KeePass Password Safe Changelog

What's new in KeePass Password Safe 2.56

Feb 5, 2024

New Features:
Added search box in the options dialog (keyboard shortcut Ctrl+F).
When pressing the Enter key in the group tree of the main window, the entries of the group are displayed now (this can be useful for instance when the entry list is displaying search results).
Added 'More' button on the 'History' tab page of the entry dialog, which shows a menu that provides the following two new commands: 'Select All Historic Entries' and 'Delete All Historic Entries'; the menu is also shown as context menu of the history entries list.
Added Ctrl+A keyboard shortcut for the 'Select All Historic Entries' command in the entry dialog (the history entries list must have the input focus).
Added workaround for Mono window size bug.
Added accessibility help page.
Improvements:
In the main window, the entry list is now updated when right-clicking onto a group in the group tree.
Expanding/collapsing a group in the group tree of the main window does not select it anymore.
The option 'Remember password hiding setting in the main window' is now turned off by default.
In the auto-type entry selection dialog, comments ({C:...} placeholders) are now removed from the values in the 'Sequence' column if the 'Sequence - Comments' column is displayed.
The view is now restored after syntax highlighting in the sequence box of the auto-type association dialog.
Reduced flickering in the sequence box of the auto-type association dialog.
Improved performance of Spr compilations of certain texts.
Minor process memory protection improvement for the password generator.
Minor process memory protection improvements for some report dialogs.
Improved thread safety of message box management.
Improved UUID object implementation.
Collection equality testing improvements (for plugins).
Various code optimizations.
Minor other improvements.
Bugfixes:
In the main window, the entry list is now updated correctly when performing overlapping keypresses into the group tree.
When cancelling a group drag&drop operation, the group selection is now restored correctly.
Fixed background of CHM help pages.

New in KeePass Password Safe 1.42 Classic Edition (Feb 1, 2024)

New in KeePass Password Safe 2.55 (Oct 12, 2023)

New Features:
Added 'Compare Entries' command (in the main menu 'Entry' → 'Compare'), which compares the two entries that are selected in the main entry list.
Added 'Mark Entry for Comparison' and 'Compare Entry with Marked Entry' commands (in the main menu 'Entry' → 'Compare'); these two commands support comparing two entries that are stored in different databases (opened in tabs).
Report dialogs can now be closed by pressing the Esc key.
Added option 'Show warning when the key transformation settings are weak' (in 'Tools' → 'Options' → tab 'Security', turned on by default).
The options in the entry/group duplication dialog are remembered now.
The options in the HTML export/print dialog are remembered now.
In dialogs that have a 'Do not show this dialog again' option and multiple commands, the command that will always be used when turning on the option is now mentioned in the dialog.
Added 'More information' link in the dialog that is displayed when KeePass automatically disables enforcement-requiring items.
Added {NEWPASSWORD:/#/P/O/} placeholder, which generates a new password for the current entry using the specified pattern P and the option(s) O.
Added accessible names for some controls (custom keystroke sequence edit control in the auto-type item dialog, filter edit control in report dialogs, a few controls in the password generator dialog; if the option 'Optimize for screen reader' is turned on).
Added 'MasterKeyExpiryForce' configuration setting.
Enhanced Google Chrome passwords CSV import module to support the new format.
Enhanced mSecure CSV import module to support the new format.
Enhanced 1Password 1PUX import module to support the new password field/type.
Improvements:
The toolbar in report dialogs is now a tab stop.
Increased default number of AES-KDF iterations.
Improved syntax highlighting for {CLIPBOARD-SET:...} placeholders (in the auto-type item editing dialog).
The node mode of the configuration element '/Configuration/Meta/PreferUserConfiguration' is now 'None' by default.
Improved INI loading performance.
Improved data size formatting.
Renamed value columns/commands in the history entry comparison dialog from 'A'/'B' to '1'/'2'.
Improved process memory protection of history entry comparisons.
Improved process memory protection of 'CryptoRandomStream' objects.
Improved thread safety of process memory protection on Unix-like systems.
The MSI file is now built using Visual Studio 2022.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
Searches using an XPath expression involving history entries now always regard all history entries.
KeePass now does not crash anymore when a plugin tries to upload a file to a server asynchronously.

New in KeePass Password Safe 2.54 (Jun 3, 2023)

New Features:
Triggers, global URL overrides, password generator profiles and a few more settings are now stored in the enforced configuration file.
Added dialog 'Enforce Options (All Users)' (menu 'Tools' → 'Advanced Tools' → 'Enforce Options'), which facilitates storing certain options in the enforced configuration file.
Export confirmation dialog banners now have a yellow-orange background.
In export confirmation dialogs, the text of the 'OK' button is now changed to 'Confirm Export'.
In report dialogs, passwords (and other sensitive data) are now hidden using asterisks by default (if hiding is activated in the main window); the hiding can be toggled using the new '***' button in the toolbar.
The 'Print' command in most report dialogs now requires the 'Print' application policy flag, and the master key must be entered if the 'Print - No Key Repeat' application policy flag is deactivated.
The 'Export' command in most report dialogs now requires the 'Export' application policy flag, and the master key must be entered.
Single line edit dialogs now support hiding the value using asterisks.
On Unix-like systems, commands that require elevation now have a shield icon (like on Windows).
TrlUtil: added 'Move Selected Unused Text to Dialog Control' command.
Improvements:
Improved process memory protection of secure edit controls.
The content mode of the configuration elements '/Configuration/Application/TriggerSystem', '/Configuration/Integration/UrlSchemeOverrides' and '/Configuration/PasswordGenerator/UserProfiles' is now 'Replace' by default.
The built-in override for the 'ssh' URI scheme is now deactivated by default (it can be activated in the 'URL Overrides' dialog).
When opening the password generator dialog without a derived profile, the '(Automatically generated passwords for new entries)' profile is now selected by default, if profiles are enabled (otherwise the default profile is used).
Improved UI update performance in the password generator dialog.
Improved and renamed dialog banner styles.
The separator line of light dialog banners is gray now.
Improved serialization/deserialization of custom configuration settings (used by plugins).
Improved reporting of unknown database header fields.
On Unix-like systems, the clipboard workarounds are now disabled by default (they are not needed anymore on most systems).
Improved clipboard clearing on Unix-like systems.
Improved starting of an elevated process on Unix-like systems.
TrlUtil: improved keyboard shortcut assignment and toolbar construction.
Installer: the desktop shortcut is now created for all users (if the option 'Create a desktop shortcut' is activated).
Installer: removed the Quick Launch shortcut option.
Upgraded installer.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
In report dialogs, the 'Print' and 'Export' commands now always use the actual data (in previous versions, asterisks were printed/exported when the application policy flag 'Unhide Passwords' was turned off).
The icon of the custom algorithm options button in the password generator dialog is not cut off anymore.

New in KeePass Password Safe 2.53.1 (Feb 8, 2023)

New in KeePass Password Safe 2.53 (Jan 9, 2023)

New Features:
For each entry listed on the 'History' tab page of the entry dialog, the fields modified with respect to the previous entry are displayed.
Added 'Compare' button on the 'History' tab page of the entry dialog; when two (not necessarily consecutive) history entries are selected, clicking the button shows a detailed comparison (with values, etc.).
When editing an entry, the history entry list of the entry dialog now contains an entry called 'Dialog (unsaved)', which represents all data entered in the current dialog (other tab pages).
When editing an entry, the history entry list of the entry dialog now contains an entry called 'Current (TIME)', which is the entry that is currently stored in the database (without any changes made in the current dialog).
Added 'History' command in the 'Find' main menu; it lists all entry modifications (sorted by time).
Added filter box in most report dialogs (last modified entries, history, large entries, similar password clusters, password quality, history entry comparison, database file search, ...).
Added 'Print' button in most report dialogs.
Added 'Export' button in most report dialogs; supported formats are CSV and HTML.
Added {EDGE} placeholder, which is replaced by the executable path of the new (Chromium-based) Microsoft Edge, if installed.
Added URL override suggestion for Microsoft Edge in private mode in the URL override suggestions drop-down list of the entry dialog.
Added optional built-in global URL overrides for opening HTTP/HTTPS URLs with Microsoft Edge in private mode.
When trying to rearrange entries while automatic sorting is activated, KeePass now asks whether to deactivate automatic sorting.
Added access keys in the tags button drop-down menu of the entry/group dialogs.
Added access keys in the 'View' → 'Sort By' menu.
Added access keys in the entry templates menu.
Added access keys in the 'Perform Auto-Type' menu (which is displayed if the 'Show additional auto-type menu commands' option is turned on).
Added {HMACOTP} and {TIMEOTP} in the 'Perform Auto-Type' menu.
Added keyboard shortcut Ctrl+T for the 'Copy Time-Based OTP' entry data command.
Added keyboard shortcut Ctrl+Shift+T for the 'Show Time-Based OTP' entry data command.
Enhanced Password Depot XML import module to support the new format (added support for the new node names, group icons, recycle bin, tags, favorites, auto-type delay conversion, history, enhanced icon mapping, enhanced date/time parsing, ...).
Added border for headings in HTML exports/printouts.
Added support for running KeePass in FIPS mode.
Improvements:
History entries listed on the 'History' tab page of the entry dialog are now sorted from newest to oldest.
The icons in the list on the 'History' tab page of the entry dialog now indicate the type of the entry.
History entry controls of the entry dialog are now disabled when creating a new entry.
The history entry 'Restore' button is now disabled when any change has been made in the current dialog.
The 'Password modified' time is now updated immediately when deleting a history entry.
Improved URL override suggestion for Microsoft Edge in the URL override suggestions drop-down list of the entry dialog (changed from 'microsoft-edge:{URL}' to 'cmd://{EDGE} "{URL}"').
Improved optional built-in global URL overrides for opening HTTP/HTTPS URLs with Microsoft Edge (changed from 'microsoft-edge:{BASE}' to 'cmd://{EDGE} "{BASE}"').
Reordered web browser URL overrides alphabetically.
Improved dynamic menu item access key assignment.
Improved item separation in the entry details view.
In most places, groups in a group path are now separated by right arrows instead of hyphens.
Improved last modification time comparison for plugin data dictionaries.
Unified generation of common HTML parts.
The 'Copy Initial Password' command in the 'Tools' menu of the entry dialog now requires the 'Copy' application policy flag.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
The history entry 'Restore' button now always works as expected.

New in KeePass Password Safe 1.41 Classic Edition (Jan 2, 2023)

New in KeePass Password Safe 2.52 (Sep 9, 2022)

New Features:
Added 'Copy Initial Password' command in the tools menu of the entry dialog; it copies (to the clipboard) the password that was current when the dialog was opened.
When multiple entries are selected (containing at least one attachment), the number of attachments is now displayed in the 'Attachments' submenu of the entry menu.
Added option 'Alt. item background color' (supporting the states 'Off', 'On, default color' and 'On, custom color'); this combines the previous two options 'Use alternating item background colors' and 'Custom alt. item color'.
Comment placeholders ({C:...}) may now contain balanced braces.
In the auto-type entry selection dialog, values in the 'Sequence - Comments' column are dereferenced now.
The time when the password of an entry was last changed is now displayed in the entry dialog on the 'History' tab page.
The {FIREFOX} placeholder and the 'URL(s)' menu ('Open with ...' commands) now support detecting the Microsoft Store version of Firefox (in addition to the regular versions).
Added support for importing 1Password 8.7 1PUX files.
Added support for importing Key Folder 1.22 XML files.
Sticky Password XML import: added support for importing groups and expiry dates.
Steganos Password Manager CSV import: added support for the new encoding of double quotes.
Bitwarden JSON import: time-based one-time password generator settings are converted automatically now.
KeePass now checks the 'KeePass.exe.config' file and shows a warning message when finding a problem.
For development builds: added command for showing GC information.
Plugins can now load the header of a database file more easily.
Plugins can now subscribe to a master key change event.
TrlUtil: added workaround for .NET tab control focus bug.
Improvements:
Moved the command 'Save Attached File(s) To' into the 'Attachments' submenu of the entry menu and renamed it to 'Save File(s) To'.
The command for saving attached files is now available only if at least one of the selected entries has at least one attachment.
The {APPACTIVATE ...} auto-type command now ignores the options 'Cancel auto-type when the target window changes' and 'Cancel auto-type when the target window title changes'.
{APPACTIVATE ...} auto-type command: if the specified window does not exist or cannot be focused, auto-type is aborted now.
Unified creation of fields with indices.
Improved database modification state and UI updating after imports/synchronizations.
In the master key creation/prompt dialogs, the [OK] button is now disabled when checking the 'Key file/provider' check box and selecting '(None)' in the combo box.
Improved drop-down menu width adjustment for certain combo boxes in the options dialog.
Improved hashing performance of protected binaries, UUIDs, ...
Performance improvements related to empty arrays.
Improved Mono framework version detection.
TrlUtil: improved preview dialog update performance.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
Fixed a bug that caused a minimized main window to be restored to a normal window instead of a maximized window in certain situations.
The 'Help' menu item in the entry dialog and the 'Help' button in the entry string field dialog now open the correct help sections.

New in KeePass Password Safe 2.51.1 (May 10, 2022)

New in KeePass Password Safe 2.51 (May 6, 2022)

New Features:
Most dialogs with fixed size now detect whether they fit onto the current screen, and when a dialog does not fit (e.g. due to a very high DPI factor), its size is reduced and scroll bars are displayed.
Added plural entry command names in the main window (e.g. the command for editing the currently selected entry/entries is now called either 'Edit Entry' or 'Edit Entries', depending on the number of selected entries).
Added tooltip for the main part of the status bar of the main window.
Enhanced color buttons (tooltips, accessible names, ...) in the entry dialog, in the database settings dialog and in the options dialog.
Added 'Interface (2)' tab page in the options dialog, renamed the existing 'Interface' tab page to 'Interface (1)', moved some controls from 'Interface (1)' to 'Interface (2)'.
Enhanced font selection controls (with a checkbox that allows to return to the default, the button shows the currently selected font, tooltip, improved accessibility, ...) in the options dialog.
Added help links 'Dark theme' and 'Main font (size)' in the options dialog.
The options 'Custom alt. item color' and 'Esc keypress in main window' are now disabled if they are enforced (by an enforced configuration file).
Added support for opening URLs with Waterfox in private mode.
Added dialog for editing (HMAC-based and time-based) one-time password generator settings (can be opened using the 'OTP Generator Settings' commands in the entry dialog or in the 'Edit Entry (Quick)' menu of the main window).
Added entry commands 'Copy HMAC-Based OTP', 'Show HMAC-Based OTP', 'Copy Time-Based OTP' and 'Show Time-Based OTP' (in the 'Other Data' menu).
Added entry commands 'Copy Title' and 'Copy Notes' (in the 'Other Data' menu).
When switching to the 'Generate' tab page of the password generator dialog (no database open), the entropy collection dialog is displayed now, if the option 'Show dialog for collecting user input as additional entropy' is turned on.
Added option 'Colorize password characters' in the HTML export/print dialog; the colors are customizable.
Added options 'Custom main font' and 'Custom password font' in the HTML export/print dialog.
Added horizontal entry separator lines in tabular HTML exports/printouts.
In the plugins dialog, the 'Delete old files from cache automatically' option and the 'Clear' button are now disabled if they are enforced (by an enforced configuration file).
Plugins can now change the expiry date of an entry more easily.
Added workaround for Wine bug 52457.
Improvements:
Improved main window initialization performance.
Improved initial emergence of a minimized or maximized main window (less flickering, improved performance, ...).
Improved names/tooltips of the database toolbar buttons in the main window.
Improved handling of bold/italic list fonts.
Improved entry list update performance in certain situations.
Improved dynamic menu deconstruction performance.
Fields starting with 'HmacOtp-' or 'TimeOtp-' are not shown in the entry string copy menu anymore.
Improved tooltips and accessibility of password repetition text boxes.
When a dark theme is active, the error background color of text boxes is darker now.
Improved accessibility of expiry control groups.
The title of the master key creation/change dialog is now adjusted to the context.
Improved 'Compression' tab page of the database settings dialog (extended 'None' option description, improved accessibility, ...).
If no color has been specified, the 'Custom alt. item color' button in the options dialog now shows the default color.
Improved HTML generation for HTML exports/printouts.
Improved default fonts used when printing or exporting to HTML.
In block HTML exports/printouts, field names are not italic anymore (unless the user has selected an italic main font).
In HTML exports/printouts, all field values except passwords are trimmed now.
HTML exports/printouts: improved encoding of white-space characters in passwords.
Improved horizontal entry separator lines in block HTML exports/printouts.
TrlUtil: improved control classification.
Increased Authenticode certificate key length.
Various CHM/help improvements.
Upgraded installer.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
The command line parameter '-preselect:' now works as expected when the option 'Clear master key command line parameters after using them once' is turned on.
Font selections in the options dialog are now applied only when closing the dialog with [OK].

New in KeePass Password Safe 1.40.1 Classic Edition (May 1, 2022)

New in KeePass Password Safe 2.50 (Jan 9, 2022)

New Features:
On most Windows systems, AES-KDF is now about twice as fast as before.
On most Linux systems, AES-KDF is now about 4 times as fast as before, if the 'libgcrypt' library is installed.
On most Windows systems, Argon2d and Argon2id are now about twice as fast as before (for default parameters).
On most Linux systems, Argon2d and Argon2id are now about 3 times as fast as before (for default parameters), if the 'libargon2' library is installed.
The option 'Enter master key on secure desktop' is now also supported by master key prompt dialogs shown during imports, confirmations (before exporting, printing, changing the master key, ...) and trigger actions.
The option 'Enter master key on secure desktop' is now also supported by master key creation/change dialogs.
The key file/provider combo boxes in the master key dialogs now have a tooltip that shows the current value, if the value is very long.
When running on .NET 4.7.2 or higher, GZip decompression is faster now (i.e. most databases are opened a bit faster, pasting entries from the clipboard is a bit faster, ...).
Added password generation button in the entry string field dialog.
When double-clicking the title cell of an entry in the main entry list while holding down the Shift key, the title is now copied to the clipboard.
Added support for opening URLs with Pale Moon, Epiphany and Midori in private mode.
Enhanced application detection on Unix-like systems (support for certain Snap packages, ...).
Added support for detecting the latest versions of Chromium on Unix-like systems (for 'Open with ...' commands in the 'URL(s)' menu, for the {GOOGLECHROME} placeholder, ...).
In the 'URL(s)' menu, there now are separate commands for Google Chrome and Chromium, if both are installed.
Enhanced support for detecting Vivaldi, Brave, Pale Moon and Epiphany.
Added support for importing Kaspersky Password Manager 9.0.2 TXT files.
Bitwarden import module: added support for importing subfolders, and collection names are now imported as tags.
In the 'About KeePass' dialog, each item in the components list now has a tooltip that shows the file/folder path of the component, if it is installed.
In the 'About KeePass' dialog, a double-click onto a component now shows the component file/folder with the file manager.
In the 'About KeePass' dialog, the components list now has a context menu that provides the following new commands: 'Show with File Manager', 'Copy Version/Status' and 'Copy Path'.
Improvements:
If the option 'An entry matches if one of its tags is contained in the target window title' is turned on, auto-type now additionally considers tags inherited from groups.
The built-in password generation patterns 'Hex Key - *-Bit' now use upper-case hexadecimal symbols.
Improved Spr variance check of the password generator (custom string references, ...).
All commands in the password generator menu (shown by the password generator buttons in entry/string dialogs) support the option 'Show dialog for collecting user input as additional entropy' now.
Improved entropy collection dialog.
Improved control state updating in the master key prompt dialog and in the master key creation/change dialog.
Improved key file existence check in the master key creation/change dialog.
Improved master key construction.
Improved handling of exclusive key providers.
Improved compatibility of some dialogs with plugins that can cancel closing the dialog.
Improved automatic entry selections in the main entry list.
Access key improvements.
Improved entry equality test in order to prevent the creation of unnecessary history entries during certain operations.
XML Replace: improved entry modification detection.
Improved initial input focus in the single edit dialog.
In the import/export dialog, the icon of an import/export module now matches the file/procedure type.
DataVault CSV import module: improved importing of notes.
Improved native buffer handling.
When opening/copying the URL of an entry, the last access time of the entry is updated now.
TrlUtil: added DPI awareness mode declaration.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
Column header context menus are not shown for non-report list views anymore.
When copying a URL to the clipboard fails, the main entry list is updated now.
Toggling the password generator option 'Show dialog for collecting user input as additional entropy' now causes a switch to the '(Custom)' profile.
In the TAN wizard dialog, group names containing ampersands are displayed correctly now.

