WritersProof CLI v1.2.2

WritersProof CLI v1.2.2

Cryptographic authorship witnessing CLI.

Install

macOS (Homebrew):

brew install writerslogic/tap/writersproof-cli

Changelog

• chore: bump submodule pointers (merged security workflows)
• chore: bump macOS submodule (build-app.sh CLI fix)
• Merge remote-tracking branch 'origin/main'
• chore: bump macOS submodule to 1.2.2 release build
• chore: full-notarization spec, submodule pointers, pending docs
• feat: add wld export --notarize to publish evidence to WritersProof verify page
• chore: update cpoe_macos submodule, add notarization spec
• feat: send evidence packet bytes in publish for paid full notarization
• chore: update cpoe_macos submodule for .cpop import recognition
• perf: deflate-compress C2PA evidence bundle, store precompressed assets
• fix: repair cpoe_cli integration test build and rebrand stale assertions
• refactor: remove dead WritersProof binary attest queue and client verify/attest/nonce methods
• fix: point CLI anchor client at api.writersproof.com
• chore: bump browser extension version to 1.1.0
• feat: secure channel degradation warnings, commitment verification feedback
• chore: update cpoe_macos submodule
• chore: update README, browser extension dist, CLI, docs, crypto fix
• security: rotate CA keypair, add manifest signing key (H-039)
• fix: resolve 28 validated HIGH findings from todo.md audit
• fix: resolve deferred audit findings
• fix: validate all 112 open HIGH findings in todo.md
• fix: audit findings across app_registry, remote_registry, types, focus
• feat: sync VC-Sig attestation block between engine and browser extension (T-042)
• fix: three quality improvements across all tasks
• fix: signature verification and adaptive debounce correctness
• feat: signed remote app registry for edge-case apps
• fix: update cpoe_macos submodule (T-043 window title capture)
• feat: remaining writing app tasks (T-015, T-019, T-025, T-027, T-044)
• feat: trigger runtime app learning at focus time
• refactor: replace per-app debounce with adaptive focus debounce
• fix: 4 quality improvements to writing app support tasks
• refactor: trim 38 redundant entries from static app registry
• feat: writing app support improvements (T-000 through T-039, 30 tasks)
• refactor: replace TitleParserVariant with unified smart title parser
• feat: extension-based witnessing mode auto-detection for unknown apps
• fix: correct bundle IDs for Logseq, Notion, remove duplicate Warp entry
• feat: verified Tinderbox integration via runtime testing
• feat: deep Tinderbox integration (AppleScript text reading, correct bundle ID)
• fix: add legacy Tinderbox bundle ID for older versions
• fix: correct Tinderbox bundle ID to com.eastgate.Tinderbox-11
• fix: improve Tinderbox support (DatabaseBacked + ContentLevel, add .tbx extension)
• fix: keystroke count inflation from coalesced rate-limited events
• chore: sync macOS submodule
• fix: keystroke count accuracy, permission UX, author profile visibility
• fix: remove sandbox-incompatible auto-add of home directory watch path
• fix: keystroke count only counts content-producing keys, use cumulative total consistently
• chore: update macOS submodule (UI polish, localization quality, keycap loader)
• chore: update macOS submodule pointer
• chore: remove tracked node_modules (11K files), update gitignore
• security: fix 2 deferred audit items
• chore: update macOS submodule (16 pre-release fixes, full localization, v1.2.1)
• security: fix 19 audit findings across 12 high-risk engine files
• chore: update Windows submodule (remove 5 wont-fix TODOs)
• fix: engine hardening from parallel session
• chore: update Windows submodule (14 more TODO fixes, 5 remain)
• chore: update Windows submodule (10 more TODO fixes)
• chore: update Windows submodule (33 TODO fixes)
• feat: report polish, metric interpretations, topology labels, anomaly icons
• feat: world-class report polish, exhibit badges, dimension details, session cards
• fix: remaining audit findings (H-6, H-8, H-11)
• security: validate checkpoint message input (length + control chars)
