v2.9.0

The Passbolt Windows application version 2.9 includes several improvements and bug fixes. This release follows up on recent security patches applied to the browser extension, bringing the desktop app into alignment.

v2.8.0

Passbolt windows application 2.8 brings new productivity feature tags visible in the grid, along with security hardening and performance improvements.

Tags visible in the grid (Passbolt Pro)

Tags are now displayed directly in the resources grid, making it easier to identify and filter resources without opening the resource details view.
A new tags column shows the tags associated with each resource. Tags are displayed in alphabetical order and remain clickable, allowing users to filter the workspace by selecting a tag directly from the grid.
When multiple tags exist, the grid displays as many as possible within the column width and indicates additional tags using a counter with a tooltip showing the remaining tags.
This update also modernises the tag codebase and lays the groundwork for further improvements to tagging capabilities.

Security improvements

The Passbolt team is currently preparing its First Level Security Certification (CSPN) with the French National Cybersecurity Agency (ANSSI). This release includes some fixes following the CSPN pre-audit evaluation done in partnership with Quarkslab and an external audit of SCIM provisioning by Cure53. This release addresses the findings identified during both audits.

One notable issue is around CSV injection, e.g. when CSV exports could be susceptible to formula injection when opened in spreadsheet software. This issue was known and classified as out of scope, as exported CSV files are not intended to be opened in spreadsheets but with the password manager they were generated for. However we revisited this decision and settled for a security-by-default approach: CSV export is now disabled by default, fixing the bigger problem of credentials being potentially exported in plaintext. Organisations that still rely on it can re-enable the feature through configuration. Encrypted KDBX export remains available and is the recommended format for credential portability. Looking ahead, we plan to support the FIDO CFX format in a future release to further standardise credential import and export across tools.

Content Security Policy enforcement has been extended to close remaining gaps, further reducing the attack surface in case of a breach. Because the browser extension serves its own code locally rather than relying on the API, sensitive operations were already well protected by design against server-side injection.

Additionally an external security audit of SCIM provisioning has been completed, and this release includes fixes for a number of the findings. We are actively working through the remaining issues and will publish the full audit results once that work is done. SCIM will exit beta and ship on Passbolt Cloud as soon as all findings are resolved.
Maintenance & performance
This release brings a major upgrade to React 18, resulting in up to 20% faster rendering and the elimination of rare visual glitches that could cause flashes during navigation.

First load times have also improved substantially. Large organisations with thousands of resources will notice the biggest difference, with initial data processing now up to 20% faster.

Bear with us, more optimisations are already in the pipeline for future releases.

Conclusion

As usual, the release is also packed with additional improvements and fixes. Check out the changelog to learn more.
Many thanks to everyone who provided feedback, reported bugs, and contributed to making passbolt better!

v2.7.0

Passbolt Windows Application 2.7.0 introduces full compatibility with dynamic role management, allowing the Windows application to support additional roles that better align with internal policies and compliance requirements. This release also adds drag & drop user assignment to groups and implements stronger protection against clickjacking and deceptive overlays.

Dynamic Role Management Compatibility

The Windows application is now fully compatible with the Dynamic Role Management system introduced in version 5.8. While the creation and definition of roles remain exclusive to the browser extension, this application strictly enforces the associated scopes and constraints.

The default Admin and User roles remain fixed. The Admin role retains access to all capabilities and cannot be restricted, while the User role respects any defined restrictions but cannot perform delegated administrative tasks.
Users assigned to custom roles are also fully supported. The application recognizes the specific capabilities granted to these new roles, currently limited to two per instance. As the scope of dynamic roles expands in the future, the Windows application will adapt to support additional use cases.

As the scope of dynamic roles expands in future updates based on community feedback, the Windows application will continue to evolve to support these new use cases.

Drag & drop users to groups

Managing group membership often requires repetitive actions when working with large teams or frequently changing group structures. Administrators can now add users to a group by dragging them directly onto it from the Users & Groups workspace. This removes the need to open and edit each group individually, making day-to-day group management faster and more fluid.

Stronger protection against clickjacking and deceptive overlays

Clickjacking and overlay techniques aim to trick users into clicking something different from what they believe they are interacting with. This release reinforces defenses against these UI-level attacks in edge-case conditions, including scenarios where a compromised context tries to influence user interactions.

In practice, this extra layer of strengthening helps ensure users cannot be guided into interacting with sensitive Passbolt components when those components are not fully visible and clearly presented to them.

Miscellaneous improvements

As usual, this release includes fixes and smaller improvements intended to improve the overall experience. For the full list of changes, please refer to the changelog.
Many thanks to everyone who provided feedback and helped refine these features.

v2.6.1

Passbolt Windows Application 2.6.1 restores ARM64 architecture support, which was inadvertently missing from the 2.6.0 release. The Windows application now properly supports all four CPU architectures: x64, x86, ARM, and ARM64.

Fixed

• PB-47634 Update csproj to accept arm64 architecture

v2.6.0

Passbolt Windows Application 2.6.0 introduces secret history, a highly demanded feature that gives users visibility and control over previous versions of their secrets. This release also includes several usability improvements requested and bug fixes reported by the community.

