This release removes the allowInsecure option to reduce friction while maintaining core security features.

Highlights:
- Removed allowInsecure requirement from shell, script, request, and git steps
- Enhanced README with comprehensive security best practices
- Updated llm-agent.yaml template with interactive LLM + human workflow example
- Retained command denylist, SSRF protection, and secret redaction

See commit message for full details.