• security: fix TOCTOU in export path validation, simplify sync conflict
• fix: 5-file audit findings (1 CRITICAL, 4 HIGH)
• fix: sentinel/core.rs audit findings (3 MEDIUM)
• fix: track xwin worker thread, detect death and auto-respawn (H-004/M-006)
• fix: event_handlers audit findings (H-001, H-003, M-003, M-004)
• feat: inline SVG visualizations for evidence cards, dimension rings, LR bar
• fix: persist document_stats on every manual checkpoint
• feat: PDF report visual improvements, remove collapsible sections
• fix: scorer recalibration, report visual redesign, submodule update
• fix: recalibrate transcription scorer against field data, improve report layout
• chore: update macOS submodule (WPM fix, report charts)
• feat: forensic report visual charts, keystroke count accuracy
• fix: keystroke count shows session count instead of cumulative total
• feat: SVG score gauge, collapsible sections, forgery cost bar, report polish
• feat: report visual overhaul, checkpoint timeline, finding cards, collapsible sections
• release: macOS app v1.2.0, FFI bindings regenerated
• chore: update macOS submodule to d4e60c2 (transcription UI, crash fixes, export hardening)
• feat: transcription detection composite scorer, field-calibrated thresholds, export pipeline fixes
• feat: wire ContinuationSection and ProvenanceSection (A10 complete)
• fix: polish wiring quality, fix paste detection bug, harden edge cases
• feat: wire 13 unwired functions, add 3 FFI exports, fix 7 pre-existing bugs
• fix: remaining bugs across Atlassian, HubSpot, Salesforce, Windows integrations
• feat: browser extension overhaul, Safari parity, 85 unit tests, security fixes across 22 integrations
• security: fix audit findings in new code from this session
• release: v1.1.0 — UX overhaul, virtual session export, adaptive app detection
• feat: predicted UX fixes: document guidance, window level, position memory, app labels, export hint
• fix: text size preference applies live without relaunch
• feat: text size preference, complete terminology rename, permission revocation fix
• fix: onboarding permission revocation tracking, clean first-launch detach
• chore: update macOS submodule with UX polish and complete terminology rename
• feat: virtual session export, adaptive app detection, UX beta feedback fixes
• fix: custom Supabase auth storage using data protection keychain
• fix: auto-migrate legacy keychain items on first launch to prevent password prompts
• fix: kSecUseDataProtectionKeychain key type mismatch causing password prompts
• fix: complete kSecUseDataProtectionKeychain coverage across all keychain callers
• fix: eliminate 13 admin password prompts on fresh install
• chore: update macOS submodule for universal release
• fix: strengthen behavioral transcription signals in live score
• feat: reliable cross-window transcription via Swift-driven detection path
• feat: Swift-driven cross-window detection feeds Rust live score directly
• fix: cross-window check never firing due to keystroke_count race
• chore: prune 1081 orphaned xcstrings keys, eliminate localization warnings
• fix: enable writing style analysis by default
• fix: cross-window transcription false positives
• fix: crash on volumeIsEncrypted fdesetup sandbox denial
• fix: apply cross-window transcription penalty to live scores
• fix: Safari extension app group entitlement for cross-process communication
• fix: GlobalHotkeyService sentinelStatus property name
• fix: add missing GlobalHotkeyService.swift to Xcode project
• chore: update macOS submodule (onboarding, history, Safari extension, FFI rebuild)
• fix: cross-window transcription detection, jitter ring buffer, sentinel hardening
• fix: PDF multi-page pagination, Safari extension TDZ crash, right-Cmd toggle hotkey
• fix: dead code audit, duplication fixes, security hardening, CLI cleanup
• fix: cross-editor paste detection, full-analysis PDF forensic reports
• feat: C2PA-signed PDF forensic reports, PoSME terminology, verify.writersproof.com URLs

---

Full Changelog: v1.0.7...v1.2.2