Prompt-injection fix in context compaction, external secrets management with exec providers and SOPS, expanded Android integrations, richer Feishu document/table support, and auth boundary hardening across channels.
