-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathCHANGES
More file actions
65 lines (58 loc) · 2.79 KB
/
CHANGES
File metadata and controls
65 lines (58 loc) · 2.79 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
v1.1.0 (2026-03-18)
-------------------
- Add clipboard history: the last 25 text and image clipboard entries are
stored in memory and accessible via a new "History" submenu in the menu
bar icon
- Click any history entry to instantly restore it to the clipboard and
update the main window
- "Clear History" item at the bottom of the History submenu wipes all
stored entries
- History is seeded with current clipboard content on launch and updated
automatically on every clipboard change; consecutive identical text
copies are de-duplicated
v1.0.6 (2026-03-08)
-------------------
- Add finger.exe LOLBIN detection for CrashFix ClickFix variant (issue #17)
- Extend cmd pattern to also match cmd.exe /c
- Add broader LOLBIN coverage: rundll32, regsvr32, wscript, cscript (high with
flags/URLs, medium for bare mention)
- Add charcode obfuscation detection: PowerShell [char] casting,
String.fromCharCode, and comma-separated numeric blobs (10+ values)
- Expand test suite to 71 tests with false-positive guards for all new patterns
v1.0.5 (2026-03-08)
-------------------
- Remove ClickFix jargon from internal detection code and tests
- README updates
v1.0.4 (2026-03-08)
-------------------
- Drive pyproject.toml version dynamically from VERSION file (single source of truth)
- Remove unused screenshot and rename test file
- Remove unnecessary VS Code workspace file
- Add dist/
v1.0.3 (2026-03-08)
-------------------
- Add macOS ClickFix detection patterns: curl/wget pipe to zsh, base64 -D/-d
pipe to shell (macOS and Linux), pipe directly to osascript without -e flag,
and cmd /c prefix for cross-platform payloads
- Expand test suite with 14 new cases covering new patterns and false-positive
checks for plain-text mentions of zsh and base64
- Add tests/__init__.py for proper pytest package discovery
v1.0.2 (2026-03-07)
-------------------
- Replace security jargon with plain language in user-facing text (README, alert dialog)
- Add new warning dialog screenshot
- Remove broken Malwarebytes link from README
v1.0.1 (2026-03-07)
-------------------
- Fix false positives: bare keywords (PowerShell, IEX, certutil, etc.) no longer
trigger warnings without command-like context (flags, operators, or URLs)
- Dangerous commands with flags/operators/URLs still trigger at high confidence
v1.0.0 (2026-03-07)
-------------------
- Add ClickFix clipboard attack detection with floating warning dialog
- Red badge on menu bar icon when clipboard contains content
- 5-minute auto-clear timer enabled by default
- Warning dialog is non-modal: menu bar remains accessible while alert is shown
- Red badge shown before warning dialog appears on launch
- Friendly, plain-language warning message identifying Hello Clipboard as the source
- Auto-clear timer configurable from menu bar (Disabled / 30s / 5min / 1hr / 24hr)