v1.0.0

1.0.0 (2026-03-31)

Bug Fixes

• add prepare script for git URL installs (9f5b573)
• bump CI minimum Node to 20, remove NPM_TOKEN (6685d3d)
• close remaining LOW findings — builder/parser/filter input validation (bd77f74)
• harden input validation and close prototype pollution vector (18fbe2d)
• holodeck audit — validation, portability, spec alignment, adversarial tests (3f8c8a8)
• rename HKDF salt from vaulstr-ck-v1 to dominion-ck-v1 (d4424b7)
• security audit — GF(256) bounds, input validation, prototype pollution, parser hardening (1e53db6)
• security audit pass 2 — filter bug, deep validation, parameter alignment (398504e), closes #d
• update @noble/ciphers to v2 (import paths and randomBytes location) (17a2348)
• validate share index range (1-255) in combineShares (121f6a6)

Features

• add semantic-release, CI workflow, and llms.txt (9684b72)
• add types and constants (38d8a57)
• AES-256-GCM encrypt/decrypt with @noble/ciphers (f75c9e2)
• Biome linter, security hardening, spec enhancements, expanded tests (771d6ed)
• CK splitting helpers with encode/decode (1760fec)
• content key derivation with HKDF-SHA256 (a907708)
• immutable config mutations for tier management (16b5630)
• index files and build verification (ea9ff0a)
• interactive SVG explainer for CTOs and technical decision-makers (c9b9ebb)
• kind 30480 vault share event builder/parser (458a55c)
• kind 30481 vault config event builder/parser (570995c)
• security audit, NIP review fixes, AI discoverability (f20a89e)
• Shamir secret sharing over GF(256) (f781d6f)