Sentinel v0.1.1 Maintenance Release

Sentinel v0.1.1 Maintenance Release

Maintenance release focused on public OSS readiness and security posture.

Security and Reliability

• Added CodeQL scanning for Python and JavaScript/TypeScript.
• Fixed a CodeQL-reported high-severity polynomial regular expression risk in
  scarcity-claim extraction.
• Added regression coverage for bounded scarcity-claim parsing, including a
  long-space adversarial input.
• Added frontend npm audit --audit-level=moderate to CI.
• Resolved the frontend PostCSS advisory with a narrow postcss@8.5.15
  override; npm audit now reports 0 vulnerabilities.

Maintainer Automation

• Expanded CI to cover backend tests, seed eval, frontend audit, lint, and build.
• Added Dependabot schedules for GitHub Actions, pip, and frontend npm packages.
• Grouped React and React-DOM updates so runtime package bumps are reviewed
  together.
• Deferred ESLint semver-major updates until the migration can be handled
  intentionally.

Verification

• Latest CI: https://github.com/vedantggwp/sentinel/actions/runs/26730949015
• Latest CodeQL: https://github.com/vedantggwp/sentinel/actions/runs/26730949013
• python -m pytest -q passes 95 tests.
• python -m sentinel.eval reports seed regression 25/25.
• GitHub code scanning reports 0 open alerts after this release.