v0.10.2

Security fix

Solved a possible XSS attack vector, only present in v0.10.1. This could happen only during a token refresh for a few seconds. Most likely not exploitable, given that the webserver runs only on localhost.

If you are running version v0.10.1 (check with gmailctl version), please update. Otherwise there's no risk for you.