New in KeePass Password Safe 1.40 (Jan 2, 2022)

New in KeePass Password Safe 2.49 (Sep 10, 2021)

New Features:
Added dedicated context menu for custom string fields in the entry dialog, which provides the following new commands: 'Copy Name(s)', 'Copy Value(s)', 'Copy Item(s)', 'Paste Item(s)', 'Select All' and 'Move To'.
Added button 'More' to the right of the custom string fields list in the entry dialog, which shows the context menu.
Added dedicated context menu for auto-type associations in the entry dialog, which provides the following new commands: 'Copy Target Window(s)', 'Copy Sequence(s)', 'Copy Item(s)', 'Paste Item(s)', 'Duplicate Item(s)' and 'Select All'.
Added button 'More' to the right of the auto-type associations list in the entry dialog, which shows the context menu.
Added optional 'Auto-Type - Enabled' main entry list column (turned off by default, can be turned on in 'View' → 'Configure Columns').
Added optional 'Auto-Type - Sequences' main entry list column (turned off by default, can be turned on in 'View' → 'Configure Columns').
Added support for importing Keeper 16.0.0 JSON files.
Added option 'Show confirmation dialog when opening a database file whose minor format version is unknown' (in 'Tools' → 'Options' → tab 'Interface', turned on by default).
Added tooltips for some controls.
Dialog banners can now be read by screen readers (if the option 'Optimize for screen reader' is turned on).
Added accessibility names for some controls (text boxes after check boxes, image/color buttons, warning icons, ...; if the option 'Optimize for screen reader' is turned on).
Controls in the accessibility/automation control tree are now ordered by their visual locations (if the option 'Optimize for screen reader' is turned on).
Added automatic screen reader detection based on the operating system's screen reader parameter (this does not make the option 'Optimize for screen reader' obsolete though, because not all screen readers set the parameter).
Various accessibility enhancements (when running on .NET 4.7.1 or higher).
Added UIFlags bit for not clearing the quick search terms list when closing/locking a database.
Added UIFlags bit for enabling the Input Method Editor (IME) on secure desktops.
Added customization option to override the URL that is opened for a help page.
Improvements:
In most list views, tooltips are now displayed for a longer time.
The entry string move commands can now move multiple strings at once.
Removed the entry string button 'Move' in the entry dialog (the move commands are available in the context menu).
Reordered fields/columns in the entry details view and in the 'Configure Columns' dialog for improved consistency with the entry dialog.
When running on .NET 4.7 or higher, rich text boxes now instantiate Rich Edit 4.1 (or higher) controls, which support various new features (e.g. Tamil characters are now displayed correctly even when the 'Latha' font is not installed).
Improved linkification in the entry details view of the main window (URLs, attachments, ...) and in the internal data viewer (URLs).
URLs in the hex view of the internal data viewer are not linkified anymore.
Improved tab order in various dialogs.
Improved accessibility control name provision.
Improved temporary file/directory deletion performance.
Improved hashing of protected binaries, UUIDs, popular passwords, images, ...
Improved quality of some icons.
In the HTML export/printing dialog, the option 'Group name' is now disabled when group names are unavailable.
Reduced space between tables and group headings in HTML exports/printouts.
In the help source selection dialog, controls are now disabled if a help source is enforced (by an enforced configuration file) or if a help URL override is specified.
Improved keyboard shortcut check.
TrlUtil: improved string table handling.
Various CHM file improvements.
Upgraded installer.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
The save confirmation dialog of the entry dialog does not create unnecessary history entries anymore.
The tags button drop-down menu in the entry/group dialogs now uses the correct font.
TrlUtil: fixed a string table association bug.

New in KeePass Password Safe 2.48.1 (May 10, 2021)

New in KeePass Password Safe 2.48 (May 7, 2021)

New KDBX 4.1 file format, which supports various new features (listed below).
Added support for group tags (KDBX 4.1).
In the entry/group dialogs, there now is a button to show a menu for adding/removing existing tags.
If an entry/group inherits a tag from a parent group, a link is displayed in the entry/group dialog to show the parent groups and their tags.
Added option in the entry dialog for disabling/enabling the password quality estimation for the current entry (KDBX 4.1).
If the password quality estimation is disabled for an entry, the entry is now excluded from password quality reports (menu 'Find' → 'Password Quality').
When moving an entry/group into a different group (e.g. into the recycle bin), the previous parent group is remembered now (KDBX 4.1, not enforcing).
Added command 'Move to Previous Parent Group' (in the 'Rearrange' popup menu; if the command will move all selected entries/groups out of the recycle bin, a '(Restore)' suffix is appended to the command name; if at least one entry/group will be moved into/within the recycle bin, a confirmation dialog is displayed).
Renaming a list view item (if supported, e.g. a file attached to an entry) can now be initiated by pressing the F2 key.
Each custom icon may now have a name, and its last modification time is remembered (KDBX 4.1).
In the icon picker dialog, a custom icon can now be renamed (click on an already selected name or press the F2 key).
In the icon picker dialog, the dimensions and the size of a custom icon are now displayed in a tooltip.
The UUID and the deletion time of a deleted custom icon are remembered now, and this information is used in order to delete the custom icon during a synchronization (if the last modification time is older than the deletion time).
Added built-in URL override for associating the 'ssh' URL scheme with 'SSH.exe' (OpenSSH, included in Windows 10; activatable/deactivatable in 'Tools' → 'Options' → tab 'Integration' → button 'URL Overrides').
Added support for loading images with Exif orientation tags.
Enhanced the LastPass import module to support CSV files created by the latest versions.
Enhanced the nPassword import module to import group tags.
The last modification time of a database-specific custom data item (by a plugin/port) is now saved (KDBX 4.1).
When synchronizing databases, database-specific custom data items (by plugins/ports) are now merged based on their last modification times.
Added support for loading KDBX 4 files created by other applications that do not perform a binary content deduplication.
Added workaround for .NET/Windows TopMost/WS_EX_TOPMOST desynchronization bug.
Improvements:
Various user interface improvements in the group dialog (moved the notes box to the first tab page, moved the auto-type behavior option to the auto-type tab, ...).
Tags are sorted naturally now.
Improved tag handling performance.
Various user interface improvements in the icon picker dialog.
The temporary icon that represents multiple icons (when editing multiple entries at once) is now named '(Multiple values)'.
Improved custom icon handling performance.
The placeholders {HMACOTP} and {TIMEOTP} now automatically add padding to shared secrets in Base32 encoding, if necessary.
Improved error handling of the placeholders {HMACOTP} and {TIMEOTP}.
Internal data viewer/editor: '*.asc', '*.tab' and '*.tsv' files are now treated as text files by default.
The internal data viewer now does not try to display non-HTML files using the web browser control anymore.
Improved error handling of the Bitwarden JSON and nPassword NPW import modules.
Improved merging of custom data items (by plugins/ports) in the KDBX file header.
Improved image hashing.
Improved version display in the 'About' dialog.
Installer: improved file overwriting.
On 64-bit operating systems, the registry value for the setup option 'Optimize KeePass start-up performance' is now created in the 64-bit view of the registry.
ShInstUtil now fully supports Unicode.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
The command 'Delete Unused Custom Icons' does not delete icons anymore that are still used by history entries.

New in KeePass Password Safe 1.39 Classic Edition (Jan 11, 2021)

New in KeePass Password Safe 2.47 (Jan 10, 2021)

New Features:
In the 'Find' dialog, search parameters can now be saved as profiles; the profiles can be accessed quickly via the main menu ('Find' ? 'Search Profiles') and the group context menu.
Added search mode 'XPath expression' in the 'Find' dialog, which creates a KeePass 2.x XML DOM of the current database in memory and finds entries using the specified XPath expression.
Added option 'History' in the 'Find' dialog, which includes history entries in searches.
Added 'Help' button in the 'Find' dialog.
Added auto-type matching option 'Consider similar dashes as identical' (in 'Tools' ? 'Options' ? tab 'Advanced', turned on by default).
Added commands 'Copy Group (Encrypted)', 'Copy Group (Unencrypted)' and 'Paste Group' (in the menu 'Group' ? 'Data Exchange').
When loading/saving a configuration file fails, an error message is displayed now, and in certain cases a backup of the configuration file is created (the path is mentioned in the error message).
Added configuration option for saving the configuration (turned on by default).
On the 'Security' tab page of the options dialog, two links have been added, which open help pages for experts and administrators.
Added {TIMEOTP} placeholder, which generates a time-based one-time password (as specified in RFC 6238).
Enhanced XML key file format (added hash that allows to verify the integrity of the key; values are now encoded using hexadecimal characters in order to improve the readability).
Added command 'Print Key File Backup' (in 'File' ? 'Print').
In the dialog that asks whether to print an emergency sheet, there is now an option 'Also print a key file backup' (on Windows), if the master key contains a key file.
Added command 'Create Key File' (in 'Tools' ? 'Advanced Tools'), which shows a dialog for creating a new key file (random key) or for recreating a key file from a printed backup.
Added Argon2id key derivation function.
Added support for importing Dashlane 6.2039.0 JSON files.
Dashlane and RoboForm import: domains are now mapped to HTTPS URLs (instead of HTTP URLs).
Added option 'Use a different master key' in the import/export dialog (tab page 'Options').
Added option 'Additionally export parent groups' in the import/export dialog (tab page 'Options').
Added options 'Open exported file (with associated application)' and 'Show exported file (with file manager)' in the import/export dialog (tab page 'Options').
The 'About' dialog now shows whether KeePass is currently running as 32- or 64-bit application.
Plugins can now disable/enable specific Mono workarounds.
Added workaround for Mono URL opening bug.
Added workaround for Mono HTML document opening bug.
Improvements:
Improved performance of certain searches.
Various user interface improvements in the search dialog.
Improved keyboard shortcut handling (e.g. Ctrl+Tab and Ctrl+Shift+Tab now also work when the quick search box is focused).
The local configuration file is now loaded only if necessary.
Improved performance of configuration saving.
Changed default key file extension from 'key' to 'keyx'.
Most key file dialogs now only show '*.keyx' and '*.key' files by default.
When clicking the key file 'Browse' button in the master key creation dialog and selecting a file that is not an XML key file, KeePass now asks whether to use the file as key file anyway.
Improved key file loading/saving error messages.
Various user interface improvements in the import/export dialog.
The import/export dialog does not accept relative file paths anymore.
The import/export dialog now shows an error message when trying to export to multiple files.
Removed indeterminate progress indicators while displaying the import/export dialog.
Improved field to standard field mapping function.
Moved command 'Empty Recycle Bin' directly below the 'Delete Group' command.
Moved commands 'Print Group' and 'Export Group' into the 'Data Exchange' popup menu.
Improved quality of some icons.
Improved dialog banner caching.
Improved performance of certain object collection operations.
History entry UUIDs are now fixed automatically.
Increased default value of Argon2 memory parameter.
Improved task dialog parent determination.
The setup program now installs KeePass into a folder in 'C:Program Files' by default (i.e. without '(x86)' suffix; this is reasonable, because on a 64-bit operating system, KeePass runs as 64-bit application).
Upgraded installer.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
Search: regular expressions starting with a '-' are not treated as exclusions anymore.
Fixed a bug that caused KeePass to hang when trying to read a configuration file that contains certain unsupported nodes.

New in KeePass Password Safe 2.46 (Sep 10, 2020)

New Features:
The entry editing dialog can now edit all currently selected entries at once.
As entry attachment icons, the icons associated with the respective file types (in the system settings) are used now.
When running on .NET 4.8 or higher, secure connections (e.g. for WebDAV) now support TLS 1.3.
Added keyboard shortcut Ctrl+* (numeric keypad) for the 'Expand Recursively' group command.
Added keyboard shortcut Ctrl+/ (numeric keypad) for the 'Collapse Recursively' group command.
Right-clicking on the header of the main entry list now shows the 'Configure Columns' command.
The {VKEY ...} command now supports some flags (for specifying whether to send a key down or up event only and/or whether to send an extended key).
Added configuration option for protecting KeePass windows against certain screen capture operations.
Added command line parameter '-wa-enable:' for enabling specific Mono On Unix-like systems with a Wayland compositor, KeePass (with the KPUInput plugin) can now auto-type the default sequence and manually selected sequences of the currently selected entry.
Improvements:
Improved quality of the icons in the entry 'URL(s)' menu.
Improved quality of the icons in the drop-down list of the 'Override URL' field in the entry editing dialog.
Improved control state updating in the entry editing dialog.
The file selection dialog for the Generic CSV Importer now shows only CSV, TSV, TAB, TXT and ASC files by default.
Improved user interface of the Generic CSV Importer.
For large texts containing probably invalid characters, the internal data viewer now shortens the text and provides a 'Show more' link for expanding the text; this ensures a responsive user interface in this case.
Improved caching of dialog banners.
Moved the help source selection from the 'Help' main menu to the options dialog (tab 'Integration').
If the application policy option 'Export - No Key Repeat' is turned off, the master key must now be entered directly before the export is performed, i.e. after choosing the format and the target.
The application policy option 'Export - No Key Repeat' now also applies to the trigger action 'Export active database'.
When running on Mono, the options 'Focus quick search box when restoring from taskbar' and 'Focus quick search box when restoring from tray' are disabled now (because they do not work reliably due to a bug in Mono).
Various code optimizations.
Minor other improvements.
Bugfixes:
The attachment button drop-down menus in the entry editing dialog now use the correct font.
The 'Tools' button in the entry editing dialog is not disabled for TAN entries anymore.

New in KeePass Password Safe 2.45 (May 7, 2020)

New Features:
Added support for opening URLs with the new (Chromium-based) Microsoft Edge in private mode.
Added support for opening URLs with Vivaldi in private mode.
Added automatic assignment of mnemonics for 'Open with ...' commands in the 'URL(s)' menu.
The entry templates menu now supports showing templates that are stored in subgroups of the templates group; each subgroup is displayed as a submenu.
When adding a new entry based on a template that has an empty user name, the user name is now set to the default user name of the database, unless the new entry is stored in the templates group.
When adding a new entry based on a template that has an empty password, a random password is generated now (based on the password generator profile 'Automatically generated passwords for new entries'), unless the new entry is stored in the templates group.
When adding a new entry based on a template that does not expire, the expiry date is now set based on the option 'By default, new entries expire in the following number of days' (in 'Tools' → 'Options' → tab 'Security'), unless the new entry is stored in the templates group.
New icon recoloring (with high DPI support, by deconstructing an ICO, modifying BMP palettes and data, and assembling a new ICO); there are 24 database colors now.
Added {UUID} placeholder, which is replaced by the UUID of the current entry.
The UUID of a group is now displayed in the group editing dialog (tab 'General').
When specifying a weak master password in the master key creation dialog, KeePass now shows a warning.
Triggers: added string comparison mode 'Matches regular expression'.
Enforced configuration: added support for attributes that allow to specify the desired merge behavior.
Enforced configuration: for most lists, node keys are now used to find corresponding list items.
Plugins: added I/O connection event for customizing web requests.
Added workaround for Mono pre-authenticated anonymous web request bug.
Improvements:
Auto-Type: improved compatibility with VMware Horizon Client and Kaseya Live Connect.
Enhanced detection of Microsoft Edge.
The 'Open with ...' commands in the 'URL(s)' menu are sorted now.
Improved performance of the entry templates menu; removed limitation to 30 templates.
Database descriptions are now displayed in file tab tooltips.
When editing an attachment directly from the main window, a history entry is created now.
UUIDs in the group and entry editing dialogs are now displayed both in hexadecimal and base 64 form.
Improved Bitwarden import module to support JSON files without groups.
If the trigger system is disabled using an enforced configuration file, most controls in the triggers dialog are disabled now, too.
Plugins: an I/O access event is now raised when checking the existence of a local database file.
In texts that are about to be displayed in a rich text box, U+FFFC characters are now replaced by question marks (in order to avoid the text being cut off at this point).
When running on Mono 5.10 or higher, a monospaced font is used in password text boxes by default again, as the Mono bug 5795 has been fixed.
Various code optimizations.
Minor other improvements.
Bugfixes:
Fixed a default value type problem in the hot key configuration settings.
Database file tab colors are now rounded to the nearest supported colors.

New in KeePass Password Safe 2.44 (Jan 20, 2020)

New Features:
Added option 'Use file transactions for writing configuration settings' (turned on by default).
If the option 'Do not store data in the Windows clipboard history and the cloud clipboard' is turned on (which it is by default), KeePass now additionally excludes its clipboard contents from processing by Windows' internal ClipboardMonitor component.
Added commands to find database files ('File' → 'Open' → 'Find Files' and 'Find Files (In Folder)').
Added 'Edit' menu in the internal text editor (including new 'Select All' and 'Find' commands with keyboard shortcuts).
Added keyboard shortcuts for formatting commands in the internal text editor.
Added 'Cancel' button in the save confirmation dialog of the internal text editor.
Added {CLIPBOARD} and {CLIPBOARD-SET:/T/} placeholders, which get/set the clipboard content.
Added support for importing True Key 4 CSV files.
Added command line options for adding/removing scheme-specific URL overrides.
Added an auto-type event for plugins.
When loading a plugin on a Unix-like system fails, the error message now includes a hint that the 'mono-complete' package may be required.
In order to avoid a Windows Input Method Editor (IME) bug (resulting in a black screen and/or an IME/CTF process with high CPU usage), KeePass now disables the IME on secure desktops.
Improvements:
Auto-Type: improved compatibility with VMware Workstation.
Auto-Type into virtual machines: improved compatibility with certain guest systems.
The option to use the 'Clipboard Viewer Ignore' clipboard format is now turned on by default.
Improved menu/toolbar item state updating in the internal text editor.
Improved performance of Spr compilations.
Before writing a local configuration file whose path has been specified using the '-cfg-local:' command line parameter, KeePass now tries to create the parent directory, if it does not exist yet.
Improved conversion of file URIs to local file paths.
Improved compatibility of the list view dialog with plugins.
If ChaCha20 is selected as file encryption algorithm, the database is now saved in the KDBX 4 format (thanks to AMOSSYS).
Minor process memory protection improvements.
HTML export/printing: KeePass now generates HTML 5 documents (instead of XHTML 1.0 documents).
HTML export/printing: improved internal CSS.
HTML exports do not contain temporary content identifiers anymore.
XSL files: HTML output now conforms to HTML 5 instead of XHTML 1.0.
XSL files: improved internal CSS.
CHM pages are now rendered in the highest standards mode supported by Internet Explorer (EdgeHTML mode).
Migrated most of the documentation from XHTML 1.0 to HTML 5.
Various code optimizations.
Minor other improvements.
Bugfixes:
In the internal text editor, the 'Delete' command does not reset RTF text formattings anymore.
The KeyCreationFlags bit 219 (for hiding the passwords) now works as intended.

New in KeePass Password Safe 1.38 Classic Edition (Jan 13, 2020)

New in KeePass Password Safe 2.43 (Sep 10, 2019)

New Features:
Added tooltips for certain character set options in the password generator dialog.
Added option 'Remember password hiding setting in the main window' (in 'Tools' → 'Options' → tab 'Advanced'; the option is turned on by default).
Added yellow intermediate step in password quality progress bars.
When the URL override field in the entry editing dialog is not empty, but the URL field is empty, a warning is displayed now.
When an explicit request to generate a password fails (for instance due to an invalid pattern), an error message is displayed now.
Added trigger events 'Synchronizing database file' and 'Synchronized database file'.
Enhanced the Password Agent import module to support XML files created by version 3.
The 'MasterKeyExpiryRec' configuration setting can now also be set to an XSD duration instead of an XSD date (for periodic master key change recommendations).
KeePass now excludes itself from Windows Error Reporting.
On Unix-like systems, file transactions now preserve the Unix file access permissions, the user ID and the group ID.
Added workaround for .NET initial focus bug.
Improvements:
Auto-Type: improved sending of modifier keys.
Auto-Type: improved sending of characters that are realized with Ctrl+Alt/AltGr.
Auto-Type: improved compatibility with VMware Remote Console and Dameware Mini Remote Control.
Improved main window state handling.
Improved construction and updates of the main menu and the group/entry context menus.
Main menu items can now be deselected by pressing the Esc key.
Top-level nodes in tree views cannot be collapsed anymore if no root lines are displayed.
New entries in a group with the e-mail folder icon now have the e-mail icon by default.
Improved performance of automatic scrolling in the main entry list.
If user names are hidden in the main window, no user name suggestions are displayed in the entry editing dialog anymore.
Function keys without modifiers can be registered as system-wide hot keys now.
For file rename/move web requests, a canonical representation of the destination name/path is used now.
URL override base placeholders can now be used within {CMD:...} placeholders.
Directly after an import, the deleted object information is now applied/removed (depending on the last modification time and the deletion time).
Improved compatibility of the 'Delete Duplicate Entries' command with the process memory protection.
Improved handling of command lines containing quotes or backslashes.
Various UI text improvements.
Various code optimizations.
Minor other improvements.

