docs: version bump 2.0.0 → 2.1.0

.github/workflows/ci.yml

@@ -312,7 +312,7 @@ jobs:
 
       - name: Check Markdown files exist
         run: |
-          # v2.0.0 documentation structure
+          # v2.1.0 documentation structure
           required_docs=(
             "README.md"
             "docs/README.md"
@@ -410,7 +410,7 @@ jobs:
           [ -x install.sh ] || (echo "install.sh not executable" && exit 1)
           [ -x scripts/download-llama-model.sh ] || (echo "download-llama-model.sh not executable" && exit 1)
 
-  # Heuristics Service - Unit Tests (v2.0.0)
+  # Heuristics Service - Unit Tests (v2.1.0)
   heuristics-service-tests:
     name: Heuristics Service - Unit Tests
     runs-on: ubuntu-latest
@@ -440,7 +440,7 @@ jobs:
         working-directory: services/heuristics-service
         run: npm test -- tests/unit/
 
-  # Semantic Service - Unit Tests (v2.0.0)
+  # Semantic Service - Unit Tests (v2.1.0)
   semantic-service-tests:
     name: Semantic Service - Unit Tests
     runs-on: ubuntu-latest
@@ -641,7 +641,7 @@ jobs:
           echo "  ✓ Documentation checked"
           echo "  ✓ Security audit completed"
           echo "  ✓ Installation scripts validated"
-          echo "  ✓ Heuristics Service unit tests (v2.0.0)"
-          echo "  ✓ Semantic Service unit tests (v2.0.0)"
+          echo "  ✓ Heuristics Service unit tests (v2.1.0)"
+          echo "  ✓ Semantic Service unit tests (v2.1.0)"
           echo "  ✓ Golden Dataset Quality Gate (E5 Migration v2.0)"
           echo ""

QUICKSTART.md

@@ -68,7 +68,7 @@ After installation completes, you **must** perform these manual steps:
 2. Click **"Add Workflow"** → **"Import from File"**
 3. Import the workflow file from:
    ```
-   services/workflow/workflows/Vigil Guard v2.0.0.json
+   services/workflow/workflows/Vigil Guard v2.1.0.json
    ```
 4. The workflow will load with all 40 nodes
 
@@ -220,7 +220,7 @@ lsof -i :3001  # Grafana (proxied via Caddy)
 
 1. **✅ Complete n8n Setup** (REQUIRED - see Step 4 above)
    - Create n8n account
-   - Import workflow from `services/workflow/workflows/Vigil Guard v2.0.0.json`
+   - Import workflow from `services/workflow/workflows/Vigil Guard v2.1.0.json`
    - Configure ClickHouse credentials (admin/[password from .env])
 
 2. **Configure Security Rules**
@@ -273,6 +273,6 @@ This will:
 For detailed documentation, see [README.md](README.md) and [docs/](docs/)
 
 ---
-**Document Version:** 2.0.0
-**Last Updated:** 2025-12-01
-**Installation Script:** install.sh v2.0.0
+**Document Version:** 2.1.0
+**Last Updated:** 2025-12-14
+**Installation Script:** install.sh v2.1.0

README.md

@@ -25,7 +25,7 @@ Vigil Guard protects LLM applications from prompt injection attacks, jailbreak a
 | **Investigation Panel** | Advanced prompt search with decision analysis |
 | **Dynamic Configuration** | Web-based GUI for security policies |
 | **Browser Extension** | Chrome/Edge protection for ChatGPT/Claude.ai |
-| **160+ Tests** | E2E suite with OWASP AITG coverage |
+| **170+ Tests** | E2E suite with OWASP AITG coverage |
 
