diff --git a/.release-please-manifest.json b/.release-please-manifest.json
index 7a856de..171b109 100644
--- a/.release-please-manifest.json
+++ b/.release-please-manifest.json
@@ -1,3 +1,3 @@
 {
-    ".": "0.4.3"
+    ".": "0.4.4"
 }
diff --git a/CHANGELOG.md b/CHANGELOG.md
index 9a60adf..1ad3318 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,5 +1,12 @@
 # Changelog
 
+## [0.4.4](https://github.com/StackOneHQ/defender/compare/defender-v0.4.3...defender-v0.4.4) (2026-03-11)
+
+
+### Bug Fixes
+
+* **ENG-12332:** export ToolSanitizationRule and add tier2Fields option ([#16](https://github.com/StackOneHQ/defender/issues/16)) ([90bfa68](https://github.com/StackOneHQ/defender/commit/90bfa68a4b7ec99285ecb4889a4ef9caafea9561))
+
 ## [0.4.3](https://github.com/StackOneHQ/defender/compare/defender-v0.4.2...defender-v0.4.3) (2026-03-09)
 
 
diff --git a/package-lock.json b/package-lock.json
index b1f11c5..f0c5788 100644
--- a/package-lock.json
+++ b/package-lock.json
@@ -1,12 +1,12 @@
 {
     "name": "@stackone/defender",
-    "version": "0.4.3",
+    "version": "0.4.4",
     "lockfileVersion": 3,
     "requires": true,
     "packages": {
         "": {
             "name": "@stackone/defender",
-            "version": "0.4.3",
+            "version": "0.4.4",
             "license": "Apache-2.0",
             "dependencies": {
                 "nanoid": "5.0.9"
diff --git a/package.json b/package.json
index eeb8262..1857df7 100644
--- a/package.json
+++ b/package.json
@@ -1,6 +1,6 @@
 {
     "name": "@stackone/defender",
-    "version": "0.4.3",
+    "version": "0.4.4",
     "description": "Prompt injection defense framework for AI tool-calling",
     "main": "dist/index.cjs",
     "module": "dist/index.mjs",