chore(main): release 0.1.0

[Aureliolo]

🤖 I have created a release beep boop

0.1.0 (2026-03-11)

Features

• add autonomy levels and approval timeout policies (#42, #126) (#197) (eecc25a)
• add CFO cost optimization service with anomaly detection, reports, and approval decisions (#186) (a7fa00b)
• add code quality toolchain (ruff, mypy, pre-commit, dependabot) (#63) (36681a8)
• add configurable cost tiers and subscription/quota-aware tracking (#67) (#185) (9baedfa)
• add container packaging, Docker Compose, and CI pipeline (#269) (435bdfe), closes #267
• add coordination error taxonomy classification pipeline (#146) (#181) (70c7480)
• add cost-optimized, hierarchical, and auction assignment strategies (#175) (ce924fa), closes #173
• add design specification, license, and project setup (8669a09)
• add env var substitution and config file auto-discovery (#77) (7f53832)
• add FastestStrategy routing + vendor-agnostic cleanup (#140) (09619cb), closes #139
• add HR engine and performance tracking (#45, #47) (#193) (2d091ea)
• add issue auto-search and resolution verification to PR review skill (#119) (deecc39)
• add mandatory JWT + API key authentication (#256) (c279cfe)
• add memory retrieval, ranking, and context injection pipeline (#41) (873b0aa)
• add pluggable MemoryBackend protocol with models, config, and events (#180) (46cfdd4)
• add pluggable MemoryBackend protocol with models, config, and events (#32) (46cfdd4)
• add pluggable output scan response policies (#263) (b9907e8)
• add pluggable PersistenceBackend protocol with SQLite implementation (#36) (f753779)
• add progressive trust and promotion/demotion subsystems (#43, #49) (3a87c08)
• add retry handler, rate limiter, and provider resilience (#100) (b890545)
• add SecOps security agent with rule engine, audit log, and ToolInvoker integration (#40) (83b7b6c)
• add shared org memory and memory consolidation/archival (#125, #48) (4a0832b)
• design unified provider interface (#86) (3e23d64)
• expand template presets, rosters, and add inheritance (#80, #81, #84) (15a9134)
• implement agent runtime state vs immutable config split (#115) (4cb1ca5)
• implement AgentEngine core orchestrator (#11) (#143) (f2eb73a)
• implement AuditRepository for security audit log persistence (#279) (94bc29f)
• implement basic tool system (registry, invocation, results) (#15) (c51068b)
• implement built-in file system tools (#18) (325ef98)
• implement communication foundation — message bus, dispatcher, and messenger (#157) (8e71bfd)
• implement company template system with 7 built-in presets (#85) (cbf1496)
• implement conflict resolution protocol (#122) (#166) (e03f9f2)
• implement core entity and role system models (#69) (acf9801)
• implement crash recovery with fail-and-reassign strategy (#149) (e6e91ed)
• implement engine extensions — Plan-and-Execute loop and call categorization (#134, #135) (#159) (9b2699f)
• implement enterprise logging system with structlog (#73) (2f787e5)
• implement graceful shutdown with cooperative timeout strategy (#130) (6592515)
• implement hierarchical delegation and loop prevention (#12, #17) (6be60b6)
• implement LiteLLM driver and provider registry (#88) (ae3f18b), closes #4
• implement LLM decomposition strategy and workspace isolation (#174) (aa0eefe)
• implement meeting protocol system (#123) (ee7caca)
• implement message and communication domain models (#74) (560a5d2)
• implement model routing engine (#99) (d3c250b)
• implement parallel agent execution (#22) (#161) (65940b3)
• implement per-call cost tracking service (#7) (#102) (c4f1f1c)
• implement personality injection and system prompt construction (#105) (934dd85)
• implement single-task execution lifecycle (#21) (#144) (c7e64e4)
• implement subprocess sandbox for tool execution isolation (#131) (#153) (3c8394e)
• implement task assignment subsystem with pluggable strategies (#172) (c7f1b26), closes #26 #30
• implement task decomposition and routing engine (#14) (9c7fb52)
• implement Task, Project, Artifact, Budget, and Cost domain models (#71) (81eabf1)
• implement tool permission checking (#16) (833c190)
• implement YAML config loader with Pydantic validation (#59) (ff3a2ba)
• implement YAML config loader with Pydantic validation (#75) (ff3a2ba)
• initialize project with uv, hatchling, and src layout (39005f9)
• initialize project with uv, hatchling, and src layout (#62) (39005f9)
• Litestar REST API, WebSocket feed, and approval queue (M6) (#189) (29fcd08)
• make TokenUsage.total_tokens a computed field (#118) (c0bab18), closes #109
• parallel tool execution in ToolInvoker.invoke_all (#137) (58517ee)
• testing framework, CI pipeline, and M0 gap fixes (#64) (f581749)
• wire all modules into observability system (#97) (f7a0617)

