Security fix on the addon's exception path (G6 regression — uncaught
backend exceptions previously forwarded placeholders unmodified).
Config hardening (extra=forbid on every model, structural placeholder
validation, ambiguous-placeholder denial, tighter binding scopes).
Release tooling (PyPI install smoke as release-gate, daily PyPI canary,
pre-tag local smoke harness).