Changelog

v1.3 (June 2026)

• Screen-to-HTML modernization: Modern View panel, ScreenAnalyzer, ScreenToHTML renderer
• LDAP, OIDC (Okta/Azure AD/Google), SAML (ADFS/PingFederate) SSO authentication
• Custom templates: CustmntTemplate built-in, BuiltinTemplate registry, titlePattern matching
• REST API: GET /screen/form (structured JSON), GET /screen/html (visual snapshot)
• Fixed: password field values no longer returned in GET /fields or GET /screen/form API responses
• Fixed: ModernView panel no longer triggers terminal reconnect when toggled (React tree stable)
• Fixed: SAML signature bypass (goxmldsig v1.6.0, GO-2026-4753)
• Fixed: esbuild vulnerability (GHSA-gv7w-rqvm-qjhr, upgraded to latest)
• Session ID validation in HLLAPI URL path (rejects non-alphanumeric IDs)
• Lazy-loaded panels (AgentPanel, HelpPanel, KeymapEditor, etc.) for faster initial load

v1.1-hardened (June 2026)

• Security headers: CSP, HSTS, X-Frame-Options, X-Content-Type-Options
• WebSocket: 64KB read limit, origin validation in server mode
• SSH: Trust-on-first-use host key verification (IMTE2030W/2031E)
• Browser close warning for active sessions
• Full PowerTerm parity: 20/20 checks green
• Production hardening pass complete

v1.0 (June 2026)

• Initial release: TN5250E + TN3270E + VT52-VT525
• Hebrew/BiDi pipeline with bidi-js
• Agent Mode with 4 LLM providers
• Multi-session tabs, profiles, auth/RBAC, audit
• File transfer, printing, macros, auto-login
• 116/116 verification checks green
• Verified against PUB400.COM IBM i 7.5