Bug Fixes

• address Greptile post-merge review findings from PRs #170-#175 (#176) (c5ca929)
• address post-merge review feedback from PRs #164-#167 (#170) (3bf897a), closes #169
• enforce strict mypy on test files (#89) (aeeff8c)
• harden Docker sandbox, MCP bridge, and code runner (#50, #53) (d5e1b6e)
• harden git tools security + code quality improvements (#150) (000a325)
• harden subprocess cleanup, env filtering, and shutdown resilience (#155) (d1fe1fb)
• incorporate post-merge feedback + pre-PR review fixes (#164) (c02832a)
• pre-PR review fixes for post-merge findings (#183) (26b3108)
• resolve circular imports, bump litellm, fix release tag format (#286) (a6659b5)
• strengthen immutability for BaseTool schema and ToolInvoker boundaries (#117) (7e5e861)

Performance

• harden non-inferable principle implementation (#195) (02b5f4e), closes #188

Refactoring

• adopt NotBlankStr across all models (#108) (#120) (ef89b90)
• extract _SpendingTotals base class from spending summary models (#111) (2f39c1b)
• harden BudgetEnforcer with error handling, validation extraction, and review fixes (#182) (c107bf9)
• harden personality profiles, department validation, and template rendering (#158) (10b2299)
• pre-PR review improvements for ExecutionLoop + ReAct loop (#124) (8dfb3c0)
• split events.py into per-domain event modules (#136) (e9cba89)

Documentation

• add ADR-001 memory layer evaluation and selection (#178) (db3026f), closes #39
• add agent scaling research findings to DESIGN_SPEC (#145) (57e487b)
• add CLAUDE.md, contributing guide, and dev documentation (#65) (55c1025), closes #54
• add crash recovery, sandboxing, analytics, and testing decisions (#127) (5c11595)
• address external review feedback with MVP scope and new protocols (#128) (3b30b9a)
• expand design spec with pluggable strategy protocols (#121) (6832db6)
• finalize 23 design decisions (ADR-002) (#190) (8c39742)
• update project docs for M2.5 conventions and add docs-consistency review agent (#114) (99766ee)

Tests

• add e2e single agent integration tests (#24) (#156) (f566fb4)
• add provider adapter integration tests (#90) (40a61f4)

CI/CD

• add Release Please for automated versioning and GitHub Releases (#278) (a488758)
• bump actions/checkout from 4 to 6 (#95) (1897247)
• bump actions/upload-artifact from 4 to 7 (#94) (27b1517)
• bump anchore/scan-action from 6.5.1 to 7.3.2 (#271) (80a1c15)
• bump docker/build-push-action from 6.19.2 to 7.0.0 (#273) (dd0219e)
• bump docker/login-action from 3.7.0 to 4.0.0 (#272) (33d6238)
• bump docker/metadata-action from 5.10.0 to 6.0.0 (#270) (baee04e)
• bump docker/setup-buildx-action from 3.12.0 to 4.0.0 (#274) (5fc06f7)
• bump sigstore/cosign-installer from 3.9.1 to 4.1.0 (#275) (29dd16c)
• harden CI/CD pipeline (#92) (ce4693c)
• split vulnerability scans into critical-fail and high-warn tiers (#277) (aba48af)

Maintenance

• add /worktree skill for parallel worktree management (#171) (951e337)
• add design spec context loading to research-link skill (8ef9685)
• add post-merge-cleanup skill (#70) (f913705)
• add pre-pr-review skill and update CLAUDE.md (#103) (92e9023)
• add research-link skill and rename skill files to SKILL.md (#101) (651c577)
• bump aiosqlite from 0.21.0 to 0.22.1 (#191) (3274a86)
• bump pyyaml from 6.0.2 to 6.0.3 in the minor-and-patch group (#96) (0338d0c)
• bump ruff from 0.15.4 to 0.15.5 (a49ee46)
• fix M0 audit items (#66) (c7724b5)
• main: release ai-company 0.1.1 (#282) (2f4703d)
• pin setup-uv action to full SHA (#281) (4448002)
• post-audit cleanup — PEP 758, loggers, bug fixes, refactoring, tests, hookify rules (#148) (c57a6a9)

---

This PR was generated with Release Please. See documentation.

[gemini-code-assist]

Summary of Changes

Hello, I'm Gemini Code Assist¹! I'm currently reviewing this pull request and will post my feedback shortly. In the meantime, here's a summary to help you and other reviewers quickly get up to speed!

This pull request automates the release of version 0.1.2 for the ai-company project. It primarily focuses on updating the project's version number across configuration files and the main init.py file, alongside documenting recent CI/CD dependency updates in the changelog. This ensures that the project's metadata reflects the latest release and provides transparency regarding continuous integration improvements.

