v0.2.15

• Added Python SDK support for static guest host mappings via Sandbox.add_host(host, ip).

v0.2.14

• Fixed host_fs append writes by preserving guest O_APPEND semantics across VFS open/create requests, including Linux open-flag translation and append-mode writes for real and in-memory providers, contributed by @vojtapolasek.

v0.2.13

• Added root-only ownership initialization for raw/named disk mounts via --disk ...:uid=UID,gid=GID, useful for writable ext4 volumes mounted for database workloads.

v0.2.12

• Fixed VFS directory fsync support for host_fs mounts, including fsync on the workspace root and child directory file descriptors, addressing atomic-write durability workflows (e.g. RDBMS), contributed by @sosso in #103.

v0.2.11

• Added host_fs mount owner overrides so files can appear with a configured UID/GID inside the VM, including CLI -v host:guest:host_fs,uid=1000,gid=1000 support plus Go, Python, and TypeScript SDK support, contributed by @chriszwickerergon in #101.

v0.2.10

• Improved macOS interception-mode DNS reliability by bounding upstream DNS exchanges with timeouts and logging failed upstream queries instead of letting blackholed DNS requests pin goroutines.
• Added a global --log-level CLI flag, configurable through MATCHLOCK_LOG_LEVEL, to control process-wide structured logging at debug, info, warn, or error levels.

v0.2.9

• Fixed Linux --allow-host DNS reachability for intercepted sandboxes by adding a host-side DNS forwarder and nftables redirection for guest DNS queries (#94, initial contribution by @nemtsov).
• Improved Linux interception reliability by binding proxy services to the sandbox gateway IP, applying secret-related allowed hosts before firewall setup, and falling back across configured DNS resolvers when an upstream fails.

v0.2.8

• Added custom secret placeholder support across matchlock run and the Go, Python, and TypeScript SDKs, including --secret-placeholder, --secret-file, and builder helpers for caller-defined in-VM placeholder values.
• Fixed overlay rootfs preparation to avoid shadowing merged-/usr layouts when injecting the guest init binary.

v0.2.7

Added Basic Auth secret placeholder replacement including unpadded credentials.

v0.2.6

• Added guest kernel selection across the CLI and Go, Python, and TypeScript SDKs via kernel refs, including file:///absolute/path and OCI image references.
• Added matchlock kernel ls and matchlock kernel rm for inspecting and cleaning cached guest kernels, backed by persistent kernel cache metadata.
• Expanded kernel acceptance and SDK coverage, and bumped the default pinned guest kernel to 6.19.8.