Changelog
- 5cc52d5 Add EU AI Act compliance mapping, fix stale doc stats (#88)
- 2ce89bf Add OpenSSF Best Practices passing badge (#93)
- a74e9f1 Add supply chain hardening: SLSA provenance, SBOM, govulncheck, scorecard (#91)
- e31ae90 Fix 6 security findings from internal review (#90)
- 4662fa9 Fix SBOM generation: downgrade cyclonedx-gomod to v1.9.0 for Go 1.24 compat (#95)
- 7191d38 Fix fetch proxy DNS subdomain exfiltration bypass (#87)
- c30ad36 Improve OpenSSF Scorecard: pin images, fix token perms, harden branch rules (#92)
- b24fba6 Prepare v0.2.1 release (#94)