Highlights

• Version Bump: The project version has been updated from 0.1.1 to 0.1.2 across relevant configuration and source files.
• Changelog Update: The CHANGELOG.md file has been updated to include entries for version 0.1.2, detailing CI/CD action bumps.
• CI/CD Action Updates: Several Docker-related GitHub Actions (build-push-action, login-action, setup-buildx-action) and sigstore/cosign-installer have been bumped to their latest major versions.

Changelog

• .github/.release-please-manifest.json
  • Updated the project version to 0.1.2.
• CHANGELOG.md
  • Added a new section for version 0.1.2, detailing updates to several CI/CD GitHub Actions.
• pyproject.toml
  • Updated the commitizen tool's version to 0.1.2.
• src/ai_company/init.py
  • Updated the version string to 0.1.2.

Activity

• No human activity has been recorded for this pull request yet.

Using Gemini Code Assist

The full guide for Gemini Code Assist can be found on our documentation page, here are some quick tips.

Invoking Gemini

You can request assistance from Gemini at any point by creating a comment using either /gemini <command> or @gemini-code-assist <command>. Below is a summary of the supported commands on the current page.

Feature	Command	Description
Code Review	/gemini review	Performs a code review for the current pull request in its current state.
Pull Request Summary	/gemini summary	Provides a summary of the current pull request in its current state.
Comment	@gemini-code-assist	Responds in comments when explicitly tagged, both in pull request comments and review comments.
Help	/gemini help	Displays a list of available commands.

Customization

To customize Gemini Code Assist for GitHub experience, repository maintainers can create a configuration file and/or provide a custom code review style guide (such as PEP-8 for Python) by creating and adding files to a .gemini/ folder in the base of the repository. Detailed instructions can be found here.

Limitations & Feedback

Gemini Code Assist may make mistakes. Please leave feedback on any instances where its feedback is incorrect or counter productive. You can react with 👍 and 👎 on @gemini-code-assist comments. If you're interested in giving your feedback about your experience with Gemini Code Assist for GitHub and other Google products, sign up here.

You can also get AI-powered code generation, chat, as well as code reviews directly in the IDE at no cost with the Gemini Code Assist IDE Extension.

Footnotes

1. Review the Privacy Notices, Generative AI Prohibited Use Policy, Terms of Service, and learn how to configure Gemini Code Assist in GitHub here. Gemini can make mistakes, so double check it and use code with caution. ↩

[github-actions]

Dependency Review

✅ No vulnerabilities or license issues or OpenSSF Scorecard issues found.

Scanned Files

None

[coderabbitai]

📝 Walkthrough

Walkthrough

Patch-level version bump from 0.1.1 to 0.1.2 across release manifest, pyproject/commitizen metadata, package __version__, and CHANGELOG; no functional or API changes.

Changes

Cohort / File(s)	Summary
Version Metadata & Package .github/.release-please-manifest.json, pyproject.toml, src/ai_company/__init__.py	Updated version strings from 0.1.1 to 0.1.2 in the release manifest, commitizen/pyproject metadata, and package __version__.
Changelog CHANGELOG.md	Added 0.1.2 entry documenting numerous items across Features, Bug Fixes, Performance, Refactoring, Documentation, Tests, CI/CD, and Maintenance; existing 0.1.1 entry retained.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~3 minutes

Possibly related PRs

• ci: add Release Please for automated versioning and GitHub Releases #278 — Prior PR that introduced or synchronized release-please metadata and package versioning workflow.

🚥 Pre-merge checks | ✅ 4 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Title check	⚠️ Warning	The PR title states 'chore(main): release 0.1.0' but the actual release version in all files is 0.1.2, creating a version mismatch.	Update the PR title to 'chore(main): release 0.1.2' to accurately reflect the version changes in the codebase.

✅ Passed checks (4 passed)

Check name	Status	Explanation
Linked Issues check	✅ Passed	The PR successfully implements all linked objectives: container packaging with Docker Compose and CI pipeline [#267]; additional task assignment strategies [#173]; FastestStrategy routing and vendor-agnostic cleanup [#139]; LiteLLM evaluation and integration [#4]; core task assignment implementation [#26]; TokenUsage computed field [#109]; post-merge review fixes [#169]; non-inferable prompt principle [#188]; memory layer evaluation and Mem0 selection [#39]; and documentation [#54].
Out of Scope Changes check	✅ Passed	All changes in the PR are directly related to the linked objectives and the 0.1.2 release scope: version bumps in manifest, config, and source code; CHANGELOG entries documenting all merged features and fixes.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Description check	✅ Passed	The PR description is a Release Please automated release note that includes version bump from 0.1.1 to 0.1.2, reflecting changelog entries for features, bug fixes, performance, refactoring, documentation, tests, CI/CD, and maintenance updates, all aligned with the changeset.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

