Highlights
- Added browser isolation profiles for Chromium-family browsers, Firefox, and LibreWolf.
- Added hard browser mode for ephemeral sessions and soft browser mode with ai-jail-only persistent browser state.
- Added Gemini CLI support and bootstrap policy generation.
- Added
--private-home/private_home = truefor writable-project sessions without automatic host-home dotdir passthrough. Linux uses tmpfs$HOME; macOS uses seatbelt allowlists. - Documented browser sandbox tradeoffs, Chromium
--no-sandboxbehavior inside ai-jail, GPU behavior, and expected desktop-service warning noise. - Fixed flaky/global-config CI coverage and the clippy
needless_borrowfailure before retagging.
Verification
cargo fmt --allcargo clippy -- -D warningscargo testcargo build --releasegit diff --check
Fixes #36.