Clavenar Lite status

Current release, proof commands, and deploy readiness.

The page operators check before pointing an agent at the single-binary OSS proxy. It separates the latest tagged release from what is already documented on main, then gives the install, verify, smoke, and rollout checks in one place.

Docs verified for site v1.119.1 Release facts checked  GitHub releases CHANGELOG.md
Latest tagged release

clavenar-lite v0.4.1

Released . This cut hardens the day-1 operator path: SQLite WAL for concurrent audit reads, triage sorting and color, and the operator smoke script wired into CI.

The v0.4.x release assets and public GHCR image still use the legacy warden-lite package name. The product, docs, and repository are Clavenar Lite.

Image
ghcr.io/vanteguardlabs/warden-lite:0.4.1
Binary
warden-lite-0.4.1-x86_64-linux-musl.tar.gz
License
Apache-2.0
Smoke
20 HTTP checks
1 · Release pulse

Install the pinned tag before trying :latest.

Pinned deploys make evaluation handoffs reproducible. Use :latest only when you are intentionally tracking the newest tagged image.

Container

Pull or run the published multi-arch image.

# Pull the pinned release image
docker pull ghcr.io/vanteguardlabs/warden-lite:0.4.1

# Start in observe mode for first traffic
docker run --rm -p 8088:8088 \
  -e WARDEN_LITE_MODE=observe \
  -e WARDEN_LITE_UPSTREAM_URL=https://api.openai.com/v1/chat/completions \
  ghcr.io/vanteguardlabs/warden-lite:0.4.1

Static binary

Fetch the release asset when Docker is not available.

# Download and run the linux x86_64 musl asset
VERSION=0.4.1
curl -fsSLO "https://github.com/clavenar/clavenar-lite/releases/download/v${VERSION}/warden-lite-${VERSION}-x86_64-linux-musl.tar.gz"
tar xzf "warden-lite-${VERSION}-x86_64-linux-musl.tar.gz"
./warden-lite --version
2 · Verify this release

Check the binary, image, and day-1 surface before traffic.

These checks are deliberately copyable. They prove the asset checksum, the image manifest, the runtime version, and the operator smoke path.

Binary checksum

VERSION=0.4.1
curl -fsSLO "https://github.com/clavenar/clavenar-lite/releases/download/v${VERSION}/warden-lite-${VERSION}-x86_64-linux-musl.tar.gz"
curl -fsSLO "https://github.com/clavenar/clavenar-lite/releases/download/v${VERSION}/warden-lite-${VERSION}-x86_64-linux-musl.tar.gz.sha256"
sha256sum -c "warden-lite-${VERSION}-x86_64-linux-musl.tar.gz.sha256"
tar xzf "warden-lite-${VERSION}-x86_64-linux-musl.tar.gz"
./warden-lite --version

Image manifest

VERSION=0.4.1
docker buildx imagetools inspect ghcr.io/vanteguardlabs/warden-lite:${VERSION}
docker manifest inspect ghcr.io/vanteguardlabs/warden-lite:${VERSION}

Operator smoke

git clone https://github.com/clavenar/clavenar-lite.git
cd clavenar-lite
git checkout v0.4.1
scripts/smoke-e2e.sh
3 · v0.4.1 · what shipped

Day-1 operator hardening for a running proxy.

The release turns the v0.4.0 operator path into something safer to leave in front of an agent while humans triage parked tool calls.

Area What changed Operator impact Upgrade risk
Ledger reads SQLite WAL plus busy_timeout=5000 on ledger open. warden-lite audit can read while the proxy is writing. Low. :memory: falls back to memory-mode journaling.
Triage queue pending list sort controls and TTY color. Parked work defaults oldest-first; history views default newest-first. Low. Plain text stays plain under pipes or NO_COLOR.
Smoke gate scripts/smoke-e2e.sh exercises 20 live HTTP checks. Operators can prove allow, deny, park, decide, token gating, and audit concurrency. Low. The script cleans up its dedicated Docker network on exit.
4 · Main ahead of v0.4.1

Documented on main, not present in the public release list yet.

The raw changelog currently describes later sections after the latest GitHub tag. Treat these as main-branch receipts until a release tag and assets appear.

Changelog section Capability What to watch before upgrading
0.5.0 Multi-agent registry, online backup, atomic restore, async-HIL callback allowlist. Token uniqueness, callback prefix hygiene, backup destination overwrite behavior.
0.6.0 Outbound verdict webhook for SIEM, Datadog HTTP ingest, and generic webhook receivers. Receiver timeout behavior, event-name stability, and observability volume in observe mode.
Unreleased No public notes at verification time. Re-check CHANGELOG.md before moving a pinned deployment.
5 · Deployment readiness

The checklist before a Lite proxy fronts a real agent.

The automated smoke proves the HTTP surface. This checklist covers the operational choices that make the result repeatable after the first boot.

Pin the image or binary

Use 0.4.1 for the first deployment. Move to :latest only when automatic tag tracking is intentional.

Set the operator token

Configure WARDEN_LITE_DECIDE_TOKEN so an agent bearer cannot approve its own parked tool call.

Test Slack alerts

Send one yellow-tier request and confirm the alert carries the correlation id, review reasons, and decide command.

Run the smoke gate

Run scripts/smoke-e2e.sh against the release checkout and keep the output with the deploy notes.

Persist the ledger

Mount SQLite storage outside the container and confirm audit can read while the proxy is live.

Archive release evidence

Save release notes, the checksum file, the image digest, and SBOM/license assets with the deployment evidence.

6 · Known operational notes

Small details that change how a rollout behaves.

These are not blockers, but they are the items that commonly explain day-1 surprises.

Topic Current behavior Operator action
Naming v0.4.x release artifacts use warden-lite names even though the project is Clavenar Lite. Use the asset/image names exactly as released; watch later tags for renamed artifacts.
Docker vs binary The image is multi-arch. The static asset is linux x86_64 musl. Use Docker for arm64 hosts unless a matching static asset is published.
SQLite WAL File-backed ledgers permit concurrent audit reads; memory ledgers use memory-mode journaling. Persist the ledger path before real traffic and verify the chain after restart.
Decide endpoint Operator decisions are gated by WARDEN_LITE_DECIDE_TOKEN when configured. Keep the decide token distinct from the agent bearer token.
Slack webhook Park alerts are fire-and-forget; failures log warnings and never block the agent's 202. Monitor webhook delivery separately; the ledger remains the durable source of truth.