• 📝 Generate docstrings (stacked PR)
• 📝 Generate docstrings (commit on current branch)

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Post copyable unit tests in a comment
• Commit unit tests in branch release-please--branches--main--components--ai-company

✨ Simplify code

• Create PR with simplified code
• Commit simplified code in branch release-please--branches--main--components--ai-company

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}

[greptile-apps]

Greptile Summary

This is an automated Release Please PR intended to release v0.1.2, but every version-bearing file in the diff has been downgraded to 0.1.0 rather than bumped to 0.1.2. The PR title, description, and CHANGELOG narrative all correctly describe a 0.1.2 release, but the actual code changes set .release-please-manifest.json, pyproject.toml, and src/ai_company/__init__.py to 0.1.0, and the new CHANGELOG section is labelled [0.1.0] with a compare URL of v0.0.0...v0.1.0.

Key issues:

• Version regression across all four files: all version markers go from 0.1.1 → 0.1.0 instead of 0.1.1 → 0.1.2. Merging as-is will publish a package reporting itself as 0.1.0 even though 0.1.1 is already released.
• Wrong CHANGELOG section: the new entry is [0.1.0] and now sits above the existing [0.1.1] entry, making the changelog out of semantic-version order and attributing the 0.1.2 features to the wrong version.
• Root cause: Release Please appears to have failed to resolve the v0.1.1 tag (likely a side-effect of the tag-format migration from ai-company-v0.1.x to v0.1.x introduced in fix: resolve circular imports, bump litellm, fix release tag format #286), causing it to recompute the release from v0.0.0 and generate a 0.1.0 entry. All four files should be manually corrected to 0.1.2 before merging.

Confidence Score: 0/5

• This PR must not be merged as-is — it regresses all version markers from 0.1.1 to 0.1.0 instead of advancing to 0.1.2.
• Every version-bearing file in the diff contains the wrong target version (0.1.0 instead of 0.1.2), and the CHANGELOG section is mislabelled and out of order. Merging would publish a package that identifies itself as an older version than what is already released, corrupt Release Please's manifest state, and produce an unordered changelog. All four changed files require correction before this PR is safe to merge.
• All four changed files require attention: .github/.release-please-manifest.json, CHANGELOG.md, pyproject.toml, and src/ai_company/__init__.py — every version string must be corrected from 0.1.0 to 0.1.2.

Important Files Changed

Filename	Overview
.github/.release-please-manifest.json	Version regressed from 0.1.1 → 0.1.0 instead of being bumped to 0.1.2 as the PR title states; this is Release Please's source of truth and will cause incorrect version computation on future runs.
CHANGELOG.md	New section incorrectly labelled [0.1.0] with compare URL v0.0.0...v0.1.0; it should be [0.1.2] comparing v0.1.1...v0.1.2, and now sits above the existing [0.1.1] entry, breaking chronological order.
pyproject.toml	commitizen version marker downgraded from 0.1.1 to 0.1.0 instead of bumped to 0.1.2; will cause tooling to report an incorrect package version.
src/ai_company/init.py	version regressed to 0.1.0 instead of being set to 0.1.2; runtime version introspection will return a stale, incorrect value.

Flowchart

%%{init: {'theme': 'neutral'}}%%
flowchart TD
    A["Release Please bot runs"] --> B{"Resolves base tag?"}
    B -- "Yes → v0.1.1" --> C["Compute next version: 0.1.2"]
    B -- "No — tag format mismatch\n(ai-company-v0.1.1 vs v0.1.1)" --> D["Falls back to v0.0.0 as base"]
    D --> E["Computes next version: 0.1.0 ❌"]
    C --> F["Writes 0.1.2 to manifest,\npyproject.toml, __init__.py,\nCHANGELOG ✅"]
    E --> G["Writes 0.1.0 to manifest,\npyproject.toml, __init__.py,\nCHANGELOG ❌"]
    G --> H["PR #283 as merged would\nregress version 0.1.1 → 0.1.0"]
    F --> I["Correct 0.1.2 release"]

Loading

_{Last reviewed commit: 223050d}

[gemini-code-assist]

Code Review

This pull request automates the release of version 0.1.2, primarily involving version number updates across several project files. The changes are straightforward and align with the release process. However, I've identified a minor inconsistency in the CHANGELOG.md file, where some dependency updates listed in the pull request description are missing. I have provided a suggestion to correct this and ensure the changelog is complete.

[gemini-code-assist]

The changelog appears to be missing a couple of dependency bump entries that are present in the pull request description. To ensure the changelog is complete and easy to navigate, I've added the missing entries and sorted the entire list by their corresponding pull request number.

