v0.7.0 - greetd-moongreet - Gitea: Git with a cup of tea

nevaforget/greetd-moongreet

v0.7.0 1d557ea135
fix: audit fixes — password zeroize, blur downscale, symlink hardening, error filtering (v0.7.0)

All checks were successful

Update PKGBUILD version / update-pkgver (push) Successful in 2s

Details

nevaforget released this 2026-03-30 16:03:04 +02:00 | 16 commits to main since this release
- Add zeroize dependency, wrap password in Zeroizing from entry extraction
  through to login_worker (prevents heap-resident plaintext)
- Add MAX_BLUR_DIMENSION (1920px) downscale before GPU blur to reduce 4K workload
- Wallpaper: use symlink_metadata + is_symlink rejection in greeter.rs and config.rs
- Avatar: add is_file() check, swap lookup order to ~/.face first (consistent with
  moonlock/moonset)
- greetd errors: show generic fallback in UI, log raw PAM details at debug level only
- fprintd: validate device path prefix before creating D-Bus proxy
- Locale: cache detected locale via OnceLock (avoid repeated env/file reads)
Downloads
- Source Code (ZIP)
- Source Code (TAR.GZ)