New in KeePass Password Safe 2.42 (May 1, 2019)

New Features:
Added main menu items 'Group', 'Entry' and 'Find', which contain all commands related to groups and entries (supersets of context menus); removed 'Edit' main menu item, because all of its commands are included in the three new main menu items.
Added support for a system-wide hot key to auto-type only the password of a matching entry; by default, the hot key is Ctrl+Alt+Shift+A, changeable in the options dialog.
When double-clicking the URL cell of an entry in the main entry list while holding down the Shift key, KeePass now copies the URL to the clipboard (a double-click without Shift continues to open the URL; the option 'Copy URLs to clipboard instead of opening them' reverses this behavior).
Added quick edit commands 'Expires: Now' and 'Expires: Never'.
There now are two commands for copying a whole entry to the clipboard: 'Copy Entry (Encrypted)' and 'Copy Entry (Unencrypted)'; the first one encrypts the data for the current user using the Windows DPAPI.
Added Ctrl+Shift+P shortcut for printing the currently selected group.
The creation time and the last modification time of an entry are now displayed on the 'History' tab of the entry editing dialog.
Added support for importing Steganos Password Manager 20 CSV files.
Added support for importing Bitwarden 1.12 JSON files.
Mozilla Bookmarks JSON import: added support for importing tags (new format, in addition to the old format) and keywords.
Enhanced the Enpass import module to support TXT files created by version 6.0.4.
The language selection dialog now also lists KeePass 1.x LNG files; when trying to select such a file, an informative error message is displayed.
Added 'Cancel' command in the context menu of KeePass' system tray icon, which can be used to abort opening and saving a database file.
Added '-cancel' command line option, which causes all other KeePass instances to cancel opening/saving a database file.
Added '-auto-type-password' command line option (other running KeePass instances auto-type only the password of a matching entry).
Added '-e1:' command line parameter, which works like '-e:', but is handled by only one other instance; '-e:' is handled by all other instances.
When compiling a PLGX plugin, KeePass now defines a 'KP_V_*_*_*' symbol, where the asterisks specify the KeePass version (for example, 'KP_V_2_42_0' for version 2.42).
Added workarounds for .NET Caps Lock warning tooltip bug.
Added workaround for Mono grid view default color bug.
Added workaround for OneDrive bug on Windows 1809.
Improvements:
Auto-Type: improved sending of characters that are realized with the AltGr key.
Auto-Type: improved compatibility with VirtualBox 6 and VMware Player.
Improved user interface behavior while opening a database file.
Accelerator key improvements.
Replaced 4 and 8 weeks expiry date search commands by 1 and 2 months (taking the number of days in the months into account).
Improved hot key controls (better key combination handling and display).
The hot key controls in the options dialog now support entering hot keys that are already registered by KeePass.
Improved field to standard field mapping function.
Improved new-line handling of several import modules.
When a file import fails, KeePass now shows a more detailed error message.
After changing the color of an entry using a quick edit command, the entries are deselected now, such that the new color is visible immediately.
Moved 'Print Emergency Sheet' command into 'File' → 'Print'.
The pattern-based password generator now supports repeating escaped characters using '{...}'.
The pattern-based password generator now refuses to generate a password if the pattern is (partially) invalid.
Turning off the 'Unhide Passwords' policy now enforces hiding passwords in a few more places/situations.
New-line characters at the end of the output of a {CMD:...} placeholder are now removed (analogous to $(...) and `...` shell command substitutions).
The {URL:SCM} and {BASE:SCM} placeholders now work with arbitrary data having a ':'-terminated prefix.
Improved {URL:RMVSCM} and {BASE:RMVSCM} placeholders ('//' authority prefix is removed, but not '/').
The '-entry-url-open' command line option is now handled by all other KeePass instances (instead of only one).
Path traversal with attachment names is not possible anymore.
Removed the option 'Show tray icon only if main window has been sent to tray' from the options dialog (due to possible denial-of-service problems); if you want to hide the icon, it is recommended to configure this in the system settings instead.
Improved reading of KDBX XML documents with unknown elements.
Improved JSON parser.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
Fixed a crash that could occur when trying to import certain Mozilla Bookmarks JSON files.
Fixed a crash that could occur when trying to import certain files with very deeply nested groups.
Fixed handling of paths with folder/file names containing quotes (which can occur on Unix-like systems only).

New in KeePass Password Safe 2.41 (Jan 9, 2019)

New in KeePass Password Safe 2.40 / 1.37 Classic Edition (Jan 2, 2019)

New in KeePass Password Safe 2.40 (Sep 11, 2018)

New Features:
Added automatic completion support for the user name box in the entry editing dialog and the auto-type sequence boxes in the entry/group editing dialogs (suggesting user names and auto-type sequences that are used in other entries/groups).
Added automatic completion support for the URL and user name boxes in the 'Open From URL' dialog (suggesting URLs and user names of items in the list of most recently used database files).
Added option 'Group path' in the 'Find' dialog (enabled by default for quick searches).
Added read-only mode for the entry string dialog, which is used by the entry dialog when viewing a history entry.
The internal data viewer now supports zooming images using Ctrl+Add, Ctrl+Subtract and the mouse wheel with Ctrl; furthermore, there are now '+' and '-' buttons right of the zoom selection box in the toolbar.
Added option 'Remember master password (in encrypted form) of a database while it is open' (which is the default; turning off this option prevents the usage of certain features).
Enhanced compatibility check for DLL plugins.
Added URL opening event for plugins.
On Unix-like systems: added support for opening the local help file with KChmViewer.
Added workaround for initial input focus problem in the master key prompt dialog.
Added workaround for Mono not always raising the FormClosed event properly.
TrlUtil now remembers the last translation file directory.
Improvements:
The 'Configure Columns' dialog now computes a display order for the new columns, taking the previous display order into account.
While importing/synchronizing, no status dialog is displayed anymore (the status is displayed in the main window).
Improved UI responsiveness during long operations.
When hiding/restoring the main window via the system tray icon fails, KeePass now shows a notification.
Improved Return key handling in text boxes.
Improved initial input focus in some dialogs.
Enhanced database file path unification.
The configuration system does not create a KeePass folder in the user's application data folder anymore when the target configuration file location is outside this folder.
Improved window text query method.
Improved Unicode environment detection.
Various improvements for right-to-left writing systems.
Improved support for case-sensitive command line parameter names (for plugins and KPScript).
If a plugin is available both as a DLL and as a PLGX (in the same folder), KeePass now loads either the DLL or the PLGX.
For plugins: most public definitions are now static.
KPScript: improved parsing of escape sequences.
Renamed native support library item in the installer.
Upgraded installer.
Various code optimizations.
Minor other improvements.

New in KeePass Password Safe 1.36 Classic Edition (Sep 3, 2018)

New in KeePass Password Safe 2.39.1 (May 13, 2018)

New in KeePass Password Safe 2.39 (May 6, 2018)

New Features:
KeePass now uses Transactional NTFS (TxF) for writing database and configuration files, if possible; this improves the compatibility with other programs that are watching these files (e.g. file synchronization services).
Added command 'Edit' → 'Show Entries' → 'Large Entries'.
Added command 'Edit' → 'Show Entries' → 'Last Modified Entries'.
Added option 'Automatically save after modifying an entry using the entry editing dialog' (turned off by default).
Added option 'Minimize main window after performing auto-type' (turned off by default).
Added option 'Show lines between nodes in tree views' (turned off by default).
Added support for importing Google Chrome 66 password CSV files.
Added trigger event 'Time - Periodic', which is raised at user-defined intervals.
Links in the entry string editing dialog are clickable now.
Added UIFlags bit for disabling the 'XML Replace' menu item.
Added UIFlags bit for hiding auto-type obfuscation compatibility information dialogs.
Added workaround for .NET 'urtf' RTF round-trip bug.
Secure edit controls are now extensible by plugins.
KPScript: the 'AddEntry' command now supports the '-setx-Expires' and '-setx-ExpiryTime' parameters.
Improvements:
In printouts and HTML exports, expired entries now have a red 'X' icon (if the option 'Icon' is turned on).
Improved string normalization in the entry and string editing dialogs.
Improved and optimized process memory protection, especially in the entry editing dialog.
Secure edit control improvements.
Improved behavior when moving a custom string to a standard field.
Improved entry size calculation.
URL overrides are now used also for application URLs.
Improved input focus restoration.
When trying to toggle the auto-start option and creating/deleting the registry value fails, KeePass now shows a detailed error message.
Improved XML serialization.
Stream disposal improvements in exceptional situations.
Process object disposal improvements.
Extended inter-process communication (IPC) messages are compressed and encrypted now.
New IPC mechanism on Unix-like systems.
Enhanced desktop type detection on Unix-like systems.
On the Cinnamon desktop, the 'Always on Top' option is now disabled (because it is not supported properly by the environment).
KeePass now ignores hidden Git and Visual Studio directories when building a PLGX file.
The trigger system now ignores state-changing placeholders in most places.
Removed trigger event 'User interface state updated' (consider using the new event 'Time - Periodic' instead).
Various code optimizations.
Minor other improvements.
Bugfixes:
The 'View' button on the 'History' tab of the entry editing dialog is now disabled when multiple items are selected.
The main window state is now updated after closing an entry report dialog.

New in KeePass Password Safe 2.38 (Jan 10, 2018)

New Features:
The installers (regular and MSI) now create an empty 'Languages' folder in the application directory, and the portable package now also contains such a folder; language files should now be stored in this folder.
Added button 'Open Folder' in the language selection dialog, which opens the 'Languages' folder.
Added button 'Open Folder' in the plugins dialog, which opens the 'Plugins' folder.
Added a runtime activation policy setting (to improve compatibility with Microsoft User Experience Virtualization).
Added option 'Icon' and an option for specifying the placeholder behavior (replace or not, or both forms) in the 'Print' / HTML export dialog.
Printing / HTML export: the notes of a group are now displayed below the group name.
Enhanced the Password Exporter import module to support XML files created by version 1.3.4.
Added workaround for Microsoft Office breaking the 'Print' shell verb for HTML files.
Added workaround for Mono list view item deletion bug.
Added workaround for Mono command line argument encoding bug.
KPScript: the 'AddEntry' and 'EditEntry' commands now support the '-setx-Icon' and '-setx-CustomIcon' parameters, which set the icon of the entry.
KPScript: the 'ChangeMasterKey' command now supports the '-newpw-enc' parameter (for specifying the new master password in encrypted form, compatible with the {PASSWORD_ENC} placeholder).
KPScript: the 'ListEntries' command now supports all '-ref-*' and '-refx-*' parameters.
Improvements:
Password quality estimation: improved compatibility with process memory protection.
Improved UI scaling when using KeePass on multiple systems with different DPI values.
Printing / HTML export: improved embedding of CSS.
Printing / HTML export: spaces in passwords are now encoded as non-breaking spaces.
Improved UI updating in the 'Print' / HTML export dialog.
Enhanced KDE system font detection.
Improved fatal error handling.
Various improvements in the language selection dialog.
KPScript: improved behavior of '-ref-*' parameters when combined with the '-refx-All' option.
Various code optimizations.
Minor other improvements.
Bugfixes:
Fixed HTML generation bug: when the option 'Use monospace font for passwords' was turned off, a generated HTML file in 'Details' mode could contain invalid end tags.

New in KeePass Password Safe 1.35 Classic Edition (Jan 2, 2018)

New in KeePass Password Safe 2.37 (Oct 12, 2017)

New in KeePass Password Safe 1.34 Classic Edition (Oct 5, 2017)

New in KeePass Password Safe 2.36 (Jun 9, 2017)

New Features:
Added commands 'Find Duplicate Passwords' and 'Find Similar Passwords' (in 'Edit' -> 'Show Entries'), which show entries that are using the same or similar passwords.
Added command 'Password Quality Report' (in 'Edit' -> 'Show Entries'), which shows all entries and the estimated quality of their passwords.
Added option 'String name' in the 'Edit' -> 'Find' dialog (for searching entries that have a specific custom string field).
Added option for using a gray tray icon.
Added {CMD:/.../} placeholder, which runs a command line.
Added {T-CONV:/.../Raw/} placeholder, which inserts a text without encoding it for the current context.
Added optional 'Last Password Modification Time (Based on History)' entry list column.
The internal text editor now supports editing PS1 files.
The position and size of the internal data viewer is now remembered and restored.
For various dialogs, the maximized state is now remembered and restored.
Added configuration option for specifying an expiry date for master keys.
Added configuration option for specifying disallowed auto-type target windows.
Added workaround for Edge throwing away all keyboard input for a short time after its activation.
Added workaround for Mono not properly rendering bold and italic text in rich text boxes.
TrlUtil now performs a case-sensitive word validation.
Improvements:
The password input controls in the IO connection dialog and the proxy dialog now are secure edit controls.
The icon of the 'Save' command in the main menu is now grayed out when there are no database changes (like the toolbar button).
Auto-Type: improved support for target applications that redirect the focus immediately.
Auto-Type: improved compatibility with VMware vSphere client.
When an error occurs during auto-type, KeePass is now brought to the foreground before showing an error message box.
Entries in groups where searching is disabled (e.g. the recycle bin group) are now ignored by the commands that show expired entries.
Improved scrolling when moving entries while grouping in the entry list is on.
Improved support for right-to-left writing systems.
Improved application and system tray icon handling.
Updated low resolution ICO files (for Mono development).
Moved single-click tray icon action option from the 'Integration' tab to the 'Interface' tab of the options dialog.
Synchronization file path comparisons are case-insensitive now.
Improved workaround for Mono clipboard bug (improved performance and window detection; the workaround is now applied only if 'xsel' and 'xdotool' are installed).
Enhanced PrepMonoDev.sh script.
KPScript: times in group and entry lists now contain a time zone identifier (typically 'Z' for UTC).
Various code optimizations.
Minor other improvements.
Bugfixes:
The drop-down menu commands in the entry editing dialog for setting the expiry date now work as expected.

New in KeePass Password Safe 1.33 Classic Edition (Jun 3, 2017)

New in KeePass Password Safe 2.35 (Jan 9, 2017)

New Features:
New KDBX 4 file format, which supports various new features (listed below; e.g. Argon2).
Added Argon2 key derivation function (it can be activated in the database settings dialog).
Improved header and data authentication in KDBX 4 files (using HMAC-SHA-256, Encrypt-then-MAC scheme).
Added ChaCha20 (RFC 7539) encryption algorithm (it can be activated as KDBX file encryption algorithm in the database settings dialog; furthermore, it supersedes Salsa20 as default for generating the inner random stream of KDBX 4 files).
Added support for opening entry URLs with Firefox or Opera in private mode via the context menu -> 'URL(s)' -> 'Open with ... (Private)'.
Added URL override suggestions for Firefox and Opera in private mode in the URL override suggestions drop-down list in the entry dialog.
Added optional built-in global URL overrides for opening HTTP/HTTPS URLs with Firefox or Opera in private mode.
Added {PICKFIELD} placeholder, which shows a dialog to pick a field whose value will be inserted.
Added option 'Hide "Close Database" toolbar button when at most one database is opened' (turned on by default).
Added option 'Show additional auto-type menu commands', which can be turned on to show menu commands for performing entry auto-type with some specific sequences.
Added menu command 'Selected Entry's Group' (with keyboard shortcut Ctrl+G) in 'Edit' -> 'Show Entries' (and a context menu equivalent 'Show Parent Group' in 'Selected Entries'), which opens the parent group of the currently selected entry and selects the entry again.
Added menu commands in 'Edit' -> 'Show Entries' to show entries that expire in a specific number of days (1, 2, 3) or weeks (1, 2, 4, 8) or in the future.
Added configuration option that specifies the number of days within which entries are considered to expire 'soon' (the default is 7).
Added option for changing the alternate item background color.
When the option 'Remember key sources' is enabled, KeePass now also remembers whether a master password has been used.
Added option 'Force changing the master key the next time (once)' (in 'File' -> 'Database Settings' -> tab 'Advanced').
Added parameters 'Window style' and 'Verb' for the 'Execute command line / URL' trigger action.
Added support for importing mSecure 3.5.5 CSV files.
Added support for importing Password Saver 4.1.2 XML files.
Added support for importing Enpass 5.3.0.1 TXT files.
Enhanced SplashID CSV import (added support for the old version 3.4, added mappings for types of the latest version, groups are now created only for categories, and types are imported as tags).
LastPass import: added support for CSV files exported by the LastPass Chrome extension, which encodes some special characters as XML entities.
Added 'KeePass KDBX (2.34, Old Format)' export module.
Export using XSL transformation: added support for the 'xsl:output' element in XSL files.
If the global auto-type hot key is Ctrl+Alt+A and the current input locale is Polish, KeePass now shows a warning dialog (telling the user that Ctrl+Alt+A is in conflict with a system key combination producing a character).
Added Alt+X Unicode character conversion support in rich text boxes on Unix-like systems.
For development snapshots, the 'About' dialog now shows the snapshot version (in the form 'YYMMDD').
Plugins can provide other key derivation functions now.
The header of KDBX 4 files is extensible by plugins.
Enhanced support for developing encryption algorithm plugins.
Plugins can now store custom data in groups and entries.
Plugin data stored in the database, a group or an entry can now be inspected (and deleted) in the database maintenance dialog, the group dialog and the entry dialog, respectively.
For plugins: file closing events now contain information about whether KeePass is exiting, locking or performing a trigger action.
Added workaround for .NET handle cast overflow bug in InputLanguage.Culture.
Added workaround for Mono ignoring the Ctrl+I shortcut.
Added workaround for Mono clipboard bug.
Added workaround for Mono not focusing the default control in the entry editing dialog.
Added workaround for a Mono timer bug that caused high CPU load while showing a file save confirmation dialog.
Added Mono workaround: when running on Mac OS X, KeePass now does not try to instantiate a tray icon anymore.
Added workaround for XDoTool sending diacritic characters in incorrect case.
TrlUtil now recommends to clear the 'Unused Text' tab.
Improvements:
Improved behavior when searching entries with exclusions (terms prefixed with '-').
Improved support for auto-typing into target windows using different keyboard layouts.
Auto-Type: improved support for keyboard layouts with keys where Shift, Caps Lock and no modifier result in 3 different characters.
Auto-Type: improved support for spacing modifier letters (U+02B0 to U+02FF).
Global auto-type now works with target windows having empty titles.
When copying entries to the clipboard, the data package now includes custom icons used by the entries.
Unified behavior when drag&dropping a field containing a placeholder.
Improved entry edit confirmation dialog.
If the screen height is insufficient to display a dialog, the dialog's banner (if the dialog has one) is now removed to save some space.
Some tooltips are now displayed for a longer time.
A new entry created using a template now does not include the history of the template anymore.
For empty RTF attachments, the internal data editor now by default uses the font that is specified for TXT files.
Internal data editor: added support for changing the format of mixed-format selections.
Internal data viewer and editor: null characters ('', not '0') in texts are now automatically replaced by spaces (like Notepad on Windows 10).
Improved encoding signature handling for conversions during text attachment imports (via the 'Text Encoding' dialog).
File transactions are not used anymore for files that have a reparse point (e.g. symbolic links).
Improved XSL stylesheets for KDBX XML files.
The internal window manager is now thread-safe.
Improved date/time handling.
Improved button image disposal.
When synchronizing two databases, custom data (by plugins) is now merged.
When opening a database file, corrupted icon indices are now automatically replaced by default values.
Added some more entropy sources for the seed of the cryptographically secure pseudo-random number generator (environment variables, command line, full operating system version, current culture).
ChaCha20 is now used during password generation (instead of Salsa20).
ChaCha20 is now used as fallback process memory encryption algorithm (instead of Salsa20).
When the encryption algorithm for a database file is unknown, the error message now shows the UUID of the algorithm.
In KDBX 4, header field lengths are now 4 bytes wide.
In KDBX 4, entry attachments are now stored in an inner, binary header (encrypted, possibly compressed), before the XML part; this reduces the database file size and improves the loading/saving performance.
In KDBX 4, the inner random stream cipher ID and key (to support process memory protection) are now stored in the inner header instead of in the outer header.
KPScript: the 'ChangeMasterKey' command now also updates the master key change date.
TrlUtil: improved validation warning dialogs.
The MSI file now requires any .NET Framework version, not a specific one.
The MSI file is now built using Visual Studio 2015.
Various code optimizations.
Minor other improvements.
Bugfixes:
When executing a {HMACOTP} placeholder, the last modification time of the corresponding entry is now updated.
Key files containing exactly 64 alphanumeric characters are now loaded as intended.

New in KeePass Password Safe 1.32 (Jan 2, 2017)

New in KeePass Password Safe 2.34 (Jun 12, 2016)

New in KeePass Password Safe 2.33 (May 8, 2016)

New Features:
Added commands in the group context menu (under 'Rearrange'): 'Expand Recursively' and 'Collapse Recursively'.
Added option 'When selecting an entry, automatically select its parent group, too' (turned on by default).
Added placeholders for data of the group that is currently selected in the main window: {GROUP_SEL}, {GROUP_SEL_PATH} and {GROUP_SEL_NOTES}.
While importing/synchronizing, indeterminate progress is now displayed on the taskbar button (on Windows 7 and higher).
Added optional parameters 'Filter - Group' and 'Filter - Tag' for the 'Export active database' trigger action.
Pressing the Escape key in the main window now locks the workspace (independent of the current database locking state, in contrast to Ctrl+L).
Added option 'Extra-safe file transactions' in 'Tools' -> 'Options' -> tab 'Advanced'.
Added customization option to specify how often the master key dialog appears when entering incorrect master keys.
Plugins: added event 'FormLoadPost' for the main window.
KPScript: the 'GetEntryString' command now supports the '-Spr' option, which causes KPScript to Spr-compile the field value (i.e. placeholders are replaced, field references are resolved, environment variables are inserted, etc.).
Improvements:
Improved database synchronization performance.
Improved object reordering during a database synchronization for new and relocated groups/entries.
Improved synchronization of deleted objects information.
Improved database synchronization to prevent implicit object deletions.
HTML export/printing: the notes column now is twice as wide as the other columns.
When entering a Spr-variant password in the entry dialog, the quality estimation is now disabled.
Group tooltips are now displayed for about 30 seconds.
The root group is now always expanded when opening a database.
Improved private mode browser detection.
Improved DPI awareness declaration (on Windows 10 and higher).
Improved regular expression searching performance in usual use cases.
Improved natural string comparison performance (on Unix-like systems).
Improved mnemonic characters in the 'Rearrange' menus.
Upgraded installer.
Various UI text improvements.
Various code optimizations.
Minor other improvements.

