Alice v0.6.0-alpha-rc.3

v0.6.0-alpha-rc.3 Release Notes

Status: internal pre-release candidate for local alpha and Hermes dogfood testing.

Latest stable remains: v0.5.1.

Do not mark this release as latest. Publish it as a GitHub pre-release and not latest with --latest=false.

Purpose

v0.6.0-alpha-rc.3 supersedes v0.6.0-alpha-rc.2. rc.2 remains immutable; rc.3 carries the latest current-main local alpha fixes, agentic memory commit workflow, retrieval verification, MCP error hardening, and installer/check updates.

The target dogfood setup remains Alice and Hermes running locally or on the same Ubuntu server/VPS, with Alice accessed through localhost or SSH tunneling and Hermes connected through MCP/API.

Changes Since rc.2

• Added governed agentic memory commit support across API, CLI, MCP tools, Hermes/OpenClaw skills, audit/revision trails, correction, undo, forget, recent commits, and policy enforcement.
• Hardened MCP unexpected-error handling so failed memory operations return structured tool errors without closing the MCP connection.
• Fixed Postgres-backed vNext retrieval so keyword-style context-pack queries can select matching committed memories and sources even when the full query is not one contiguous phrase.
• Verified retrieval for domain=unknown committed memories when agents request scoped packs such as professional, project, and personal.
• Fixed local /vnext?mode=live CORS configuration for alpha/dev by requiring explicit localhost origins instead of weakening production defaults.
• Updated local env templates, Ubuntu installer config generation, doctor checks, troubleshooting docs, and local-cors smoke coverage.
• Documented the clean web dev cache reset path for stale .next chunk errors.

Included

• Headless Ubuntu installer: scripts/install-ubuntu.sh
• Safe uninstall/reset helper: scripts/uninstall-ubuntu.sh
• Systemd templates for alice-api, alice-web, and alice-scheduler
• Local config template at packaging/ubuntu/alicebot.env.example
• Public alpha docs and agent integration docs under docs/alpha/
• Agent skill docs under agent-skills/
• Agentic memory commit smoke: alicebot vnext smoke agentic-memory-commit
• Local CORS readiness and smoke checks
• Existing connector, operator-console, capture-to-brief, scheduler, and agent integration smokes

Security Defaults

• API and web bind to localhost by default for local alpha.
• /vnext local live mode requires explicit CORS origins; wildcard CORS is not introduced.
• Secrets are not printed by the installer or readiness checks.
• Agent memory writes are governed by permission profile, domain, sensitivity, confirmation, and review policy.
• Read-only agents cannot write memory.
• Project-scoped agents remain constrained to their allowed project/domain context.
• Sensitive memory requires confirmation or review before becoming durable context.

Install Command

Inspect before running:

curl -fsSL https://raw.githubusercontent.com/samrusani/AliceBot/v0.6.0-alpha-rc.3/scripts/install-ubuntu.sh -o install-alice.sh
less install-alice.sh
bash install-alice.sh --tag v0.6.0-alpha-rc.3

For headless access through SSH:

ssh -L 3000:127.0.0.1:3000 -L 8000:127.0.0.1:8000 user@ubuntu-box

Validation

• ./.venv/bin/pytest tests/unit -q -> 1142 passed
• ./.venv/bin/pytest tests/integration -q -> 377 passed
• pnpm --dir apps/web test -> 209 passed
• pnpm --dir apps/web lint -> passed
• pnpm --dir apps/web build -> passed
• ./.venv/bin/alicebot eval run --suite all -> pass, 170/170 cases, 0 critical privacy leaks, 0 prompt-injection tool writes
• ./.venv/bin/alicebot vnext alpha check -> passed
• ./.venv/bin/alicebot vnext smoke agentic-memory-commit -> passed
• ./.venv/bin/alicebot vnext smoke agent-integration-pack -> passed
• ./.venv/bin/alicebot vnext smoke operator-console -> passed
• ./.venv/bin/alicebot vnext smoke capture-to-brief -> passed
• ./.venv/bin/alicebot vnext smoke agentic-scheduler -> passed
• git diff --check -> passed
• GitHub Security Scans on current main c2fa8e0e7fe9a6ae106fa4c1b56163d41078143e -> Gitleaks, CodeQL Python, and CodeQL JavaScript passed
• Protected Path Guardrails for PR #219, which produced current main, passed

Release Assets

• install-ubuntu.sh
• SHA256SUMS

GitHub source archives are generated automatically for the tag.

