What's Changed
- feat(profile): add JSONC support for profile files by @SequeI in #974
- fix(macos): emit platform rules after user write allows by @kipz in #971
- docs(readme): refine project description and quick start by @lukehinds in #988
- feat(profile): allow profiles to specify a target binary by @SequeI in #975
- ci(pr-summary): add pull request summary workflow by @lukehinds in #980
- chore(deps): update sigstore crates to 0.8.0 by @lukehinds in #992
- feat: add Bitwarden credential source (bw:// URI scheme) by @caiocdcs in #990
- ci(release): enable github attesations workflow for releases (current and future) by @lukehinds in #1006
- chore(deps): bump similar from 3.1.0 to 3.1.1 by @dependabot[bot] in #1013
- chore(deps): bump docker/build-push-action from 7.1.0 to 7.2.0 by @dependabot[bot] in #1009
- chore(deps): bump actions/attest-build-provenance from 96b4a1ef7235a096b17240c259729fdd70c83d45 to e8998f949152b193b063cb0ec769d69d929409be by @dependabot[bot] in #1010
- chore(deps): bump docker/login-action from 4.1.0 to 4.2.0 by @dependabot[bot] in #1011
- chore(deps): bump docker/setup-buildx-action from 4.0.0 to 4.1.0 by @dependabot[bot] in #1012
- chore(deps): bump serde_json from 1.0.149 to 1.0.150 by @dependabot[bot] in #1015
- chore(deps): bump landlock from 0.4.4 to 0.4.5 by @dependabot[bot] in #1014
- feat(policy): add java_runtime group and java-dev profile by @panga in #995
- chore(deps): bump rcgen from 0.13.2 to 0.14.8 by @dependabot[bot] in #900
- feat: session lifecycle hooks (#954) by @caiocdcs in #976
- refactor(pack-hints): refresh in detached process to avoid threads by @lukehinds in #1005
- fix(sandbox): preserve symlink path when adding CWD capability on macOS by @advaithsujith in #680
- fix(proxy): return 502 with audit entry on upstream connect failure by @attila in #1000
- fix: replace fd-based IPC with named socket for URL open helpers by @panga in #1007
New Contributors
Full Changelog: v0.57.0...v0.58.0