Changelog

What changed.

Every release, fix, and on-chain change. Source onGitHub.

June 10, 2026

  • Signerv0.1.5

Security

  • Signer: TLS 1.3 now required as the minimum across the mTLS transport.
  • Signer: hardened the native code boundary with length guards, in-memory secret wiping, and safer buffer handling.
  • Signer: KMS key material wiped from memory on shutdown.
  • Signer: HTTP header read timeouts to resist slow-request (Slowloris) attacks.
  • Relayer: stricter validation on all API requests, with clearer error responses.
  • Relayer: stronger Bitcoin key handling.

Improved

  • Signer: PSBT-first design for Bitcoin operations.
  • Signer: sparse-index support for non-contiguous party indices.
  • Relayer: streamlined Bitcoin transaction signing, consolidated into a single, more secure flow with legacy signing paths removed.
  • Relayer: more accurate health monitoring using on-chain data.
  • Relayer: reduced internal dependencies in the health check flow.
  • Relayer: request logging added for better observability into service activity.

Fixed

  • Relayer: fixed an edge case in collateral synchronization during loan updates.

Infrastructure

  • Relayer: migrated to a more robust, higher-performance database backend.

May 22, 2026

  • Signerv0.1.4

Security

  • Relayer: global per-IP rate limiting.
  • Relayer: stricter BTC withdrawal validation, with safe retries on transient RPC failures.
  • Relayer: configurable auth modes, with backwards compatibility for existing clients.
  • Signer: mTLS now required for operational endpoints.
  • Signer: validator hardening, including RPC error handling and user authenticity checks.
  • Signer: audit logging across all operations.

Improved

  • Relayer: removed unused API surface.

Infrastructure

  • Signer: upstream rebase and dependency updates (Go, OpenSSL, Next.js).