linux-patch-manager (0.1.7-1) noble; urgency=medium

  * Host Self-Enrollment: Added REST API and UI for automated agent enrollment
  * Database: Added enrollment_requests table and migration 016
  * Security: Implemented IP-based rate limiting on public enrollment endpoints
  * Backend: Added background worker to purge expired enrollment requests (24h)
  * Frontend: Integrated pending enrollment queue with conflict resolution modal
  * Specs: Updated SPEC.md for manager and linux_patch_api self-enrollment workflows

 -- Echo <echo@moon-dragon.us>  Fri, 16 May 2026 11:44:08 -0500

linux-patch-manager (0.1.6-1) noble; urgency=medium

  * Phase 4: Exhaustive analysis fixes, security hardening, and code quality improvements
  * Implemented CRL generation and verification for mTLS agent certificates
  * Added IP-based rate limiting middleware using governor crate
  * Hardened error handling and removed silent unwrap_or_default failures
  * Fixed blocking I/O in agent_loader to use async tokio::fs
  * Made allow_reboot configurable per job via database column
  * Improved audit integrity verification and reporting limits

 -- Echo <echo@moon-dragon.us>  Fri, 15 May 2026 22:11:45 +0000

linux-patch-manager (1.0.0-1) noble; urgency=medium

  * Initial release of Linux Patch Manager
  * Full M1-M12 feature set implemented
  * MFA, RBAC, mTLS, CA, reporting, audit integrity
  * HIPAA/PCI-DSS compliance mapping documented

 -- Echo <echo@moon-dragon.us>  Thu, 24 Apr 2026 00:00:00 +0000