Secret history

It is now possible to access previous revisions of a secret directly from Passbolt.

Secret history helps reduce the impact of human error and offers a safer way to manage evolving secrets. For instance, this enables users to undo an accidental update on the spot. Note that the feature is disabled by default and requires an administrator to enable it from the administration workspace.

User and group workspace improvements

A new “Remove from group” action has been added to the user and group workspace. This addition eliminates the confusion between permanently deleting a user and simply removing them from a specific group.

Moreover, administrators can now instantly filter users that require attention via the “Attention Required” filter in the workspace. For instance: identifying users with a pending account recovery request to review, or missing metadata keys.

Import report

The application now displays a summary dialog after an import, offering accurate and actionable information. The report precisely categorises alerts into successes, warnings and errors, providing end users with additional logs.

Miscellaneous Improvements

As usual this release is packed with improvements and bug fixes reported by the community. For more, check out the changelog below.

Many thanks to everyone who provided feedback, reported issues, and helped refine these new features.

Added

• PB-17712 Focus should be put in the passphrase field when importing keepass file protected by passphrase
• PB-33599 Allow users to access previous revisions of a resource’s secret
• PB-33599 Allow administrators to configure how many secret revisions are retained
• PB-44420 Allow administrators to download the Users Directory sync report for follow-up actions
• PB-44434 As an administrator I can see encrypted metadata healthchecks from the administration workspace
• PB-45249 Add “Attention required” filter in the “Users & groups” workspace to filter users by attention required
• PB-45842 Add link to SCIM admin guide in the product
• PB-46427 Add remove from group button in User & Group Workspace page
• PB-46941 Windows application should be compatible with 5.7.0
• PB-46846 As a windows application I should catch the unexpected error to display it to a dialog

Fixed

• PB-18497 Add loading spinner when submitting imported GPG key during account extension association (activation/recover)
• PB-36183 Display UTC date in tooltip for relative “X days ago” timestamps
• PB-42032 Fix: update passphrase help section link goes to the former help site
• PB-43950 Add padding between fields and their description on the Users Directory administration page
• PB-44603 Help link in administration internationalization page should target the contribute page of the help site
• PB-44949 GITHUB#240 Inform menu crash on suggested resource icon
• PB-45263 Enforce password expiry on imported resources when a password policy requires it
• PB-45588 Extend metadata description textarea in resource creation dialog to use full available height
• PB-45699 User without groups is not display correctly on the right sidebar
• PB-45723 The in-form CTA is not visible since v5.5 for some web application
• PB-45797 Fix typos in BExt
• PB-45917 I can autofill my username in the login form of cryptpad in French
• PB-45992 Keep selection of resources when collapsing the Workspace section
• PB-46013 Empty Full Report textarea displayed in Users Directory dialogs when there are no resources to synchronize
• PB-46065 Prevent re-encryption of metadata with personal user key when a resource is shared with a group
• PB-46118 Import unexpected error handling on import
• PB-46191 Update UserSettings validateDomain to make sure the issue cannot be exploited
• PB-46372 As LU, I should see the content share dialog within the boundaries of the dialog
• PB-46385 Fix auto-fill on OVH with custom selector field on username

Maintenance

• PB-30373 Remove unused event passbolt.app-bootstrap.navigate-to-logout
• PB-45099 Update: Regular expression on private key metadata validation
• PB-45100 Update: Regular expression on GPG Message validation
• PB-45585 Fix SCIM styleguide related unit tests error
• PB-45589 Refactor resource favorite capability to use FavoriteServiceWorkerService instead of direct port requests
• PB-45590 Migrate favorite logic from FavoriteModel to FavoriteResourceService and remove legacy model
• PB-45591 Route passbolt.favorite.add/delete events through controllers instead of calling services directly
• PB-45593 Add test coverage for FavoriteService API and rename class to align with Passbolt standard
• PB-45678 Upgrade ESLint dependencies across both repositories
• PB-45835 Migrate group (partially) related code to new architecture
• PB-45894 Rename leftSideBar and rightSideBar classes to respect naming convention
• PB-45963 Replace find-all with find-my-groups Port Requests
• PB-45965 Rename groupService to groupApiService
• PB-46127 Update i18next dependency
• PB-46190 Update themeEntity to remove preview unused field
• PB-46891 Small upgrade for js-yaml (Medium) - passbolt-windows
• PB-47110 Small upgrade for xregexp (High)
• PB-46829 Object deserialization can lead to remote code execution (Medium) - passbolt-windows
• PB-46894 Provide a packe.lock.json file for Aikido to improve dependencies scanning
• PB-46095 Migrate application from UWP to WinUI 3

v2.5.0

Passbolt Windows Application 2.4.0 ships with the zero-knowledge for encrypted metadata feature available with API 5.5.0. Zero-knowledge for encrypted metadata is intended for organisations that prioritise maximum privacy and can do without server-side auditability. In this mode, the server never receives the shared metadata private key and therefore cannot access any resource metadata.

