chore: release v0.17.0

[doramirdor]

Bundles the security + classifier-extensibility work landed since 0.16.0 (yesterday):

• Configurable embedding backends for the centroid classifier (Add configurable embedding backends #50, @clawSean)
• Production security hardening — CORS, auth, headers, bounds, async logging (fix(security): core production hardening — CORS, auth, headers, validation #30, @pradumna-gautam)
• Optional prompt-injection guard + PII redactor modules (feat(security): optional prompt guard + PII redactor (rebase of #31) #55, @pradumna-gautam, supersedes feat(security): add optional prompt guard and PII redactor modules #31)

Why a release one day after 0.16.0

These three PRs all add user-visible knobs (NADIRCLAW_EMBEDDING_BACKEND, NADIRCLAW_CORS_ORIGINS, NADIRCLAW_PROMPT_GUARD, NADIRCLAW_PII_REDACTION, etc.) that anyone running nadirclaw serve exposed beyond localhost will want to pin to a versioned release. The security baseline in particular is recommended for anyone past pure-local use — better to give that a version number than leave it at HEAD.

Diff

• nadirclaw/__init__.py — __version__ = "0.17.0"
• CHANGELOG.md — new [0.17.0] block under ### Added and ### Security

Verification

• 642 tests passing on the rebased branch (pre-merge of feat(security): optional prompt guard + PII redactor (rebase of #31) #55), 612 on the post-fix(security): core production hardening — CORS, auth, headers, validation #30 main.
• CI green on 3.10/3.11/3.12 for fix(security): core production hardening — CORS, auth, headers, validation #30, Add configurable embedding backends #50, and feat(security): optional prompt guard + PII redactor (rebase of #31) #55 individually.

🤖 Generated with Claude Code