Vizoguard Changelog

Stay up to date with the latest security patches, features, and improvements for Vizoguard.

Desktop v1.3.4 May 6, 2026

Security

• Replaced runtime code-signing detection with build-time flag (prevents signature-stripping bypass)
• Added Electron fuses: disabled RunAsNode, EnableNodeCliInspectArguments, EnableNodeOptionsEnvironmentVariable
• Enabled ASAR integrity validation and OnlyLoadAppFromAsar
• Added HMAC-signed license responses with replay protection (nonce + timestamp)
• Added temp file cleanup and log rotation on startup
• Fixed semver parsing in updater downgrade protection
• Pinned all GitHub Actions by SHA

Fixed

• Fixed electron-store ESM crash
• Fixed macOS and Windows binary path mismatches
• Fixed Windows packaging bloat from macOS binaries

Desktop v1.3.3 March 23, 2026

Security

• Added certificate pinning to auto-updater
• Added minimum version downgrade protection
• Added WebRTC IP leak prevention
• Added real CSP via session webRequest
• Enabled explicit sandbox in BrowserWindow
• Added log redaction for sensitive data

Desktop v1.3.0 / Android v1.0.1 March 23, 2026

Added

• Obfuscated VPN transport (VLESS + WebSocket + TLS)
• Privacy Autopilot local threat scoring
• In-app update checker for Android with SHA-256 verification

Security

• Block IPv6 at VpnService level (Android)
• Remove allowBypass() — all traffic through tunnel (Android)
• Clock skew detection with monotonic timestamp defense (Android)

Desktop v1.1.0 March 22, 2026

Added

• Initial public release for macOS and Windows
• Shadowsocks VPN with tun2socks
• System tray integration and auto-updater

For security disclosures, contact security@vizoguard.com.