New in KeePass Password Safe 2.32 (Mar 9, 2016)

New Features:
The quick search box (in the toolbar of the main window) now supports searching using a regular expression; in order to indicate that the search text is a regular expression, enclose it in '//'; for example, performing a quick search for '//Michael|Adam//' shows all entries containing 'Michael' or 'Adam'.
Added 'Advanced' tab in the 'Open From URL' dialog (easily extensible by plugins); added options: timeout, pre-authenticate, HTTP/HTTPS/WebDAV user agent and 100-Continue behavior, FTP passive mode.
Added per-user Start Menu Internet Application detection.
When selecting an entry in the main entry list, its parent group is now selected automatically in the group tree view.
Auto-Type matching: added option 'Expired entries can match' (turned off by default, i.e. expired entries are ignored).
Added option 'Always show global auto-type entry selection dialog' (to show the dialog even when no or one entry is found for the currently active target window; turned off by default).
Added {GROUP_NOTES} placeholder.
Added support for importing nPassword 1.0.2.41 NPW files.
In triggers and KPScript, an import/export module can now be specified both using its display name and its format name.
When running under .NET 4.5 or higher, secure connections (e.g. for WebDAV) now support TLS 1.1 and TLS 1.2 (in addition to SSL 3 and TLS 1.0).
Added Mono workaround: when running on the Unity or Pantheon desktop, KeePass now does not try to instantiate a tray icon anymore; if you want a tray icon on Unity/Pantheon, use the application indicator plugin.
Added workaround for Mono not implementing the property SystemInformation.SmallIconSize for Mac OS X systems.
Added command line parameter '-wa-disable:' for disabling specific Mono workarounds (IDs separated by commas).
KPScript: if the value of a '-ref-*:' parameter is enclosed in '//', it is now treated as a regular expression, which must occur in the entry field for an entry to match.
KPScript: .NET 4.0/4.5 is now preferred, if installed.
KPScript: enhanced high DPI support.
Improvements:
Auto-Type: improved compatibility with target windows that handle activation slowly and ignore any input until being ready (like Microsoft Edge).
Auto-Type: improved sending of characters that are typically realized with the AltGr key.
When editing a custom entry string, the value text box now has the initial focus.
Improved image/icon shrinking.
Improved icon recoloring on high DPI resolutions.
Changed some ICO files such that higher resolution images are used.
Changed some PNG files to workaround the image DPI scaling behavior on Windows XP.
Improved new-line filtering in the main entry view.
When trying to use the Windows user account as part of a composite master key fails, a more detailed error message is displayed now.
The 'About' dialog now indicates whether the current build is a development snapshot.
Changed code signing certificate.
Upgraded installer.
Various code optimizations.
Minor other improvements.
Bugfixes:
After an incomplete drag&drop operation over the group tree view, the previous group selection is now restored.

New in KeePass Password Safe 2.31 (Jan 9, 2016)

New Features:
Added menu/toolbar styles, freely selectable in 'Tools' -> 'Options' -> tab 'Interface'; available styles are 'Windows 10', 'Windows 8.1', 'KeePass - Gradient', '.NET/Office - Professional' and 'System - Classic'; by default KeePass uses the style most similar to the one of the current operating system.
Refined application icons (thanks to Victor Andreyenkov).
Auto-Type: new target window classification method, which improves compatibility with target windows hosted within other windows (e.g. a PuTTY window within SuperPuTTY/MTPuTTY).
Auto-Type: added workaround for the default Ctrl+Alt behavior of KiTTY variants (which differs from Windows' behavior).
Before clearing the clipboard, KeePass now first copies a non-sensitive text into it; this ensures that no sensitive information remains in the clipboard even when clearing is prevented by the environment (e.g. when running in a virtual machine, when using a clipboard extension utility, ...).
Added support for opening entry URLs with Internet Explorer or Google Chrome in private mode via the context menu -> 'URL(s)' -> 'Open with ... (Private)'.
Added URL override suggestions for Internet Explorer and Google Chrome in private mode in the URL override suggestions drop-down list in the entry dialog.
Added optional built-in global URL overrides for opening HTTP/HTTPS URLs with Internet Explorer or Google Chrome in private mode.
Added Ctrl+K shortcut for the 'Duplicate Entry' command.
Mozilla Bookmarks HTML import: added support for importing tags.
Added support for exporting to Mozilla Bookmarks HTML files.
Windows/IE favorites export: entry fields are Spr-compiled now, and entries with cmd:// URLs are now exported as LNK files.
HTML export/printing: added support for UUIDs, added horizontal lines between entries in details mode, added background color for group headings, long field names are hyphenated now, and long field data now breaks and wraps onto the next line.
Plugins: added possibility to configure file transactions for each URI scheme.
Plugins: added possibility to provide custom 'Save As' dialogs more easily.
Converted some PNG images as a workaround for a problem in Cairo/LibPNG on Unix-like systems.
As a workaround for a weakness in Mono's FileDialog, before showing such a dialog on Unix-like systems KeePass now tries to load the file '~/.recently-used' and deletes it, if it is not a valid XML file.
KPScript: added support for specifying the master password in encrypted form using the '-pw-enc:' command line parameter (exactly like in KeePass, compatible with the {PASSWORD_ENC} placeholder).
KPScript: the 'Export' command now supports the optional '-GroupPath:' parameter (to export a specific group instead of the whole database).
KPScript: the 'GetEntryString' command now supports the '-FailIfNoEntry' option.
KPScript: added '-refx-Expires' and '-refx-Expired' entry identification parameters.
KPScript: the 'Import' command now prints more specific error messages.
All KeePass program binaries are now dual signed using SHA-1 and SHA-256.
Improvements / Changes:
Auto-Type: improved keyboard layout handling when the target window changes during an auto-type process.
Auto-Type: improved compatibility with Remote Desktop Connection client and VirtualBox.
Improved icon recoloring.
Improved printing of dates/times and tags.
The password generator based on a character set now ensures that the generated password is Spr-invariant.
Password generator based on a pattern or a custom algorithm: when a Spr-variant password is generated, a confirmation dialog for accepting this password is displayed.
If the 'Save Database' policy prevents saving, the auto-save option is now ignored.
Improved .NET Framework version detection.
PLGX debugging: when the command line option '-debug' is passed and a PLGX plugin fails to compile, the output of all tried compilers is saved to a temporary file.
Improved file transaction creation time handling on Unix-like systems.
Improved compatibility with Mono on BSD systems.
Enhanced PrepMonoDev.sh script for compatibility with Mono 4.x.
Removed KeePassLibSD sub-project (a KeePass library for Pocket PC / Windows Mobile) from the main solution.
Upgraded installer.
Various code optimizations.
Minor other improvements.

New in KeePass Password Safe 2.30 (Aug 9, 2015)

New Features:
When opening a database via an URL fails, the error message dialog now has a button 'Specify different server credentials' (on Windows Vista and higher).
Added support for opening entry URLs with Microsoft Edge via the context menu -> 'URL(s)' -> 'Open with Edge'.
Added URL override suggestion for Microsoft Edge in the URL override suggestions drop-down list in the entry dialog.
Added optional built-in global URL overrides for opening HTTP/HTTPS URLs with Microsoft Edge.
When clicking on a group link in the entry view, KeePass now ensures that the group is visible in the group tree.
The main window is now moved onto the primary screen when it is restored outside all screens.
KDBX loader: added support for non-empty protected binary value reference elements.
Plugins: added two auto-type sequence query events.
Added workaround for Mono drawing bug when scrolling a rich text box.
When running under Mono, some automatic locking options are now disabled (because Mono doesn't implement the required events).
The installer now prevents running the installer while it is already running.
KPScript: added '-GroupPath:' parameter (for specifying the full path of a group).
KPScript: the 'MoveEntry' command now also supports the '-GroupName:' parameter (as alternative to '-GroupPath:').
KPScript: added support for specifying the path of an XSL stylesheet file using the command line parameter '-XslFile:'.
KPScript: the 'ListGroups' command now also outputs the parent group UUID for each group.
KPScript: the parameters for specifying new field data (for the 'AddEntry' and the 'EditEntry' command) now support escape sequences (e.g. '\n' is replaced by a new-line character).
Improvements / Changes:
The 'Synchronize' file dialog now shows only KDBX files by default.
In the 'Attachments (Count)' column, only non-zero counts are shown now.
Improved MRU item refreshes.
The entry string dialog now supports changing the case of a string name.
The entry string dialog now does not allow adding a string whose name differs from another existing string name in this entry only by case.
The entry view in the main window is now updated immediately after pressing Ctrl+H or Ctrl+J.
The KDB import module now tries to round any invalid date/time to the nearest valid date/time.
XML serializers are now loaded/created at KeePass startup in order to avoid a problem when shutting down Windows and KeePass.XmlSerializers.dll not being present.
Changed tab bar behavior in the options dialog to avoid a tab content cropping issue caused by plugins.
Improved workaround for Mono splitter bug.
Upgraded installer.
Various performance improvements.
Various code optimizations.
Minor other improvements.

New in KeePass Password Safe 2.29 (Apr 11, 2015)

New Features:
Added high resolution icons.
Added support for high resolution custom icons.
Added option in the proxy configuration dialog to use the user's default credentials (provided by the system).
{FIREFOX} placeholder: if no regular Firefox is installed, KeePass now looks for Firefox ESR.
{PICKCHARS} placeholder: the Conv-Fmt option now supports all combinations of '0', 'A', 'a' and '?'; '?' skips a combobox item.
Added {BEEP X Y} auto-type command (where X is the frequency in hertz and Y the duration in milliseconds).
Added optional 'Attachments (Count)' entry list column.
Added Ctrl+Insert shortcut as alternative for Ctrl+C in the entry list of the main window.
Added shortcut keys for 'Copy Entries' (Ctrl+Shift+C) and 'Paste Entries' (Ctrl+Shift+V).
Added some access keys in various dialogs.
In the field reference dialog, the field in which the reference will be inserted is now selected as source field by default.
Added UUID uniqueness check.
Added support for importing Passphrase Keeper 2.60 HTML files (in addition to the already supported 2.50 and 2.70 formats).
The path of the local configuration file can now be changed using the '-cfg-local:' command line parameter.
Plugins can now access the KeePass resources (images, icons, etc.) through the IPluginHost interface.
Added a few workarounds for external window manipulations before the main window has been fully constructed.
Added workaround for .NET gradient drawing bug; 'Blue Carbon' dialog banners are now drawn correctly on high DPI.
Added workaround for Mono file version information block generation bug.
KPScript: added 'EstimateQuality' command (to estimate the quality of a specified password).
All KeePass program binaries are now digitally signed.
Improvements / Changes:
In the master key creation dialog, the 'Create' and 'Browse' buttons are now disabled when a key provider is selected.
Changed behavior of the 'Use system proxy settings' option (KeePass now directly gets the system proxy settings, not the .NET default proxy settings).
Improved focus restoration after closing the character picking dialog.
Removed 'O' and 'C' access keys from 'OK' and 'Cancel' buttons (instead, press Enter for 'OK' and Esc for 'Cancel').
Improved remembering of splitter positions.
Improved assignments of check mark images to menu items.
Improved behavior when synchronizing a local EFS-encrypted database file with a local database file.
On Unix-like systems, hot key boxes now show 'External' instead of 'None'.
Various code optimizations.
Minor other improvements.
Bugfixes:
AltGr+E (i.e. Ctrl+Alt+E) does not focus the quick search box anymore.

New in KeePass Password Safe 1.29 (Apr 3, 2015)

New in KeePass Password Safe 2.28 (Oct 8, 2014)

New Features:
Enhanced high DPI support.
Added trigger action 'Show message box' (which can abort the current trigger execution or execute a command line / URL).
The 'Database has unsaved changes' trigger condition now supports choosing between the active database and the database that triggered the event.
Added parameter for the trigger action 'Activate database (select tab)' that allows activating the database that triggered the event.
Auto-Type: added workaround for KiTTY's default Ctrl+Alt behavior (which differs from Windows' behavior).
Auto-Type: added workaround for PuTTYjp's default Ctrl+Alt behavior (which differs from Windows' behavior).
Added up/down arrow buttons for reordering auto-type associations in the entry editing dialog.
While entering the master key on a secure desktop, dimmed screenshots are now also displayed on all non-primary screens.
Added support for importing VisKeeper 3.3.0 TXT files.
The group tree view is now saved and restored during most group tree updates.
In the main entry list, multiple entries can now be moved by one step up/down at once.
If Caps Lock is on, a balloon tip indicating this is now also displayed for password text boxes immediately after opening a dialog (where the password text box is the initially focused control).
In the cases where Windows would display outdated thumbnail and peek preview images for the main window, KeePass now requests Windows to use a static bitmap instead (showing only the KeePass logo).
Added fallback method for parsing dates/times (the default parser fails for some custom formats specified in the Control Panel).
Added workaround for .NET ToolStrip height bug.
Added own process memory protection for Unix-like systems (as Mono doesn't provide any effective memory protection method).
On Unix-like systems, Shift+F10 (and Ctrl+Alt+5 and Ctrl+NumPad5 on Mac OS X) now shows the context menu in most list/tree view controls and rich text boxes (like on Windows).
KPScript: for the 'Import' command, a different master key can now be specified using the standard master key command line parameters with the prefix 'imp_' (e.g. -imp_pw:Secret).
KPScript: added option '-FailIfNotExists' for the 'GetEntryString' command.
KPScript: added '-refx-Group' and '-refx-GroupPath' entry identification parameters.
Improvements / Changes:
Improved compatibility with ClearType.
Improved support for high contrast themes.
When duplicating a group/entry, the creation time and the last access time of the copy are now set to the current time.
Character picker dialog: initially the text box is now focused, improved tab order, and picked characters are now inserted at the current insertion point (instead of the end).
Ctrl+Tab is now handled only once when the database tab bar has the focus.
When exporting to a KeePass 1.x KDB file, a warning/error is now shown if the master key contains/is a Windows User Account.
Unknown trigger events/conditions/actions are now ignored by the trigger dialog.
Reduced group tree view flickering.
Improved default value for the entry history size limit.
Improved menu check mark and radio images.
Improved list view column resizing.
Improved list view scrolling.
Secure edit control performance improvements.
In some cases, double-clicking the tray icon now brings KeePass to the foreground.
Improved concurrent UI behavior during auto-type.
Auto-Type: improved compatibility with keyboard layouts with combining apostrophes, quotation marks and tildes.
Auto-Type: improved virtual key translation on Unix-like systems.
KPScript: the 'EditEntry' command now also updates the time fields of all affected entries.
KPScript: the 'DeleteEntry' and 'DeleteAllEntries' commands now create deleted object information (improving synchronization behavior).
Upgraded installer.
Various code optimizations.
Minor other improvements.
Bugfixes:
When auto-typing a sequence containing a {NEWPASSWORD} placeholder, the raw new password is now stored (in the password field of the entry), not its corresponding auto-type sequence.
Synchronizing two unrelated databases now always works as expected.

New in KeePass Password Safe 1.28 (Oct 4, 2014)

New in KeePass Password Safe 2.27 (Jul 6, 2014)

New Features:
The estimated password quality (in bits) is now displayed on the quality progress bar, and right of the quality progress bar the length of the password is displayed.
Auto-Type: before sending a character using a key combination involving at least two modifiers, KeePass now first tests whether this key combination is a registered system-wide hot key, and, if so, tries to send the character as a Unicode packet instead.
Auto-Type: added workaround for Cygwin's default Ctrl+Alt behavior (which differs from Windows' behavior).
Auto-Type: added {APPACTIVATE ...} command.
{HMACOTP} placeholder: added support for specifying the shared secret using the entry strings 'HmacOtp-Secret-Hex' (secret as hex string), 'HmacOtp-Secret-Base32' (secret as Base32 string) and 'HmacOtp-Secret-Base64' (secret as Base64 string).
{T-CONV:...} placeholder: added 'Uri-Dec' type (for converting the string to its URI-unescaped representation).
Added placeholders: {URL:USERINFO}, {URL:USERNAME} and {URL:PASSWORD}.
Added placeholders: {BASE}, {BASE:RMVSCM}, {BASE:SCM}, {BASE:HOST}, {BASE:PORT}, {BASE:PATH}, {BASE:QUERY}, {BASE:USERINFO}, {BASE:USERNAME}, {BASE:PASSWORD} (within an URL override, each of these placeholders is replaced by the specified part of the string that is being overridden).
Added {NEWPASSWORD:/Profile/} placeholder, which generates a new password for the current entry using the specified password generator profile.
Pattern-based password generator: the '^' character now removes the next character from the current custom character set (for example, [a^y] contains all lower-case alphanumeric characters except 'y').
Enhanced syntax highlighting in the sequence field of the 'Edit Auto-Type Item' dialog.
Added option 'Do not ask whether to synchronize or overwrite; force synchronization'.
Added synchronization support for the group behavior properties 'Auto-Type for entries in this group' and 'Searching entries in this group'.
Root group properties are now synchronized based on the last modification time.
While saving a database, a shutdown block reason is now specified.
Added 'Move to Group' menu in the 'Selected Entries' popup of the main entry list context menu.
Items of dynamic menus (tags, strings, attachments, password generator profiles, ...) now have auto-assigned accelerator keys.
As alternative to Ctrl+F, pressing F3 in the main window now displays the 'Find' dialog.
Added UIFlags bit for hiding password quality progress bars and information labels.
Enhanced system font detection on Unix-like systems.
When using 'xsel' for clipboard operations on Unix-like systems, text is now copied into both the primary selection and the clipboard.
Added '--version' command line option (for Unix-like systems).
Plugins can now subscribe to an IPC event that is raised when running KeePass with the '-e:' command line parameter.
Added workaround for .NET AutoWordSelection bug.
Added workaround for Mono bug 10163; saving files using WebDAV now also works under Mono 2.11 and higher.
Added workaround for Mono image tabs bug.
Added workaround for Mono NumericUpDown drawing bug.
Improvements / Changes:
Merged the URL scheme overrides and the 'Override all URLs' option into a new dialog 'URL Overrides'.
Improved autocompletion of IO connection parameters using the MRU list (now treating the user name as filter).
Improved interaction of IO connection trigger parameters and the MRU list.
The master key prompt dialog now validates key files only when clicking [OK], and invalid ones are not removed automatically from the list anymore.
Improved support for managing columns leftover from uninstalled plugins in the 'Configure Columns' dialog.
If the 'Unhide Passwords' policy is turned off, the passwords column in the auto-type entry selection dialog is now unavailable.
The entry list in the main window is now updated immediately after performing auto-type or copying data to the clipboard.
Various list view performance improvements.
The 'Searching entries in this group' group behavior properties are now ignored during resolving field references.
Improved behavior in case of syntax errors in placeholders with parameters.
Two-channel auto-type obfuscation: improved realization of clipboard paste commands.
General main window keyboard shortcuts now also work within the quick search box and the database tab bar.
Pressing Ctrl+Shift+Tab in the main window now always selects the previous database tab (independent of which control has the focus).
Changed shortcut keys for moving entries/groups on Unix-like systems, due to Mono's incorrect handling of Alt (preventing key events) and navigation keys (selection updated at the wrong time).
Auto-Type: improved modifier key releasing on Unix-like systems.
Various code optimizations.
Minor other improvements.
Bugfixes:
A key-up event to the groups tree in the main window without a corresponding key-down event does not change the entry list anymore.

New in KeePass Password Safe 2.26 (Apr 13, 2014)

New Features:
Added option to show a confirmation dialog when moving entries/groups to the recycle bin.
Auto-Type: added workaround for applications with broken time-dependent message processing.
Auto-Type: added workaround for PuTTY's default Ctrl+Alt behavior (which differs from Windows' behavior).
Auto-Type: added configuration option to specify the default delay between two keypresses.
Added optional sequence comments column in the auto-type entry selection dialog (in this column, only {C:...} comments in the sequence are displayed; if a comment starts with '!', only this comment is shown).
If the option 'Automatically search key files' is activated, all drives are now scanned in parallel and any key files are added asynchronously (this avoids issues caused by slow network drives).
Added trigger action 'Show entries by tag'.
{OPERA} placeholder: updated detection code to also support the latest versions of Opera.
{T-CONV:...} placeholder: added 'Uri' type (for converting the string to its URI-escaped representation).
Synchronization functions are now available for remote databases, too.
Enhanced RoboForm importer to additionally support the new file format.
Summary lists are now also available in delete confirmation dialogs on Unix-like systems and Windows XP and earlier.
Added workaround for Mono Process StdIn BOM bug.
KPScript: added 'refx-All' option (matches all entries).
KPScript: added optional parameters 'setx-Expires' and 'setx-ExpiryTime' for the 'EditEntry' command.
Improvements / Changes:
Improved database tab selection after closing an inactive database.
New just-in-time MRU files list.
Improved selection of entries created by the password generator.
The internal text editor now determines the newline sequence that the data is using the most when opening it, and converts all newline sequences to the initial sequence when saving the data.
Improved realization of the {CLEARFIELD} command (now using Bksp instead of Del, in order to avoid Ctrl+Alt+Del issues on newer Windows systems).
The note that deleting a group will also delete all subgroups and entries within this group is now only displayed if the group is not empty.
Improved GUI thread safety of the update check dialog.
Improved HTML generation.
Improved version formatting.
On Unix-like systems, window state automations are now disabled during initial auto-type target window switches.
On Unix-like systems, the button to choose a password font is disabled now (because this is unsupported due to Mono bug 5795).
Various files (e.g. 'History.txt') are now encoded using UTF-8.
Improved build system.
Various code optimizations.
Minor other improvements.
Bugfixes:
In the 'Configure Columns' dialog, the activation states of plugin-provided columns are now preset correctly.

