v0.6.0

Changelog

• 310fdc9 Merge branch 'main' of github.com:fawdyinc/shellguard
• 1f21afa Fix goreleaser org rename and add Windows builds (#101)
• ede074f Merge branch 'main' of github.com:fawdyinc/shellguard
• fe4353e Allow --no-pager flag for all systemctl subcommands (#100)
• c936233 Fix connection key mismatch between Go and fawdy2
• 59483de Merge pull request #99 from fawdyinc/feat/validate-status-local-transport
• abb5eef Add validate, status tools and local transport
• 01804c1 Merge pull request #98 from fawdyinc/feat/org-rename-fawdyinc
• e44d1a7 Rename Go module from jonchun/shellguard to fawdyinc/shellguard
• d1a7215 Merge pull request #97 from fawdyinc/feat/passphrase-and-tcp-control
• fd71e16 Add native passphrase decryption and password auth support
• 8d9ca6d Merge pull request #91 from fawdyinc/feat/disabled-tools-config
• d824cc0 Migrate control server from Unix socket to TCP localhost
• d3f03c8 Merge branch 'feat/disabled-tools-config' of github.com:fawdyinc/shellguard into feat/disabled-tools-config
• 5dc2923 Merge main into feat/disabled-tools-config
• 28007d9 Merge pull request #96 from fawdyinc/feat/allow-nproc-docker-stats
• 516106c Allow nproc and docker stats subcommands
• 5b09938 Merge pull request #95 from fawdyinc/fix/allow-diagnostic-flags
• 7dce2f0 Merge pull request #92 from fawdyinc/feat/disabled-tools-server
• fcbb963 Merge pull request #90 from fawdyinc/feat/manifest-collision-detection
• 4b46c0a Merge pull request #89 from fawdyinc/fix/test-socket-paths-and-lint
• 17447c4 Merge pull request #93 from fawdyinc/fix/documentation-framing
• d0be433 fix(manifest): allow additional safe diagnostic flags
• 888ae33 fix(manifest): allow diagnostic flags for systemctl and journalctl
• 46a12e9 Merge branch 'main' of github.com:fawdyinc/shellguard
• 7650df0 feat(control): add unix control socket API and config wiring
• 2dd0529 Merge pull request #94 from fawdyinc/jonchun-patch-1
• d503da4 Remove demo section from README
• 0fb4b4c docs: fix read-only framing, remove stale list_commands, document disabled_tools
• 8ff8517 feat(server): skip registration of disabled tools
• efb4e25 feat(config): add disabled_tools config option
• a0ea9ff feat(manifest): detect duplicate manifest names at load time
• b3036e6 test: use os.MkdirTemp for shorter socket paths, fix staticcheck nil warnings
• 064c73c test: fix unix socket path length issue on macOS
• d99dedf Merge branch 'main' of github.com:jonchun/shellguard # Please enter a commit message to explain why this merge is necessary, # especially if it merges an updated upstream into a topic branch. # # Lines starting with '#' will be ignored, and an empty message aborts # the commit.
• 7d1ccbc Add secrets protection design doc

v0.5.2

Changelog

• 106061c chore: rename references from jonchun/shellguard to fawdyinc/shellguard

v0.5.1

Changelog

• 106061c chore: rename references from jonchun/shellguard to fawdyinc/shellguard

v0.4.0

Changelog

• 649f911 Merge pull request #80 from jonchun/feat/execute-response-hostname
• 696be0f feat: include hostname in execute response
• 90b8951 Merge pull request #79 from jonchun/fix/readme-video-url
• 278260f fix: use raw URL for demo video so it renders on GitHub
• 625f244 Merge pull request #77 from jonchun/fix/iptables-allow-read-only-listing
• d6f4102 Merge pull request #78 from jonchun/docs/add-demo-video
• bb77c19 docs: add demo video to README
• 6de396f fix: allow iptables read-only listing flags (-L, -S, -n, -v, -t)
• 7a182ac Merge pull request #75 from jonchun/chore/cleanup-opencode
• 391373e chore: add opencode/ to .gitignore and document release process in AGENTS.md