 ## Architecture
 
@@ -38,7 +38,7 @@ Input → Validation → [Branch A: Heuristics  ] → Arbiter → Decision
 ```
 
 **Arbiter Decision Fusion:**
-- Weights: A=0.30, B=0.35, C=0.35
+- Weights: A=0.30, B=0.40, C=0.30
 - Block threshold: 50 points
 - Boost policies for high-confidence detections
 
@@ -92,16 +92,16 @@ vigil-guard/
 ├── services/
 │   ├── workflow/           # n8n detection engine
 │   │   ├── config/        # Detection rules (use Web UI!)
-│   │   ├── tests/         # 160+ E2E tests
-│   │   └── workflows/     # Vigil Guard v2.0.0.json
+│   │   ├── tests/         # 170+ E2E tests
+│   │   └── workflows/     # Vigil Guard v2.1.0.json
 │   ├── web-ui/            # React + Express
 │   ├── presidio-pii-api/  # Dual-language PII
 │   ├── language-detector/ # PL/EN detection
 │   └── monitoring/        # ClickHouse + Grafana
 ├── prompt-guard-api/      # Llama Guard service
 ├── plugin/                # Chrome extension
 ├── docs/                  # Documentation
-└── docker-compose.yml     # 9 services
+└── docker-compose.yml     # 11 services
 ```
 
 ## Screenshots

config/.env.example

@@ -137,7 +137,7 @@ CADDY_HTTPS_PORT=443
 DOMAIN=localhost
 
 # ============================================
-# HEURISTICS SERVICE (Branch A - v2.0.0)
+# HEURISTICS SERVICE (Branch A - v2.1.0)
 # ============================================
 # Pattern-based detection: obfuscation, structure, whisper, entropy
 HEURISTICS_PORT=5005
@@ -158,7 +158,7 @@ TARGET_LATENCY_MS=50
 CIRCUIT_BREAKER_ENABLED=true
 
 # ============================================
-# SEMANTIC SERVICE (Branch B - v2.0.0)
+# SEMANTIC SERVICE (Branch B - v2.1.0)
 # ============================================
 # Vector similarity search using MiniLM embeddings
 SEMANTIC_SERVICE_PORT=5006

docker-compose.yml

@@ -288,7 +288,7 @@ services:
   heuristics-service:
     build: ./services/heuristics-service
     container_name: vigil-heuristics
-    image: vigil-heuristics:2.0.0
+    image: vigil-heuristics:2.1.0
     environment:
       - NODE_ENV=${NODE_ENV:-production}
       - LOG_LEVEL=${HEURISTICS_LOG_LEVEL:-info}

docs/ARCHITECTURE.md

@@ -34,7 +34,7 @@ This document provides a comprehensive technical overview of Vigil Guard's v2.1.
 
 ## Overview
 
-Vigil Guard v2.0.0 introduces a **3-branch parallel detection architecture** that replaces the previous sequential 40-node pipeline. The new system achieves:
+Vigil Guard v2.1.0 introduces a **3-branch parallel detection architecture** that replaces the previous sequential 40-node pipeline. The new system achieves:
 
 - **Parallel Processing**: All 3 branches execute simultaneously using Promise.all()
 - **Binary Decisions**: ALLOW or BLOCK (sanitization reserved for PII only)
@@ -47,7 +47,7 @@ Vigil Guard v2.0.0 introduces a **3-branch parallel detection architecture** tha
 
 ```
 v1.x: Input → 40 Sequential Nodes → Score → Decision → Output
-v2.0: Input → 3 Parallel Branches → Arbiter → Decision → PII (if ALLOW) → Output
+v2.1: Input → 3 Parallel Branches → Arbiter → Decision → PII (if ALLOW) → Output
 ```
 
 ---
@@ -60,7 +60,7 @@ v2.0: Input → 3 Parallel Branches → Arbiter → Decision → PII (if ALLOW)
 - **Decisions:** ALLOW (0-29), SANITIZE_LIGHT (30-64), SANITIZE_HEAVY (65-84), BLOCK (85-100)
 - **Latency:** 15-30s typical (sequential processing)
 