New in KeePass Password Safe 2.25 (Apr 13, 2014)

New Features:
New auto-type key sending engine (improved support for sending Unicode characters and for sending keypresses into virtual machine/emulator windows; now largely compatible with the Neo keyboard layout; sequence parsing is faster, more flexible and optimizes the sequence; improved behavior for invalid sequences; differential delays, making the auto-type process less susceptible to externally caused delays; automatic cancelling is now more precise up to at most one keypress and also works on Unix-like systems; improved message processing during auto-type).
When trying to open an entry attachment that the built-in editor/viewer cannot handle, KeePass now extracts the attachment to a (EFS-encrypted) temporary file and opens it using the default application associated with this file; afterwards the user can choose between importing/discarding changes and KeePass deletes the temporary file securely.
On Windows Vista and higher, the button in the entry editing dialog to open attachments is now a split button; the drop-down menu allows to choose between the built-in viewer, the built-in editor and an external application.
Added 'XML Replace' functionality.
Generic CSV importer: added option to merge imported groups with groups already existing in the database.
Added support for importing Dashlane 2.3.2 CSV files.
On Windows 8 and higher, some running Metro apps are now listed in the 'Edit Auto-Type Item' dialog.
Added {T-CONV:/T/C/} placeholder (to convert text to upper-case, lower-case, or its UTF-8 representation to Base64 or Hex).
Added {SPACE} special key code (as alternative for the ' ' character, for improved readability of auto-type sequences).
XML merge (used e.g. when an enforced configuration file is present): added support for comments in inner nodes.
Added UIFlags bit for showing last access times.
Improvements / Changes:
In the history entry viewing dialog, the 'Open' and 'Save' commands are now available for attachments.
When replacing the {PASSWORD_ENC} placeholder, KeePass now first Spr-compiles the entry password (i.e. placeholders, environment variables, etc. can be used).
Improved configuration loading performance.
Improved displaying of fatal exceptions.
Various code optimizations.
Minor other improvements.
Bugfixes:
Data inserted by entry URL component placeholders is now encoded correctly.

New in KeePass Password Safe 1.27 (Apr 7, 2014)

New in KeePass Password Safe 2.24 (Nov 4, 2013)

New Features:
The URL override field in the entry editing dialog is now an editable combo box, where the drop-down list contains suggestions for browser overrides.
Password quality estimations are now computed in separate threads to improve the UI responsiveness.
The password generator profile 'Automatically generated passwords for new entries' is now available in the password generator context menu of the entry editing dialog.
Added UIFlags bit for hiding built-in profiles in the password generator context menu of the entry editing dialog.
Tags can be included in printouts now.
Generic CSV importer: added support for importing tags.
Added support for importing Norton Identity Safe 2013 CSV files.
Mozilla Bookmarks JSON import: added support for importing tags.
RoboForm import: URLs are now terminated using a '/', added support for the new file format and for the new note fields.
Added support for showing modern task dialogs even when no form exists (requiring a theming activation context).
KeePass now terminates CtfMon child processes started by .NET/Windows, if they are not terminated automatically.
Added workarounds for '#', '{', '}', '[', ']', '~' and diaeresis .NET SendKeys issues.
Added workaround for 'xsel' hanging on Unix-like systems.
Converted some PNG images as a workaround for a problem in Cairo/LibPNG on Unix-like systems.
Installer: the version is now shown in the 'Version' field of the item in the Windows 'Programs and Features' dialog.
TrlUtil: added 'Go to Next Untranslated' command.
TrlUtil: added shortcut keys.
Improvements / Changes:
The 'Open From URL' dialog is now brought to the foreground when trying to perform global auto-type while the database is locked and the main window is minimized to tray.
Profiles are now shown directly in the password generator context menu of the entry editing dialog.
After duplicating entries, KeePass now ensures that the copies are visible.
User names of TAN entries are now dereferenced, if the option for showing dereferenced data in the main window is enabled.
When creating an entry from a template, the new entry is now selected and focused.
Empty fields are not included in detailed printouts anymore.
Enhanced Internet Explorer detection.
The '-preselect' command line option now works together with relative database file paths.
Improved quoted app paths parsing.
Extended culture invariance.
Improved synchronization performance.
Improved internal keypress routing.
Last access times by default are not shown in the UI anymore.
TrlUtil: improved dialog focusing when showing message boxes.
KeePassLib/KPScript: improved support for running on systems without any GUI.
Various code optimizations.
Minor other improvements.
Bugfixes:
Fixed a crash that could occur if the option 'Show expired entries (if any)' is enabled and a trigger switches to a different locked database when unlocking a database.
The tab bar is now updated correctly after closing an inactive database by middle-clicking its tab.
Column display orders that are unstable with respect to linear auto-adjusting assignment are now restored correctly.

New in KeePass Password Safe 2.23 (Jul 21, 2013)

New Features:
New password quality estimation algorithm.
Added toolbar buttons: 'Open URL(s)', 'Copy URL(s) to Clipboard' and 'Perform Auto-Type'.
Added 'Generate Password' command in the context menu of the KeePass system tray icon.
Added 'Copy history' option in the entry duplication dialog (enabled by default).
Added 'Duplicate Group' context menu command.
In the MRU list, currently opened files now have an '[Opened]' suffix and are blue.
When a dialog is displayed, (double) clicking the KeePass system tray icon now activates the dialog.
Added {T-REPLACE-RX:...} placeholder, which replaces text using a regular expression.
Added {VKEY-NX X} and {VKEY-EX X} special key codes.
Added 'Perform auto-type with selected entry' trigger action.
Added 'Import into active database' trigger action.
Mozilla Bookmarks HTML import: added support for groups, bookmark descriptions and icons.
Mozilla Bookmarks JSON import: bookmark descriptions are now imported into the note fields of entries.
RoboForm import: added support for the new file format.
Added support for importing Network Password Manager 4.0 CSV files.
Enhanced SafeWallet XML importer to additionally support importing web entries and groups from very old export file versions (for newer versions this was already supported).
Added database repair mode warning.
Added option to accept invalid SSL certificates (turned off by default).
Added user activity notification event for plugins.
File transactions for FTP URLs are now always disabled when running under .NET 4.0 in order to workaround .NET bug 621450.
Added workaround for Mono list view item selection bug.
Added workaround for Mono bug 649266; minimizing to tray now removes the task bar item and restoring does not result in a broken window anymore.
Added workaround for Mono bug 5795; text and selections in password boxes are now drawn properly (a monospace font can only be used on Windows due to the bug).
Added workaround for Mono bug 12525; dialog banners are now drawn correctly again.
Added workaround for Mono form loading bug.
KPScript: added 'Import' command.
KPScript: the 'ListEntries' command now also outputs date/time fields of entries.
Improvements / Changes:
When the option for remembering the last used database is enabled, KeePass now remembers the last active database (instead of the last opened or saved database).
The 'Add Group' command and the F2 key in the groups tree view now open the group editing dialog; in-place tree node label editing is disabled.
Custom string and plugin-provided columns in the 'Configure Columns' dialog are sorted alphabetically now.
Improved behavior when closing inactive databases.
Improved support for trigger actions during database closing.
The 'Special' GUI character set now includes '|' and '~'.
The 'High ANSI' character set now consists of the range [U+0080, U+00FF] except control and non-printable characters.
The options dialog is now listed in the task bar when it is opened while KeePass is minimized to the system tray.
A remembered user account usage state can now be preset even when the user account option is disabled using key prompt configuration flags.
Improved initial input focus in key creation/prompt dialogs when key creation/prompt configuration flags are specified.
During synchronization, the status dialog is now closed after all files have been saved.
Improved behavior of the global KeePass activation hot key when a dialog is displayed.
Changed auto-type command icon.
Shortened product name in main window title.
Improved data URI validation.
Custom clipboard data is now encoded as data URI (with a vendor-specific MIME type).
Improved configuration loading performance.
Enhanced IO connection problem diagnostics.
Improved single instance checking on Unix-like systems.
KeePassLibC DLLs and ShInstUtil are now explicitly marked as DEP- and ASLR-compatible (like the executable file).
Various UI improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
The suffixes to the 'Inherit setting from parent' options on the 'Behavior' tab of the group editing dialog now correctly show the inherited settings of the current group's parent.
When locked, the main window's title doesn't show the full path of the database anymore when the option 'Show full path in title bar (instead of file name only)' is turned off.
The status bar is now updated correctly after sorting by a column.

New in KeePass Password Safe 1.26 (Jul 12, 2013)

New in KeePass Password Safe 2.22 (Apr 5, 2013)

New Features:
When the option for remembering key sources is enabled, KeePass now also remembers whether the user account is required.
Added 'View' -> 'Grouping in Entry List' menu.
Added 'Close active database' trigger action.
Added '-ioiscomplete' command line option, which tells KeePass that the path and file system credentials are complete (the 'Open URL' dialog will not be displayed then).
Added support for importing SafeWallet XML files (3.0.4 and 3.0.5).
Added support for importing TurboPasswords 5.0.1 CSV files.
LastPass CSV importer: added support for group trees.
Alle meine Passworte XML importer: added support for custom fields and group names with special characters.
Password Safe XML importer: added support for the e-mail field.
Added 'Help' button in the generic CSV importer dialog.
Added workaround for .NET bug 642188; top visible list view items are now remembered in details view with groups enabled.
Added workaround for Mono form title bar text update bug (which e.g. caused bug 801414).
Improvements / Changes:
After closing a character picking dialog, KeePass now explicitly activates the previous window.
Improved behavior when cancelling the icon picker dialog.
Main window activation redirection now works with all KeePass dialogs automatically.
The window state of the current database is now remembered before opening another database.
Previous parameters are now discarded when switching between different trigger event/condition/action types.
Unified separators in group paths.
The UI state is now updated after adding an entry and clicking an entry reference link in the entry view.
The '-entry-url-open' command line option now searches for matching entries in all open databases.
Improved database context determination when opening an URL.
Added support for special values in date/time fields imported from KeePass 1.x.
Improved HTML entity decoding (support for more entities and CDATA sections, improved performance, ...).
RoboForm HTML importer: URLs are converted to lower-case now and support for a special order rotation of attributes has been added.
Removed Password Gorilla CSV importer; users should use the generic CSV importer (which can import more data than the old specialized CSV importer).
Improved file discoveries.
Improved test form entry auto-type window definition.
In the MSI package, the version is now included in the product name.
Native key transformation library: replaced Boost threads by Windows API threads (because Boost threads can result in crashes on restricted Windows 7 x64 systems).
Various UI improvements.
Various code optimizations.
Minor other improvements.

New in KeePass Password Safe 2.21 (Feb 4, 2013)

New Features:
Generic CSV importer: a group separator can be specified now (for importing group trees).
Internal data viewer: added hex viewer mode (which is now the default for unknown data types).
In the 'Show Entries by Tag' menu, the number of entries having a specific tag is now shown right of the tag.
In the 'Add Tag' menu, a tag is now disabled if all selected entries already have this tag.
Auto-Type: added support for right modifier keys.
Added special key codes: {WIN}, {LWIN}, {RWIN}, {APPS}, {NUMPAD0} to {NUMPAD9}.
Interleaved sending of keys is now prevented by default (if you e.g. have an auto-type sequence that triggers another auto-type, enable the new option 'Allow interleaved sending of keys' in 'Tools' -> 'Options' -> tab 'Advanced').
Added '-auto-type-selected' command line option (other running KeePass instances perform auto-type for the currently selected entry).
Added option to additionally show references when showing dereferenced data (enabled by default).
The selection in a secure edit control is now preserved when unhiding and hiding the content.
The auto-type association editing dialog now does not hang anymore when a window of any other application hangs.
When an application switches from the secure desktop to a different desktop, KeePass now shows a warning message box; clicking [OK] switches back to the secure desktop.
Added 'OK'/'Cancel' buttons in the icon picker dialog.
Added support for importing LastPass 2.0.2 CSV files.
KeePass now shows an error message when the user accidentally attempts to use a database file as key file.
Added support for UTF-16 surrogate pairs.
Added UTF-8 BOM support for version information files.
The KeePass version is now also shown in the components list in the 'About' dialog.
File operations are now context-independent (this e.g. makes it possible to use the 'Activate database' trigger action during locking).
Plugins can now register their placeholders to be shown in the auto-type item editing dialog.
Plugins can now subscribe to IO access events.
Added workaround for .NET bug 694242; status dialogs now scale properly with the DPI resolution.
Added workaround for Mono DataGridView.EditMode bug.
Added workaround for Mono bug 586901; high Unicode characters in rich text boxes are displayed properly now.
Improvements / Changes:
When the main window UI is being unblocked, the focus is not reset anymore, if a primary control has the focus.
When opening the icon picker dialog, KeePass now ensures that the currently selected icon is visible.
Internal data viewer: improved visibility updating.
The e-mail box icon by default is not inherited by new entries anymore.
The database is now marked as modified when auto-typing a TAN entry.
Enhanced AnyPassword importer to additionally support CSV files exported by AnyPassword Pro 1.07.
Enhanced Password Safe XML importer (KeePass tries to fix the broken XML files exported by Password Safe 3.29 automatically).
IO credentials can be loaded over IPC now.
Enhanced user switch detection.
Even when an exception occurs, temporary files created during KDB exports are now deleted immediately.
Improved behavior on Unix-like systems when the operating system does not grant KeePass access to the temporary directory.
Improved critical sections that are not supposed to be re-entered by the same thread.
Improved secure desktop name generation.
When a dialog is closed, references within the global client image list to controls (event handlers) are removed now.
.NET 4.5 is now preferred, if installed.
PLGX plugins are now preferably compiled using the .NET 4.5 compiler, if KeePass is currently running under the 4.5 CLR.
Updated KB links.
Changed naming of translation files.
The installer now always overwrites the KeePassLibC 1.x support libraries.
Upgraded installer.
Various code optimizations.
Minor other improvements.
Bugfixes:
When locking multiple databases and cancelling a 'Save Changes?' dialog, the UI is now updated correctly.
'&' characters in dynamic menu texts, in dialog banner texts, in image combobox texts, in text box prompts and in tooltips are now displayed properly.

New in KeePass Password Safe 1.25 (Jan 20, 2013)

New in KeePass Password Safe 2.20.1 (Oct 4, 2012)

New in KeePass Password Safe 2.20 (Sep 8, 2012)

New Features:
Header data in KDBX files is now authenticated (to prevent silent data corruption attacks; thanks to P. Gasti and K. B. Rasmussen).
Added management of working directories (a separate working directory is remembered for each file dialog context; working directories are remembered relatively to KeePass.exe; the management can be deactivated by turning off the new option 'Remember working directories').
Added option to cancel auto-type when the target window title changes.
Added quick search box in the toolbar of the internal text editor.
Files can now be attached to entries by using drag&drop from Windows Explorer to the attachments list in the entry editing dialog.
Added '-pw-stdin' command line option to make KeePass read the master password from the StdIn stream.
Added placeholders to get parts of the entry URL: {URL:SCM}, {URL:HOST}, {URL:PORT}, {URL:PATH} and {URL:QUERY}.
Added a 'Details' button in the plugin load failure message box (when clicked, detailed error information for developers is shown).
Added warning icon left of the Windows user account option description in the master key creation dialog.
Added support for more image file formats (e.g. when importing custom client icons).
Added support for importing DesktopKnox 3.2 XML files.
The generic CSV importer now guesses whether the option to ignore the first row should be enabled or not (the user of course can still specify it manually, too).
Added support for exporting to KeePass 1.x CSV files.
Added support for moving the PLGX cache to a different remote drive.
The Spr engine is now extensible, i.e. plugins can provide additional transformations/placeholders.
On Unix-like systems, KeePass now uses the 'xsel' utility for clipboard operations, if 'xsel' is installed (in order to work around Mono clipboard bugs).
Added Mono workaround to set the WM_CLASS property.
Added workaround for Mono splitter bug.
The 'PrepMonoDev.sh' script now removes the serialization assembly generating post build event.
TrlUtil: added support for importing PO files.
Improvements / Changes:
Improved FTP file existence checking.
High DPI UI improvements.
The database is not marked as modified anymore when using in-place label editing to fake-edit a group's name (i.e. when the final new name is the same as the previous one).
Password is not auto-repeated anymore when trying to unhide it fails due to the policy 'Unhide Passwords' being disabled.
Improved menu accelerator and shortcut keys.
Changed IO connection name display format.
Improved browser detection on Mac OS X.
Task dialog thread safety improvements.
Added UI check during import for KPScript.
Upgraded and improved installer (now uses Unicode, LZMA2 compression, ...).
Various UI improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
On Windows systems, new line sequences in text to be shown in a standard multiline text box are now converted to Windows format.

New in KeePass Password Safe 1.24 (Sep 1, 2012)

New in KeePass Password Safe 1.23 (Jul 2, 2012)

New in KeePass Password Safe 2.19 (May 1, 2012)

New Features:
New generic CSV importer (now supports multi-line fields, '\' as escape character, field & record separators and the text qualifier can be specified, white space characters can be removed from the beginning/end of fields, the fields and their order can be defined, supported fields now are group name & standard fields like e.g. title & custom strings & times & ignore column, the first row can be ignored, KeePass initially tries to guess the fields and their order based on the first row).
Native master key transformations are now computed in two threads on 64-bit systems, too; on dual/multi core processors this results in almost twice the performance as before (by doubling the amount of rounds you'll get the same waiting time as in 2.18, but the protection against dictionary and guessing attacks is doubled).
New XML configuration and translation deserializer to improve the startup performance.
Added option to require a password repetition only when hiding using asterisks is enabled (enabled by default).
Entry attachments can now be renamed using in-place label editing (click on an already selected item to show an edit box).
Empty entry attachments can now be created using 'Attach' -> 'Create Empty Attachment'.
Sizes of entry attachments are now shown in a column of the attachments list in the entry editing dialog.
Added {ENV_PROGRAMFILES_X86} placeholder (this is %ProgramFiles(x86)%, if it exists, otherwise %ProgramFiles%).
Added auto-type option 'An entry matches if one of its tags is contained in the target window title'.
URLs in HTML exports are now linkified.
Import modules may now specify multiple default/equivalent file extensions (like e.g. 'htm' and 'html').
Added support for reading texts encoded using UTF-32 Big Endian.
Enhanced text encoding detection (now detects UTF-32 LE/BE and UTF-16 LE/BE by zeros, improved UTF-8 detection, ...).
Added zoom function for images in internal data viewer.
Drop-down image buttons in the entry editing dialog are now marked using small black triangle overlays.
Added support for loading key files from URLs.
Controls in the options dialog are now disabled when the options are enforced (using an enforced configuration file).
If KeePass is started with the '-debug' command line option, KeePass now shows a developer-friendly error message when opening a database file fails.
Added 'Wait for exit' property in the 'Execute command line / URL' trigger action.
The 'File exists' trigger condition now also supports URLs.
Added two file closing trigger events (one raised before and one after saving the database file).
Plugins: added file closing events.
Plugins: added events (AutoType.Sequence*) that allow plugins to provide auto-type sequence suggestions.
Added workaround to support loading data from version information files even when they have incorrectly been decompressed by a web filter.
Added workarounds for '°', '|' and '£' .NET SendKeys issues.
Added workaround for topmost window .NET/Windows issue (the 'Always on Top' option now works even when switching to a different window while KeePass is starting up).
Added workaround for Mono dialog event ordering bug.
Added workaround for Mono clipboard bugs on Mac OS X.
KPScript: added 'MoveEntry', 'GetEntryString' and 'GenPw' commands.
KPScript: added '-refx-UUID' and '-refx-Tags' entry identification parameters.
Improvements / Changes:
When only deleting history entries (without changing any data field of an entry), no backup entry is created anymore.
Unified text encoding handling for internal data viewer and editor, generic CSV importer and text encoding selection dialog.
Improved font sizing in HTML exports/printouts.
Improved encoding of group names in HTML exports/printouts.
If an entry doesn't expire, 'Never expires' is now shown in the 'Expiry Time' column in HTML exports/printouts.
The expiry edit control now accepts incomplete edits and the 'Expires' checkbox is checked immediately.
The time component of the default expiry suggestion is now 00:00:00.
The last selected/focused item in the attachments list of the entry editing dialog is now selected/focused after editing an attachment.
Improved field to standard field mapping function.
Enhanced RoboForm importer to concatenate values of fields with conflicting names.
Updated Spamex.com importer.
Removed KeePass 1.x CSV importer; users should use the new generic CSV importer (which can import more data than the old specialized 1.x CSV importer).
When trying to open another database while a dialog is displayed, KeePass now just brings itself to the foreground without attempting to open the second database.
More list views use the Vista Explorer style.
Modifier keys without another key aren't registered as global hot key anymore.
Improved default suggestions for custom sequences in the auto-type sequence editing dialog.
Improved default focus in the auto-type sequence editing dialog.
Added {C:Comment} placeholder in the auto-type sequence editing dialog.
On Unix-like systems, the {GOOGLECHROME} placeholder now first searches for Google Chrome and then (if not found) for Chromium.
Versions displayed in the update checking dialog now consist of at least two components.
Added '@' and '`' to the printable 7-bit ASCII character set.
Merged simple and extended special character spaces to one special character space.
Reduced control character space from 60 to 32.
The first sample entry's URL now points to the KeePass website.
Improved key transformation delay calculation.
Improved key file loading performance.
The main menu now isn't a tab stop anymore.
Some configuration nodes are now allocated only on demand.
Improved UI update when moving/copying entries to the currently active group or a subgroup of it using drag&drop.
Improved behavior when closing an inactive database having unsaved changes.
Changed versioning scheme in file version information blocks from digit- to component-based.
Development snapshots don't ask anymore whether to enable the automatic update check (only stable releases do).
Improved PLGX cache directory naming.
The PLGX cache directory by default is now located in the local application data folder instead of the roaming one.
Improved support for PLGX plugins that are using LINQ.
Various UI improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
Fixed sorting of items in the most recently used files list.
Fixed tab order in the 'Advanced' tab of the entry editing dialog.

