v0.8.5

• Harden 0.8.5 release readiness (#40) (6cc2d5b)
• harden: pre-empt adversarial audit — close 11 verified Low/Med findings (no API change) (#39) (0243cc3)
• release: 0.8.5 — docs correctness + honesty pass + victauri check tool-count fix (#38) (e6088ce)
• fix(compat): clean 3-app green run + harness hardening (inject/diagnostics/window-show) (#37) (2b548a5)
• fix: honest compat claim + compat-matrix drift + victauri check tool count (#36) (ccee316)
• chore(vscode): bump extension to 0.8.4 (version-sync with 0.8.4 release) (#35) (21e52ae)

v0.8.4

• ci: wait for webview bridge before diagnostics (e74df6f)
• fix(cli): tighten version-skew diagnostics (cfa17b1)
• chore(release): prepare 0.8.4 (0c455db)
• fix(mcp): backfill compat Mcp-Session-Id for stateless transport + version-skew DX (9d572fb)
• chore(compat): Tauri-2-only compat suite + drop stale flat docs (#33) (26d30e5)
• docs: add "Will Victauri work on your app?" compatibility decision matrix (#32) (b49962c)
• chore(vscode): bump extension to 0.8.3 (version-sync with 0.8.3 release) (#31) (139aafb)

v0.8.3

• fix(0.8.3): hidden-window screenshot errors clearly + query_db sql alias (live-4DA DX) (#30) (e640a92)
• chore: record 0.8.2 host-crash as VERIFIED FIXED (89-min soak) + gitignore AGENTS.md (#29) (f689232)

v0.8.2

• release: 0.8.2 — REAL host-crash fix (drain-loop amplifier removed); 0.8.1 was partial (#28) (0a04f83)

v0.8.1

• fix(0.8.1): panic-proof on_main dispatcher (adversarial-audit hardening) (#27) (fc50918)
• release: 0.8.1 — host-crash fix (main-thread webview access) + security/robustness hardening (#26) (fbbc732)
• fix(mcp): accept window/window_label/webview_label interchangeably on all webview tools (#25) (ef5e380)
• chore(vscode): bump extension to 0.8.0 (ship 0.7.10 security hardening) (#24) (f7ba559)

v0.8.0

• fix(demo-app): ipc_integrity_check asserts round-trip soundness, not zero errors (#23) (a5e3640)
• release: 0.8.0 — command catalog, cross-engine, robustness (GPT-5.5 audit-hardened) (#22) (5512356)
• docs: record command_catalog action + gauntlet/robustness Current State (#20) (1015819)
• feat: scale gauntlet (cross-engine net) + IPC command catalog + robustness fixes (#19) (af27332)
• docs(readme): add browser-mode removal notice + migration pointer (#16) (d090bb7)
• chore: remove browser mode (victauri-browser crate + extensions + npm) (#14) (ead3a53)

v0.7.11

• fix(0.7.11): resolve all 6 in-the-wild issues from the live 4DA MCP session (#13) (efd46b1)
• ci: enforce CI as a gate (aggregator job + timeouts + audit escape hatch) (#12) (eb9d975)

v0.7.10

• fix(release): close round-4 GPT-5.5 audit blockers for 0.7.10 (#11) (6eda9ca)
• fix(security): close 0.7.10 release blockers from the round-3 GPT audit (#10) (9d14ed0)
• fix(mcp): run the Streamable-HTTP transport stateless by default (#9) (7abf9d0)
• security: round-2 red-team hardening for 0.7.10 (#8) (6d9d430)
• security: harden 0.7.10 release surfaces (red-team audit) (#7) (22bb537)
• chore(release): 0.7.10 — real-frontend-traffic profiling + honest ghost detection (#6) (b9fd6de)
• fix(introspect+ghost): profile REAL frontend traffic + honest ghost detection (#5) (7073930)
• fix(npm+docs): npm 0.7.9 (ships hardened native host) + accurate A4 trust-model docs (7cbce51)
• docs(claude): add v0.7.9 Current State — adversarial-audit hardening summary (b3dac2d)

v0.7.9

• fix(pre-publish): resolve sweep findings + bump to 0.7.9 (a0404a0)
• fix(docs): bump README vitest count 169->170 to match code (A4 added a test) (b15dc43)
• fix(docs): repair broken intra-doc link to private mcp::authz::canonical_capability (f1240c7)
• fix(browser-ext): add missing extension icons so Chrome/Firefox actually load (7b66ce0)
• fix(browser-ext): close A4 channel forgery — HMAC-authenticate the ISOLATED<->MAIN bridge (608faf3)
• fix(security+ext): discovery-dir hardening, browser experimental label, extension manifest default_locale (18f680c)
• fix(security): re-audit batch — port overflow, watchdog timeout, CSS escapes, resource bounds, release-safe macro (8a2a478)
• test(security): exhaustive authz spec + command-policy side-effect tests + edge fixes (1376715)
• docs(changelog): record the GPT-5.5 audit-response security hardening (664dc80)
• fix(supply-chain+browser): npm consent + ci pin + browser trust-model honesty (d7a108b)
• fix(docs+core): honest release-cost claim, Firefox scope, port-overflow (audit B6/C4/C7) (e3d45c7)
• fix(browser): native-host hardening — token/discovery/ext-id/bounds (audit B5/C3/B9/C5) (479e04c)
• fix(security): resource privacy gate + empty-token + PRAGMA allowlist (audit B1/B2/C10) (b588aa0)
• fix(ci+watchdog+deps): release-pipeline + watchdog DoS hardening (audit A6/B12/D10) (13b1cfe)
• fix(security): centralized action-level authorization (audit A3/B4 + route.clear bypass) (fdae718)
• docs+feat: realign positioning to the eval-validated thesis + ghost-cmd since_ms window (3bebe3b)
• docs: make the compat claim honest + reproducible (46686ef)
• chore(vscode): sync extension to 0.7.8 (65e380a)

v0.7.8

• release: 0.7.8 — victauri-plugin compiles in release + no-default-features (5f1c895)
• fix(compat): authenticate the smoke battery (auth is on by default) (47ae1d8)
• fix(plugin): compile cleanly in release + no-default configs; guard them in CI (8e9975d)
• docs(vscode): commit the 0.7.7 changelog entry (missed due to case-fold path) (5154f4f)
• fix(plugin): compile with --no-default-features (sqlite off) (38637aa)
• chore(vscode): sync extension to 0.7.7 (d55122c)