Changelog — Bookmark Minder

Unreleased

Mandatory end-to-end encryption for all bookmarks — URLs, titles, and notes are encrypted client-side with XChaCha20-Poly1305 before leaving your device.
Vault passphrase required at signup; keys derived with Argon2id.
Canonical URL deduplication via HMAC-SHA256 — the server confirms duplicates without reading plaintext URLs.
Server-side URL fetching and Safe Browsing check removed; all metadata supplied by the browser extension.
Client-side full-text search using MiniSearch in a Web Worker; no bookmark data sent to the server for search.
30-day migration window for existing users with a guided in-app migration tool.

Bookmark capture pipeline with job queue and archiving.
End-to-end encryption infrastructure (Argon2id, XChaCha20-Poly1305, X25519 key wrapping, recovery kit).
Worker-host integration (heartbeat, job claim/result, archive proxy).
Link sharing — plain and E2EE modes, share viewer, coupon system, family plan.
Browser import (Chrome, Firefox, Safari, Edge), tag/collection management.
Stripe billing, subscription management, account erasure.