Suggested change

	* bump anchore/scan-action from 6.5.1 to 7.3.2 ([#271](https://github.com/Aureliolo/ai-company/issues/271)) ([80a1c15](https://github.com/Aureliolo/ai-company/commit/80a1c157c69031d2d18beca6511edf5031e8595b))
	* bump docker/build-push-action from 6.19.2 to 7.0.0 ([#273](https://github.com/Aureliolo/ai-company/issues/273)) ([dd0219e](https://github.com/Aureliolo/ai-company/commit/dd0219e27d3142cfe697f0f51beff71ad14e6c17))
	* bump docker/login-action from 3.7.0 to 4.0.0 ([#272](https://github.com/Aureliolo/ai-company/issues/272)) ([33d6238](https://github.com/Aureliolo/ai-company/commit/33d6238d7d62a7c7c4902aa6a0f0108e66c7c7fc))
	* bump docker/metadata-action from 5.10.0 to 6.0.0 ([#270](https://github.com/Aureliolo/ai-company/issues/270)) ([baee04e](https://github.com/Aureliolo/ai-company/commit/baee04e81d5664317a4835a0cec315316b47d6b7))
	* bump docker/metadata-action from 5.10.0 to 6.0.0 ([#270](https://github.com/Aureliolo/ai-company/issues/270)) ([baee04e](https://github.com/Aureliolo/ai-company/commit/baee04e81d5664317a4835a0cec315316b47d6b7))
	* bump anchore/scan-action from 6.5.1 to 7.3.2 ([#271](https://github.com/Aureliolo/ai-company/issues/271)) ([80a1c15](https://github.com/Aureliolo/ai-company/commit/80a1c157c69031d2d18beca6511edf5031e8595b))
	* bump docker/login-action from 3.7.0 to 4.0.0 ([#272](https://github.com/Aureliolo/ai-company/issues/272)) ([33d6238](https://github.com/Aureliolo/ai-company/commit/33d6238d7d62a7c7c4902aa6a0f0108e66c7c7fc))
	* bump docker/build-push-action from 6.19.2 to 7.0.0 ([#273](https://github.com/Aureliolo/ai-company/issues/273)) ([dd0219e](https://github.com/Aureliolo/ai-company/commit/dd0219e27d3142cfe697f0f51beff71ad14e6c17))
	* bump docker/setup-buildx-action from 3.12.0 to 4.0.0 ([#274](https://github.com/Aureliolo/ai-company/issues/274)) ([5fc06f7](https://github.com/Aureliolo/ai-company/commit/5fc06f72c4d067cf0ea157f469e9bc0214cfc6ca))
	* bump sigstore/cosign-installer from 3.9.1 to 4.1.0 ([#275](https://github.com/Aureliolo/ai-company/issues/275)) ([29dd16c](https://github.com/Aureliolo/ai-company/commit/29dd16c37ae148ff509d19627a9e884160292263))

[Copilot]

Pull request overview

Release-please generated release PR for ai-company v0.1.2, updating the project’s version metadata and changelog to publish the next patch release.

Changes:

• Bump package version to 0.1.2 (Hatch version source in src/ai_company/__init__.py).
• Update Commitizen version to 0.1.2 for consistent tagging/changelog tooling.
• Update Release Please manifest and prepend CHANGELOG.md with the 0.1.2 release notes.

Reviewed changes

Copilot reviewed 4 out of 4 changed files in this pull request and generated no comments.

File	Description
src/ai_company/__init__.py	Updates the canonical package version used by Hatch dynamic versioning.
pyproject.toml	Bumps Commitizen’s tracked version to match the release.
CHANGELOG.md	Adds the 0.1.2 changelog entry for the release.
.github/.release-please-manifest.json	Updates Release Please manifest version to 0.1.2.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[coderabbitai]

Actionable comments posted: 1

🤖 Prompt for all review comments with AI agents

Verify each finding against the current code and only fix it if needed.

Inline comments:
In `@CHANGELOG.md`:
- Line 3: The changelog compare URL currently uses component-prefixed tags
("ai-company-v0.1.1...ai-company-v0.1.2") which are incorrect for this repo;
update the link in the heading string "##
[0.1.2](https://github.com/Aureliolo/ai-company/compare/ai-company-v0.1.1...ai-company-v0.1.2)
(2026-03-10)" to use plain tags "v0.1.1...v0.1.2" so the URL becomes
".../compare/v0.1.1...v0.1.2" ensuring the GitHub compare page resolves
correctly.

---

ℹ️ Review info

⚙️ Run configuration

Configuration used: Organization UI

Review profile: ASSERTIVE

Plan: Pro

Run ID: 03f364d7-1e6a-4e8f-8d0b-503f117ddff7

📥 Commits

Reviewing files that changed from the base of the PR and between bc691ef and e7c635a.

