artifacts ([2fe3588](https://github.com/gemini-cli-extensions/security/commit/2fe35888d5cff981c88ef31fae3daf39c6a695ef))
+* add poc skill ([461a9c0](https://github.com/gemini-cli-extensions/security/commit/461a9c0370cf2aa224f246ac88cfe8bc1566ec18))
+* Add preamble to security scan to make confirms user's decision to use command or manual security auditing ([67658d5](https://github.com/gemini-cli-extensions/security/commit/67658d587472be8283bc5aa00864429786bd1500))
+* Add privacy specific taxonomy ([#84](https://github.com/gemini-cli-extensions/security/issues/84)) ([46b3eb0](https://github.com/gemini-cli-extensions/security/commit/46b3eb037d7e9f7c2f8f56c68ba91520c0207719))
+* add tooling for defining the audit scope ([1730bbb](https://github.com/gemini-cli-extensions/security/commit/1730bbb9c2437921198e495a31d9703fbfb07244))
+* **GHA workflows:** Add run-gemini-cli GHA workflows to repo PR's ([facc88b](https://github.com/gemini-cli-extensions/security/commit/facc88be48db43b3b8482ff6a6d19d34fd0513e1))
+* **GitHub Action:** Add /security:github-pr command for use with run-gemini-cli GitHub Action ([59db0ad](https://github.com/gemini-cli-extensions/security/commit/59db0add3f6aee54821570725f1c33859c24bc4d))
+* implement security patching as a gemini CLI Skill and tool combo ([985037a](https://github.com/gemini-cli-extensions/security/commit/985037a4d1024712ce05f424f3061b5378a7ad5f))
+* migrate initial template ([6e71cc4](https://github.com/gemini-cli-extensions/security/commit/6e71cc405040cd733207fb2130fba732c10e4481))
+* migrate initial template ([7c5d56e](https://github.com/gemini-cli-extensions/security/commit/7c5d56ed68511bb906650ae9fe37403a96e9920c))
+* output security reports as JSON when requested ([#138](https://github.com/gemini-cli-extensions/security/issues/138)) ([83406c2](https://github.com/gemini-cli-extensions/security/commit/83406c2299eb71272e9e54505639938342298c07))
+* **release:** include skills directory in release assets ([#153](https://github.com/gemini-cli-extensions/security/issues/153)) ([153719a](https://github.com/gemini-cli-extensions/security/commit/153719a59a4023bce0becdc02ba48bbabd7bc86b))
+* Support basic Python and Go PoCs to be generated by the PoC command ([ce973f0](https://github.com/gemini-cli-extensions/security/commit/ce973f01194feaa93ec89f2c0bf024bee85ff45f))
+* Support JSON output `codeSuggestions` Field [wip] ([#139](https://github.com/gemini-cli-extensions/security/issues/139)) ([d005c90](https://github.com/gemini-cli-extensions/security/commit/d005c90e5c86154b2c356619f472939848a94f5a))
+* Use problem statements in the PoC function to allow for more flexible usage ([a0449d3](https://github.com/gemini-cli-extensions/security/commit/a0449d3baddc9833bdca68af91eca27446c83c2c))
+
+
+### Bug Fixes
+
+* Add baseline and post patch test suite verification to security_patcher, add Go and Java checks to dependency manager ([754b3c4](https://github.com/gemini-cli-extensions/security/commit/754b3c47b9c567719650f0c2a8aeef6cca199b6b))
+* add experimental tag and securiy prefix to poc prompt ([d52c8ca](https://github.com/gemini-cli-extensions/security/commit/d52c8cac0a4bea20b15c3fc1f3f6b622c08dae0b))
+* add file creation to run_poc to allow for all encompassing post patch verification runs ([56961de](https://github.com/gemini-cli-extensions/security/commit/56961de9ccfb5ebd84de1e580d514b9f7c651a60))
+* add language that suggests to skip if note doesnt exist ([e0f60ea](https://github.com/gemini-cli-extensions/security/commit/e0f60ea96da86bf12f272c7c7b3f5c75b1bec113))
+* add license header to poc test file ([6bc9bf9](https://github.com/gemini-cli-extensions/security/commit/6bc9bf9a327a5957d870c75acc4e1f998338a89e))