Alice v0.6.0-alpha-rc.2

v0.6.0-alpha-rc.2 Release Notes

Status: internal pre-release candidate for Hermes dogfood testing.

Latest stable remains: v0.5.1.

Do not mark this release as latest. Publish it as a GitHub pre-release and not latest with --latest=false.

Purpose

v0.6.0-alpha-rc.2 supersedes v0.6.0-alpha-rc.1 for headless Ubuntu installs. The original RC remains immutable, and this RC carries the same headless Ubuntu/Hermes dogfood scope with additional installer hardening from the first Ubuntu install attempt.

The target dogfood setup is Alice and Hermes running on the same Ubuntu server or VPS, with Alice accessed through SSH tunneling and Hermes connected through MCP/API.

Included

• headless Ubuntu installer: scripts/install-ubuntu.sh
• safe uninstall/reset helper: scripts/uninstall-ubuntu.sh
• systemd templates for alice-api, alice-web, and alice-scheduler
• local config template at packaging/ubuntu/alicebot.env.example
• headless install guide at docs/alpha/headless-ubuntu-install.md
• Hermes dogfood guide at docs/alpha/hermes-dogfood-ubuntu.md
• headless package smoke: alicebot vnext smoke headless-ubuntu
• headless alpha readiness mode: alicebot vnext alpha check --headless
• public alpha agent integration pack from the prior packaging phase

Installer Hardening Since rc.1

• make setup now creates .env and .env.lite when missing.
• Environment files are validated before startup scripts source them.
• Values with spaces, including ALICE_MCP_COMMAND, are quoted in the Ubuntu template.
• Local Ubuntu installs default to APP_ENV=development instead of production.
• Startup scripts require the project venv and fail with a setup hint instead of silently falling back to system Python.
• pnpm is pinned to 10.23.0, approved native build dependencies are declared, and the web install uses the repo wrapper.
• Docker Compose Postgres credentials can be driven from the active Alice env.
• The Postgres init role script creates or updates the app role with the configured password.

Security Defaults

• API and web bind to 127.0.0.1 by default.
• /vnext is intended to be accessed through SSH tunnel first.
• The installer preserves existing config and does not overwrite secrets.
• Generated local database passwords are not printed.
• Agent outputs and memory proposals remain review-only.
• Trusted memory is not auto-promoted.

Known Limitations

• This is not hosted cloud deployment.
• This is not public SaaS auth.
• This is not a public beta.
• Gmail OAuth, Calendar OAuth, OCR execution, voice transcription, mobile app, billing, and team accounts remain out of scope.
• The installer is documented for Ubuntu 22.04 and 24.04.
• Systemd templates are local-alpha templates and should be reviewed before production hardening.

Recommended GitHub Release Command

git tag -a v0.6.0-alpha-rc.2 -m "v0.6.0-alpha-rc.2"
git push origin v0.6.0-alpha-rc.2
gh release create v0.6.0-alpha-rc.2 \
  --title "Alice v0.6.0-alpha-rc.2" \
  --notes-file docs/release/v0.6.0-alpha-rc.2-release-notes.md \
  --prerelease \
  --latest=false

Optional assets:

git archive --format=tar.gz --prefix=AliceBot-v0.6.0-alpha-rc.2/ \
  -o alicebot-v0.6.0-alpha-rc.2-source.tar.gz v0.6.0-alpha-rc.2
sha256sum alicebot-v0.6.0-alpha-rc.2-source.tar.gz scripts/install-ubuntu.sh > SHA256SUMS
gh release upload v0.6.0-alpha-rc.2 alicebot-v0.6.0-alpha-rc.2-source.tar.gz SHA256SUMS scripts/install-ubuntu.sh

