Agent Quarantine v0.1.0 is the first public beta of a local command firewall and safety layer for AI coding agents.\n\nHighlights:\n- PATH-shim based command firewall for common agent-launched tools\n- Blocks high-risk commands such as remote scripts piped into shells, destructive root removal, credential-file reads, force pushes, privileged Docker, and persistence mechanisms\n- Asks for approval on risky commands and denies by default in non-interactive mode\n- Preflight scanner for risky repo setup files, agent instructions, package scripts, and MCP configs\n- JSONL audit logs and Markdown reports\n\nDemo assets are attached to this release.\n\nSecurity boundary: this is not a VM or kernel sandbox. Absolute-path binaries may bypass PATH shims, and allowed binaries can still perform direct file and network I/O.