Policy Scout clarified sandbox install vs migration help, prints report IDs after sandbox review, and adds redaction/file-change metadata to sandbox JSON reports.
Policy Scout now declares pytest as a dev extra and CI installs .[dev], fixing the clean GitHub Actions failure while keeping runtime dependencies minimal.
Policy Scout README now includes alpha quickstart, doctor/demo flow, safety-gate examples, JSON mode, current test/eval status, and honest local-first limitations.
Policy Scout added JSON contract tests for doctor/check/audit/report/sweep and fixed check --json command redaction so secret-like command values are replaced with canonical placeholders.
Policy Scout added a safe local demo command that creates a fixture workspace, runs allow/sandbox/deny/credential/destructive checks, and sweeps the fixture without real execution, package installs, network access, or secret reads.
Policy Scout’s commit and bump gate now documents the required Project field so blog.bumper routes future PASS COMPLETE messages to the policy-scout project instead of falling back to the global default.
Root AGENTS.md was replaced with a Policy Scout-specific persistent agent reference. The new operating file updates the reading order to the compiled implementation docs, preserves repo-specific command/test/isolation details, and reflects the current CLI-first alpha state.
Policy Scout now has minimal GitHub validation and a documented commit/blog coordination gate. CI checks doctor, evals, and the full test suite on push and PR to main; PRs now include safety-focused review prompts; the bump gate documents the reviewed code-plus-dev-log workflow.