Install Command

Inspect before running:

curl -fsSL https://raw.githubusercontent.com/samrusani/AliceBot/v0.6.0-alpha-rc.2/scripts/install-ubuntu.sh -o install-alice.sh
less install-alice.sh
bash install-alice.sh --tag v0.6.0-alpha-rc.2

Then access /vnext through:

ssh -L 3000:127.0.0.1:3000 -L 8000:127.0.0.1:8000 user@ubuntu-box

Validation

• bash -n for installer, runtime startup scripts, env validator, pnpm install wrapper, and Postgres init script
• ./scripts/validate_env.sh .env .env.lite.example packaging/ubuntu/alicebot.env.example
• docker compose config
• make setup
• make migrate
• make doctor
• ./.venv/bin/pytest tests/unit -q
• pnpm --dir apps/web test
• pnpm --dir apps/web lint
• pnpm --dir apps/web build
• ./.venv/bin/alicebot vnext smoke headless-ubuntu
• ./.venv/bin/alicebot vnext alpha check --headless --skip-smokes
• Ubuntu 24.04 installer dry-run through Docker
• git diff --check

v0.6.0-alpha-rc.1

v0.6.0-alpha-rc.1 Release Notes

Status: internal pre-release candidate for Hermes dogfood testing.

Latest stable remains: v0.5.1.

Do not mark this release as latest. If published on GitHub, publish it as a pre-release and not latest.

Purpose

v0.6.0-alpha-rc.1 packages Alice vNext for a headless Ubuntu install path from GitHub. The target dogfood setup is Alice and Hermes running on the same Ubuntu server or VPS, with Alice accessed through SSH tunneling and Hermes connected through MCP/API.

This headless Ubuntu RC is intended for operator-controlled dogfood only.

Included

• headless Ubuntu installer: scripts/install-ubuntu.sh
• safe uninstall/reset helper: scripts/uninstall-ubuntu.sh
• systemd templates for alice-api, alice-web, and alice-scheduler
• local config template at packaging/ubuntu/alicebot.env.example
• headless install guide at docs/alpha/headless-ubuntu-install.md
• Hermes dogfood guide at docs/alpha/hermes-dogfood-ubuntu.md
• headless package smoke: alicebot vnext smoke headless-ubuntu
• headless alpha readiness mode: alicebot vnext alpha check --headless
• public alpha agent integration pack from the prior packaging phase

Security Defaults

• API and web bind to 127.0.0.1 by default.
• /vnext is intended to be accessed through SSH tunnel first.
• The installer preserves existing config and does not overwrite secrets.
• Generated local database passwords are not printed.
• Agent outputs and memory proposals remain review-only.
• Trusted memory is not auto-promoted.

Known Limitations

• This is not hosted cloud deployment.
• This is not public SaaS auth.
• This is not a public beta.
• Gmail OAuth, Calendar OAuth, OCR execution, voice transcription, mobile app, billing, and team accounts remain out of scope.
• The installer is documented for Ubuntu 22.04 and 24.04.
• Systemd templates are local-alpha templates and should be reviewed before production hardening.

Recommended GitHub Release Command

git tag -a v0.6.0-alpha-rc.1 -m "v0.6.0-alpha-rc.1"
git push origin v0.6.0-alpha-rc.1
gh release create v0.6.0-alpha-rc.1 \
  --title "Alice v0.6.0-alpha-rc.1" \
  --notes-file docs/release/v0.6.0-alpha-rc.1-release-notes.md \
  --prerelease \
  --latest=false

Optional assets:

git archive --format=tar.gz --prefix=AliceBot-v0.6.0-alpha-rc.1/ \
  -o alicebot-v0.6.0-alpha-rc.1-source.tar.gz v0.6.0-alpha-rc.1
sha256sum alicebot-v0.6.0-alpha-rc.1-source.tar.gz scripts/install-ubuntu.sh > SHA256SUMS
gh release upload v0.6.0-alpha-rc.1 alicebot-v0.6.0-alpha-rc.1-source.tar.gz SHA256SUMS scripts/install-ubuntu.sh

