Novedades

Added a credibility strip showing weekly npm installs and GitHub stars, so visitors can gauge traction at a glance.

Moved third-party scripts to a nonce-based script-src policy. Removes 'unsafe-inline' from the landing page.

Surfaced the tools Envshed plugs into — GitHub Actions, Docker, Vercel, Coolify, AWS runners, and the Node SDK.

Dropped a compact strip under the hero CTAs highlighting AES-256-GCM encryption, GDPR compliance, and the full audit trail.

Spun up a dedicated CLI installer host so `curl | sh` flows have a stable, predictable origin.

Published the reliability playbook used when we respond to production incidents, plus the template for post-mortems.

Added a one-click unshare action and fixed the reveal toggle on shared secrets in the dashboard.

Documented how to inject Envshed-managed secrets into Docker and Coolify deployments end-to-end.

Shipped org namespace refactor with `org list` and `org create` subcommands and bash/zsh/fish completions.

New `envshed webhook`, `envshed member`, `envshed env duplicate`, and `envshed token update-service` subcommands with shell completions and docs.

Machine-to-machine authentication with scoped read-only or read/write tokens, ready to drop into GitHub Actions or any CI runner.

Single sign-on via Okta, Azure AD, Google Workspace, or any SAML 2.0 IdP — available on the Business plan.