+* Add License to security fix tests, remove old npm dependency function ([a60faff](https://github.com/gemini-cli-extensions/security/commit/a60faff2cbfe3095825d4cd2149723058196aee2))
+* Add source code location as parmater to our PoC command (it increases success rate and decreases token usage) ([07a1e07](https://github.com/gemini-cli-extensions/security/commit/07a1e07e215b592f261e6d58b6b98a9e8bf86c31))
+* Adjust language in skill description to guarantee it's run on user patch intent ([2cd7961](https://github.com/gemini-cli-extensions/security/commit/2cd79610b31b1fef971e6c871fbbc9d7bd6c63a6))
+* change errro message to empty string in diff fail ([18ecd79](https://github.com/gemini-cli-extensions/security/commit/18ecd79bbd90b96765671fe2ea5c21b356143bf2))
+* Diff issues were due to non remote repositories, support local changes by defulating to ([53a52c6](https://github.com/gemini-cli-extensions/security/commit/53a52c650c07575a18840b5b357eb80d8941c304))
+* finialzie merge into main ([bd6d4e5](https://github.com/gemini-cli-extensions/security/commit/bd6d4e52473aadcd1b6e14c136cfb3ef950b8e18))
+* fix command injection in install_depenencies tool ([5988662](https://github.com/gemini-cli-extensions/security/commit/5988662b329015cfdaa19f7a8c9369bf22a3e50e))
+* folder location wording in gemini .md ([da3ef99](https://github.com/gemini-cli-extensions/security/commit/da3ef9906ad11efd20af574fe12967e36064dffa))
+* folder location wording in gemini .md ([32ad411](https://github.com/gemini-cli-extensions/security/commit/32ad411db1f7bb1a6fe3d0a756f982dafbdae6a0))
+* **GHA:** Gemini-review MCP calls and prompt changes ([6d2d20f](https://github.com/gemini-cli-extensions/security/commit/6d2d20f070e034a90fdb7b6369b600f71d539430))
+* **GHA:** Gemini-review MCP calls and prompt changes ([ad93687](https://github.com/gemini-cli-extensions/security/commit/ad936878615d772cf00e17eb9e24d2c813e37a61))
+* **GHA:** Update github-mcp-server calls ([2c1e176](https://github.com/gemini-cli-extensions/security/commit/2c1e176bebee987e6beba630b7d1409a14f4f76f))
+* make prompt less error prone by enforcing directory ([0ea0b48](https://github.com/gemini-cli-extensions/security/commit/0ea0b48f9d95dd2a9af977928824dac7141a46e8))
+* merge into main ([8cbfd3c](https://github.com/gemini-cli-extensions/security/commit/8cbfd3c883cb9a8e3fb80df1a684326805de81f2))
+* mitigate injection vulnerability in new poc tool ([ec2d768](https://github.com/gemini-cli-extensions/security/commit/ec2d768e5b04503b3e02e9204e768963a53291be))
+* Move PoC tooling to tools directory, imported into index file ([437097d](https://github.com/gemini-cli-extensions/security/commit/437097d1fa38c8214ebdc9ae9e78075183ef006a))
+* move selective action prompting to top of gemini md ([7ecd59d](https://github.com/gemini-cli-extensions/security/commit/7ecd59da74e2010ec02659d83f0d4d2a9f1476f3))
+* move whitelist directory to .gemini_security ([bac4ab6](https://github.com/gemini-cli-extensions/security/commit/bac4ab6ffaa00d07adb60b8eae98ce8e7d51f43d))
+* nit white space and revert deletion prompt to only affect temp files ([9d64b30](https://github.com/gemini-cli-extensions/security/commit/9d64b307eec2946b2f155a062febefae1c7f03bb))
+* package lock jsons ([7c393ca](https://github.com/gemini-cli-extensions/security/commit/7c393cad458ad23911ab79285f3613f0d6809830))
+* phrasing and whitespace ([4fb13d6](https://github.com/gemini-cli-extensions/security/commit/4fb13d651822619d1f442bdd4226d81ec9ec4bac))
+* re-add removals caused by llm hallucinations ([7827e93](https://github.com/gemini-cli-extensions/security/commit/7827e937fc637643923d1bc0cd898ec4e9a3b05a))