📒 Files selected for processing (4)

• .github/.release-please-manifest.json
• CHANGELOG.md
• pyproject.toml
• src/ai_company/__init__.py

📜 Review details

🧰 Additional context used

📓 Path-based instructions (5)

**/*.py

📄 CodeRabbit inference engine (CLAUDE.md)

**/*.py: Use Python 3.14+ (PEP 649 native lazy annotations) — do NOT use from __future__ import annotations
Use PEP 758 except syntax: except A, B: (no parentheses) — ruff enforces this on Python 3.14
All public functions and classes must have type hints — mypy strict mode is enforced
All public classes and functions must have Google-style docstrings — enforced by ruff D rules
Create new objects instead of mutating existing ones (immutability principle); for non-Pydantic internal collections, use copy.deepcopy() at construction and MappingProxyType wrapping for read-only enforcement
For dict/list fields in frozen Pydantic models, rely on frozen=True for field reassignment prevention and copy.deepcopy() at system boundaries (tool execution, LLM provider serialization, inter-agent delegation, serializing for persistence)
Separate frozen Pydantic models for config/identity from mutable-via-copy models for runtime state that evolves; never mix static config fields with mutable runtime fields in one model
Use Pydantic v2 (BaseModel, model_validator, computed_field, ConfigDict); use @computed_field for derived values instead of storing redundant fields; use NotBlankStr for all identifier/name fields instead of manual whitespace validators
Prefer asyncio.TaskGroup for fan-out/fan-in parallel operations in new code (e.g. multiple tool invocations, parallel agent calls) over bare create_task for structured concurrency
Line length: 88 characters maximum — enforced by ruff
Keep functions under 50 lines and files under 800 lines
Handle errors explicitly, never silently swallow exceptions
Validate at system boundaries (user input, external APIs, config files)
All provider calls must go through BaseCompletionProvider which applies retry and rate limiting automatically — never implement retry logic in driver subclasses or calling code
RetryConfig and RateLimiterConfig are set per-provider in ProviderConfig; retryable errors (RateLimitError, ...

Files:

• src/ai_company/__init__.py

src/**/*.py

📄 CodeRabbit inference engine (CLAUDE.md)

src/**/*.py: Every module with business logic MUST import logging from ai_company.observability with logger = get_logger(__name__) — never use import logging, logging.getLogger(), or print() in application code
Always use constants from domain-specific modules under ai_company.observability.events for event names (e.g., PROVIDER_CALL_START from events.provider), importing directly: from ai_company.observability.events.<domain> import EVENT_CONSTANT
Use structured logging kwargs: always logger.info(EVENT, key=value) — never logger.info("msg %s", val)
All error paths must log at WARNING or ERROR with context before raising; all state transitions must log at INFO; DEBUG for object creation, internal flow, entry/exit of key functions
Pure data models, enums, and re-exports do NOT need logging
Use absolute paths or run commands directly in Bash — never use cd in Bash commands; working directory is already set to project root

Files:

• src/ai_company/__init__.py

.github/.release-please-manifest.json

📄 CodeRabbit inference engine (CLAUDE.md)

Release Please manifest tracks version state; merging release PR creates git tag (vX.Y.Z) + GitHub Release with changelog; tag push triggers Docker workflow for version-tagged images

Files:

• .github/.release-please-manifest.json

**/*.md

📄 CodeRabbit inference engine (CLAUDE.md)

Vendor names (Anthropic, OpenAI, Claude, GPT, etc.) may only appear in DESIGN_SPEC.md when listing supported providers (not in other markdown files)

Files:

• CHANGELOG.md

pyproject.toml

📄 CodeRabbit inference engine (CLAUDE.md)

pyproject.toml: Pin all dependency versions using == in pyproject.toml; organize into groups: test (pytest + plugins), dev (includes test + ruff, mypy, pre-commit, commitizen); install with uv sync
Version in pyproject.toml under [tool.commitizen].version is used by CI to tag Docker images (semver)

Files:

• pyproject.toml

🧠 Learnings (4)

📚 Learning: 2026-03-10T22:19:11.971Z

Learnt from: CR
Repo: Aureliolo/ai-company PR: 0
File: CLAUDE.md:0-0
Timestamp: 2026-03-10T22:19:11.971Z
Learning: Applies to .github/.release-please-manifest.json : Release Please manifest tracks version state; merging release PR creates git tag (`vX.Y.Z`) + GitHub Release with changelog; tag push triggers Docker workflow for version-tagged images

Applied to files:

• .github/.release-please-manifest.json

📚 Learning: 2026-03-10T22:19:11.971Z

Learnt from: CR
Repo: Aureliolo/ai-company PR: 0
File: CLAUDE.md:0-0
Timestamp: 2026-03-10T22:19:11.971Z
Learning: Applies to .github/release-please-config.json : Release Please (Google) auto-creates a release PR on every push to main; config in `.github/release-please-config.json` and `.github/.release-please-manifest.json`; uses `RELEASE_PLEASE_TOKEN` secret so tag creation triggers downstream workflows