-### v2.0.0 (3-Branch Parallel + Arbiter)
+### v2.1.0 (3-Branch Parallel + Arbiter)
 - **Nodes:** 24 total (11 Code nodes)
 - **Flow:** Input Validation → 3-Branch Executor → Arbiter → Decision Router → PII Redaction (ALLOW only)
 - **Decisions:** ALLOW or BLOCK (binary)
@@ -75,7 +75,7 @@ v2.0: Input → 3 Parallel Branches → Arbiter → Decision → PII (if ALLOW)
 
 ```
 ┌─────────────────────────────────────────────────────────────────────────┐
-│                        Vigil Guard v2.0.0 Pipeline                      │
+│                        Vigil Guard v2.1.0 Pipeline                      │
 └─────────────────────────────────────────────────────────────────────────┘
 
   [Webhook v2] / [Chat Trigger]
@@ -706,7 +706,7 @@ const finalDecision = finalScore >= 50 ? 'BLOCK' : 'ALLOW';
 
 ## PII Redaction (Post-Detection)
 
-**Critical Change in v2.0.0:**
+**Critical Change in v2.1.0:**
 
 PII redaction is applied **ONLY for ALLOW decisions**, **AFTER** the Arbiter decision.
 
@@ -1122,6 +1122,6 @@ stateDiagram-v2
 
 ---
 
-**Document Version:** 2.0.0
-**Last Reviewed:** 2025-11-27
+**Document Version:** 2.1.0
+**Last Reviewed:** 2025-12-14
 **Maintainer:** Vigil Guard Team

docs/GLOSSARY.md

@@ -28,10 +28,10 @@ Score multiplier applied when a branch reports high confidence. Ensures dangerou
 Pattern-based detection using Aho-Corasick prefilter and regex patterns. Port 5005. Weight: 0.30.
 
 ### Branch B (Semantic)
-Embedding-based detection using sentence transformers. Measures cosine similarity to known threat categories. Port 5006. Weight: 0.35.
+Embedding-based detection using sentence transformers. Measures cosine similarity to known threat categories. Port 5006. Weight: 0.40.
 
 ### Branch C (LLM Safety Engine)
-Machine learning classification using Meta Llama Guard 2 model. Detects novel attacks that bypass pattern matching. Port 8000. Weight: 0.35.
+Machine learning classification using Meta Llama Guard 2 model. Detects novel attacks that bypass pattern matching. Port 8000. Weight: 0.30.
 
 ## C
 
@@ -119,7 +119,7 @@ ClickHouse table engine. Optimized for high-volume inserts and aggregation queri
 ## N
 
 ### n8n
-Workflow automation platform hosting the detection pipeline. Contains 40+ nodes for processing.
+Workflow automation platform hosting the detection pipeline. Contains 24 nodes for processing.
 
 ### NIP (Numer Identyfikacji Podatkowej)
 Polish tax identification number. 10-digit format with checksum validation.
@@ -138,7 +138,7 @@ Polish national identification number. 11-digit format encoding birth date and g
 Data that can identify an individual: names, emails, phone numbers, government IDs.
 
 ### Pipeline
-The 40-node detection workflow processing input from webhook to final decision.
+The 24-node detection workflow processing input from webhook to final decision.
 
 ### Presidio
 Microsoft's PII detection framework. Supports 50+ entity types with ML and rule-based recognizers.
@@ -193,18 +193,18 @@ Main configuration file. Contains thresholds, weights, category settings, PII op
 The complete prompt injection detection and defense platform.
 
 ### vigil-net
-Docker network connecting all 9 services. Internal DNS resolution for container communication.
+Docker network connecting all 11 services. Internal DNS resolution for container communication.
 
 ## W
 
 ### Webhook
 HTTP endpoint receiving prompts for analysis: `/webhook/vigil-guard-2`
 
 ### Weight
-Branch contribution to final score. A=0.30, B=0.35, C=0.35.
+Branch contribution to final score. A=0.30, B=0.40, C=0.30.
 
 ### Workflow
-n8n automation containing the detection pipeline. File: `Vigil Guard v2.0.0.json`
+n8n automation containing the detection pipeline. File: `Vigil Guard v2.1.0.json`
 
 ---
 

docs/TROUBLESHOOTING.md

@@ -94,7 +94,7 @@ This guide helps resolve common issues with Vigil Guard deployment and operation
 
 2. **Check n8n workflow is active**
    - Visit http://localhost:5678
-   - Ensure "Vigil Guard v2.0.0" workflow is **Active** (toggle in top-right)
+   - Ensure "Vigil Guard v2.1.0" workflow is **Active** (toggle in top-right)
 
 3. **Test workflow with sample request**
    ```bash
@@ -517,5 +517,5 @@ If you cannot resolve the issue:
 
 ---
 
-**Last Updated:** 2025-12-01
-**Version:** 2.0.0
+**Last Updated:** 2025-12-14
+**Version:** 2.1.0

docs/guides/README.md

@@ -3,7 +3,7 @@
 <!-- GUI-HELP: Navigation hub for all user documentation -->
 <!-- GUI-SECTION: guides -->
 
-**Version:** 2.0.0 | **Last Updated:** 2025-11-28
+**Version:** 2.1.0 | **Last Updated:** 2025-12-14
 
 ---
 
@@ -56,7 +56,7 @@
 │ • Settings                                          │
 │          │                                          │
 ├──────────┴──────────────────────────────────────────┤
-│  Footer: Version 2.0.0 │ Built with Llama           │
+│  Footer: Version 2.1.0 │ Built with Llama           │
 └─────────────────────────────────────────────────────┘
 ```
 

