v0.6.86

What's Changed

• Fix null-origin embed origin bypass by @glenn-sorrentino in #2224

Full Changelog: v0.6.85...v0.6.86

v0.6.85

What's Changed

• Allow docs screenshot release manifest artifact by @glenn-sorrentino in #2216
• #2188 Close test coverage gaps from PR #2187 by @hushline-dev in #2220
• Add browser E2EE regression test by @glenn-sorrentino in #2222
• Fix sandboxed embedded contact form submissions by @glenn-sorrentino in #2223

Full Changelog: v0.6.84...v0.6.85

v0.6.84

What's Changed

• Fix embed origin validation behind proxy by @glenn-sorrentino in #2207
• Defer 2FA session rotation until verification by @glenn-sorrentino in #2208
• Bound DKIM lookups in email header analysis by @glenn-sorrentino in #2210
• Do not trust DNS resolver AD flag for DKIM DNSSEC status by @glenn-sorrentino in #2212
• Pin Poetry export plugin in dependency audit by @glenn-sorrentino in #2211

Full Changelog: v0.6.83...v0.6.84

v0.6.83

What's Changed

• Fix docs screenshot publish recovery by @glenn-sorrentino in #2175
• Reject null/missing-origin embed submissions by @glenn-sorrentino in #2176
• Allow same-origin iframe submissions for embeds by @glenn-sorrentino in #2192
• Drop exhausted public record link failures by @glenn-sorrentino in #2194
• Harden workflow PR head qualification guard by @glenn-sorrentino in #2196
• Fix provenance roadmap baseline sync by @glenn-sorrentino in #2197
• Validate docs screenshot release tags before shell use by @glenn-sorrentino in #2199
• Escape public directory report listing fields by @glenn-sorrentino in #2200
• Resolve directory 'Request a correction' links to verified admin profile by @glenn-sorrentino in #2198
• Harden docs screenshots workflow release_key handling by @glenn-sorrentino in #2201
• Harden bump-personal-server-after-release workflow to prevent tampered branch merges by @glenn-sorrentino in #2202
• Harden staging infra release branch handling by @glenn-sorrentino in #2204
• Keep transient public-record link failures non-definitive by @glenn-sorrentino in #2203

Full Changelog: v0.6.82...v0.6.83

v0.6.82

What's Changed

• Fix docs screenshot capture sources by @glenn-sorrentino in #2159
• Keep info-only accounts out of featured carousel by @glenn-sorrentino in #2161
• Blur docs screenshot masks by @hushline-dev in #2162
• Avoid persisting PATs in docs-screenshots workflow clones by @glenn-sorrentino in #2163
• Harden docs screenshot publishing: reject symlinks and avoid embedding PATs by @glenn-sorrentino in #2164
• Harden docs screenshot publishing by @glenn-sorrentino in #2165
• Reject cross-site embed form posts by @glenn-sorrentino in #2166
• Disable password reset via notification recipients by @glenn-sorrentino in #2167
• Protect multi-recipient encrypted notification bodies by @glenn-sorrentino in #2168
• Allow sandboxed embed form submissions by @glenn-sorrentino in #2169
• Harden directory caution badge normalization by @glenn-sorrentino in #2170
• Sanitize SecureDrop refresh PR summaries by @glenn-sorrentino in #2171
• Render caution badge for cautious users in Verified directory tab by @glenn-sorrentino in #2172
• Fix runner automation documentation link by @glenn-sorrentino in #2174
• Restrict epic child issue auto-close workflow by @glenn-sorrentino in #2173

Full Changelog: v0.6.81...v0.6.82

v0.6.81

What's Changed

• Update embedded font family by @glenn-sorrentino in #2158

Full Changelog: v0.6.80...v0.6.81

v0.6.80

What's Changed

• Show configured model in hourly Codex status by @hushline-dev in #2153
• Move agent automation to dedicated repository by @hushline-dev in #2155
• Tighten embed CSP and privacy notice by @glenn-sorrentino in #2156
• Mask 2FA secrets in docs screenshots by @hushline-dev in #2157

Full Changelog: v0.6.79...v0.6.80

v0.6.79

What's Changed

• Allow sandboxed Safari embeds to load Hush Line assets by @hushline-dev in #2152

Full Changelog: v0.6.78...v0.6.79

v0.6.78

What's Changed

• Add Safari fallback for embedded form branding by @hushline-dev in #2150
• Add dynamic height resizing for embedded forms by @hushline-dev in #2151

Full Changelog: v0.6.77...v0.6.78

v0.6.77

What's Changed

• Align embedded form submit button styles by @glenn-sorrentino in #2148
• Use brand color for embedded form links by @hushline-dev in #2149

Full Changelog: v0.6.76...v0.6.77