Bump version to v0.2.0

[Copilot]

Project was still pinned at 0.1.0 across all package manifests. This bumps every workspace to 0.2.0 and records the release in the changelog.

Summary

• package.json (root), sdk/package.json, apps/api/package.json, apps/web/package.json, packages/core/package.json, packages/contracts/package.json — version field: 0.1.0 → 0.2.0
• apps/api/package-lock.json — top-level and packages[""] version entries updated to match
• CHANGELOG.md — new 0.2.0 section added with today's date

AI Disclosure (optional)

• AI-assisted changes are included in this PR

Review Checklist

• Human review requested
• Tests added or updated where appropriate
• No secrets, tokens, cookies, or raw PII were added to code, logs, fixtures, or docs
• Security impact and remaining risks are described

Version metadata change only. No logic, auth, storage, or security surfaces touched. No risk introduced.

---

📍 Connect Copilot coding agent with Jira, Azure Boards or Linear to delegate work to Copilot in one click without leaving your project management tool.

[vercel]

The latest updates on your projects. Learn more about Vercel for GitHub.

Project	Deployment	Actions	Updated (UTC)
api	Ready	Preview, Comment	Mar 17, 2026 10:54pm
trustsignal	Ready	Preview, Comment	Mar 17, 2026 10:54pm

[Copilot]

Pull request overview

Bumps the repository’s package versions from 0.1.0 to 0.2.0 across the main workspaces (and sdk/), and adds a corresponding 0.2.0 entry to the changelog.

Changes:

• Update version to 0.2.0 in root + workspace package.json files and sdk/package.json.
• Update apps/api/package-lock.json top-level/package-root version fields.
• Add a 0.2.0 section to CHANGELOG.md.

Reviewed changes

Copilot reviewed 7 out of 8 changed files in this pull request and generated 4 comments.

Show a summary per file

File	Description
package.json	Bumps root package version to 0.2.0.
sdk/package.json	Bumps SDK package version to 0.2.0.
apps/api/package.json	Bumps API workspace version to 0.2.0.
apps/api/package-lock.json	Updates API lockfile version metadata (partially).
apps/web/package.json	Bumps web workspace version to 0.2.0.
packages/core/package.json	Bumps core workspace version to 0.2.0.
packages/contracts/package.json	Bumps contracts workspace version to 0.2.0.
CHANGELOG.md	Records the 0.2.0 version bump entry.

Files not reviewed (1)

• apps/api/package-lock.json: Language not supported

---

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

[chatgpt-codex-connector]

💡 Codex Review

Here are some automated review suggestions for this pull request.

Reviewed commit: e3d5319e4f

ℹ️ About Codex in GitHub

Your team has set up Codex to review pull requests in this repo. Reviews are triggered when you

• Open a pull request for review
• Mark a draft as ready
• Comment "@codex review".

If Codex has suggestions, it will comment; otherwise it will react with 👍.

Codex can also answer questions or update the PR. Try commenting "@codex address that feedback".

[chatgpt-codex-connector]

Update root lockfile for the 0.2.0 version bump

Bumping the root manifest to 0.2.0 here without also updating package-lock.json leaves the lock metadata for the root/workspace packages at 0.1.0, which creates immediate lockfile drift for root install/verification workflows and undermines deterministic CI evidence for this release-only change. Regenerate and commit the root lockfile together with this version change.

Useful? React with 👍 / 👎.

[chatgpt-codex-connector]

Regenerate API lockfile after core version change

This lockfile edit only bumps the top-level API version, but apps/api/package-lock.json still contains @deed-shield/core as 0.1.0 under the ../../packages/core entry while packages/core/package.json was changed to 0.2.0. That internal inconsistency causes avoidable lockfile churn in apps/api installs and weakens reproducibility of the workspace release state.

Useful? React with 👍 / 👎.