• security: require a full or relative file path for --profile=FILE -
  using it with just a filename has security implications and is highly
  discouraged (#6896)
• security: profiles: update the list of terminal emulators that can be used
  for sandbox escape (cbf4308 c8a6707)
• feature: hide PID 1 inside of the sandbox and add --unhide-pid1 command to
  unhide (#7046)
• feature: add --hostname-randomize command and profile option - stop
  randomizing the hostname by default to fix breakage with X11 programs
  (#7062 #7095)
• feature: add --debug-syscall-groups command (#7049 #7055)
• feature: add apparmor profiles for --nettrace command (#7093)
• modif: reorganize & update syscall groups (#7024 #7027 #7034 #7039 #7042
  #7044 #7045)
• modif: make Xephyr default for --x11 option - currently Xpra is not
  available in Debian/Ubuntu and derivatives (#7094)
• modif: improve feature disabled warning/error messages (#7074)
• modif: add a syscall header for the x32 ABI (6a6ff98)
• modif: update all syscall headers, except for s390 32-bit (3db2e97
  e9cccef)
• bugfix: /home/user is mounted with noexec when --private is used (#6921)
• bugfix: add link-local addresses to 'nolocal' firewall configs (#7054)
• bugfix: map sandbox hostname to ipv6 in /etc/hosts (#7077)
• bugfix: add localhost lines to /etc/hosts (#7048 #7079)
• bugfix: lib: fix memory leaks in syscall_in_list() (#7098)
• docs: add missing items and cleanup things related to release 0.9.78 in
  README/README.md/RELNOTES
• docs: man: fix non-ASCII hyphens in the output - copy-pasting commands fail
  on the command line (#5903)
• docs: various other fixes and changes
• docs: man: fix arch for syscall map in seccomp example (#7064)
• docs: man: clarify --debug-syscalls for seccomp (#7065)
• build: Void Linux/musl libc compile fixes (e602396, 0949685)
• build: fix compiler warning for ./configure --enable-only-syscfg-profiles
  option (d1a58de)
• build: remove ./configure --disable-man option (#7091)
• build: remove ./configure --disable-usertmpfs option (#7092)
• build: fix discarded const qualifier compiler warnings (#7068)
• tests: update gcov testing scripts and calls in the source code
• tests: update various automated tests
• tests: rework and add fixes for "make test-compile" (5c7c58f)
• tests: fix strace color probing in allow-debuggers & seccomp-ptrace (#7099)
• ci: gitlab: install missing git-buildpackage dependency (#7017)
• profiles: yt-dlp: support deno JavaScript engine to fix YouTube (#6999)
• profiles: yt-dlp: support browser cookies for authenticated downloads
  (#7030)
• profiles: add deno paths (#7032)
• profiles: vesktop: fix screen sharing (#7043)
• profiles: disable by default several systemd tools (ca934a2)
• profiles: fix allowing netcat in playonlinux and ssh profiles (#6911 #7059)
• profiles: firefox: add new ~/.config/mozilla dir (#7056 #7061)
• profiles: blobby: allow lua (#7102)
• new profiles: fragments (#7023)
• new profiles: srb2 (#6996)
• new profiles: zen, zen-bin, zen-browser (#7029)
• new profiles: halloy IRC client (#7100)