v0.11.0 — one-command onboarding + Codex guard client
Added
safeinstall initis now one-command onboarding. Starter policy config → guard hooks for the agents actually present (.claude/,CLAUDE.md,.codex/,AGENTS.md,.cursor/,.cursorrules, or explicit--client claude,codex,cursor) → trust-surface lock over the result. Idempotent and fail-closed: an existing lock is never re-baselined — drift aborts init instead of blessing a tampered surface. New flags:--client,--no-guard,--no-lock,--mode warn|strict.- Codex is a first-class guard client.
safeinstall guard install --client codexregisters aPreToolUsehook in.codex/hooks.json; installs are rewritten through SafeInstall, unanalysable commands and registry runners fail closed (Codex has no ask decision yet). Users review the project hook once via/hooks.
Security
.codex/hooks.jsonand.codex/config.tomljoin the Agent Trust Surface enforcement zone.- E2E tests are isolated from host repo state (guard hooks spawn in fresh temp dirs).
Published to npm with Sigstore provenance from CI; the tarball reproduces byte-identically from the v0.11.0 tag.