Install self-healing + CE security fixes:
- Self-healing sparse checkout: existing users with broken installs (v5.7.5-5.7.9 sparse-checkout bug) are automatically repaired on next
install.shrun. Detects missingskills/orhooks/, re-runs sparse-checkout, falls back to disabling sparse if repair fails - Subshell fail() fix:
fail()inside a( subshell )only exits the subshell, not the parent. Integrity check failures now correctly abort the installer via(...) || failpattern (CE review catch) - Removed insecure checksum fallback: v5.7.10 introduced a fallback to in-repo checksums when the release asset was missing. CE security review flagged this as defeating the out-of-band verification model (a single compromised commit could swap both code and checksums). Removed — missing release asset now warns and skips verification, doesn't pretend to verify with same-channel checksums
- CHECKSUMS.sha256 asset attached for out-of-band integrity verification