Release v1.0.1: Critical Security Fixes, Background Stability, and UI Improvements#4
Merged
network-lumen merged 4 commits intonetwork-lumen:masterfrom Jan 24, 2026
Merged
Conversation
…duction, and build fixes
…nd bump v1.0.1 - Fix: Prevent data loss by detecting existing vaults in new tabs even when locked. - Fix: Add 'contextMenus' permission and safety guards to background.js to prevent crashes. - Fix: Resolve 'Import Wallet' button hang and improve routing security. - Feat: Add PQC Backup JSON download during onboarding. - Refactor: Remove PQC on-chain verification (reverted for stability). - UI: Truncate long wallet names and add copy-to-clipboard checkmark feedback. - Chore: Bump version to 1.0.1 in package.json and all manifest files.
- Redesigned staking UI into a multi-step flow (Dashboard, Detail, Confirm). - Added validator search filter and sorted list by voting power. - Implemented a 21-day unbonding warning modal for unstaking. - Added real-time unbonding progress tracking with completion dates. - Improved UI responsiveness and fixed element overlaps (Navbar/Header). - Integrated transaction history for all staking actions. - Enhanced SDK with unbonding delegation fetching.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
2 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
Overview
This release focuses on resolving a critical data loss vulnerability related to vault management, improving background script stability to prevent runtime crashes, and polishing the UI and onboarding experience for version 1.0.1.
Key Changes
Security & Data Protection
Vault Overwrite Fix: Resolved a major bug where open tabs (e.g., "Add Wallet") failed to detect an existing locked vault, which could lead to data loss when setting a new password.
Routing Security: Added navigation guards to the /wallet/create route to redirect users to the unlock screen if a vault is already present.
Import Flow Stability: Fixed a silent failure on the "Import Wallet" button caused by unhandled session exceptions and routing conflicts.
Background & Stability
Defensive API Checks: Implemented robust safety guards (typeof chrome !== 'undefined') across the background script to prevent TypeError crashes in various browser environments.
Permission Management: Added the missing contextMenus permission to
manifest.json
to enable side panel features and prevent runtime errors.
Improved Monitoring: Refined the balance fetch logic to log warnings for transient network failures instead of fatal errors, resulting in a cleaner console.
Features & UI Refinement
Onboarding PQC Backup: Added a mandatory PQC Backup JSON download step during initial wallet creation to ensure long-term recoverability.
UI Polish:
Implemented truncation for long wallet names in the header to maintain layout integrity.
Added a visual "Checkmark" feedback animation when successfully copying a wallet address.
Consistency: Synchronized the version number to 1.0.1 across
package.json
and all manifest files.
Technical Notes
Temporarily reverted PQC on-chain verification logic to prioritize stability for this release.
Verified build stability and bundle size optimizations.
Verification Steps
Verified Lock/Unlock cycles share state correctly across tabs.
Tested the import flow with 12 and 24-word mnemonics.
Confirmed PQC JSON backup downloads correctly during onboarding.
Monitored background script console for zero runtime exceptions.