When a new user joins, the server does not automatically share the key with them. Instead, administrators are notified by email once the user has completed their activation and is ready to receive access. From the Users & Groups workspace, administrators can then review the situation and share the key when the time is right.

Until a user receives the key, their experience is intentionally limited: actions that depend on the shared metadata key, such as sharing a resource, moving a private item into a shared folder, or creating content meant to be shared, are blocked.

To know more about the encrypted metadata zero-knowledge mode, check out this blog post.

Many thanks to everyone who took the time to file issues and suggest improvements.
Check out the changelog for more information.

[2.5.0] - 2025-09-17

Added

• PB-43921 - Increase directory sync report dialog size
• PB-44393 ZK - WP5.1 As an administrator I should be able to enable zero knowledge mode
• PB-44646 ZK - WP5.3 Add share metadata private keys to MetadataKeysSettingsEntity
• PB-44641 ZK - WP5.4 Create UpdateMetadataSettingsPrivateKeyService to to be able to disabled zero knowledge mode
• PB-44631 ZK - WP5.5 Update SaveMetadataKeysSettingsController to be able to disabled zero knowledge mode
• PB-44757 ZK - WP5.6 As an administrator with missing metadata keys I should not be able to change metadata settings

Fixed

• PB-44638 - Password expiry should not be removed when password is not updated
• PB-44604 - Fix regular expression on public key metadata validation
• PB-45060 - Fix custom fields json schema properties type
• PB-44933 - Fix setup a new user should have missing key set

Maintenance

• PB-44594 - Upgrade xregexp to 5.1.2

v2.4.0

Passbolt Windows Application 2.4.0 ships with the zero-knowledge for encrypted metadata feature available with API 5.5.0. Zero-knowledge for encrypted metadata is intended for organisations that prioritise maximum privacy and can do without server-side auditability. In this mode, the server never receives the shared metadata private key and therefore cannot access any resource metadata.

When a new user joins, the server does not automatically share the key with them. Instead, administrators are notified by email once the user has completed their activation and is ready to receive access. From the Users & Groups workspace, administrators can then review the situation and share the key when the time is right.

Until a user receives the key, their experience is intentionally limited: actions that depend on the shared metadata key, such as sharing a resource, moving a private item into a shared folder, or creating content meant to be shared, are blocked.

To know more about the encrypted metadata zero-knowledge mode, check out this blog post.

Many thanks to everyone who took the time to file issues and suggest improvements.
Check out the changelog for more information.

[2.4.0] - 2025-09-17

Added

• PB-43921 - Increase directory sync report dialog size
• PB-44393 ZK - WP5.1 As an administrator I should be able to enable zero knowledge mode
• PB-44646 ZK - WP5.3 Add share metadata private keys to MetadataKeysSettingsEntity
• PB-44641 ZK - WP5.4 Create UpdateMetadataSettingsPrivateKeyService to to be able to disabled zero knowledge mode
• PB-44631 ZK - WP5.5 Update SaveMetadataKeysSettingsController to be able to disabled zero knowledge mode
• PB-44757 ZK - WP5.6 As an administrator with missing metadata keys I should not be able to change metadata settings

Fixed

• PB-44638 - Password expiry should not be removed when password is not updated
• PB-44604 - Fix regular expression on public key metadata validation
• PB-45060 - Fix custom fields json schema properties type
• PB-44933 - Fix setup a new user should have missing key set

Maintenance

• PB-44594 - Upgrade xregexp to 5.1.2

v2.3.2

Passbolt Windows Application 2.3.2 fixes an issue introduced in version 2.3.0. The clipboard protection feature, which cleared the clipboard 30s after copying a secret, was causing the application to crash. Clipboard flushing has been temporarily disabled to allow users to access their secrets. We are investigating how to fix the crash and re-enable this security feature in a future release.

Many thanks to everyone who reported the issue.

Fixed

• PB-45095: Copy username or password did nothing

v2.3.1

Passbolt Windows Application 2.3.1 is fixing an issue introduced during the version 2.1.0. When a user wanted to copy its password or its username, the clipboard was not working anymore and we solved it by adding the Clipboard feature done during the bext version 5.3.2 .

The new clipboard flush timer lets you copy secrets just long enough to use them; clipboard data is automatically cleared when the countdown (30s) expires, significantly reducing the risk of accidental exposure or leaks from forgotten clipboard content.

Many thanks to everyone who reported issues. Your feedback made this release possible and solves issues to all users today.

[2.3.1] - 2025-09-04

Fixed

• feature/PB-45095_Windows-app-copy-username-or-password-does-nothing

v2.3.0

Passbolt Windows application 2.2.1 is a hot fix release that restores protected actions like creating and editing resources on some API servers behind a proxy. If you saw CSRF errors, install 2.2.1 and try again.

Thanks to everyone who reported the issue. See the changelog for details.

[2.2.1] - 2025-08-01

Fixed

• PB-43969 CSRF token in request body or headers does not match or is missing on the windows app