v1.0.6

What's Changed

P0 — Critical Fixes

• Config priority chain: Environment variables now correctly override CLI flags (env > CLI > YAML)
• SARIF informationUri: Fixed broken GitHub link

P1 — Reliability

• Warn action logging: Gate rule violations with warn action now emit stderr logs
• Agent loop auto-save: Checkpoints saved every 3 iterations for crash recovery

P2 — Security & Correctness

• Snapshot list/delete/version: Fixed list defaults, delete --id, version round-trip
• Symlink containment: grep and list_files no longer follow symlinks outside workspace
• Shell exec allowlist: Checks both raw token and basename

P3 — Configurability

• Schema version validation: Only version '1' accepted
• max_iterations: Configurable via YAML, CLI, or env var

Documentation

• README: Corrected shell_exec sandbox claim