Applied to files:

• .github/.release-please-manifest.json

📚 Learning: 2026-03-10T22:19:11.971Z

Learnt from: CR
Repo: Aureliolo/ai-company PR: 0
File: CLAUDE.md:0-0
Timestamp: 2026-03-10T22:19:11.971Z
Learning: Applies to pyproject.toml : Version in `pyproject.toml` under `[tool.commitizen].version` is used by CI to tag Docker images (semver)

Applied to files:

• pyproject.toml

📚 Learning: 2026-03-10T22:19:11.971Z

Learnt from: CR
Repo: Aureliolo/ai-company PR: 0
File: CLAUDE.md:0-0
Timestamp: 2026-03-10T22:19:11.971Z
Learning: Commit messages follow `<type>: <description>` format with types: feat, fix, refactor, docs, test, chore, perf, ci — enforced by commitizen (commit-msg hook)

Applied to files:

• pyproject.toml

🪛 LanguageTool

CHANGELOG.md

[style] ~3-~3: Consider using the typographical ellipsis character here instead.
Context: # Changelog ## 0.1.2 (2026-03-10) ### Fe...

(ELLIPSIS)

🔇 Additional comments (3)

src/ai_company/__init__.py (1)

3-3: Version constant is aligned.

This keeps the package-exported version in sync with the rest of the release metadata.

pyproject.toml (1)

197-197: Commitizen version bump looks correct.

[tool.commitizen].version now matches the package and manifest bump, so CI tagging stays aligned for this release.

Based on learnings, version in pyproject.toml under [tool.commitizen].version is used by CI to tag Docker images (semver).

.github/.release-please-manifest.json (1)

2-2: Manifest bump is consistent.

This keeps Release Please’s tracked version state aligned with the package metadata for 0.1.2.

Based on learnings, Release Please manifest tracks version state; merging release PR creates git tag (vX.Y.Z) + GitHub Release with changelog; tag push triggers Docker workflow for version-tagged images.

[Copilot]

Pull request overview

Copilot reviewed 4 out of 4 changed files in this pull request and generated no new comments.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

Pull request overview

Copilot reviewed 4 out of 4 changed files in this pull request and generated 1 comment.

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[Copilot]

The 0.1.2 compare link uses v0.1.1...v0.1.2, but the existing 0.1.1 entry below still uses ai-company-v0.1.0...ai-company-v0.1.1. If the repo only has one of these tag formats, one of the changelog links will be broken. Suggest aligning changelog compare URLs to the actual tag format used by Release Please/Commitizen (or updating both 0.1.2 and 0.1.1 headers to be consistent).

Suggested change

	## [0.1.2](https://github.com/Aureliolo/ai-company/compare/v0.1.1...v0.1.2) (2026-03-11)
	## [0.1.2](https://github.com/Aureliolo/ai-company/compare/ai-company-v0.1.1...ai-company-v0.1.2) (2026-03-11)

[Aureliolo]

🤖 Created releases:

• v0.1.0

🌻

[greptile-apps]

Version regression in manifest

The manifest is being changed from 0.1.1 to 0.1.0, which is a downgrade, not the 0.1.2 bump indicated by the PR title and description. This file is Release Please's source of truth for the current published version — setting it to 0.1.0 when the repo is already at 0.1.1 will confuse subsequent Release Please runs, potentially causing it to re-release 0.1.0 content or compute the next version incorrectly.

The expected value after a successful 0.1.2 release should be:

Suggested change

	".": "0.1.0"
	".": "0.1.2"

This regression appears to stem from the same root cause as the version mismatch in pyproject.toml and src/ai_company/__init__.py (see those comments). The Release Please bot may have computed the wrong base version due to the tag-format migration (ai-company-v0.1.x → v0.1.x), causing it to regenerate a 0.1.0 release instead of computing 0.1.2.

Prompt To Fix With AI

This is a comment left during a code review.
Path: .github/.release-please-manifest.json
Line: 2

Comment:
**Version regression in manifest**

The manifest is being changed from `0.1.1` to `0.1.0`, which is a **downgrade**, not the `0.1.2` bump indicated by the PR title and description. This file is Release Please's source of truth for the current published version — setting it to `0.1.0` when the repo is already at `0.1.1` will confuse subsequent Release Please runs, potentially causing it to re-release `0.1.0` content or compute the next version incorrectly.

