chore: bump all package manifests to 0.2.11

chore: bump all package manifests to 0.2.10

fix: SSRF bypass, allowlist_rules enforcement, webhook env hardening …

…(0.2.9)

- Fix IPv4-mapped/compatible/NAT64 IPv6 SSRF bypass in is_forbidden_ip (#65)
- Wire allowlist_rules into engine with per-rule suppression + all-URL check (#66)
- Block TIRITH_API_KEY and TIRITH_LICENSE from webhook env expansion (#67)
- Bump all manifests to 0.2.9
- Add bypass_regression integration tests

Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>

chore: bump all package manifests to 0.2.8

chore: bump all package manifests to 0.2.7

v0.2.6: Cmd shell tokenizer + tirith setup openclaw

Add Cmd (cmd.exe) shell type to the tokenizer and rule engine so
Windows cmd.exe commands are properly tokenized and analyzed. Add
`tirith setup openclaw` command with a before_tool_call plugin for
OpenClaw's extension system.

Cmd shell type (Part C):
- Cmd variant in ShellType with tokenize_cmd() (^ escape, & separator,
  " only quoting, no single-quote special handling)
- split_raw_words(), has_unquoted_ampersand(), find_inline_bypass()
  updated for Cmd semantics
- normalize_shell_token(), basename_from_normalized() handle Cmd
  caret escaping and backslash paths
- "cmd" added to INTERPRETERS list and tier-1 regex
- Golden fixtures for pipe-to-cmd.exe and safe-ampersand

Setup openclaw (Part B):
- openclaw-tirith-guard.ts plugin using before_tool_call hook with
  execFileSync, TIRITH_BIN/TIRITH_SHELL/TIRITH_FAIL_OPEN env vars
- setup_openclaw() with OPENCLAW_STATE_DIR/CLAWDBOT_STATE_DIR support,
  tilde expansion, and relative path resolution
- "openclaw" added to setup subcommand and clap values

chore: bump all package manifests to 0.2.5

npm (6 packages), homebrew, scoop, AUR, chocolatey, RPM

fix: pin time crate to 0.3.41 for MSRV 1.83 compatibility

time 0.3.47 requires edition 2024 which is not available in Rust 1.83.

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>

v0.2.3: Add `tirith setup gemini-cli` and `tirith setup pi-cli`

Add hook-based security integration for Google Gemini CLI and
Mario Zechner's Pi CLI, bringing the total supported tools to seven.

Gemini CLI:
- BeforeTool Python hook (tirith-security-guard-gemini.py)
- settings.json merge with inner-hook-level precision
- --with-mcp support for MCP server registration
- GEMINI_CLI_HOME env var override for custom config paths

Pi CLI:
- TypeScript extension (tirith-guard.ts) auto-discovered by Pi
- No JSON merge needed — file presence is sufficient
- PI_CODING_AGENT_DIR env var override for custom paths

Merge logic refactored:
- Extracted merge_hook_settings_inner() shared by Claude + Gemini
- Operates at individual hook level within matcher (preserves other hooks)
- Multi-matcher dedup with orphan hook consolidation on --force
- Repairs malformed hooks: null entries

fix: AUR blob size limit and Chocolatey moderation tolerance

AUR: compute source checksum by piping curl output to a hash utility
instead of using updpkgsums, which downloads the tarball into the
working directory and commits it — exceeding AUR's 488 KiB blob limit.

Chocolatey: add continue-on-error since moderation queue for previous
versions blocks new pushes (expected during rapid releases).

Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>