+* Refactor security-fix tool to security-patch, add entry point for analysis in patcher skill ([cf11259](https://github.com/gemini-cli-extensions/security/commit/cf11259fdedc07d8acb86a8e8ff75eede48d091b))
+* Rehaul PoC to be tools focused to save on tokens/turns ([3f958b8](https://github.com/gemini-cli-extensions/security/commit/3f958b83e5108d75acd47ee1e6f89d98356a6165))
+* remove additional test causing gemini cli to try to run a command ([2caa615](https://github.com/gemini-cli-extensions/security/commit/2caa615f2f4563034ecc92842fec7583dbd102d1))
+* remove conflicting gemini md wording from unmerged file ([6b8fe2b](https://github.com/gemini-cli-extensions/security/commit/6b8fe2bf43172b75f308b920547abb8dd6feccb2))
+* remove irrelevant changes to prompt from this PR ([102d64c](https://github.com/gemini-cli-extensions/security/commit/102d64cbfd1124d043a6463b3f5410ff39d0b8c4))
+* remove mentions of unused security notes folder from gemini md ([1723ce8](https://github.com/gemini-cli-extensions/security/commit/1723ce8db545368adb39629f6c16d33780797770))
+* remove merge remnants ([1c87790](https://github.com/gemini-cli-extensions/security/commit/1c8779066dc8c43c01d5df4990efc0e6f4ab9b83))
+* remove redundant parameter validation, clean up /poc prompting ([682488d](https://github.com/gemini-cli-extensions/security/commit/682488d4b767c4aeddf6d690e6e04434bafbe99f))
+* suggest user to run commands themselves, since gemini cli cannot correctly run it's own commands. ([caafd73](https://github.com/gemini-cli-extensions/security/commit/caafd7399b3ddae851f701885a74468a55a36424))
+* suggest user to run commands themselves, since gemini cli cannot… ([96f84f9](https://github.com/gemini-cli-extensions/security/commit/96f84f95d327482f4c5d8ddc267ea3f271aebcdb))
+* Update description of audit tool, small fixes ([959ae50](https://github.com/gemini-cli-extensions/security/commit/959ae500795fa42085f00417b847034c326c0863))
+* update run_poc signature to take in a file path instead of source code to run. ([847ec4c](https://github.com/gemini-cli-extensions/security/commit/847ec4c2daf456e797924144b5ea276fb7bb6714))
+* use  to store line number mappings in the MCP server ([#91](https://github.com/gemini-cli-extensions/security/issues/91)) ([909c901](https://github.com/gemini-cli-extensions/security/commit/909c901fd0a9b181b13a6462d50de7ca5acf4a5e))
+* Use a command available on all platforms to generate a file diff ([21fc350](https://github.com/gemini-cli-extensions/security/commit/21fc35037b22b7acf51e7c78a5eb233d2f02cff3))
+* Use a command available on all platforms to generate a file diff ([f1fca9b](https://github.com/gemini-cli-extensions/security/commit/f1fca9bd98bef7f10f957701d5ca4fd69c9f2e9c))
+* use isolated-vm library to isolate generated code ([7e5ea18](https://github.com/gemini-cli-extensions/security/commit/7e5ea1888ac3cd1ec355f688f9ec3a248ed75ccb))
+* Use security report at contingency in executing patch flow ([58e6929](https://github.com/gemini-cli-extensions/security/commit/58e6929b71a4a3d82d9e5bf1b03998832fb56a8a))
+* When multiple vulns are present, user chooses which one to build a PoC against ([9a72400](https://github.com/gemini-cli-extensions/security/commit/9a72400dd1943bffbc99b2b82eab24aa5776d9d4))
+* whitespace at end fo file ([4257532](https://github.com/gemini-cli-extensions/security/commit/4257532aaa734171bfcf083deba8472c6e8453a7))
+
 ## [0.5.0](https://github.com/gemini-cli-extensions/security/compare/v0.4.0...v0.5.0) (2026-04-01)
 
 

gemini-extension.json

@@ -1,6 +1,6 @@
 {
   "name": "gemini-cli-security",
-  "version": "0.5.0",
+  "version": "0.6.0",
   "contextFileName": "GEMINI.md",
   "mcpServers": {
     "securityServer": {