Parfii-bot a3f8e1f847 chore(prod-prep): root docs (CHANGELOG/CONTRIBUTING/SECURITY) + cargo update

Root-level docs added per production-readiness audit:
- CHANGELOG.md — unreleased + pointer to git tags
- CONTRIBUTING.md — setup + PR checklist + Constructor Pattern
- SECURITY.md — reporting channel + threat model + known RUSTSEC list

cargo update applied: 19 patch/minor bumps (base64urlsafedata, blake3, cc,
crc-catalog, digest, filetime, h2, hashbrown, hybrid-array, idna_adapter,
js-sys, kqueue-sys, libc, nix, openssl, openssl-sys, pin-project,
pin-project-internal, redox_syscall).

9 RUSTSEC advisories from transitive deps remain (rsa 0.9 Marvin,
rustls-webpki x5, sqlx 0.8 Binary Protocol, async-std discontinued,
lru unsound IterMut, fxhash/instant unmaintained) — require major-version
bumps in direct deps, tracked in SECURITY.md "Known advisories" section.

2026-05-12 20:41:13 +08:00

790 B

Raw Blame History

Changelog

All notable changes are tagged via git tag v*. This file tracks unreleased work + release pointers.

Unreleased

chore(docs): regenerate DNA-INDEX without project-vortex (302ca661)
fix(kei-conflict-scan): close 3 backlog bugs + Phase C draft emission (f354aacc)
feat(kei-buddy): conversational LLM-driven flow + kei-sage retrieval graph-RAG (b61b17ea)
feat(contacts): glue sync + Google pagination + Apple discovery + folding (06bcce99)
fix(kei-conflict-scan): wikilink path-norm + drop handoff false-positives (6cd99982)
feat(kei-buddy fleet): 5 atomics — google/apple contacts + classifier + tick + slash-commands (450156a4)

Released

Release notes per tag are kept in the GitHub Releases UI. See git tag --sort=-creatordate.

790 B Raw Blame History

Changelog

Unreleased

Released

790 B

Raw Blame History