The expected value after a successful `0.1.2` release should be:

```suggestion
  ".": "0.1.2"
```

This regression appears to stem from the same root cause as the version mismatch in `pyproject.toml` and `src/ai_company/__init__.py` (see those comments). The Release Please bot may have computed the wrong base version due to the tag-format migration (`ai-company-v0.1.x` → `v0.1.x`), causing it to regenerate a `0.1.0` release instead of computing `0.1.2`.

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

Version downgraded instead of bumped

The commitizen version marker is being changed from 0.1.1 to 0.1.0, which is a regression. The PR title states this is a 0.1.2 release, so the marker should be bumped to 0.1.2. Merging this as-is will cause commitizen to report the package version as 0.1.0, behind the already-published 0.1.1.

Suggested change

	version = "0.1.0" # x-release-please-version
	version = "0.1.2" # x-release-please-version

The same incorrect version appears in src/ai_company/__init__.py line 3 and .github/.release-please-manifest.json.

Prompt To Fix With AI

This is a comment left during a code review.
Path: pyproject.toml
Line: 199

Comment:
**Version downgraded instead of bumped**

The commitizen version marker is being changed from `0.1.1` to `0.1.0`, which is a **regression**. The PR title states this is a `0.1.2` release, so the marker should be bumped to `0.1.2`. Merging this as-is will cause `commitizen` to report the package version as `0.1.0`, behind the already-published `0.1.1`.

```suggestion
version = "0.1.2" # x-release-please-version
```

The same incorrect version appears in `src/ai_company/__init__.py` line 3 and `.github/.release-please-manifest.json`.

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

Package __version__ regresses to 0.1.0

__version__ is being set to 0.1.0 instead of 0.1.2. Any code or tooling that introspects importlib.metadata.version("ai-company") or ai_company.__version__ will see 0.1.0, even though 0.1.1 has already shipped. This can break version-gated behaviour in downstream consumers and CI pipelines that compare __version__.

Suggested change

	__version__ = "0.1.0" # x-release-please-version
	__version__ = "0.1.2" # x-release-please-version

Prompt To Fix With AI

This is a comment left during a code review.
Path: src/ai_company/__init__.py
Line: 3

Comment:
**Package `__version__` regresses to `0.1.0`**

`__version__` is being set to `0.1.0` instead of `0.1.2`. Any code or tooling that introspects `importlib.metadata.version("ai-company")` or `ai_company.__version__` will see `0.1.0`, even though `0.1.1` has already shipped. This can break version-gated behaviour in downstream consumers and CI pipelines that compare `__version__`.

```suggestion
__version__ = "0.1.2"  # x-release-please-version
```

How can I resolve this? If you propose a fix, please make it concise.

[greptile-apps]

CHANGELOG section targets wrong version and wrong base tag

This new section is labelled [0.1.0] and its compare URL reads v0.0.0...v0.1.0, but the PR title and description clearly state this should be a 0.1.2 release. As a result:

1. The CHANGELOG now has [0.1.0] appearing above the already-present [0.1.1] entry (line 152 in the pre-PR file), putting the changelog in reverse-semantic-version order.
2. All the features listed here (JWT auth, Docker, Release Please, etc.) belong to the 0.1.2 milestone, not 0.1.0.
3. The compare URL should be v0.1.1...v0.1.2 to correctly link the diff between the two releases.

The header should read:

## [0.1.2](https://github.com/Aureliolo/ai-company/compare/v0.1.1...v0.1.2) (2026-03-11)

This is caused by the same Release Please version-computation error that affects the manifest and version files — the bot apparently resolved the base version to 0.0.0 (i.e., it couldn't find the v0.1.1 tag) and generated a fresh 0.1.0 entry instead of incrementing to 0.1.2.

Prompt To Fix With AI

This is a comment left during a code review.
Path: CHANGELOG.md
Line: 3

Comment:
**CHANGELOG section targets wrong version and wrong base tag**

This new section is labelled `[0.1.0]` and its compare URL reads `v0.0.0...v0.1.0`, but the PR title and description clearly state this should be a `0.1.2` release. As a result:

1. The CHANGELOG now has `[0.1.0]` appearing **above** the already-present `[0.1.1]` entry (line 152 in the pre-PR file), putting the changelog in reverse-semantic-version order.
2. All the features listed here (JWT auth, Docker, Release Please, etc.) belong to the `0.1.2` milestone, not `0.1.0`.
3. The compare URL should be `v0.1.1...v0.1.2` to correctly link the diff between the two releases.

The header should read:

```
## [0.1.2](https://github.com/Aureliolo/ai-company/compare/v0.1.1...v0.1.2) (2026-03-11)
```

This is caused by the same Release Please version-computation error that affects the manifest and version files — the bot apparently resolved the base version to `0.0.0` (i.e., it couldn't find the `v0.1.1` tag) and generated a fresh `0.1.0` entry instead of incrementing to `0.1.2`.

How can I resolve this? If you propose a fix, please make it concise.