Install Command

Inspect before running:

curl -fsSL https://raw.githubusercontent.com/samrusani/AliceBot/v0.6.0-alpha-rc.1/scripts/install-ubuntu.sh -o install-alice.sh
less install-alice.sh
bash install-alice.sh --tag v0.6.0-alpha-rc.1

Then access /vnext through:

ssh -L 3000:127.0.0.1:3000 -L 8000:127.0.0.1:8000 user@ubuntu-box

Alice v0.5.1 vNext Preview

v0.5.1 vNext Preview Release Notes

Release date: 2026-05-11
Preview tag: v0.5.1-vnext-preview
Stable public release: v0.5.1
Release type: public pre-release preview

Summary

Alice vNext is now ready as a public preview of the true second-brain direction on top of the stable v0.5.1 baseline. The preview is local-first and deterministic: it proves the vNext memory kernel, reviewable generated artifacts, connector-backed evidence capture, context packs, CLI/API/MCP access, eval harness, and fixture-backed /vnext workspace without claiming hosted SLA or live connector automation.

Included Preview Surface

• vNext memory-kernel schema, shared JSON contracts, Postgres store facade, event log, and Brain Charter model.
• Source capture for manual text, local text/Markdown files, Markdown folders, and ChatGPT exports.
• Context packs with domain/sensitivity filters, provenance, retrieval trace metadata, CLI/API/MCP access, and JSON-safe Postgres row handling.
• Queue/artifact workflows with reviewable generated artifacts, export actions, and explicit review state.
• Daily brief, weekly synthesis, connection report, contradiction/belief, project update, and open-loop workflows.
• Deterministic connector payload ingestion for Telegram, browser clipper, PDF, DOCX, CSV, screenshot OCR, and voice transcript payloads.
• Fixture-backed /vnext workspace covering Home, Inbox, Ask Alice, briefs, queue, generated artifacts, memory review, projects, people, beliefs, open loops, timeline, graph, and settings/privacy.
• Synthetic eval corpus and baseline suites for recall, temporal reasoning, contradictions, provenance, privacy, open loops, and prompt-injection write safety.
• Public-preview docs: quickstart, architecture, security/privacy, contributor guide, synthetic demo dataset, demo video script, release checklist, and tag plan.

Verification

Release-readiness evidence recorded on 2026-05-11:

• Real Postgres vNext smoke passed for source capture, connector ingest, scoped and unscoped context packs, daily brief generation, project update review, open-loop close, API context packs, API project dashboard, MCP context pack, and MCP project dashboard.
• ./.venv/bin/python -m pytest tests/unit -q: 1057 passed.
• pnpm --dir apps/web test: 205 passed.
• pnpm --dir apps/web lint: passed.
• pnpm --dir apps/web build: passed and built /vnext.
• python3 scripts/check_control_doc_truth.py: passed.
• ./.venv/bin/python -c 'from alicebot_api.cli import main; raise SystemExit(main(["eval", "run", "--suite", "all"]))': 170/170 cases, zero critical privacy leaks, zero prompt-injection tool writes.
• git diff --check: clean.
• GitHub Security Scans on merged main passed for CodeQL JavaScript, CodeQL Python, and Gitleaks.

Known Limitations

• vNext is a local-first preview, not a hosted launch.
• Connector support is deterministic payload ingestion only; live OAuth, external polling, browser extension actions, OCR model execution, and transcription model execution are deferred.
• Generated artifacts are reviewable and are not auto-promoted to trusted memory.
• Production daily/weekly scheduling is deferred.
• The /vnext workspace is fixture-backed; live-backed UI expansion remains future work.
• Model-backed or human-rated eval scoring is deferred beyond this deterministic synthetic preview.

Upgrade And Rollback

Use v0.5.1 for the stable pre-1.0 public release line. Use v0.5.1-vnext-preview only when testing the preview surface. Roll back by checking out v0.5.1 or by disabling vNext routes and avoiding the 20260510_0067_vnext_memory_kernel_schema.py migration in a disposable preview database.

