Techidon v1.3.0 release
3 views
Skip to first unread message
Darko Luketic
Mar 14, 2026, 3:36:53 AMMar 14
to techidon
# Techidon v1.3.0
Techidon v1.3.0 is a maintenance-focused release that improves security, accessibility, and day-to-day performance across the app. Compared with v1.2.0, this release does not center on a single flagship feature; instead, it tightens a number of important areas that affect reliability and polish in regular use.
## Highlights
- Hardened file handling in several places to better prevent path traversal issues when working with saved media and filenames coming from external sources.
- Closed a custom emoji loading issue that could allow unsafe local or server-side requests.
- Improved backup protections so sensitive account-related data is no longer included in Android backup data.
- Expanded log redaction to better avoid writing instance, endpoint, and authentication-related values to logs.
- Fixed a domain blocklist edge case involving multiple trailing dots.
- Added a broad set of accessibility improvements for interaction buttons, polls, emoji input, progress indicators, and alt-text affordances.
- Reduced unnecessary allocations and repeated work in multiple scrolling and rendering paths to improve smoothness and efficiency.
## User-visible improvements
### Security and privacy
This release includes several defensive fixes aimed at protecting user data and tightening input handling:
- Safer filename sanitization for files obtained from external content providers.
- Additional protection when saving files from the photo viewer.
- Stronger validation around custom emoji loading.
- Backup rule fixes to keep credentials and push-related preference data out of Android backups.
- Better redaction of sensitive values in logs.
- A fix for a domain matching bypass involving repeated trailing dots.
These changes are mostly preventative, but they are important because they reduce the chance of private data being exposed or unsafe paths being accepted.
### Accessibility
v1.3.0 improves support for assistive technologies in several parts of the UI:
- More descriptive accessibility labels for status interaction buttons.
- Better accessibility handling for poll controls and poll results.
- Accessibility labels for the custom emoji keyboard.
- A content description for indeterminate progress indicators.
- A tooltip on the alt-text badge to make that affordance clearer.
The overall effect is clearer navigation and better spoken feedback for screen reader users.
### Performance
A large portion of the release is dedicated to removing avoidable overhead in hot paths:
- Less repeated work in timeline and status rendering.
- Faster hashtag-related lookups and stream processing.
- Lower allocation overhead in API utility code and relationships loading.
- Reduced overhead in link card parsing and text measurement.
- Cached regex/filter processing in HTML parsing and UI utilities.
- Simpler event-handling loops in timeline updates.
These changes should help keep scrolling and list-heavy screens more responsive, especially on slower devices or busier timelines.
## Maintenance
In addition to the app changes, this release updates parts of the project’s build and CI setup, including Gradle wrapper maintenance and pull request quality-gate workflow improvements.
## Upgrade notes
There are no special migration steps for users. Updating to v1.3.0 is recommended for the security fixes alone, with the accessibility and performance work providing additional quality-of-life improvements.
## Tag
- Git tag: `v1.3.0`
- Diff base: `v1.2.0..v1.3.0`
Techidon v1.3.0 is a maintenance-focused release that improves security, accessibility, and day-to-day performance across the app. Compared with v1.2.0, this release does not center on a single flagship feature; instead, it tightens a number of important areas that affect reliability and polish in regular use.
## Highlights
- Hardened file handling in several places to better prevent path traversal issues when working with saved media and filenames coming from external sources.
- Closed a custom emoji loading issue that could allow unsafe local or server-side requests.
- Improved backup protections so sensitive account-related data is no longer included in Android backup data.
- Expanded log redaction to better avoid writing instance, endpoint, and authentication-related values to logs.
- Fixed a domain blocklist edge case involving multiple trailing dots.
- Added a broad set of accessibility improvements for interaction buttons, polls, emoji input, progress indicators, and alt-text affordances.
- Reduced unnecessary allocations and repeated work in multiple scrolling and rendering paths to improve smoothness and efficiency.
## User-visible improvements
### Security and privacy
This release includes several defensive fixes aimed at protecting user data and tightening input handling:
- Safer filename sanitization for files obtained from external content providers.
- Additional protection when saving files from the photo viewer.
- Stronger validation around custom emoji loading.
- Backup rule fixes to keep credentials and push-related preference data out of Android backups.
- Better redaction of sensitive values in logs.
- A fix for a domain matching bypass involving repeated trailing dots.
These changes are mostly preventative, but they are important because they reduce the chance of private data being exposed or unsafe paths being accepted.
### Accessibility
v1.3.0 improves support for assistive technologies in several parts of the UI:
- More descriptive accessibility labels for status interaction buttons.
- Better accessibility handling for poll controls and poll results.
- Accessibility labels for the custom emoji keyboard.
- A content description for indeterminate progress indicators.
- A tooltip on the alt-text badge to make that affordance clearer.
The overall effect is clearer navigation and better spoken feedback for screen reader users.
### Performance
A large portion of the release is dedicated to removing avoidable overhead in hot paths:
- Less repeated work in timeline and status rendering.
- Faster hashtag-related lookups and stream processing.
- Lower allocation overhead in API utility code and relationships loading.
- Reduced overhead in link card parsing and text measurement.
- Cached regex/filter processing in HTML parsing and UI utilities.
- Simpler event-handling loops in timeline updates.
These changes should help keep scrolling and list-heavy screens more responsive, especially on slower devices or busier timelines.
## Maintenance
In addition to the app changes, this release updates parts of the project’s build and CI setup, including Gradle wrapper maintenance and pull request quality-gate workflow improvements.
## Upgrade notes
There are no special migration steps for users. Updating to v1.3.0 is recommended for the security fixes alone, with the accessibility and performance work providing additional quality-of-life improvements.
## Tag
- Git tag: `v1.3.0`
- Diff base: `v1.2.0..v1.3.0`
Reply all
Reply to author
Forward
0 new messages