v1.0.2
Other Changes
Bump github.com/cloudflare/circl from 1.6.2 to 1.6.3 -
@dependabot[bot] in #3
Bumps github.com/cloudflare/circl from 1.6.2 to 1.6.3.
Release notes
Sourced from github.com/cloudflare/circl's releases.
CIRCL v1.6.3
Fix a bug on ecc/p384 scalar multiplication.
What's Changed
- sign/mldsa: Check opts for nil value by
@armfazhin cloudflare/circl#582- ecc/p384: Point addition must handle point doubling case. by
@armfazhin cloudflare/circl#583- Release CIRCL v1.6.3 by
@armfazhin cloudflare/circl#584Full Changelog: cloudflare/circl@v1.6.2...v1.6.3
Commits
24ae53cRelease CIRCL v1.6.3581020bRename method to oddMultiplesProjective.12209a4Removing unused cmov for jacobian points.fcba359ecc/p384: use of complete projective formulas for scalar multiplication.5e1bae8ecc/p384: handle point doubling in point addition with Jacobian coordinates.3416046Check opts for nil value.- See full diff in compare view
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
@dependabot rebasewill rebase this PR@dependabot recreatewill recreate this PR, overwriting any edits that have been made to it@dependabot show <dependency name> ignore conditionswill show all of the ignore conditions of the specified dependency@dependabot ignore this major versionwill close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this minor versionwill close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)@dependabot ignore this dependencywill close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
You can disable automated security fix PRs for this repo from the Security Alerts page.
Updated the Go module dependency github.com/cloudflare/circl from v1.6.2 to v1.6.3 in go.mod.
AI usage: Not Likely
1.0.2 bug sweep -
@TRC-Loop in #8
Summary
- windows: native menu bar/title bar now follows the app's theme setting instead of always rendering light
- windows installer: stops a running Pelton process before install/uninstall, asks for confirmation before uninstalling, requires real admin rights for an all-users install, installs to Program Files\Pelton (was Program Files (x86)<company>\Pelton), and bundles LICENSE/README/licenses
- config sync: added an "import existing setup" flow (pick a folder, review what's found, confirm) alongside the existing setup wizard, and hardened file reads against transient failures reading cloud-sync placeholder files (e.g. Nextcloud virtual files)
- fixed a couple of message-list race conditions (fast folder switching, concurrent scroll-triggered page loads), attachment filenames not sanitized for Windows, multi-byte UTF-8 truncation in message snippets, an OAuth callback goroutine leak, and OAuth secrets exceeding the Windows Credential Manager per-entry size limit
Test plan
-
go build ./...,go vet ./...,go test ./internal/... -
pnpm run check,pnpm run build - manual: Windows install/upgrade/uninstall flow, theme switching, config sync import flow, OAuth login with a large token set
Summary
- Updated Windows installer behavior: uses
Program Files\Peltonfor all-users installs, requires admin rights for that mode, confirms uninstall, stops running app processes before install/uninstall, and bundles license/readme files. - Added a new config sync “import existing setup” flow, with matching locale strings and modal behavior for browsing/importing an existing folder.
- Hardened config sync file reads against transient cloud-sync placeholder failures by retrying reads/opens with backoff.
- Fixed message list race conditions during rapid folder/page changes by ignoring stale async loads.
- Improved Windows attachment filename sanitization, UTF-8 snippet truncation, OAuth callback handling, and credential storage for oversized secrets.
- Applied native Windows theme updates so the app follows the selected/system theme more consistently.
AI usage
- Very Likely that AI was used, and likely in an agentic/helping role rather than fully human-only.
docs: add AGENTS.md agent instructions -
@TRC-Loop in #9
Summary
- Adds AGENTS.md (thin entry point) plus an AGENTS/ folder with per-area guides (privacy, design tokens, backend, frontend, git workflow, no-slop); CLAUDE.md/CODEX.md/AIDER.md point to it.
- Adds release changelog automation: .github/release.yml (categories + exclude labels), PR auto-labeling by conventional-commit type, and a draft-release workflow that builds a categorized, collapsible changelog on tag push.
Test plan
- Open a PR with a
feat:/fix:/docs:title and confirm the label gets applied - Push a test tag and confirm a draft release is created with the expected categorized body
Full Changelog: v1.0.1...v1.0.2