RsyncGUI v1.7.0 — Security Audit & AI Backend Overhaul
What's New in v1.7.0
Security Hardening & Code Quality Audit
30 findings resolved across CRITICAL, HIGH, MEDIUM, LOW, and INFO severities.
Critical Fixes:
- API Keys to Keychain: All cloud AI backend API keys migrated from UserDefaults to macOS Keychain
- Shell Command Escaping: All rsync arguments properly escaped to prevent injection
High Fixes:
- Plist Injection Prevention: Schedule/job plist values validated against injection attacks
- Input Length Limits: Path and hostname inputs capped to prevent buffer abuse
- Race Condition Fix: Thread-safe job execution state management
- AI Backend Architecture: Complete overhaul — 6 new backend types, proper Swift extension patterns
Medium Fixes:
- Hostname validation with RFC-compliant regex
- Typed error enums replacing string-based errors
- Safe array access with bounds checking
- Proper pipe cleanup in rsync process management
Low/Info Fixes:
- Force unwrap elimination across 3 files
- Magic number extraction to named constants
- Locate button implementation (Finder reveal)
- MARK section comments for code organization
Install
Download the DMG below, open it, and drag RsyncGUI to Applications.
Requirements: macOS 13.0+, rsync installed (included with macOS)