New in KeePass Password Safe 1.22 (Apr 20, 2012)

New Features:
Auto-Type window definitions in custom window-sequence pairs are now Spr-compiled (i.e. placeholders, environment variables, field references, etc. can be used).
Auto-Type: entry titles are now Spr-compiled before being compared with the target window title.
Added support for 's' HTML tag in the notes field (in the entry view of the main window the marked text is striked out).
Supported HTML tags (b, i, u, s) are now removed from notes before showing them in the main entry list.
Regular expression replacements can now be applied to the notes before showing them in the main entry list (the KeeNotesRegex# items in the configuration file specify the regular expressions and KeeNotesFormat# the replacements).
Added option to select a different font for notes ('Tools' -> 'Options' -> tab 'Interface' -> button 'Select Notes Font').
Ensuring same keyboard layouts during auto-type is now optional (option enabled by default).
Added regular expression support in x64 builds.
Master key transformations are now computed in two threads in x64 builds, too; on dual/multi core processors this results in almost twice the performance as before (by doubling the amount of rounds you'll get the same waiting time as in 1.21, but the protection against dictionary and guessing attacks is doubled).
Improvements:
Improved key transformation delay calculation.
The program options are now also accessible while the database is locked.
Column headers in a search results list are now unclickable (search results cannot be sorted anyway).
Improved string translation in task dialogs.
Improved dialog display state handling.
Added '@' and '`' to the printable 7-bit ASCII character set.
Merged simple and extended special character spaces to one special character space.
Reduced control character space from 60 to 32.
Upgraded to Boost libraries version 1.49.0.
Various code optimizations.
Minor other improvements.
Bugfixes:
The 'Add Entry' tray context menu command is now disabled when a dialog is displayed.
The toolbar state is now updated after clicking a group link in the entry details view.

New in KeePass Password Safe 2.18 (Jan 10, 2012)

New Features:
The update check now also checks for plugin updates (if plugin developers provide version information files).
When starting KeePass 2.18 for the first time, it asks whether to enable the automatic update check or not (if not enabled already).
When closing the entry editing dialog by closing the window (using [X], Esc, ...) and there are unsaved changes, KeePass now asks whether to save or discard the changes; only when explicitly clicking the 'Cancel' button, KeePass doesn't prompt.
When not hiding passwords using asterisks, they don't need to be repeated anymore.
Password repetition boxes now provide instant visual feedback whether the password has been repeated correctly (if incorrect, the background color is changed to light red).
When clicking an '***' button to change the visibility of the entered password, KeePass now automatically transfers the input focus into the password box.
Visibility of columns in the auto-type entry selection dialog can now be customized using the new 'Options' button.
Added auto-type option 'An entry matches if the host component of its URL is contained in the target window title'.
Added shortcut keys: Ctrl+Shift+O for 'Open URL', Ctrl+Shift+U for copying URLs to the clipboard, Ctrl+I for 'Add Entry', Ctrl+R for synchronizing with a file, Ctrl+Shift+R for synchronizing with a URL.
Ensuring same keyboard layouts during auto-type is now optional (option enabled by default).
Plain text KDB4 XML exports now store the memory protection flag of strings in an attribute 'ProtectInMemory'.
Added option to use database lock files (intended for storage providers that don't lock files while writing to them, like e.g. some FTP servers); the option is turned off by default (and especially for local files and files on a network share it's recommended to leave it turned off).
Added UIFlags bit for disabling the controls to specify after how many days the master key should/must be changed.
Added support for in-memory protecting strings that are longer than 65536 characters.
Added workaround for '@' .NET SendKeys issue.
Improvements / Changes:
NET 4.0 is now preferred, if installed.
PLGX plugins are now preferably compiled using the .NET 4.0 compiler, if KeePass is currently running under the 4.0 CLR.
Automatic update checks are now performed at maximum once per day (you can still check manually as often as you wish).
Auto-Type: entry titles and URLs are now Spr-compiled before being compared with the target window title.
Decoupled the options 'Show expired entries' and 'Show entries that will expire soon'.
Specifying the data hiding setting (using asterisks) in the column configuration dialog is now done using a checkbox.
The entry view now preferably uses the hiding settings (asterisks) of the entry list columns.
Improved entry expiry date calculation.
Enhanced Password Agent importer to support version 2.6.2.
Enhanced SplashID importer to import last modification dates.
Improved locating of system executables.
Password generator profiles are now sorted by name.
Separated built-in and user-defined password generator profiles (built-in profiles aren't stored in the configuration file anymore).
Improved naming of shortcut keys, and shortcut keys are now displayed in tooltips.
Internal window manager can now close windows opened in other threads.
Improved entry touching when closing the entry editing dialog by closing the window (using [X], Esc, ...).
Improved behavior when entering an invalid URL in the 'Open URL' dialog.
Improved workaround for Mono tab bar height bug.
ShInstUtil: improved Native Image Generator version detection.
Unified in-memory protection.
In-memory protection performance improvements.
Developers: in-memory protected objects are now immutable and thread-safe.
Various UI text improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
The cached/temporary custom icons image list is now updated correctly after running the 'Delete unused custom icons' command.

New in KeePass Password Safe 2.15 (Apr 11, 2011)

New Features:
Added option to show the master key dialog on a secure desktop (similar to Windows' UAC; almost no keylogger works on a secure desktop; the option is disabled by default for compatibility reasons).
Added option to limit the number of history items per entry (the default is 10).
Added option to limit the history size per entry (the default is 6 MB).
Added {PICKCHARS} placeholder, which shows a dialog to pick certain characters from an entry string; various options like specifying the number of characters to pick and conversion to down arrow keypresses are supported; see the one page long documentation on the auto-type help page; the less powerful {PICKPASSWORDCHARS} is now obsolete (but still supported for backward compatibility).
The character picking dialog now remembers and restores its last position and size.
KDBX file format: attachments are now stored in a pool within the file and entries reference these items; this reduces the file size a lot when there are history items of entries having attachments.
KDBX file format: attachments are now compressed (if the compression option is enabled) before being Base64-encoded, compressed and encrypted; this results in a smaller file, because the compression algorithm works better on the raw data than on its encoded form.
PLGX plugins can now be loaded on Unix-like systems, too.
Added option to specify a database color; by specifying a color, the main window icon and the tray icon are recolored and the database tab (shown when multiple databases are opened in one window) gets a colored rectangle icon.
New rich text builder, which supports using multiple languages in one text (e.g. different Chinese variants).
Added 'Sort By' popup menu in the 'View' menu.
Added context menu commands to sort subgroups of a group.
Added option to clear master key command line parameters after using them once (enabled by default).
Added application policies to ask for the current master key before changing the master key and/or exporting.
Added option to also unhide source characters when unhiding the selected characters in the character picking dialog.
Added ability to export custom icons.
Added 'String' trigger condition.
Added support for importing DataViz Passwords Plus 1.007 CSV files.
Enhanced 1Password Pro importer to also support 1PW CSV files.
Enhanced FlexWallet importer to also support version 2006 XML files (in addition to version 1.7 XML files).
Enabled auto-suggest for editable drop-down combo boxes (and auto-append where it makes sense).
Pressing Ctrl+Enter in the rich text boxes of the entry dialog and the custom string dialog now closes with OK (if possible).
Added option to cancel auto-type when the target window changes.
Auto-type on Unix-like systems: added support for key modifiers.
Added '--saveplgxcr' command line option to save compiler results in case the compilation of a PLGX plugin fails.
Added workaround for % .NET SendKeys issue.
Added workaround for Mono bug 620618 in the main entry list.
Improvements / Changes:
Improved key file suggestion performance.
When the master key change application policy is disabled and the master key expires (forced change), KeePass now shows the two information dialogs only once per opening.
After removing the password column, hiding behind asterisks is suggested by default now when showing the column again.
TAN entries now expire on auto-type, if the option for expiring TANs on use is enabled.
Auto-type now sends acute and grave accents as separate characters.
Auto-type now explicitly skips the taskbar window when searching for the target window.
Multiple lines are now separated in the entry list and in the custom string list of the entry dialog by a space.
RoboForm importer: improved multiline value support.
Improved UNC path support.
Improved entry list refresh performance.
Improved UI state update performance.
Entry list context menus are now configured instantly.
Inapplicable group commands are now disabled.
Improved control focusing.
Improved clipboard handling.
Copying and pasting whole entries is now also supported on Windows 98 and ME.
Improved releasing of dialog resources.
Improved keys/placeholders box in auto-type editing dialog.
Improved user-friendliness in UAC dialogs.
Tooltips of the tab close button and the password repeat box can be translated now.
Improved help (moved placeholders to separate page, ...).
KeePassLibSD now uses the SHA-256 implementation of Bouncy Castle.
Upgraded installer.
Various code optimizations.
Minor other improvements.
Bugfixes:
Window titles are now trimmed, such that auto-type also works with windows whose titles have leading or trailing whitespace characters.

New in KeePass Password Safe 2.14 (Jan 3, 2011)

New Features:
Added option to lock after some time of global user inactivity.
Added option to lock when the remote control status changes.
Auto-type on Unix-like systems: added special key code support (translation to X KeySyms) and support for {DELAY X} and {DELAY=X}.
Added window activation support on Unix-like systems.
Auto-type on Windows: added {VKEY X} special key code (sends virtual key X).
Added support for importing DataVault 4.7 CSV files.
Added support for importing Revelation 0.4 XML files.
Added 'Auto-Type - Without Context' application policy to disable the 'Perform Auto-Type' command (Ctrl+V), but still leave global auto-type available.
Added option to collapse newly-created recycle bin tree nodes.
Added 'Size' column in the history list of the entry dialog.
Added trigger action to remove custom toolbar buttons.
Added kdbx:// URL scheme overrides (for Windows and Unix-like systems; disabled by default).
Added KeePass.exe.config file to redirect old assemblies to the latest one, and explicitly declare .NET 4.0 runtime support.
Added documentation for the '-pw-enc' command line parameter, the {PASSWORD_ENC} placeholder and URL overrides.
Added workaround for ^/& .NET SendKeys issue.
Improvements / Changes:
New locking timer (using a timeout instead of a countdown).
Improved locking when the Windows session is being ended or switched.
Improved multi-database locking.
Separated the options for locking when the computer is locked and the computer is about to be suspended.
FIREFOX} placeholder: added support for registry-redirected 32-bit Firefox installations on 64-bit Windows systems.
File transactions: the NTFS/EFS encryption flag is now also preserved when the containing directory isn't encrypted.
The IPC channel name on Unix-like systems is now dependent on the current user and machine name.
KeePass now selects the parent group after deleting a group.
Entries are now marked as modified when mass-changing their colors or icons.
Key states are now queried on interrupt level.
A {DELAY=X} global delay now affects all characters of a keystroke sequence when TCATO is enabled, too.
Improved dialog closing when exiting automatically.
Plugin-provided entry list columns can now be right-aligned at KeePass startup already.
Removed KDBX DOM code.
Installer: the KeePass start menu shortcut is now created directly in the programs folder; the other shortcuts have been removed (use the Control Panel for uninstalling and the 'Help' menu in KeePass to access the help).
Various code optimizations.
Minor other improvements.
Bugfixes:
Quotes in parameters for the 'Execute command line / URL' trigger action are now escaped correctly.
Auto-type on Unix-like systems: window filters without wildcards now match correctly.

New in KeePass Password Safe 2.13 (Sep 6, 2010)

New Features:
Password quality estimation algorithm: added check for about 1500 most common passwords (these are rated down to 1/8th of their statistical rating; Bloom filter-based implementation).
Global auto-type (using a system-wide hot key) is now possible on Unix-like systems (see the documentation for setup instructions, section 'Installation / Portability' in the 'KeePass 2.x' group; thanks to Jordan Sissel for enhancing 'xdotool').
Added IPC functionality for Unix-like systems.
Added possibility to write export plugins that don't require an output file.
Tag lists are sorted alphabetically now.
Password text boxes now use a monospace font by default.
Added option to select a different font for password text boxes (menu 'Tools' -> 'Options' -> tab 'Interface').
Added support for importing Password Prompter 1.2 DAT files.
Added ability to export to Windows/IE favorites.
Added ability to specify IO credentials in the 'Synchronize' trigger action.
Added ability to specify IO credentials and a master key in the 'Open database file' trigger action.
If IO credentials are stored, they are now obfuscated.
Custom colors in the Windows color selection dialog are now remembered.
Added high resolution version of the KeePass application icon.
Improved lock overlay icon (higher resolution).
PLGX loader: added support for unversioned KeePass assembly references.
Improvements / Changes:
Added workaround to avoid alpha transparency corruption when adding images to an image list.
Improved image list generation performance.
Added workaround to display the lock overlay icon when having enabled the option to start minimized and locked.
Improved group and entries deletion confirmation dialogs (with preview; only Windows Vista and higher).
The password character picking dialog now offers the raw password characters instead of an auto-type encoded sequence.
PINs importer: improved importing of expiry dates.
Some button icons are now resized to 16x15 when the 16x16 icon is too large.
Renamed character repetition option in the password generator for improved clarity.
Improved workspace locking.
Locking timer is now thread-safe.
Added code to prevent loading libraries from the current working directory (to avoid binary planting attacks).
Removed Tomboy references (on Unix-like systems).
Various code optimizations.
Minor other improvements.

New in KeePass Password Safe 2.12 (Jul 9, 2010)

New in KeePass Password Safe 2.11 (Jul 3, 2010)

New Features:
Added entry tags (you can assign tags to entries in the entry editing window or by using the 'Selected Entries' context menu; to list all entries having a specific tag, choose the tag either in the 'Edit' main menu or in the 'Show Entries' toolbar drop-down button).
Completely new entry list column engine; the columns are dynamic now, custom entry strings can be shown in the list, to configure go 'View' -> 'Configure Columns...'; the column engine is also extensible now, i.e. plugins can provide new columns.
Added 'Size' entry list column (shows the approximate memory required for the entry).
Added 'History (Count)' entry list column (double-clicking a cell of this column opens the entry editing window and automatically switches to the 'History' tab).
Added 'Expiry Time (Date Only)' entry list column.
Added options to specify the number of days until the master key of a database is recommended to and/or must be changed.
Added support for exporting selected entries to KDB.
Added 'FileSaveAsDirectory' configuration key to specify the default directory for 'Save As' database file dialogs.
Double-clicking a history entry in the entry editing dialog now opens/views the entry.
It's now possible to tab from menus and toolbars to dialog controls.
Added option to turn off hiding in-memory protected custom strings using asterisks in the entry view.
Added workaround for FTP servers sending a 550 error after opening and closing a file without downloading data.
Added 'Unhide Passwords' application policy flag.
Password Depot importer: some icons are converted now.
{GOOGLECHROME} placeholder: updated detection code to also support the latest versions of Chrome.
The main window now uses the shell font by default.
On Windows Vista and higher, Explorer-themed tree and list views are now used in the main window.
On Windows 7 and higher, the main window peek preview is now disabled when the KeePass workspace is locked.
Installer: added option to optimize the on-demand start-up performance of KeePass.
TrlUtil: added 3 dots string validation.
Improvements / Changes:
Improved entry list item selection performance (defer UI state update on selection change burst).
Improved special key code conversion in KDB importer.
Icon picker dialog now has a 'Close' button.
When sorting is enabled, the entry list view now doesn't get destroyed anymore when trying to move entries.
Main window is now brought to the foreground when untraying.
Removed grid lines option.
Reduced size of MSI file.
Various performance improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
No file path is requested anymore when double-clicking an import source that doesn't require a file.

New in KeePass Password Safe 2.10 (Mar 5, 2010)

New Features:
Translation system: added support for right-to-left scripts.
Added {HMACOTP} placeholder to generate HMAC-based one-time passwords as specified in RFC 4226 (the shared secret is the UTF-8 representation of the value of the 'HmacOtp-Secret' custom entry string field, and the counter is stored in decimal form in the 'HmacOtp-Counter' field).
On Windows 7, KeePass now shows a 'locked' overlay icon on the taskbar button when the database is locked.
On Windows 7, the database loading/saving progress is now shown on the taskbar button.
Added option to disable automatic searching for key files.
Added KDBX database repair functionality (in File -> Import).
Added support for expired root groups.
Added global delay support for shifted special keys.
Added 'Change Master Key' application policy flag.
Added 'Edit Triggers' application policy flag.
Added trigger action to activate a database (select tab).
Added configuration options to allow enforcing states (enabled, disabled, checked, unchecked) of key source controls in the master key creation and prompt dialogs (see 'Composite Master Key' documentation page).
Added option to disable the 'Save' command (instead of graying it out) if the database hasn't been modified.
Added support for importing KeePassX 0.4.1 XML files.
Added support for importing Handy Safe 5.12 TXT files.
Added support for importing Handy Safe Pro 1.2 XML files.
Added support for importing ZDNet's Password Pro 3.1.4 TXT files.
Added dialog for selecting the encoding of text files to be attached to an entry.
Added option to search for passwords in quick finds (disabled by default).
Added Ctrl+S shortcut in the internal data editor.
Internal data editor window can now be maximized.
Document tabs can now be closed by middle-clicking on them.
Most strings in the trigger system are now Spr-compiled (i.e. placeholders, environment variables, etc. can be used).
Added '--lock-all' and '--unlock-all' command line options to lock/unlock the workspaces of all other KeePass instances.
Added 'pw-enc' command line option and {PASSWORD_ENC} placeholder.
Added preliminary auto-type support for Linux (right-click on an entry and select 'Perform Auto-Type'; the 'xdotool' package is required).
Added option to enforce using the system font when running under KDE and Gnome (option enabled by default).
HTML exports are now XHTML 1.0 compliant.
Printing: added option to sort entries.
Printing: group names are now shown as headings.
KPScript: added '-CreateBackup' option for the EditEntry command (to create backups of entries before modifying them).
The PLGX plugin cache root path can now be specified in the configuration file (Application/PluginCachePath).
Plugin developers: added ability to write entropy providers that can update the internal pool of the cryptographically strong random number generator.
Plugin developers: added some public PwEntryForm properties, events and methods.
Plugin developers: added entry template events.
Plugin developers: added group and entry touching events.
Plugin developers: added main window focus changing event.
Plugin developers: added support for writing format providers for the internal attachments viewer.
Improvements / Changes:
Expired icons of groups are non-permanent now.
Improved search performance and in-memory protection compatibility.
The SendKeys class now always uses the SendInput method (not JournalHook anymore).
Improved auto-type delay handling.
Two-channel auto-type obfuscation: added support for default delays.
The default auto-type delay is now 10 ms.
Improved top-most window auto-type support.
Improved high DPI support (text rendering, banners, ...).
Temporary file transaction files are now deleted before writing to them.
Broadcasted file IPC notification messages do not wait infinitely for hanging applications anymore.
On Windows XP and higher, KeePass now uses alpha-transparent icons in the main entry list.
In the entry editing dialog, when moving a custom string to a standard field, the string is now appended to the field (instead of overwriting the previous contents of the field).
Improved UTF-8 encoding (don't emit byte order marks).
Improved field to standard field mapping function.
HTML exports do not contain byte-order marks anymore.
For improved clarity, some controls are now renamed/changed dynamically when using the password generator without having a database open.
Improved auto-type definition conversion for KDB exports.
Standard field placeholders are now correctly removed when auto-typing, if the standard field doesn't exist.
Improved icon picker cancel blocking when removing an icon.
The default workspace locking time is now 300 seconds (but the option is still disabled by default).
Modern task dialogs are now displayed on 64-bit Windows systems, too.
Improved file corruption error messages.
Improved entry attachments renaming method.
Double-clicking an attachment in the entry editing dialog now opens it in the internal viewer (the internal editor can only be invoked in the main window).
When attachments are edited using the internal editor, the entry's last modification time is now updated.
Improved plugin loading (detect PLGX cache files).
If the application policy disallows clipboard operations, KeePass doesn't unnecessarily decrypt sensitive data anymore.
Added tooltip for the 'View' toolbar drop-down button.
Improved menu accelerator and shortcut keys.
Upgraded installer.
Installer: various minor improvements.
Various performance improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
No exception is thrown anymore when lowering the clipboard auto-clear time in the options below the value of a currently running clearing countdown.
The 'Show expired entries' functionality now also works when there's exactly one matching entry.

