v2.5.0
Correctness & security
July 12, 2026
A large correctness-and-security pass over the 2.x line — roughly 120 fixes, each with a regression test, plus a security audit.
Changed
+
Upload, the SFTP file browser, “Open chat” from Recent Projects, and the Live Activity now correctly require Termoire Pro — matching what the paywall advertises. Anything already in progress is never interrupted.
Fixed
+
macOS — the recurring crash when opening a second window (⌘N) is gone, now guarded by a multi-window smoke test
+
Approve / Deny appears only for a real permission prompt — a bare bell, an idle nudge, or a “finished” event no longer offer buttons that would type a stray y/n into the live session
+
Mosh resume restores the real screen (using the live grid size) and no longer re-runs your per-host startup command into the resumed shell
+
SFTP & uploads — a stalled transfer can be cancelled, a failed upload never leaves or replaces a file with a truncated copy, and the browser shows honest failure states
+
Predictive echo keeps typed password characters hidden, and stale predictions don't linger after a reconnect
+
Paste is bracketed on every surface, so a multi-line paste no longer executes line-by-line
+
Scrollback search returns the newest matches; Fleet, widgets, and the Watch mark stale sessions as stale instead of showing hours-old state as live
+
iCloud preferences merge correctly across devices instead of a stale device overwriting a newer value
Security
+
SFTP downloads reject server-controlled path traversal in filenames
+
Saved passwords honor the biometric gate even over iCloud Keychain sync, including newly saved passwords
+
macOS terminal copies are marked concealed so clipboard-history managers don't persist scrollback that may contain secrets
+
App Lock defers deep links and Shortcuts/Intents that arrive while locked, and replays them on unlock