Changelog

What's new

Every change, big and small, in every version of Rook.
Version 1.2 May 2026 Pro features
New
  • New Rook Pro — optional annual subscription unlocking advanced power-user features.
  • New SSH key storage — generate and store Ed25519 / RSA SSH keys directly in your vault (Pro).
  • New Per-entry biometric lock — require Face ID or Touch ID before revealing the password for a specific entry (Pro).
  • New Vault-wide breach scan — scan every password against the Have I Been Pwned database in a single tap (Pro).
  • New Multiple vaults — create and switch between separate encrypted vaults (Pro).
  • New Alternate app icons — choose from Midnight, Indigo, Sage, Sunset, Mono, and Neon icon styles in Settings.
Version 1.1 May 2026 Security & resilience
New
  • New Recovery codes — generate a batch of single-use offline backup codes to regain vault access if biometrics and PIN are unavailable.
  • New Relaunch grace — optional setting that lets you re-enter the app within 5 minutes of backgrounding using biometrics only, skipping the master password.
  • New Security audit log — in-app history of unlock attempts, credential changes, and security events, accessible from Settings.
  • New Trash with configurable retention — deleted entries are soft-deleted and auto-purged after a configurable number of days (default 30).
Improved
  • Fix Biometric unlock (Face ID / Touch ID) no longer silently disables itself after an app restart — keychain access group and migration handling hardened.
  • Fix PIN attempt counter moved from UserDefaults to Keychain so a sandbox-level plist edit cannot reset the brute-force lockout counter.
  • Fix Settings no longer triggers a spurious Face ID prompt on open.
  • Fix Auto-lock timeout now correctly applies across process restarts, not only within the same session.
Version 1.0 April 2026 Initial release
New
  • New AES-256-GCM encrypted vault — all data on-device, zero-knowledge architecture.
  • New Face ID, Touch ID, and master-password unlock flows.
  • New 4 or 6-digit PIN as a quick-unlock option with rate-limited attempts.
  • New Passkey support — register and sign WebAuthn assertions from the Rook AutoFill extension.
  • New TOTP / 2FA code generation with live countdown ring, QR scanner, and full otpauth:// parameter support (SHA-1 / SHA-256 / SHA-512, custom digits and period).
  • New Password Health Score — detects weak, reused, and unchanged passwords with a Guided Fix workflow.
  • New AutoFill extension — passwords and passkeys appear in Safari and in-app login prompts.
  • New Tags & chip filter — search and organise across your own taxonomy, not just the built-in categories.
  • New iPad-native sidebar layout with three-column navigation.
  • New App Intents — generate a password, look up an entry, or lock the vault from Shortcuts and the Action Button.
  • New Light / Dark / System theme setting.
  • New Import CSV from Chrome, Safari, 1Password, Bitwarden — plus encrypted .rook re-import.
  • New Export vault to CSV or encrypted .rook archive.
  • New Optional iCloud sync — only encrypted ciphertext is ever uploaded.
  • New Spotlight search integration.
  • New Password generator with length, complexity, and passphrase options.
  • New Configurable auto-lock timeout and unchanged-password age threshold.
  • New Favourites, categories, sort, and notes / custom fields per entry.
  • New Themed home-screen widget.
  • New Optional Face ID / Touch ID step-up before revealing or copying any password.
  • New Passwords copied to the clipboard are automatically cleared after 60 seconds.
  • New No third-party SDKs, analytics, or tracking — your data never leaves your device.
  • New Breach check — check any password against the Have I Been Pwned database using the k-Anonymity model (only first 5 chars of the SHA-1 hash are sent).