1e270fb4b8
- Remove insecure key import backdoor - Strengthen password generation (32 chars + special chars) - Implement constant-time comparisons to prevent timing attacks - Fix race conditions in rate limiting with atomic operations - Add input validation and enhanced error handling BREAKING CHANGE: Remove allowInsecureImport option - all signed packages now require mandatory signature verification for security.