docs/guides/administration.md

@@ -3,7 +3,7 @@
 <!-- GUI-HELP: User management and role-based access control -->
 <!-- GUI-SECTION: administration -->
 
-**Version:** 2.0.0 | **Last Updated:** 2025-11-28
+**Version:** 2.1.0 | **Last Updated:** 2025-12-14
 
 ---
 

docs/guides/configuration.md

@@ -3,7 +3,7 @@
 <!-- GUI-HELP: Detection rules, thresholds, and security policy management -->
 <!-- GUI-SECTION: configuration -->
 
-**Version:** 2.0.0 | **Last Updated:** 2025-11-28
+**Version:** 2.1.0 | **Last Updated:** 2025-12-14
 
 ---
 

docs/guides/dashboard.md

@@ -3,7 +3,7 @@
 <!-- GUI-HELP: Real-time security analytics and Grafana integration -->
 <!-- GUI-SECTION: monitoring -->
 
-**Version:** 2.0.0 | **Last Updated:** 2025-11-28
+**Version:** 2.1.0 | **Last Updated:** 2025-12-14
 
 ---
 

docs/guides/investigation.md

@@ -3,7 +3,7 @@
 <!-- GUI-HELP: Advanced prompt search and forensic analysis -->
 <!-- GUI-SECTION: investigation -->
 
-**Version:** 2.0.0 | **Last Updated:** 2025-11-28
+**Version:** 2.1.0 | **Last Updated:** 2025-12-14
 
 ---
 

docs/guides/settings.md

@@ -3,7 +3,7 @@
 <!-- GUI-HELP: User preferences, timezone, and password management -->
 <!-- GUI-SECTION: settings -->
 
-**Version:** 2.0.0 | **Last Updated:** 2025-11-28
+**Version:** 2.1.0 | **Last Updated:** 2025-12-14
 
 ---
 

docs/operations/maintenance.md

@@ -11,7 +11,7 @@ Last updated: 2025-11-26
 - Confirm LLM Safety Engine and PII model compatibility (endpoints unchanged).
 
