Version bump across 62 files (2.2.3 → 2.2.4).
CHANGELOG.md: New [2.2.4] section with EDR/XDR detection and version tooling.
README.md: Updated release highlights, AV detection example output synced with code.
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
Single source of truth for version numbers. Bump-Version.ps1 replaces
the old version across all 61 files (113 occurrences) automatically.
CHANGELOG.md is excluded to preserve historical entries.
Usage:
.\Tools\Bump-Version.ps1 -NewVersion "2.2.4" -DryRun # preview
.\Tools\Bump-Version.ps1 -NewVersion "2.2.4" # apply
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
CrowdStrike Falcon and other EDR/XDR products don't register in WMI
SecurityCenter2, but put Defender in Passive Mode. This caused ASR
rules to either silently fail or throw errors.
New 3-layer detection:
- Layer 1: WMI SecurityCenter2 (traditional AV: Bitdefender, Kaspersky, etc.)
- Layer 2: Defender Passive Mode via Get-MpComputerStatus (EDR/XDR)
- Layer 3: 18 known EDR service names for display identification
Changes:
- Utils/Dependencies.ps1: New Test-ThirdPartySecurityProduct function,
updated Test-WindowsDefenderAvailable with IsPassiveMode property,
updated Test-AllDependencies to handle passive mode gracefully
- Modules/ASR/Public/Invoke-ASRRules.ps1: Detection runs before
Defender service check, inline fallback for standalone execution
- Tools/Verify-Complete-Hardening.ps1: Same 3-layer detection, ASR
counted as 19/19 verified when third-party product detected
Closes#15
Co-Authored-By: Claude Opus 4.6 (1M context) <noreply@anthropic.com>
- CHANGELOG: Fix heading hierarchy (## → ### for Release Highlights)
- CHANGELOG: AntiAI was 24 policies in v2.1.0, not 32 (expanded in v2.2.0)
- CHANGELOG: AdvancedSecurity 42 → 44 verification checks (matches summary table)
- CHANGELOG: Add version reference links at bottom (Keep a Changelog standard)
- README: BAVR 100% was achieved in v2.1.0, not v2.2.0
- README: Status badge linked to CHANGELOG.md (was empty link)
- README: Remove invalid logo=globe from Website badge
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
- Add Recall snapshot storage MB/GB verification fix to CHANGELOG v2.2.3
- Update v2.2.3 release date from 2025-01-07 to 2026-03-05
- Update Release Highlights in README to include #14 fix
- Reported by VM-Master
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
- Update Release Highlights section from v2.2.0-only to v2.2.0-2.2.3
- Add Windows logo and clearer text to PRO purchase badge
- Condense v2.2.0 highlights into single summary line
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
- Add GitHub Stars, Last Commit, and Website badges
- Add PRO purchase badge-button linking to noid-privacy.com
- Move disclaimer from top to compact one-liner
- Collapse Domain/Backup section into expandable <details> block
- Remove outdated "Last Updated: January 7, 2026"
- Add website link to Ecosystem table and footer
- Mark Linux version as "free & open source" in Ecosystem
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
Microsoft CSP stores Recall snapshot storage in MB, not GB.
10 GB = 10240 MB. Fixes apply, verify, and compliance check.
Closes#14
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
The previous implementation used .Split(',', ';', ' ') which
causes PowerShell to match the wrong .NET overload Split(string, Int32),
interpreting ';' as a count parameter and throwing a System.Int32
conversion error.
Replaced with native PowerShell -split operator using regex character
class [,; ] which correctly splits on comma, semicolon, or space.
Fixes: Restore Mode -> Manual Selection crash on any input
Reported-by: KatCat2
Privacy Module:
- Fixed 'Applied X settings' to show only registry settings (60/78/86)
- Bloatware count no longer added to settings total
- Consistent with module prompt (MSRecommended: 60, Strict: 78, Paranoid: 86)
DNS Module:
- Fixed DoH connectivity test for systems with REQUIRE mode active
- Tests HTTPS endpoint (port 443) when classic DNS is blocked
- Proper detection of existing DoH configuration
Verified: Full Apply/Verify/Restore cycle - 633/633 settings (100%)
- All DryRun tests now skip on GitHub Actions (no admin rights)
- Fixed AntiAI compliance script path (Private folder)
- Removed continue-on-error - tests are real quality gates again
- Structure tests still run on CI (manifest, exports, JSON validation)
