diff --git a/CHANGELOG.md b/CHANGELOG.md
index 8054eb8..e9124f3 100644
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -7,6 +7,12 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [Unreleased]
 
+## [0.1.8](https://github.com/EnforceAuth/zift/compare/v0.1.7...v0.1.8) - 2026-05-05
+
+### Added
+
+- bound public API surface + fix broken CLI surface (OSS P0) ([#47](https://github.com/EnforceAuth/zift/pull/47))
+
 ## [0.1.7](https://github.com/EnforceAuth/zift/compare/v0.1.6...v0.1.7) - 2026-05-05
 
 ### Added
diff --git a/Cargo.lock b/Cargo.lock
index 240a3ab..0242739 100644
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -2389,7 +2389,7 @@ dependencies = [
 
 [[package]]
 name = "zift"
-version = "0.1.7"
+version = "0.1.8"
 dependencies = [
  "clap",
  "ignore",
diff --git a/Cargo.toml b/Cargo.toml
index 1e7e60f..d99ba56 100644
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "zift"
-version = "0.1.7"
+version = "0.1.8"
 edition = "2024"
 rust-version = "1.91"
 description = "Scan codebases for embedded authorization logic and generate Policy as Code (Rego/OPA today)"