 ## Monitoring
-- Grafana (port 3000) – dashboards based on `events_v2` (branch_a/b/c_score, threat_score, final_status).
+- Grafana (port 3001) – dashboards based on `events_v2` (branch_a/b/c_score, threat_score, final_status).
 - Service logs: `docker-compose logs -f <service>`.
 
 ## Health checks

docs/overview/QUICKSTART.md

@@ -43,7 +43,7 @@ curl -X POST http://localhost:5678/webhook/vigil-guard-2 \
 - Workflow (n8n): 5678 (`/n8n/`), webhook `/webhook/vigil-guard-2`.
 - PII API: 5001, Language Detector: 5002.
 - Heuristics: 5005, Semantic: 5006, LLM Safety Engine: 8000.
-- ClickHouse: 8123 (HTTP), Grafana: 3000.
+- ClickHouse: 8123 (HTTP), Grafana: 3001.
 
 ## What next
 - Check architecture: `docs/architecture/pipeline.md`

docs/services/README.md

@@ -3,7 +3,7 @@
 <!-- GUI-HELP: Quick reference for all Vigil Guard microservices -->
 <!-- GUI-SECTION: services -->
 
-**Version:** 2.0.0 | **Last Updated:** 2025-11-28
+**Version:** 2.1.0 | **Last Updated:** 2025-12-14
 
 ---
 
@@ -188,7 +188,7 @@ Which service handles it?
 
 ## Workflow (n8n)
 
-**File:** `services/workflow/workflows/Vigil Guard v2.0.0.json`
+**File:** `services/workflow/workflows/Vigil Guard v2.1.0.json`
 
 **Webhook:** `POST /webhook/vigil-guard-2`
 

plugin/Chrome/src/background/service-worker.js

@@ -282,7 +282,7 @@ async function fetchConfigFromGUI() {
         n8nEndpoint: data.webhookUrl || DEFAULT_CONFIG.n8nEndpoint,
         customWebhook: '',
         guiUrl: data.guiUrl || DEFAULT_GUI_URL,
-        version: data.version || '2.0.0',
+        version: data.version || '2.1.0',
         endpoint: DEFAULT_CONFIG.endpoint,
         apiKey: '',
         mode: 'monitor',

scripts/import-embeddings.sh

@@ -1,6 +1,10 @@
 #!/bin/bash
 #
+<<<<<<< HEAD
+# Import Semantic Embeddings to ClickHouse (v2.1.0)
+=======
 # Import Semantic Embeddings to ClickHouse (v2.0.0)
+>>>>>>> origin/main
 # Standalone script for manual recovery (production-ready, idempotent)
 #
 # Usage:
@@ -11,7 +15,11 @@
 # This script uses ClickHouse-native JSONEachRow format for atomic bulk import.
 # Safe to run multiple times (idempotent via TRUNCATE).
 #
+<<<<<<< HEAD
+# v2.1.0: Uses pattern_embeddings_v2 (E5 model) and semantic_safe_embeddings
+=======
 # v2.0.0: Uses pattern_embeddings_v2 (E5 model) and semantic_safe_embeddings
+>>>>>>> origin/main
 
 set -euo pipefail
 IFS=$'\n\t'
@@ -36,7 +44,7 @@ fi
 
 source .env
 
-# Configuration v2.0.0
+# Configuration v2.1.0
 ATTACK_EMBEDDINGS_FILE="services/semantic-service/data/datasets/enterprise_attack_embeddings.jsonl"
 SAFE_EMBEDDINGS_FILE="services/semantic-service/data/datasets/safe_embeddings.jsonl"
 SECURITY_EDUCATION_FILE="services/semantic-service/data/datasets/security_education_embeddings.jsonl"

services/heuristics-service/Dockerfile

@@ -1,4 +1,4 @@
-# Heuristics Service (Branch A) - v2.0.0
+# Heuristics Service (Branch A) - v2.1.0
 FROM node:20-alpine AS builder
 
 # Security: Update npm to fix CVE-2024-21538 (cross-spawn) and CVE-2025-64756 (glob)