Security
- Fix command blocklist bypass via absolute paths and command substitution — thanks @dcpagotto
validatePathnow blocks symlink traversal to prevent arbitrary read/write — thanks @zjyhhhher- Added symlink security tests for
validatePath
Protocol
- Use SDK protocol version negotiation instead of a hardcoded version (found and suggested by @abcnow)
Features
- Add v2 feature flags with weighted A/B test variants
- Fix welcome page A/B test to include local-agent-mode clients
Release Tooling
- Release script now handles existing tags gracefully