v0.3.0

Added

• Added PersonName recognizer for dictionary-backed first/last name detection with context-sensitive confidence.
• Added PhysicalAddress recognizer for US-style street addresses.
• Added scanner allow_list and deny_list support for literal values.
• Added .cloakrs.toml config support for CLI allow/deny lists.
• Added PromptSanitizer, PromptMapping, and placeholder restore helpers for LLM prompt workflows.
• Added cloakrs pre-commit command for scanning staged file paths.
• Added .pre-commit-hooks.yaml hook metadata.
• Added structured JSONL audit logging with --audit-log.
• Added new cloakrs-tracing crate with RedactLayer for sanitized tracing event output.
• Added a 10,000-line false-positive corpus test for default recognizers.

Changed

• Bumped all workspace crates and internal dependencies to 0.3.0.
• Updated README and docs for prompt sanitization, pre-commit usage, audit logging, supported entities, and release workflow.
• Expanded benchmarks to include the new person-name and physical-address recognizers.

Notes

• Audit logs intentionally omit raw matched PII and include metadata such as entity type, location, confidence, recognizer ID, offsets, and text length.
• cloakrs-tracing::RedactLayer emits sanitized events from its own layer, but cannot mutate fields observed by sibling tracing subscriber layers.
• Name and address detection are heuristic and may need tuning for domain-specific corpora.
• The pre-commit hook expects the cloakrs binary to already be on PATH, for example from cargo install cloakrs-cli --locked.