Skip to content

v1.0.2

Choose a tag to compare

@github-actions github-actions released this 04 Jul 11:39
38ef7f1

Other Changes

Bump github.com/cloudflare/circl from 1.6.2 to 1.6.3 - @dependabot[bot] in #3

Bumps github.com/cloudflare/circl from 1.6.2 to 1.6.3.

Release notes

Sourced from github.com/cloudflare/circl's releases.

CIRCL v1.6.3

Fix a bug on ecc/p384 scalar multiplication.

What's Changed

Full Changelog: cloudflare/circl@v1.6.2...v1.6.3

Commits
  • 24ae53c Release CIRCL v1.6.3
  • 581020b Rename method to oddMultiplesProjective.
  • 12209a4 Removing unused cmov for jacobian points.
  • fcba359 ecc/p384: use of complete projective formulas for scalar multiplication.
  • 5e1bae8 ecc/p384: handle point doubling in point addition with Jacobian coordinates.
  • 3416046 Check opts for nil value.
  • See full diff in compare view

Dependabot compatibility score

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.


Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

  • @dependabot rebase will rebase this PR
  • @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
  • @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
  • @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
  • @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
    You can disable automated security fix PRs for this repo from the Security Alerts page.

Updated the Go module dependency github.com/cloudflare/circl from v1.6.2 to v1.6.3 in go.mod.

AI usage: Not Likely

1.0.2 bug sweep - @TRC-Loop in #8

Summary

  • windows: native menu bar/title bar now follows the app's theme setting instead of always rendering light
  • windows installer: stops a running Pelton process before install/uninstall, asks for confirmation before uninstalling, requires real admin rights for an all-users install, installs to Program Files\Pelton (was Program Files (x86)<company>\Pelton), and bundles LICENSE/README/licenses
  • config sync: added an "import existing setup" flow (pick a folder, review what's found, confirm) alongside the existing setup wizard, and hardened file reads against transient failures reading cloud-sync placeholder files (e.g. Nextcloud virtual files)
  • fixed a couple of message-list race conditions (fast folder switching, concurrent scroll-triggered page loads), attachment filenames not sanitized for Windows, multi-byte UTF-8 truncation in message snippets, an OAuth callback goroutine leak, and OAuth secrets exceeding the Windows Credential Manager per-entry size limit

Test plan

  • go build ./..., go vet ./..., go test ./internal/...
  • pnpm run check, pnpm run build
  • manual: Windows install/upgrade/uninstall flow, theme switching, config sync import flow, OAuth login with a large token set

Summary

  • Updated Windows installer behavior: uses Program Files\Pelton for all-users installs, requires admin rights for that mode, confirms uninstall, stops running app processes before install/uninstall, and bundles license/readme files.
  • Added a new config sync “import existing setup” flow, with matching locale strings and modal behavior for browsing/importing an existing folder.
  • Hardened config sync file reads against transient cloud-sync placeholder failures by retrying reads/opens with backoff.
  • Fixed message list race conditions during rapid folder/page changes by ignoring stale async loads.
  • Improved Windows attachment filename sanitization, UTF-8 snippet truncation, OAuth callback handling, and credential storage for oversized secrets.
  • Applied native Windows theme updates so the app follows the selected/system theme more consistently.

AI usage

  • Very Likely that AI was used, and likely in an agentic/helping role rather than fully human-only.
docs: add AGENTS.md agent instructions - @TRC-Loop in #9

Summary

  • Adds AGENTS.md (thin entry point) plus an AGENTS/ folder with per-area guides (privacy, design tokens, backend, frontend, git workflow, no-slop); CLAUDE.md/CODEX.md/AIDER.md point to it.
  • Adds release changelog automation: .github/release.yml (categories + exclude labels), PR auto-labeling by conventional-commit type, and a draft-release workflow that builds a categorized, collapsible changelog on tag push.

Test plan

  • Open a PR with a feat:/fix:/docs: title and confirm the label gets applied
  • Push a test tag and confirm a draft release is created with the expected categorized body

Full Changelog: v1.0.1...v1.0.2