v0.3.1

Changelog

• f1a92e6 make connection lifecycle idempotent and safe for subagents
• bc4f441 Merge pull request #74 from jonchun/feature/system-ssh-mode
• 3b0f6d3 fix: remove forced StrictHostKeyChecking in system SSH mode
• 8884573 feat: add system SSH mode for full ~/.ssh/config support
• db06599 Merge pull request #73 from jonchun/agent/issue-7-govulncheck
• 3c878c6 ci: consolidate lint, build, and govulncheck into single checks job
• 4109514 ci: add govulncheck vulnerability scanning job
• 72396b4 Merge pull request #45 from jonchun/copilot/remove-custom-min-function
• 861d0bf Merge pull request #47 from jonchun/agent/issue-18-limit-reader
• 68b30d2 fix: add io.LimitReader to toolkit HTTP downloads
• 161766b Merge pull request #46 from jonchun/agent/issue-21-extract-loadFromFS
• d839c2c Remove custom min helper
• 4caa20d refactor: extract shared loadFromFS helper for manifest loading
• dde75c1 Initial plan
• aad6e72 Merge pull request #42 from jonchun/agent/issue-2-ssh-cleanup-shutdown
• 3518f0d merge: resolve conflict with main in Close() signature
• d4d8a5e Merge pull request #41 from jonchun/agent/issue-1-dedup-subcommand-map
• fcca4d2 Merge remote-tracking branch 'origin/main' into agent/issue-1-dedup-subcommand-map
• 0d47fa5 fix: add context.Context to Disconnect/Close and always clear state on Close
• 332f77f chore: add CodeRabbit config to gate reviews by label
• 88f7ae7 Merge pull request #43 from jonchun/agent/issue-9-propagate-context-deploy-tools
• 91925f6 fix: propagate caller context through toolkit DeployTools
• 7f4ebda fix: clean up SSH connections on graceful shutdown
• 04436be refactor: extract duplicated subcommandCommands map to manifest package
• b2f5d28 refactor: extract duplicated subcommandCommands map to manifest package
• 827bb55 Merge pull request #38 from jonchun/agent/issue-28-ssh-docs
• f854e1a chore: bump default version to 0.2.0
• 491645a fix: pass binary version through to MCP server implementation
• c900f68 Merge pull request #37 from jonchun/allow-wget-restricted
• 255cc53 docs: add SSH configuration, authentication, and host key verification guide
• 06124db Merge pull request #39 from jonchun/agent/issue-26-passphrase-detection
• 2fa6125 Merge pull request #40 from jonchun/agent/issue-5-add-security-md
• 6b8286d Add threat model section clarifying ShellGuard's role as an LLM fail-safe
• fc0fe88 refactor(ssh): inline passphrase detection instead of separate loadKeyFile
• b1a2671 Add SECURITY.md with vulnerability disclosure policy and security model documentation
• 3db68ad test: add comprehensive wget flag restriction tests
• 1c41d9b feat(ssh): detect passphrase-protected keys and guide users to ssh-agent
• b0fdcc8 feat(manifest): allow wget with GET-only, stdout-only policy
• f35a9d8 Merge pull request #36 from jonchun/agent/issue-19-userhomedir-error
• 4bdf980 fix(config): propagate error from os.UserHomeDir in defaultConfigPath
• 6d030c7 Merge pull request #35 from jonchun/agent/issue-27-host-key-tofu
• 7c3ce90 Merge remote-tracking branch 'origin/main' into agent/issue-27-host-key-tofu
• 3c69e77 fix(ssh): propagate error from defaultKnownHostsPath instead of literal ~ fallback
• 04325f5 Merge pull request #34 from jonchun/agent/issue-12-remove-dual-logger
• fd7ca61 Merge pull request #33 from jonchun/agent/issue-13-explicit-sudo-flags
• fdf8a97 Merge pull request #32 from jonchun/agent/issue-16-collision-safe-path-bound
• 9acd1bb feat(ssh): add host key verification with trust-on-first-use (TOFU)
• 9ed7734 fix: resolve dual-logger confusion in RunStdio (#12)
• 868ee6d fix(validator): make sudo flag validation explicit instead of accidental
• 0285bdd fix(server): add upper bound to collisionSafePath loop
• cab9e59 Merge pull request #29 from jonchun/agent/issue-24-ssh-agent-support
• 7eaa020 fix(ssh): remove unused writeTestKeyFile helper to fix lint
• 9fe00b5 merge: resolve conflicts with main (issues #25, #31)
• 564fb35 feat(ssh): add ~/.ssh/config resolution for host aliases, per-host settings (#31)
• 245a3bd Merge pull request #30 from jonchun/agent/issue-25-auto-discover-ssh-keys
• 503cb52 fix(ssh): keep agent connection open through SSH handshake
• 4eb7d80 fix(ssh): address code review - skip tests when home dir unavailable, OS-agnostic path test
• c414c26 fix: explicitly discard errors to satisfy errcheck lint
• 288f51b feat(ssh): auto-discover default SSH keys (~/.ssh/id_ed25519, id_rsa, etc.)
• eaaca32 test(ssh): add tests for default SSH key discovery
• e189f51 feat(ssh): add ssh-agent support for key authentication
• 812684c chore: add .worktrees to gitignore
• 4a08ca7 fix: update goreleaser config for v2 deprecations and homebrew tap auth
• b249345 docs: add per-client MCP installation instructions to README
• 5eaf0b9 Initial Commit

v0.3.0

What's Changed

Features

• Add system SSH mode for full ~/.ssh/config support (#74)