New in KeePass Password Safe 2.09 (Sep 14, 2009)

New Features:
Added option to use file transactions when writing databases (enabled by default; writing to a temporary file and replacing the actual file afterwards avoids data loss when KeePass is prevented from saving the database completely).
Added PLGX plugin file format.
Enhanced database synchronization by structure merging (relocation/moving and reordering groups and entries).
Added synchronization 'Recent Files' list (in 'File' menu).
Synchronization / import: added merging of entry histories.
Synchronization / import: backups of current entries are created automatically, if their data would be lost in the merging process.
Database name, description, default user name, entry templates group and the recycle bin settings are now synchronized.
Added {NEWPASSWORD} placeholder, which generates a new password for the current entry, based on the "Automatically generated passwords for new entries" generator profile; this placeholder is replaced once in an auto-type process, i.e. for a typical 'Old Password'-'New Password'-'Repeat New Password' dialog you can use {PASSWORD}{TAB}{NEWPASSWORD}{TAB}{NEWPASSWORD}{ENTER}.
Added scheme-specific URL overrides (this way you can for example tell KeePass to open all http- and https-URLs with Firefox or Opera instead of the system default browser; PuTTY is set as handler for ssh-URLs by default; see Options -> Integration).
Added option to drop to the background when copying data to the clipboard.
Added option to use alternating item background colors in the main entry list (option enabled by default).
The Ctrl+E shortcut key now jumps to the quick search box.
Added auto-type sequence conversion routine to convert key codes between 1.x and 2.x format.
Added workaround for internal queue issue in SendKeys.Flush.
Added more simple clipboard backup routine to workaround clipboard issues when special formats are present.
Added native clipboard clearing method to avoid empty data objects being left in the clipboard.
Added import support for custom icons.
Added {GOOGLECHROME} placeholder, which is replaced by the executable path of Google Chrome, if installed.
Added {URL:RMVSCM} placeholder, which inserts the URL of the current entry without the scheme specifier.
Added ability to search for UUIDs and group names.
Toolbar searches now also search in UUIDs and group names.
Added {DELAY=X} placeholder to specify a default delay of X milliseconds between standard keypresses in this sequence.
Added option to disable verifying written database files.
Attachment names in the entry view are now clickable (to open the attachments in the internal editor or viewer).
Added Unicode support in entry details view.
Added option to render menus and toolbars with gradient backgrounds (enabled by default).
MRU lists now have numeric access keys.
Added '--entry-url-open' command line option (specify the UUID of the entry as '--uuid:' command line parameter).
Added 'Application initialized' trigger event.
Added 'User interface state updated' trigger event.
Added host reachability trigger condition.
Added 'Active database has unsaved changes' trigger condition.
Added 'Save active database' trigger action.
Added database file synchronization trigger action.
Added database file export trigger action.
KeePass now restores the last view when opening databases.
Added system-wide hot key to execute auto-type for the currently selected entry (configurable in the options).
Added option to disable auto-type entry matching based on title (by default an entry matches if its title is contained in the target window title).
Added option to disable marking TAN entries as expired when using them.
Added option to focus the quick search box when restoring from tray (disabled by default).
Added entry context menu commands to sort by UUID and file attachments.
Custom string fields are now appended to the notes when exporting to KeePass 1.x KDB files.
Enforced configuration files are now item-based (items not defined in the enforced configuration file are now loaded from the global/local configuration files instead of being set to defaults).
File transactions are used when writing configuration files.
KPScript: added 'ChangeMasterKey' command.
ShInstUtil: added check for the presence of .NET.
TrlUtil: added command under 'Import' that loads 2.x LNGX files without checking base hashes.
TrlUtil: added control docking support.
Plugin developers: added static window addition and removal events to the GlobalWindowManager class.
Plugin developers: added ability to write custom dialog banner generators (CustomGenerator of BannerFactory).
Plugin developers: the IOConnectionInfo of the database is now accessible through the key provider query context.
Plugin developers: added static auto-type filter events (plugins can provide own placeholders, do sequence customizations like inserting delays, and provide alternative key sending methods).
Plugin developers: added UIStateUpdated main window event.
Improvements / Changes:
Simple text boxes now convert rich text immediately.
Improved entry change detection (avoid unnecessary backups when closing the entry dialog with [OK] but without any changes; detect by content instead of change events).
Header in entry selection dialog is now non-clickable.
Entry list header now uses native sorting icons.
Key providers are now remembered separately from key files.
The main window is now the owner of the import method dialog.
The global URL override is now also applied for main entry URLs in the entry details view.
Improved grouping behavior when disabling entry sorting.
Improved field mapping in RoboForm import.
Root groups now support custom icons.
In the entry dialog, string values are now copied to the clipboard instead of asterisks.
Improved import/synchronization status dialog.
Improved import/synchronization error message dialogs.
Entry history items are now identified by the last modification time instead of last access time.
The trigger system can now be accessed directly through 'Tools' -> 'Triggers...', not the options anymore.
Changed order of commands in the 'Tools' menu.
Improved auto-type target window validity checking.
Ctrl-V does not make the main window lose the focus anymore if auto-type is disabled for the currently selected entry.
When restoring from tray, the main window is now brought to the foreground.
Double-clicking an icon in the icon picker dialog now chooses the icon and closes the dialog.
When adding a custom icon to the database, the new icon is selected automatically.
When opening a database by running KeePass.exe with the database file path as parameter (and single instance option enabled), the existing KeePass instance will not prompt for keys of previously locked databases anymore when restoring (they are just left in locked state).
Unlocking routine doesn't display multiple dialogs anymore.
Improved shortcut key handling in main window.
Master key change success message now has a distinguishable window title.
Improved start position and focus of the URL dialog.
Improved layout in options dialog.
Improved UUID and UI updates when removing custom icons.
Improved window deconstruction when closing with [X].
Improved user activity detection.
Improved state updating of sorting context menu commands.
Improved sorting by UUIDs.
Improved naming of options to clarify their meaning.
Converted ShInstUtil to a native application (in order to be able to show a warning in case .NET is not installed).
Plugins: improved IOConnection to allow using registered custom WebRequest descendants (WebRequest.RegisterPrefix).
TrlUtil: improved XML comments generation.
Various code optimizations.
Minor other improvements.
Bugfixes:
Password profile derivation function doesn't incorrectly always add standard character ranges anymore.
In-memory protection for the title field of new entries can be enabled now.

New in KeePass Password Safe 2.08 (Jul 5, 2009)

New Features:
Key transformation library: KeePass can now use Windows' CNG/BCrypt API for key transformations (about 50% faster than the KeePass built-in key transformation code; by increasing the amount of rounds by 50%, you'll get the same waiting time as in 2.07, but the protection against dictionary and guessing attacks is raised by a factor of 1.5; only Windows Vista and higher).
Added support for sending keystrokes (auto-type) to windows that are using different keyboard layouts.
Added option to remember key file paths (enabled by default).
Added internal editor for text files (text only and RTF formatted text; editor can edit entry attachments).
Internal data viewer: added support for showing rich text (text with formatting).
Added inheritable group settings for disabling auto-type and searching for all entries in this group (see tab 'Behavior'); for new recycle bins, both properties are set to disabled.
Added new placeholders: {DB_PATH}, {DB_DIR}, {DB_NAME}, {DB_BASENAME}, {DB_EXT}, {ENV_DIRSEP}, {DT_SIMPLE}, {DT_YEAR}, {DT_MONTH}, {DT_DAY}, {DT_HOUR}, {DT_MINUTE}, {DT_SECOND}, {DT_UTC_SIMPLE}, {DT_UTC_YEAR}, {DT_UTC_MONTH}, {DT_UTC_DAY}, {DT_UTC_HOUR}, {DT_UTC_MINUTE}, {DT_UTC_SECOND}.
The password character picking dialog now supports pre-defining the number of characters to pick; append :k in the placeholder to specify a length of k (for example, {PICKPASSWORDCHARS3:5} would be a placeholder with ID 3 and would pick 5 characters from the password); advantage: when having picked k characters, the dialog closes automatically, i.e. saves you to click [OK].
IDs in {PICKPASSWORDCHARSn} do not need to be consecutive anymore.
The password character picking dialog now first dereferences passwords (i.e. placeholders can be used here, too).
Added '-minimize' command line option.
Added '-iousername', '-iopassword' and '-iocredfromrecent' command line options.
Added '--auto-type' command line option.
Added support for importing FlexWallet 1.7 XML files.
Added option to disable protecting the clipboard using the CF_CLIPBOARD_VIEWER_IGNORE clipboard format.
Added support for WebDAV URLs (thanks to Ryan Press).
Added shortcut keys in master key prompt dialog.
Added entry templates functionality (first specify an entry templates group in the database settings dialog, then use the 'Add Entry' toolbar drop-down button).
Added AceCustomConfig class (accessible through host interface), that allows plugins to store their configuration data in the KeePass configuration file.
Added ability for plugins to store custom data in KDBX database files (PwDatabase.CustomData).
Added interface for custom password generation algorithm plugins.
URLs in the entry preview window are now always clickable (especially including cmd:// URLs).
Added option to copy URLs to the clipboard instead of opening them (Options -> Interface, turned off by default).
Added option to automatically resize entry list columns when resizing the main window (turned off by default).
Added 'Sync' command in KPScript scripting tool.
Added FIPS compliance problems self-test (see FAQ for details about FIPS compliance).
Added Rijndael/AES block size validation and configuration.
Added NotifyIcon workaround for Mono under Mac OS X.
Added confirmation box for empty master passwords.
Added radio buttons in auto-type sequence editing dialog to choose between the default entry sequence and a custom one.
Added hint that group notes are shown in group tooltips.
Added test for KeePass 1.x plugins and an appropriate error message.
Added interface for writing master password requirements validation plugins.
Key provider plugin API: enhanced key query method by a context information object.
Key provider plugin API: added 'DirectKey' property to key provider base class that allows returning keys that are directly written to the user key data stream.
Key provider plugin API: added support for exclusive plugins.
The '-keyfile' command line option now supports selecting key providers (plugins).
Auto-Type: added option to send an Alt keypress when only the Alt modifier is active (option enabled by default).
Added warning when trying to use only Alt or Alt-Shift as global hot key modifier.
TrlUtil: added search functionality and toolbar.
TrlUtil: version is now shown in the window title.
Improvements / Changes:
Improved database file versioning and changed KDBX file signature in order to prevent older versions from corrupting newer files.
ShInstUtil now first tries to uninstall a previous native image before creating a new one.
Improved file corruption error messages (instead of index out of array bounds exception text, ...).
The 'Open in Browser' command now opens all selected entries instead of just the focused one.
Data-editing commands in the 'Tools' menu in the entry dialog are now disabled when being in history viewing mode.
Right arrow key now works correctly in group tree view.
Entry list is now updated when selecting a group by pressing a A-Z, 0-9 or numpad key.
Improved entry list performance and sorting behavior.
Improved splitter distance remembering.
Improved self-tests (KeePass now correctly terminates when a self-test fails).
The attachment column in the main window now shows the names of the attached files instead of the attachments count.
Double-clicking an attachment field in the main window now edits (if possible) or shows the first attachment of the entry.
Group modification times are now updated after editing groups.
Improved scrolling of the entry list in item grouping mode.
Changed history view to show last modification times, titles and user names of history entries.
KeePass now also automatically prompts to unlock when restoring to a maximized window.
Improved file system root directory support.
Improved generic CSV importer preview performance.
When saving a file, its path is not remembered anymore, if the option for opening the recently used file at startup is disabled.
Improved auto-type input blocking.
Instead of a blank text, the entry dialog now shows "(Default)" if the default auto-type sequence is used in a window-sequence association.
Most broadcasted Windows messages do not wait for hanging applications anymore.
Improved main window hiding at startup when the options to minimize after opening a database and to tray are enabled.
Default tray action is now dependent on mouse button.
New entries can now inherit custom icons from their parent groups.
Improved maximized state handling when exiting while the main window is minimized.
Improved state updating in key creation form.
Improved MRU list updating performance.
Improved plugin incompatibility error message.
Deprecated {DOCDIR}, use {DB_DIR} instead ({DOCDIR} is still supported for backward compatibility though).
Last modification times of TAN entries are now updated.
F12 cannot be registered as global hot key anymore, because it is reserved for kernel-mode / JIT debuggers.
Improved auto-type statement conversion routine in KeePass 1.x KDB file importer.
Improved column width calculation in file/data format dialog.
Improved synchronization status bar messages.
TrlUtil: base hash for forms is now computed using the form's client rectangle instead of its window size.
Various code optimizations.
Minor other improvements.
Bugfixes:
Recycle bin is now cleared correctly when clearing the database.

New in KeePass Password Safe 1.16 (Jun 7, 2009)

New Features:
Added option to use Windows' CNG/BCrypt API for key transformations (about 50% faster than the KeePass built-in key transformation code; by increasing the amount of rounds by 50%, you'll get the same waiting time as in 1.15, but the protection against dictionary and guessing attacks is raised by a factor of 1.5; option enabled by default; only Windows Vista and higher).
Completely new update checking system that now also supports checking for new plugin versions.
Added warning when trying to open a KDBX file created by KeePass 2.x (with hint about how to migrate from 2.x to 1.x).
Added 'KeeAutoNewDbBasePath' and 'KeeAutoNewDbBaseName' configuration options (to specify the default location where the database file will be stored in mini mode).
Added advanced option to immediately delete TAN entries after using them.
Added '-minimize' command line option.
Added '-registerfileext' and '-unregisterfileext' command line options to register/unregister the KDB file association.
File association methods are now UAC aware.
Added check for reserved group names (like 'Backup').
On Windows Vista and higher, core database manager error / warning messages are displayed using modern task dialogs.
The number of days below which entries are treated as soon to expire can now be configured (see help -> customize).
Plugins: added new COM interface (IKpAPI2) for the main API that allows querying whether the database is the one initially specified on the command line.
Key provider plugin API: new key query method that supports context information.
Improvements:
Image list handling improvements.
When auto-locking after the specified number of seconds of inactivity, KeePass minimizes to taskbar or to tray, depending on the 'Minimize to tray instead of taskbar' option.
Plugin versions are now displayed in a separate column in the plugins dialog.
When trying to open a second master key dialog or auto-type entry selection dialog for a window, KeePass brings itself to the foreground instead of showing a second dialog.
Calculation of soon to expire entries is now more precise.
Various improvements to status bar messages.
Improved workspace locking toolbar button tooltips.
Installer: various minor improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
Newlines of the notes field are now encoded correctly in exports when Unix mode is enabled.
New databases do not inherit file names of previous locked databases anymore

New in KeePass Password Safe 2.07 Beta (Mar 14, 2009)

New Features:
Added powerful trigger system (when events occur, check some conditions and execute a list of actions; see options dialog in 'Advanced'; more events / conditions / actions can be added later based on user requests, and can also be provided by plugins).
Native master key transformations (rounds) are now computed by the native KeePassLibC support library (which contains the new, highly optimized transformation code used by KeePass 1.15, in two threads); on dual/multi core processors this results in almost triple the performance as before (by tripling the amount of rounds you'll get the same waiting time as in 2.06, but the protection against dictionary and guessing attacks is tripled).
Added recycle bin (enabled by default, it can be disabled in the database settings dialog).
Added Salsa20 stream cipher for CryptoRandomStream (this algorithm is not only more secure than ArcFour, but also achieves a higher performance; CryptoRandomStream defaults to Salsa20 now; port developers: KeePass uses Salsa20 for the inner random stream in KDBX files).
KeePass is now storing file paths (last used file, MRU list) in relative form in the configuration file.
Added support for importing 1Password Pro CSV files.
Added support for importing KeePass 1.x XML files.
Windows XP and higher: added support for double-buffering in all list views (including entry lists).
Windows Vista and higher: added support for alpha-blended marquee selection in all list views (including entry lists).
Added 'EditEntry', 'DeleteEntry', 'AddEntries' and 'DeleteAllEntries' commands in KPScript scripting tool.
Added support for importing special ICO files.
Added option to exit instead of locking the workspace after the specified time of inactivity.
Added option to minimize the main window after locking the KeePass workspace.
Added option to minimize the main window after opening a database.
Added support for exporting to KDBX files.
Added command to remove deleted objects information.
TrlUtil now checks for duplicate accelerator keys in dialogs.
Added controls in the entry editing dialog to specify a custom text foreground color for entries.
KeePass now retrieves the default auto-type sequence from parent groups when adding new entries.
The password character picking dialog can now be invoked multiple times when auto-typing (use {PICKPASSWORDCHARS}, {PICKPASSWORDCHARS2}, {PICKPASSWORDCHARS3}, etc.).
Added '-set-urloverride', '-clear-urloverride' and '-get-urloverride' command line options.
Added '-set-translation' command line option.
Added option to print custom string fields in details mode.
Various entry listings now support custom foreground and background colors for entry items.
Added 'click through' behavior for menus and toolbars.
File association methods are now UAC aware.
Improvements / Changes:
User interface is now blocked while saving to a file (in order to prevent accidental user actions that might interfere with the saving process).
Improved native modifier keys handling on 64-bit systems.
Improved application startup performance.
Added image list processing workaround for Windows 7.
OK button is now reenabled after manually activating the key file checkbox and selecting a file in the master key dialog.
The master key dialog now appears in the task bar.
When KeePass is minimized to tray and locked, pressing the global auto-type hot key doesn't restore the main window anymore.
The installer now by default installs KeePass 1.x and 2.x into separate directories in the program files folder.
The optional autorun registry keys of KeePass 1.x and 2.x do not collide anymore.
File type association identifiers of KeePass 1.x and 2.x do not collide anymore.
File MRU list now uses case-insensitive comparisons.
Improved preview updates in Print and Data Viewer dialogs.
Message service provider is thread safe now.
Threading safety improvements in KPScript scripting plugin.
Improved control state updates in password generator dialog.
Improved master password validation in 'New Database' dialog.
Times are now stored as UTC in KDBX files (ISO 8601 format).
Last access time fields are now updated when auto-typing, copying fields to the clipboard and drag&drop operations.
KPScript scripting tool now supports in-memory protection.
Database is not marked as modified anymore when closing the import dialog with Cancel.
Added asterisks in application policy editing dialog to make clearer that changing the policy requires a KeePass restart.
Double-clicking a format in the import/export dialog now automatically shows the file browsing dialog.
Improved permanent entry deletion confirmation prompt.
Improved font objects handling.
Expired groups are now rendered using a striked out font.
Improved auto-type statement conversion routine in KeePass 1.x KDB file importer.
Clipboard clearing countdown is not started anymore when copying data fails (e.g. policy disabled).
Improved synchronization with URLs.
The database maintenance dialog now only marks the database as modified when it actually has removed something.
KeePass now broadcasts a shell notification after changing the KDBX file association.
Improved warning message when trying to directly open KeePass 1.x KDB files.
Improved Linux / Mac OS X compatibility.
Improved MSI package (removed unnecessary dependency).
TrlUtil: improved NumericUpDown and RichTextBox handling.
Installer now checks for minimum operating system version.
Installer: file association is now a task, not a component.
Installer: various other improvements.
Various code optimizations.
Minor other improvements.
Bugfixes:
When cloning a group tree using drag&drop, KeePass now assigns correct parent group references to cloned groups and entries.
Fixed crash when clicking 'Cancel' in the settings dialog when creating a new database.

