← Back to home

Changelog

Release notes for all MeowPass projects.

CLIv0.2.12026-05-06

Bug fixes for rotation and rollback

  • ~Vault key rotation now updates server-side encrypted key via PUT /vaults/{id}
  • ~Rollback no longer fails with 500 when nonce is nil
  • +PUT /vaults/{id} endpoint for vault key updates
  • +UpdateVaultKey database method
CLIv0.2.02026-05-05

Major feature release

  • +meowpass init — scan .env files, create vault, encrypt & push in one command
  • +meowpass run — inject decrypted secrets into subprocess (pure in-memory)
  • +meowpass diff — compare local .env with vault, colored output, --exit-on-drift
  • +meowpass doctor — diagnose config, API, auth, salt, and vault health
  • +meowpass history — per-secret version timeline
  • +meowpass rollback — restore previous secret version
  • +meowpass rotate — full vault key rotation + re-encrypt all secrets
  • +meowpass git-hook install — pre-commit drift detection
  • +meowpass set --ttl — secret auto-expiry (24h, 30m, etc.)
  • +Offline cache — auto-save vault snapshots, fallback on API failure
  • +Audit log middleware wired to all vault/secret routes
  • +GET /audit-logs endpoint with vault_id filter
  • +GET /vaults/{id}/secrets/{key}/history endpoint
  • +Secret TTL enforcement — auto-delete expired secrets on read
MCP Server0.2.02026-05-05

14 tools, redacted mode

  • +meowpass_diff — compare local .env with vault secrets
  • +meowpass_init — scan directory for .env files
  • +meowpass_run — run command with injected secrets
  • +meowpass_run_redacted — safe mode, scrubs secret values from output
  • >Now 14 tools total (was 10)
Node.js SDK0.1.12026-05-06

Initial release with README

  • +Full E2E encryption SDK for Node.js (Argon2id + AES-256-GCM)
  • +get, set, delete, list, pull, createVault, whoami methods
  • +Byte-compatible ciphertext with Go CLI
  • +README with API reference and examples
GitHub Actionv12026-05-05

Initial release

  • +Composite GitHub Action for CI/CD secret injection
  • +Export mode (GITHUB_ENV) and env file mode
  • +API key + pre-derived master key authentication
CLIv0.1.42026-05-05

DDoS protection and early access

  • +Rate limiting: 60 req/min general, 10 req/min auth endpoints
  • +Request body size limit (1MB)
  • +Security headers (X-Content-Type-Options, X-Frame-Options)
  • >All plan limits set to unlimited for early access