v0.4.0

What's Changed

• Harden the action: major-scoped version resolution + CI smoke-test by @0xLeif in #28
• Add: ubuntu-latest to the action smoke-test matrix by @0xLeif in #27
• Fix: fail loudly on bad policy, confidence, and revision input; history-ordered log by @0xLeif in #29

Full Changelog: v0.3.2...v0.4.0

v0.3.2

Full Changelog: v0.3.1...v0.3.2

v0.3.1

What's Changed

• Add: Marketplace-ready GitHub Action that gates any repo by @0xLeif in #26

Full Changelog: v0...v0.3.1

v0.3.0

What's Changed

• Rebuild site on CHANGELOG changes (accurate version badge) by @0xLeif in #20
• Add: release binary + brew formula automation, lead with brew, decouple Pages from self-hosted by @0xLeif in #21
• Make the hero version badge dynamic (was hardcoded v0.1.0) by @0xLeif in #22
• Security: move CI off self-hosted runners by @0xLeif in #23
• Add: animated demo GIF to README and site by @0xLeif in #24
• Add: Linux support via posix_spawn ProcessRunner and Linux CI job by @0xLeif in #25

Full Changelog: v0.2.0...v0.3.0

attest v0.2.0

Hardening release. Security fix: attestations are now bound to their commit, rejecting cross-commit signature replay. Plus prominent trust-model docs, cleaner errors, commit-status checks, and a CI provenance ledger that grows on every push.

attest v0.1.0

First release — signed provenance ledger keyed to commit SHAs (git notes, Ed25519). Commands: sign/verify/log/export/keygen. 11 policy rules incl. human-approval, signer-pinning, freshness. macOS, self-hosted CI.