This release focuses on protecting accounts and reducing the chance of sensitive chat data persisting longer than intended. It also hardens rate limiting in proxy setups to better resist spoofed client IP headers.
Security updates
Email and password sign-ups now require a verified email. This helps prevent account takeover scenarios where an unverified email could be used to improperly link accounts during migration.
Account linking during migration is now only allowed when the caller’s email is verified. Attempts to link using an unverified email are blocked.
Rate limiting for the models endpoint is more resilient to spoofed proxy headers. Client IP handling now validates IP formats and prefers platform-provided headers before falling back to forwarded-for headers.
Privacy and accessibility
Prompt drafts and stream resumption data are now stored in session-only browser storage instead of persistent storage. Drafts also expire sooner, reducing how long sensitive input can linger.
On sign-out, the app now clears session-stored chat, draft, and stream data to reduce data leakage risk on shared devices.
The UI now respects your reduced motion preference by minimizing animations and transitions when your system is set to reduce motion.