v0.2.0

What's Changed

Desktop

• Add keep-desktop with NIP-46 bunker mode, FROST signing, system tray, webcam QR scanning, NIP-49 ncryptsec import/export, multi-key identity, signing audit log, kill switch, nostrconnect:// URI handler, SOCKS proxy, settings screen
• Add descriptor coordination UI to desktop

FROST

• Add FROST share refresh with key rotation
• Add wallet descriptor coordination (WDC) protocol over Nostr
• Validate own xpub in forwarded finalize contributions
• Add DescriptorNack for failed verification
• Independently reconstruct descriptor on finalize before ACKing

Security

• Add TLS certificate pinning
• Harden NIP-46 permission enforcement and audit logging
• Harden security and P10 compliance across workspace
• Fix TLS cert pinning DNS resolution

Bitcoin

• Add taproot recovery timelock with tiered multisig spending paths
• Add PSBT mobile bindings

Mobile

• Add descriptor coordination to keep-mobile UniFFI bindings
• Add warden policy mobile bindings

Dependencies

• Bump rand 0.10, getrandom 0.4, rand_core 0.9, criterion 0.8
• Bump redb 3, uniffi 0.31, ratatui 0.30, dirs 6.0, ctrlc 3.5
• MSRV 1.89, Edition 2021

Other

• Add dependabot with grouped cargo updates
• Optimize crypto crates in debug builds
• Refactor app.rs into modules and storage/mobile into smaller files

v0.1.5

What's Changed

• Extract NIP-46 server into keep-nip46 library crate
• FROST generation UniFFI bindings
• Audit log UniFFI bindings
• Multi-key UniFFI bindings
• NIP-46 bunker UniFFI bindings

What's Changed

• Add full NIP-55 spec support by @kwsantiago in #150
• Add --format bech32 option to FROST export by @wksantiago in #151
• Extract NIP-46 server into keep-nip46 library crate by @kwsantiago in #157
• Add NIP-46 bunker UniFFI bindings to keep-mobile by @kwsantiago in #158
• Add multi-key UniFFI bindings to keep-mobile by @kwsantiago in #159
• Add audit log UniFFI bindings to keep-mobile by @kwsantiago in #161
• Frost generation uniffi by @kwsantiago in #162
• Bump version to 0.1.5, add keep-android link by @kwsantiago in #163
• Fix Cargo.lock sync for v0.1.5 by @kwsantiago in #164

Full Changelog: v0.1.4...v0.1.5

v0.1.4

What's Changed

• Refactor large files into smaller modules by @kwsantiago in #67
• Fix timing side channel in rate limit HMAC verification by @wksantiago in #111
• Add size limits to untrusted input parsing and replace unwrap on external responses by @wksantiago in #110
• Add cargo-deny for dependency auditing by @wksantiago in #112
• Add API documentation to keep-core by @wksantiago in #130
• Add multi-platform CI by @wksantiago in #125
• Add reproducible build infrastructure by @wksantiago in #132
• Add MSRV testing to CI and Justfile for dev tasks by @wksantiago in #113
• Extract verify_peer_share_index helper by @wksantiago in #118
• Add graceful mlock degradation with --no-mlock flag by @wksantiago in #116
• Fix hidden volume metadata leakage by @wksantiago in #117
• Add build documentation and example configurations by @wksantiago in #115
• Add SECURITY.md documenting threat model by @wksantiago in #119
• Add StorageBackend trait abstraction by @wksantiago in #134
• Add criterion benchmarks for crypto operations by @wksantiago in #122
• Restore CI security and multi-platform jobs by @kwsantiago in #135
• Add property-based testing and fuzzing targets by @wksantiago in #120
• Add multi-source entropy mixing for defense-in-depth randomness by @wksantiago in #129
• Add CONTRIBUTING.md and SPDX license headers by @wksantiago in #114
• Make hidden::header module public for tests and fuzz targets by @kwsantiago in #136
• Add network failure simulation tests for FROST protocol by @wksantiago in #133
• docs: fix MSRV version in CONTRIBUTING.md by @kwsantiago in #137
• Add end-to-end CLI integration tests by @wksantiago in #127
• Add structured logging with tracing spans and panic handler by @wksantiago in #123
• Hardware export command by @kwsantiago in #138
• Add vault key rotation support by @wksantiago in #131
• Add audit logging for signing operations by @wksantiago in #126
• Add TOML configuration file support by @wksantiago in #128
• Add database schema versioning and migrations by @wksantiago in #124
• Refine error types with domain-specific hierarchy by @wksantiago in #139
• Split frost_network.rs into modules by @kwsantiago in #140
• Add KeepMobile & NIP-55 Android signer protocol by @wksantiago in #146
• Remove unused is_rdrand_validated stub and update deps by @kwsantiago in #147

Full Changelog: v0.1.3...v0.1.4

v0.1.3

What's Changed

• Replace external relay tests with mock relay by @wksantiago in #14
• Add rate limiting to password attempts in unlock flow by @wksantiago in #13
• Add persistent nonce consumption tracking for FROST sessions by @wksantiago in #47
• Add message validation and signature verification for FROST protocol by @wksantiago in #39
• Fix mlock memory safety: zeroize source data and full capacity by @wksantiago in #49
• Zeroize FROST nonces on drop and use HMAC for rate limit file by @wksantiago in #38
• Convert panicking unwraps in header parsing to Result by @wksantiago in #37
• Add cryptographic session ID derivation by @wksantiago in #40
• Add replay protection timestamp validation to sign requests by @wksantiago in #42
• Add session rehydration for FROST signing by @wksantiago in #48
• Add peer policies and signing hooks for FROST signing control by @wksantiago in #44
• Add proof-of-share verification and announcement timestamp validation by @wksantiago in #51
• Add EphemeralVault for time-limited secret access by @wksantiago in #46
• Add DKG hardware methods and network command by @kwsantiago in #54
• Add signing audit logging to enclave and frost-net by @wksantiago in #45
• Add trusted dealer security warnings by @wksantiago in #61
• Add enclave entropy source for keep-agent by @wksantiago in #41
• Add Warden policy check to FROST signing commands by @wksantiago in #62
• Add enclave attestation verification for FROST peers by @wksantiago in #50
• Kind 21101, 21106, 21104/21105 relay signing by @kwsantiago in #63
• Remove NonceWrapper by @kwsantiago in #64
• Bump version to v0.1.3 by @kwsantiago in #65
• Add ZeroizeOnDrop to Coordinator and remove obsolete NonceWrapper by @kwsantiago

Full Changelog: v0.1.2...v0.1.3

v0.1.2

• Hardware signer integration for FROST (#15)
• Document hardware signing in README

v0.1.1

What's Changed

• Add FROST threshold signatures with NIP-46 integration by @kwsantiago in #2
• Add enclave signer and Bitcoin PSBT support by @kwsantiago in #3
• Fix enclave build: add missing features, enclaver config, local testing by @kwsantiago in #6
• Add agent SDK for Python, TypeScript, and MCP by @kwsantiago in #7
• Add FROST coordination protocol over nostr by @kwsantiago in #9

Full Changelog: v0.1.0...v0.1.1

v0.1.0

Full Changelog: https://github.com/privkeyio/keep/commits/v0.1.0