Alice v0.5.1: Provider Adapters + Design Partner Launch

Alice v0.5.1 is the Phase 14 platform release for Alice.

This release makes Alice easier to plug into local, self-hosted, enterprise-curious, and external-agent workflows without changing its core continuity semantics.

Highlights

• Provider/runtime portability across OpenAI-compatible endpoints, Ollama, llama.cpp, vLLM, and Azure-backed paths.
• First-party model packs for llama, qwen, gemma, and gpt-oss with provider-aware bindings and pack-aware defaults.
• Reference integration paths for Hermes, OpenClaw, and generic Python and TypeScript agents.
• Design-partner onboarding, workspace linkage, usage summaries, feedback intake, and launch evidence.
• Logging-safety hardening from HF-001: stdout-by-default local/Lite logging, disabled local/Lite access logs by default, and bounded opt-in file logging.

What shipped in this boundary

• P14-S1: Provider abstraction cleanup + OpenAI-compatible adapter
• P14-S2: Ollama + llama.cpp + vLLM adapters
• P14-S3: Model packs
• P14-S4: Reference integrations
• P14-S5: Design partner launch
• HF-001: Logging safety and disk guardrails

Release posture

• Pre-1.0 public release
• Version boundary: v0.5.1
• Main focus: platform compatibility, adoption, and operational safety

For release verification and operational details, see the repo changelog and release docs in docs/release/.

v0.4.0

Alice v0.4.0 makes the system easier to adopt without changing its core continuity model.

This release adds a single continuity entrypoint for external agents, a lighter local startup path, and clearer visibility into memory quality and conversation health.

What is included

• One-call continuity across API, CLI, and MCP
• Alice Lite for a faster local first run
• Memory hygiene visibility for duplicates, stale facts, contradictions, weak trust, and review pressure
• Conversation health visibility for recent, stale, and risky threads

Why this matters

• External agents can integrate through one main continuity call instead of stitching together multiple surfaces
• Solo users and builders can get Alice running locally with less setup friction
• Operators can see quality and risk posture more clearly without weakening Alice's continuity semantics

Baseline included in this release

• Phase 12 retrieval, mutation, trust calibration, eval, and briefing stack
• Hermes bridge support
• Provider runtime and model-pack support

Verification

• 1279 Python tests passed
• 200 web tests passed
• Alice Lite smoke passed
• Hermes provider, MCP, and bridge demo smoke passed
• Public eval harness passed 12/12 cases

Release boundary
This is the public pre-1.0 release for the completed Phase 13 surface.

v0.3.2

Alice v0.3.2 ships the completed Phase 12 boundary. This release adds hybrid retrieval and reranking, explicit memory mutation operations, contradiction detection and trust calibration, a public eval harness with checked-in baseline reporting, and task-adaptive briefing for user recall, resume, worker subtask, and agent handoff. It also includes the release-readiness pass and Phase 12 closeout documentation for the pre-1.0 public boundary.

Alice v0.2.0

Alice v0.2.0 is the next public pre-1.0 release of Alice, covering the shipped platform through Phase 11 and Bridge B1-B4.

What ships in this release:

• Alice continuity core: typed memory, provenance, correction-aware recall, open loops, recall/resume/explain flows
• CLI and MCP surfaces
• Hosted/product layer shipped in Phase 10
• Phase 11 provider runtime: workspace-scoped provider registration, adapters, and model packs
• Hermes bridge: lifecycle hooks, prefetch, auto-capture, review queue, explainability, operator docs, smoke validation, and one-command demo path

Verification evidence:

• control-doc truth: PASS
• Python tests: 1191 passed
• web tests: 199 passed
• Hermes memory provider smoke: PASS
• Hermes MCP smoke: PASS
• Hermes bridge demo: PASS

Release notes:

• recommended deployment path: provider_plus_mcp
• fallback path: mcp_only
• this remains a pre-1.0 release and is not a 1.0 compatibility or support guarantee