Fixes

• Remove forced StrictHostKeyChecking in system SSH mode (#74)
• Add io.LimitReader to toolkit HTTP downloads (#47)
• Propagate caller context through toolkit DeployTools (#43)
• Add context.Context to Disconnect/Close and always clear state on Close (#42)
• Clean up SSH connections on graceful shutdown (#42)

Refactors

• Extract shared loadFromFS helper for manifest loading (#46)
• Extract duplicated subcommandCommands map to manifest package (#41)
• Remove custom min helper (#45)

CI

• Add govulncheck vulnerability scanning (#73)
• Consolidate lint, build, and govulncheck into single checks job (#73)

Docs

• Add SSH configuration, authentication, and host key verification guide (#38)

v0.2.0

Changelog

• 7a42737 chore: bump default version to 0.2.0
• df72780 fix: pass binary version through to MCP server implementation
• 0936dd2 Merge pull request #37 from jonchun/allow-wget-restricted
• 916e428 Merge pull request #39 from jonchun/agent/issue-26-passphrase-detection
• d6eadbc Merge pull request #40 from jonchun/agent/issue-5-add-security-md
• b4460d3 Add threat model section clarifying ShellGuard's role as an LLM fail-safe
• 37decd7 refactor(ssh): inline passphrase detection instead of separate loadKeyFile
• f8acb22 Add SECURITY.md with vulnerability disclosure policy and security model documentation
• a435e00 test: add comprehensive wget flag restriction tests
• 9f961b0 feat(ssh): detect passphrase-protected keys and guide users to ssh-agent
• b1056ab feat(manifest): allow wget with GET-only, stdout-only policy
• 9d6af56 Merge pull request #36 from jonchun/agent/issue-19-userhomedir-error
• 4f31cab fix(config): propagate error from os.UserHomeDir in defaultConfigPath
• 90f4fc2 Merge pull request #35 from jonchun/agent/issue-27-host-key-tofu
• da2b10f Merge remote-tracking branch 'origin/main' into agent/issue-27-host-key-tofu
• d3bc01b fix(ssh): propagate error from defaultKnownHostsPath instead of literal ~ fallback
• ec2d51c Merge pull request #34 from jonchun/agent/issue-12-remove-dual-logger
• 75cc2b9 Merge pull request #33 from jonchun/agent/issue-13-explicit-sudo-flags
• d4a299a Merge pull request #32 from jonchun/agent/issue-16-collision-safe-path-bound
• 44e8779 feat(ssh): add host key verification with trust-on-first-use (TOFU)
• 870c9ee fix: resolve dual-logger confusion in RunStdio (#12)
• 9c1d1b1 fix(validator): make sudo flag validation explicit instead of accidental
• 073bfd5 fix(server): add upper bound to collisionSafePath loop
• ca20a7f Merge pull request #29 from jonchun/agent/issue-24-ssh-agent-support
• 7c44a92 fix(ssh): remove unused writeTestKeyFile helper to fix lint
• 0d44243 merge: resolve conflicts with main (issues #25, #31)
• e3080c4 feat(ssh): add ~/.ssh/config resolution for host aliases, per-host settings (#31)
• c3a90e0 Merge pull request #30 from jonchun/agent/issue-25-auto-discover-ssh-keys
• 925aa6e fix(ssh): keep agent connection open through SSH handshake
• 3b2799a fix(ssh): address code review - skip tests when home dir unavailable, OS-agnostic path test
• f1177ad fix: explicitly discard errors to satisfy errcheck lint
• 3d983a3 feat(ssh): auto-discover default SSH keys (~/.ssh/id_ed25519, id_rsa, etc.)
• 3519a6e test(ssh): add tests for default SSH key discovery
• 23d002d feat(ssh): add ssh-agent support for key authentication
• 33e3105 chore: add .worktrees to gitignore
• 94dd187 fix: update goreleaser config for v2 deprecations and homebrew tap auth
• fb05611 docs: add per-client MCP installation instructions to README

v0.1.0

Changelog

• 7d321c1 Initial Commit