2026-04-17 - 2026-07-17
Overview
25 Pull requests merged by 2 users
Merged
#157 ci(docker): add Docker publishing workflow and Dockerfile
Merged
#166 feat: obfuscate client identity and improve privacy (#165)
Merged
#159 fix(accounts): complete client.name to client.account_name rename
Merged
#152 fix(ai): unbreak CI and harden custom settings after chat-completions alignment
Merged
#143 fix(pgp): prevent plaintext fallback in PGP/OX encryption
Merged
#135 fix(ui): reclaim pad by dead space instead of absolute height
Merged
#137 build: untrack generated src/gitversion.h.in
Merged
#138 fix(xmpp): guard NULL domain in autoping disco warning gate
Merged
#80 new feature: warning if autoping is disabled
Merged
#130 Fix: issue #112 follow-ups — OTR strip, presence UAF, OMEMO load
Merged
#136 fix(ui): reserve pad height per message to prevent multi-line clip and scroll desync
Merged
#8 Light code cleanup
Merged
#133 fix(ui): raise pad redraw threshold above buffer cap to fix history scroll
Merged
#132 fix/plugin-post-display-incoming-only
Merged
#105 merge/upstream-full
Merged
#127 chore(chatlog): disable background message file logging (stage 1)
Merged
#126 feat(ai): add full JSON \uXXXX decoding with UTF-8 and surrogate pair support
Merged
#123 fix(ui): keep messages visible after scrolling in non-chat windows
Merged
#116 feat(history): nodb backlog — statusbar opt-in, /history off persistence, /privacy runtime switch, /correction fix
Merged
#121 Fix AI memory leaks
Merged
#113 [#110] Add AI client with multi-provider support and UI
Merged
#119 fix(ai): persistence/UX fixes, parser unification, prefs consolidation, plus test coverage
Merged
#115 fix(verify): per-contact context in output, drop noisy duplicate-stanza-id warning
Merged
#94 no-DB mode implementation
Merged
#108 CI: Simulate Pikaur flag duplication in Arch Linux builds (fix #55)
5 Pull requests proposed by 2 users
Proposed
#129 WIP: fix(database): make v2->v3 chatlog migration deterministic and FK-safe
Proposed
#141 wip: revert: restore pre-upstream-merge baseline (tree of 3b673150b)
Proposed
#153 fix(editor): follow live terminal size in external editor
Proposed
#163 WIP: feat(ai): support both responses and chat-completions APIsfeat/ai-api-type
Proposed
#167 feat: improve autocomplete for JIDs
17 Issues closed from 3 users
Closed
#140 [CI] Add automated Docker Hub publishing workflow
Closed
#165 Increase software and version privacy
Closed
#142 PGP messages are not being encrypted if key is expired
Closed
#39 OMEMO issues
Closed
#43 Display of message bigger than ncurses buffer
Closed
#51 Investigate extensive memory usage
Closed
#139 Build system modifies tracked src/gitversion.h.in
Closed
#1 Warn on server connection if autoping is disabled, but supported
Closed
#122 OMEMO error mem leaks
Closed
#112 Follow-up issues for PR #105
Closed
#109 Reenable build flags
Closed
#64 Merge Profanity's latest upstream updates into CProof
Closed
#114 nodb backlog
Closed
#120 [AI-feature] Memory leaks
Closed
#110 Add embedded AI support
Closed
#48 Add no-db options
Closed
#55 [CI] Detect flag collisions caused by Pikaur's configuration logic
31 Issues created by 2 users
Opened
#109 Reenable build flags
Opened
#110 Add embedded AI support
Opened
#111 Improve shell support
Opened
#112 Follow-up issues for PR #105
Opened
#114 nodb backlog
Opened
#120 [AI-feature] Memory leaks
Opened
#122 OMEMO error mem leaks
Opened
#124 Add /history clean (and per-jid variant) to wipe existing chat history
Opened
#125 SQLite history load merges LMC corrections regardless of PREF_CORRECTION_ALLOW
Opened
#128 _migrate_to_v3: deterministic dedupe, explicit column list, and LMC foreign-key sweep
Opened
#134 Harden pad reclaim: trigger on dead space instead of absolute pad height
Opened
#139 Build system modifies tracked src/gitversion.h.in
Opened
#140 [CI] Add automated Docker Hub publishing workflow
Opened
#142 PGP messages are not being encrypted if key is expired
Opened
#144 Security compliance: assessment, planning
Opened
#145 [Security] Harden the AI/LLM client — block cleartext egress, enforce TLS verification, add timeouts
Opened
#146 [Security] Protect local data at rest — owner-only file permissions, DB integrity checks, secret-free logs
Opened
#147 [Security] E2EE & transport correctness — TLS policy floor, OMEMO/OTR/PGP fixes, downgrade/cert-failure visibility
Opened
#148 [Security] Harden untrusted-input handling — remote-DoS guards, memory safety, injection defenses
Opened
#149 [Security] Build & supply-chain security — blocking CI security gates, toolchain hardening, source/dependency pinning
Opened
#150 [Security] Credential & plugin trust — safe secret handling and plugin signature verification before dlopen
Opened
#151 [Security] Security process & documentation — vulnerability disclosure, release security gate, policies
Opened
#154 Readline buffer limit
Opened
#156 Improve OpenAI API support by AI module: responses by default with fallback to chat/completions
Opened
#160 [privacy] Revise version display default
Opened
#161 Add config autotests
Opened
#162 (merge regressions) Make adequate migration client.name -> client.account_name
Opened
#164 ref: standardize nickname->jid autocomplete and autoconvertion in cmd_defs
Opened
#165 Increase software and version privacy
Opened
#168 Segfault on disco#info result without a from attribute
Opened
#169 OMEMO cannot bootstrap against prosody-class servers
11 Unresolved Conversations
Open
#77
Add FPS counter
Open
#102
fix: validate stanza-id 'by' attr and route MUC MAM correctly (XEP-0359, XEP-0313)
Open
#40
Autoping connection_support false negative
Open
#42
Branding
Open
#97
WIP: security: validate <delay>'s from and <stanza-id>'s by attributes
Open
#11
Scroll is stuck if user goes offline
Open
#76
Offline functionality
Open
#50
Add autotests for plugins
Open
#82
Move binaries to build folder
Open
#83
Add perf tests
Open
#91
Issue: XEP-0030 Violation - disco#items errors are silently ignored