Update appcast.xml for v0.32.0

github-actions[bot] · github-actions[bot] · commit 7161299aa6e6 · 2026-04-16T16:08:12.000Z
diff --git a/appcast.xml b/appcast.xml
@@ -2,6 +2,85 @@
 <rss xmlns:sparkle="http://www.andymatuschak.org/xml-namespaces/sparkle" version="2.0">
     <channel>
         <title>TablePro</title>
+        <item>
+            <title>0.32.0</title>
+            <pubDate>Thu, 16 Apr 2026 16:08:08 +0000</pubDate>
+            <sparkle:version>70</sparkle:version>
+            <sparkle:shortVersionString>0.32.0</sparkle:shortVersionString>
+            <sparkle:minimumSystemVersion>14.0</sparkle:minimumSystemVersion>
+            <sparkle:hardwareRequirements>arm64</sparkle:hardwareRequirements>
+            <description><![CDATA[<h3>Added</h3>
+<ul>
+<li>In-app tab bar with instant switching, drag reorder, pinned tabs, and dirty indicators</li>
+<li>Reopen closed tab (Cmd+Shift+T), MRU tab selection on close</li>
+<li>Deeplinks and Handoff route to in-app tabs instead of creating duplicate windows</li>
+</ul>
+<h3>Changed</h3>
+<ul>
+<li>Replace native macOS window tabs with in-app tab bar (600ms+ → instant)</li>
+<li>Tab content preserved across switches (no view destruction/recreation)</li>
+<li>Connection state persisted incrementally (survives force quit)</li>
+</ul>
+<h3>Fixed</h3>
+<ul>
+<li>Raw SQL injection via external URL scheme deeplinks — now requires user confirmation</li>
+<li>MySQL prepared statements silently truncating columns larger than 64KB</li>
+<li>MSSQL error messages misattributed when multiple connections open simultaneously</li>
+<li>BigQuery filter injection via unescaped column names and unvalidated operators</li>
+<li>App quitting without warning when tabs have unsaved edits</li>
+<li>Connection list corruption risk from non-atomic UserDefaults writes</li>
+<li>Stale user-installed plugins silently rejected with no UI feedback</li>
+<li>SSL mode picker showing misleading "Required" instead of "Required (skip verify)"</li>
+<li>Plugin load blocking main thread on first connection after launch</li>
+</ul>
+<h3>Changed</h3>
+<ul>
+<li>OpenSSL updated to 3.4.3 (CVE-2025-9230, CVE-2025-9231)</li>
+<li>SHA-256 checksum verification added to FreeTDS, Cassandra, and DuckDB build scripts</li>
+<li>Memory pressure monitoring now reactive via DispatchSource</li>
+</ul>
+]]></description>
+            <enclosure url="https://github.com/TableProApp/TablePro/releases/download/v0.32.0/TablePro-0.32.0-arm64.zip" length="24704327" type="application/octet-stream" sparkle:edSignature="ihWO20+mBSr9xYMsoCRHZNCK5GI0xZOvFvPJKXpGeXT4oBvnQft846c7uYcRSuP1/X7AtZcxpCV1nRk+/Ab5AQ=="/>
+        </item>
+        <item>
+            <title>0.32.0</title>
+            <pubDate>Thu, 16 Apr 2026 16:08:09 +0000</pubDate>
+            <sparkle:version>70</sparkle:version>
+            <sparkle:shortVersionString>0.32.0</sparkle:shortVersionString>
+            <sparkle:minimumSystemVersion>14.0</sparkle:minimumSystemVersion>
+            <description><![CDATA[<h3>Added</h3>
+<ul>
+<li>In-app tab bar with instant switching, drag reorder, pinned tabs, and dirty indicators</li>
+<li>Reopen closed tab (Cmd+Shift+T), MRU tab selection on close</li>
+<li>Deeplinks and Handoff route to in-app tabs instead of creating duplicate windows</li>
+</ul>
+<h3>Changed</h3>
+<ul>
+<li>Replace native macOS window tabs with in-app tab bar (600ms+ → instant)</li>
+<li>Tab content preserved across switches (no view destruction/recreation)</li>
+<li>Connection state persisted incrementally (survives force quit)</li>
+</ul>
+<h3>Fixed</h3>
+<ul>
+<li>Raw SQL injection via external URL scheme deeplinks — now requires user confirmation</li>
+<li>MySQL prepared statements silently truncating columns larger than 64KB</li>
+<li>MSSQL error messages misattributed when multiple connections open simultaneously</li>
+<li>BigQuery filter injection via unescaped column names and unvalidated operators</li>
+<li>App quitting without warning when tabs have unsaved edits</li>
+<li>Connection list corruption risk from non-atomic UserDefaults writes</li>
+<li>Stale user-installed plugins silently rejected with no UI feedback</li>
+<li>SSL mode picker showing misleading "Required" instead of "Required (skip verify)"</li>
+<li>Plugin load blocking main thread on first connection after launch</li>
+</ul>
+<h3>Changed</h3>
+<ul>
+<li>OpenSSL updated to 3.4.3 (CVE-2025-9230, CVE-2025-9231)</li>
+<li>SHA-256 checksum verification added to FreeTDS, Cassandra, and DuckDB build scripts</li>
+<li>Memory pressure monitoring now reactive via DispatchSource</li>
+</ul>
+]]></description>
+            <enclosure url="https://github.com/TableProApp/TablePro/releases/download/v0.32.0/TablePro-0.32.0-x86_64.zip" length="23999293" type="application/octet-stream" sparkle:edSignature="oVxL9JzZ/MO5NZM5JimNCB3jaq8lsu+7Y16Ui8QGFpkgd9Qnc4jS3cBy8SYzhlmrC1GqYjQvrFqEldERqNelDA=="/>
+        </item>
         <item>
             <title>0.31.5</title>
             <pubDate>Tue, 14 Apr 2026 06:46:28 +0000</pubDate>