New in KeePass Password Safe 2.06 Beta / 1.14 (Nov 2, 2008)

New Features:
Translation system is now complete (translations to various languages will be published on the KeePass translations page when translators finish them).
When saving the database, KeePass now first checks whether the file on disk/server has been modified since it was loaded and if so, asks the user whether to synchronize with the changed file instead of overwriting it (i.e. multiple users can now use a shared database on a network drive).
Database files are now verified (read and hashed) after writing them to disk (in order to prevent data loss caused by damaged/broken devices and/or file systems).
Completely new auto-type/URL placeholder replacement and field reference engine.
On Windows Vista, some of the message boxes are now displayed as modern task dialogs.
KeePass is now also available as MSI package.
Accessibility: added advanced option to optimize the user interface for screen readers (only enable this option if you're really using a screen reader).
Added standard client icons: Tux, feather, apple, generic Wiki icon, '$', certificate and BlackBerry.
Secure edit controls in the master key and entry dialogs now accept text drops.
Added ability to store notes for each group (see 'Notes' tab in the group editing window), these notes are shown in the tooltip of the group in the group tree of the main window.
Group names in the entry details view are now clickable; click it to jump to the group of the entry (especially useful for jumping from search results to the real group of an entry).
Added 'GROUPPATH', 'DELAY' and 'PICKPASSWORDCHARS' special placeholders to auto-type sequence editing dialog.
Wildcards (*) may now also appear in the middle of auto-type target window filters.
For auto-type target window filters, regular expressions are now supported (enclose in //).
KeePass now shows an explicit file corruption warning message when saving to a file fails.
Added option to prepend a special auto-type initialization sequence for Internet Explorer and Maxthon windows to fix a focus issue (option enabled by default).
Added ability to specify a minimum length and minimum estimated quality that master passwords must have (see help file -> Features -> Composite Master Key; for admins).
Added field reference creation dialog (accessible through the 'Tools' menu in the entry editing dialog).
Field references are dereferenced when copying data to the clipboard.
Entry field references are now dereferenced in drag&drop operations.
KeePass now follows field references in indirect auto-type sequence paths.
Added internal field reference cache (highly improves performance of multiple-cyclic/recursive field references).
Added managed system power mode change handler.
Added "Lock Workspace" tray context menu command.
Moved all export commands into a new export dialog.
Added context menu command to export the selected group only.
Added context menu command to export selected entries only.
Added support for importing Password Memory 2008 XML files.
Added support for importing Password Keeper 7.0 CSV files.
Added support for importing Passphrase Keeper 2.70 HTML files.
Added support for importing data from PassKeeper 1.2.
Added support for importing Mozilla bookmarks JSON files (Firefox 3 bookmark files).
Added support for exporting to KeePass 1.x CSV files.
Added XSL transformation file to export passwords only (useful for generating and exporting password lists).
Added support for writing databases to hidden files.
When passing '/?', '--help' or similar on the command line, KeePass will now open the command line help.
When single instance mode is enabled and a second instance is started with command line parameters, these parameters are now sent to the already open KeePass instance.
KeePass now ships with a compiled XML serializer library, which highly improves startup performance.
Added support for Uniform Naming Convention (UNC) paths (Windows) in the URL field (without cmd:// prefix).
Added option to exclude expired entries in the 'Find' dialog.
Added option to exclude expired entries in quick searches (toolbar; disabled by default).
The box to enter the name of a custom string field is now a combobox that suggests previously-used names in its drop-down list.
Added Shift, Control and Alt key modifiers to placeholder overview in the auto-type sequence editing dialog.
Added support for 64 byte key files which don't contain hex keys.
Added Ctrl-Shift-F accelerator for the 'Find in this Group' context menu command (group tree must have the focus).
Added export ability to KPScript plugin.
Ctrl-Tab now also works in the password list, groups tree and entry details view.
Added multi-user documentation.
Plugin developers: DocumentManagerEx now has an ActiveDocumentSelected event.
Plugin developers: instead of manually setting the parent group property and adding an object to a group, use the new AddEntry / AddGroup methods of PwGroup (can take ownership).
Plugins can now add new export file formats (in addition to import formats).
Plugins: added static message service event.
Improvements / Changes:
When using the installation package and Windows Vista, settings are now stored in the user's profile directory (instead of Virtual Store; like on Windows XP and earlier).
Accessibility: multi-line edit controls do not accept tabs anymore (i.e. tab jumps to the next dialog control), and inserting a new line doesn't require pressing Ctrl anymore.
When moving entries, KeePass doesn't switch to the target group anymore.
When deleting entries from the search results, the entry list is not cleared anymore.
Improved entry duplication method (now also works correctly in search results list and grouped list views).
A more useful error message is shown when checking for updates fails.
Improved formats sorting in the import dialog.
The 'Limit to single instance' option is now turned on by default (multiple databases are opened in tabs).
Removed 'sort up', 'sort down' and empty client icons.
Improved program termination code (common clean-up).
Improved error message that is shown when reading/writing the protected user key fails.
The key file selection dialog now by default shows all files.
Plugins: improved event handlers (now using generic delegate).
Implemented several workarounds for Mono (2.0.1+).
Added conformance level specification for XSL transformations (in order to improve non-XML text exports using XSLT).
Improved key state toggling for auto-type on 64-bit systems.
Removed several unnecessary .NET assembly dependencies.
Threading safety improvements.
Highly improved entry context menu performance when many entries are selected.
Entry selection performance improvements in main window.
Improved entries list view performance (state caching).
List view group assignment improvements (to avoid splitting).
Removed tab stops from quality progress bars.
After moving entries to a different group, the original group is selected instead of the target group.
Layout and text improvements in the master key creation form.
Text in the URL field is now shown in blue (if it's black in the standard theme).
Improved auto-type tab in entry dialog (default sequence).
Improved AES/Rijndael cipher engine initialization.
Improved build scripts.
Various code optimizations.
Minor other improvements.
Installer: changed AppId to allow parallel installation of KeePass 1.x and 2.x.
Minor other installer improvements.
Bugfixes:
The 'View' -> 'Show Columns' -> 'Last Access Time' menu command now works correctly.
The 'Clipboard' -> 'Paste Entries' menu command now assigns correct group references to pasted entries.

New in KeePass Password Safe 1.11 (Aug 14, 2008)

Groups in the group list now behave like folders in Windows Explorer when moving groups/folders (i.e. sub-groups are also moved).
Added advanced option to drop to the background when copying data to the clipboard.
Added auto-type configuration dialog (button 'Auto-Type' in the options dialog, tab page 'Advanced'); this dialog now contains all options related to auto-type.
The default auto-type sequence can now be configured in the Auto-Type configuration dialog.
Added option to prepend a special auto-type initialization sequence for Internet Explorer and Maxthon windows to fix a focus issue (option enabled by default).
Added field reference creation dialog (accessible through the 'Tools' menu in the entry editing dialog).
KeePass now follows field references in indirect auto-type sequence paths.
Field references are dereferenced when copying data to the clipboard.
Secure edit controls in the master key and entry dialogs now accept text drops.
Group names in the entry details view are now clickable; click it to jump to the group of the entry (especially useful for jumping from search results to the real group of an entry).
Added documentation about how to customize KeePass (networks).
KeePass now shows an explicit file corruption warning message when saving to a file fails.
KeePass on Windows �� XP now mimics the extended combobox behavior seen on Windows Vista: when pressing a character key, the next string starting with this character is selected (for example a file can be selected in the key files list now by pressing the key corresponding to the drive).
Entries in the auto-type entry selection window are now sorted.
The auto-type sequence and auto-type window definition lines are now removed before copying the contents of the notes field to the clipboard, executing an URL and/or auto-typing.
KeePass recreates the temporary system/account directory, if it has accidently been deleted.
When using the installation package and Windows Vista, settings are now stored in the user's profile directory (instead of Virtual Store; like on Windows XP and earlier).
If the option to remember the last used file is disabled, KeePass now won't remember the last used directory either.
Entry details view is now cleared when no entry is selected.
All edit combo boxes can now auto-scroll horizontally.
When security-critical operations are disabled, the 'unhide' button in the master key dialog is disabled now.
The read-only flag is not cleared anymore when closing a file (consequently locking will not clear the read-only flag).
When deleting a subgroup tree, backup entries of all deleted entries are now created in the 'Backup' group.
Improved status bar updating on WTS notifications.
{INSERT} works like {INS} now.
Various code optimizations.
Minor installer improvements.
Minor other improvements.
"User Name" is now translated correctly in TXT exports.
Referencing passwords of other entries now works correctly.

New in KeePass Password Safe 1.11 (May 15, 2008)

Master key transformations (rounds) are now computed in two threads; on dual/multi core processors this results in almost twice the performance as before (by doubling the amount of rounds you'll get the same waiting time as in 1.10, but the protection against dictionary and guessing attack is doubled).
On Windows Vista, some of the message boxes are now displayed as modern task dialogs.
Database files are now verified (read and hashed) after writing them to disk (in order to prevent data loss caused by damaged/broken devices and/or file systems).
When saving databases to removable media, KeePass now tries to lock and unlock the volume, which effectively flushes all system caches related to this drive (this prevents data loss caused by removing USB sticks without correctly unmounting in Windows first; but it only works when no other program is using the drive).
Improved database file writing algorithm (small block writes and explicit flushing).
The system's INI cache is now flushed before copying the temporary global INI file to the application directory (improves Windows 95 / 98 / ME compatibility).
Added placeholders for referencing fields of other entries (dereferenced when starting URLs and performing auto-type, see the auto-type placeholders documentation).
Added natural sorting (when sorting the entry list, KeePass now performs a human-like comparison instead of a simple lexicographical one; this sorts entries with numbers more logically; only supported with ShlWApi/IE 6.0.2800).
Added pattern placeholder 's' to generate special characters of the printable 7-bit ASCII character set.
KeePass now locks when the system is suspending (if the option for locking on locking Windows or switching user is enabled).
Added a 'Tools' button menu in the entry editing dialog.
Tools button menu: Added command to select an application for the URL field (will be prefixed with cmd://).
Tools button menu: Added command to select a document for the URL field (will be prefixed with cmd://).
Tools button menu: Added command to insert a placeholder into the URL field.
Tools button menu: Added command to select an auto-type target window (a dialog will be opened, in which you can select an existing currently-opened window; an appropriate auto-type definition will be added in the notes field).
Several entry context menu commands are now only enabled if applicable (if the user name field of an entry is empty, the 'Copy User Name' command is disabled, etc.).
A " - Copy" suffix is now appended to duplicated entries.
After duplicating entries, the new entries are selected.
Added ability to sort entries based on UUIDs.
Added advanced option to focus the entry list after a successful quick search (toolbar; disabled by default).
Added support for large translation/language files.
Added option to always allow full access through remote control (disabled by default, and marked with "not recommended").
Added radio buttons for removing the expiry time from entries in the mass-modify dialog.
Added generic Wiki and '$' client icons.
Added certificate and mobile phone client icons (thanks to oppitronic).
Added ability to specify the minimum length and minimum estimated quality that master passwords must have (see help file -> Features -> Composite Master Key; for admins).
Added interface for writing master password requirements validation plugins (see the KPM_VALIDATE_MASTERPASSWORD message).
Added interface for writing entry validation plugins (see the KPM_VALIDATE_ENTRY message).
Added interface for writing generated passwords validation plugins (see the KPM_VALIDATE_GENPASSWORD message).
Added plugin interface for storing custom data in KeePass KDB databases (for example some history, logging, ...).
Plugins can now execute auto-type (KPC_AUTOTYPE).
Added ability to specify a window title suffix in the INI file (KeeWindowTitleSuffix).
Added more simple and robust plugin interface for editing and deleting entries.
The dialog banner text color can be changed in the INI file now (KeeBannerColorText, set to BGR-Quad).
The gradient direction in dialog banners can now be specified in the INI file (KeeBannerFlip).
In mini mode, no passwords are generated automatically for new entries.
In mini mode, clicking the 'Generate Password' button in the entry window immediately generates a new password based on the automatic generation profile, instead of showing the password generator dialog.
In mini mode, the URL field is replaced by a combo box, in which you can select one of the plugin-provided user applications (KPM_USERAPP_GETFIRST and KPM_USERAPP_GETNEXT).
If natural sorting is supported, TANs are not prefixed with zeros anymore.
Removed 'Loading error' message that appeared when checking for an update and a new version is available.
TAN indices are now stored in the user name field (the notes field can therefore be used now for storing confirmation messages and/or transaction details).
"User Name" is now translated correctly in TXT exports.
On Windows XP and higher, dialog banners now have black background gradients by default.
Improved list view item focusing.
Icon of the 'Generate Password' button in the entry editing dialog is now always visible.
Passwords generated by the automatic generation profile can now be accepted.
The help can now consistently be accessed through buttons in the lower left of dialogs.
Improved apple icon (inverted colors).
Improved group tree redrawing when closing a database.
Correct times are assigned to incoming entries through RC.
Improved placeholder replacement engine for URLs and auto- type (prevents infinite recursion).
Multiple files can now be selected in the import file dialog (except KDB format).
Import file dialogs do not change the working directory anymore.
In the mass-modify dialog the expiry time now defaults to the current local time instead of the 'never expires' time.
Upgraded to Boost libraries version 1.34.1.
Minor UI improvements (improved error messages, ...).
Minor other improvements.
Fixed randomly appearing bug in TAN numbering routine.
Fixed random failure of local date/time formatting routine.

New in KeePass Password Safe 2.04 Alpha (Jan 7, 2008)

Added key provider API (it now is very easy to write a plugin that provides additional key methods, like locking to USB device ID, certificates, smart cards, ... see the developers section in the online KeePass help center).
Added option to show entries of sub-groups in the entry list of a group (see 'View' -> 'Show Entries of Sub-Groups').
Added XML valid characters filter (to prevent XML document corruption by ASCII/DOS control characters).
Added context menu command to print selected entries only.
Added option to disallow repeating characters in generated passwords (both character set-based and pattern-based).
Moved security-reducing / dangerous password generator options to a separate 'Advanced' tab page (if you enable a security-reducing option, an exclamation mark (!) is appended to the 'Advanced' tab text).
Added 'Get more languages' button to the translations dialog.
Added textual cue for the quick-search edit control.
The TAN wizard now shows the name of the group into which the TANs will be imported.
Improved random number generator (it now additionally collects system entropy manually and hashes it with random numbers provided by the system's default CSP and a counter).
For determining the default text in the 'Override default sequence' edit box in the 'Edit Entry' window, KeePass now recursively traverses up the group tree.
Last entry list sorting mode (column, ascending / descending) is now remembered and restored.
First item in the auto-type entry selection window is now focused (allowing to immediately navigate using the keyboard).
Text in secure edit controls is now selected when the control gets the focus the first time.
For TAN entries, only a command 'Copy TAN' is now shown in the context menu, others (that don't apply) are invisible.
Regular expressions are validated before they are matched.
KeePass now checks the auto-type string for invalid entry field references before sending it.
The clipboard auto-clear information message is now shown in the status bar instead of the tray balloon tooltip.
Matching entries are shown only once in the search results list, even when multiple fields match the search text.
First item of search results is selected automatically, if no other item is already selected (selection restoration).
Entries with empty titles do not match all windows any more.
Improved high DPI support in entry window.
When having enabled the option to automatically lock the workspace after some time and saving a file fails, KeePass will prompt again after the specified amount of time instead of 1 second.
KeePass now suggests the current file name as name for new files (save as, save as copy).
The password generator profile combo box can now show more profiles in the list without scrolling.
Improved native methods exception handling (Mono).
Updated CHM documentation file.
TAN wizard now assigns correct indices to TANs after new line characters.
Copying KeePass entries to the clipboard now works together with the CF_CLIPBOARD_VIEWER_IGNORE clipboard format.
KeePass now uses the correct client icons image list immediately after adding a custom icon to the database.
Fixed 'generic error in GDI ' when trying to import a 16x16 icon (thanks to 'stroebele' for the patch).
File close button in the toolbar (multiple files) works now.
Fixed minor problem in provider registration of cipher pool.

New in KeePass Password Safe 2.03 Alpha / 1.09 (Oct 15, 2007)

Added multi-document support (tabbed interface when multiple files are opened).
KeePass 2.x now runs on Windows 98 / ME, too! (with .NET 2.0).
Added option to permute passwords generated using a pattern (this allows generating passwords that follow complex rules).
Added option to start minimized and locked.
Added support for importing Passwort.Tresor XML files.
Added support for importing SplashID CSV files.
Added '--exit-all' command line parameter; call KeePass.exe with this parameter to close all other open KeePass instances (if you do not wish to see the 'Save?' confirmation dialog, enable the 'Automatically save database on exit' option).
Added support for CF_CLIPBOARD_VIEWER_IGNORE clipboard format (clipboard viewers/extenders compliant with this format ignore data copied by KeePass).
Added support for synchronizing with multiple other databases (select multiple files in the file selection dialog).
Added ability to specify custom character sets in password generation patterns.
Added pattern placeholder 'S' to generate printable 7-bit ASCII characters.
Added pattern placeholder 'b' to generate brackets.
Added support for starting very long command lines.
Entry UUID is now shown on the 'Properties' tab page.
Added Spanish language for installer.
KeePass now creates a mutex in the global name space.
Added menu command to save a copy of the current database.
The database name is now shown in the title of the 'Enter Password' window.
Added "Exit" command to tray icon context menu.
Pressing the 'Enter' key in the password list now opens the currently selected entry for editing.
Added '-GroupName:' parameter for 'AddEntry' command in the KPScript KeePass scripting tool (see plugins web page).
Added URL example in 'Open URL' dialog.
Added support for plugin namespaces with dots (nested).
Added ability to specify the characters a TAN can consist of.
'-' is now treated as TAN character by default, not as separator any more.
Added ability to search using a regular expression.
Notes in the entry list are now CR/LF-filtered.
Added {PICKPASSWORDCHARS} placeholder, KeePass will show a dialog which allows you to pick certain characters.
The password generator dialog is now shown in the Windows taskbar if the main window is minimized to tray.
Caps lock is now disabled before auto-typing.
Improved installer (added start menu link to the CHM help file, mutex checking at uninstallation, version information block, ...).
Plugin architecture: added cancellable default entry action event handler.
Added support for subitem infotips in various list controls.
Group name is now shown in the 'Find' dialog (if not root).
Pressing the 'Insert' key in the password list now opens the 'Add Entry' dialog.
Last search settings are now remembered (except search text).
The column order in the main window is now remembered.
Pressing F2 in the groups tree now initiates editing the name of the currently selected group.
Pressing F2 in the password list now opens the editing dialog.
The 'About' dialog is now automatically closed when clicking an hyperlink.
Entries generated by 'Tools' - 'Password Generator' are now highlighted in the main window (visible and selected).
Extended auto-close functionality to some more dialogs.

New in KeePass Password Safe 1.07 Stable (Apr 16, 2007)

Auto-Type is now supported on Windows 9x systems.
Added ability to use one auto-type sequence for multiple windows (thanks to Steve Harrison for the patch); see the CHM documentation file for more.
The '^' character is now auto-typed correctly.
New CHM help file (new layout, new content from the KeePass Online Help Center, ...).
The default auto-type sequence can now be changed: in the INI file set the 'KeeDefaultAutoTypeSequence' string to the sequence of your choice (there's no option in the user interface for this yet); see the CHM documentation for more.
WTS notifications are ignored if a dialog is open.
Improved attachments description column naming in exports.
Top-level menu shortcuts now work after closing a database.
Status bar is now updated when navigating in the group tree.
Updated single instance class.
For plugin developers: added delayed initialization message.
Improved help menu.
Added SAL annotations.
Installer now supports a lot more languages.
Installer now uses best compression available.
Fixed a bug that could increase the database size when saving a database multiple times, which has previously been modified by KeePassX (Linux/MacOSX port of KeePass); existing inflated databases are shrinked to their normal size without data loss.
Replaced password generation button by a help button in the master key dialog.
Replaced help hyperlinks in 'Edit Entry' dialog by a help popup button.
Added help button in TAN wizard dialog.
Fixed a typo in the random password generation dialog ('' isn't a special character -- it's higher ANSI).
Fixed a bug which could have caused the 'Select Key File' hyper link to be drawn incorrectly when using non-official XP themes.
Fixed various tray icon bugs.
Error code is not shown any more in success messages.
Improved error message that is shown when accessing the key file fails.
Added window positioning support for virtual screens.
Window position/size is now remembered when exiting from tray.
Fixed a bug in the 'Start KeePass at Windows startup' registration method.
x64 fixes (thanks to Gabe Martin).
Improved MFC string clearing routine.
Various translation improvements.
Made 'Icon' label wider.
Other minor improvements and bugfixes.

New in KeePass Password Safe 2.01 Alpha (Mar 26, 2007)

New Features:
Improved auto-type engine (releases and restores modifier keys, improved focusing, etc.).
Implemented update-checking functionality.
Added KPScript plugin (see source code package) for scripting (details about it can be found in the online help center).
Added Whisper 32 1.16 import support.
Added Steganos Password Manager 2007 import support.
Search results now show the full path of the container group.
Entry windows (main password list, auto-type entry selection dialog, etc.) now show item tooltips when hovering over them.
Added window box drop-down hint in the auto-type item dialog.
Database maintenance history days setting is now remembered.
Improved main window update after importing a file.
Improved command line handling.
If opening/starting external files fails, helpful messages are displayed now.
Completely new exception handling mechanism in the Kdb4File class (allows to show more detailed messages).
New message service class (KeePassLib.Utility.MessageService).
Added option to disable remembering the password hiding setting in the 'Edit Entry' window.
Added menu shortcuts for opening the current entry URL (Ctrl U) and performing current entry auto-type (Ctrl V).
Improvements / Changes:
Changed file extension to KDBX.
Password generation profiles are now saved when the dialog is closed with 'Close'/'Cancel'.
Entry URL overrides now precede the global URL override.
Standard password generation profiles are now included in the executable file.
Restructured plugin architecture, it's much clearer now (abstract base class, assembly-internal manager class, ...).
Only non-empty strings are now displayed in the entry view.
Current working directory is set to the KeePass application directory before executing external files/URLs.
Changed fields shown in the auto-type entry selection dialog: title, user name and URL are displayed instead of title, user name and password.
Clearified clipboard commands in context menus.
Bugfixes:
Help buttons now open the correct topics in the CHM.
Fixed name in the installer script.
Workspace is not locked any more if a window is open (this prevents data loss).
The 'Find' toolbar button works now.
The OK button in the Import dialog is now enabled when you manually enter a path into the file text box.
Fixed entry list focus bug.
Fixed menu focus bug.
The 'Copy Custom String' menu item doesn't disappear any more.
Fixed enabled/disabled state of auto-type menu command.