Security is a core commitment at ScheduleOwl. v0.6.3 addresses findings from our latest internal security audit and ships several performance improvements.
Security Updates
- Session token hardening — Improved entropy and rotation policy for all authentication tokens.
- Rate limiting on booking endpoints — Public booking pages are now rate-limited to prevent abuse and scraping.
- Input sanitization improvements — Additional validation on all user-submitted fields across the application.
- Dependency updates — All third-party packages updated to their latest secure versions.
Performance
- API response times improved by an average of 22% through query optimization.
- GPS route calculations now run in the background — no more loading spinners while routes compute.