From b03bba89f71509daf6cbc43c55979d52c0c8c894 Mon Sep 17 00:00:00 2001
From: jae <jae@jaeswift.xyz>
Date: Sun, 19 Apr 2026 12:41:37 +0000
Subject: [PATCH] =?UTF-8?q?chore:=20changelog=20v1.32.0=20=E2=80=94=20secu?=
 =?UTF-8?q?rity=20patch=20for=20API=20key=20exposure?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 api/data/changelog.json | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/api/data/changelog.json b/api/data/changelog.json
index a0c83b1..97e016f 100644
--- a/api/data/changelog.json
+++ b/api/data/changelog.json
@@ -1,6 +1,23 @@
 {
   "site": "jaeswift.xyz",
   "entries": [
+    {
+      "version": "1.32.0",
+      "date": "19/04/2026",
+      "category": "SECURITY",
+      "title": "Critical API Key Exposure Patched",
+      "changes": [
+        "Removed api/data/apikeys.json from git tracking",
+        "Added apikeys.json to .gitignore permanently",
+        "Purged file from entire git history via git-filter-repo (all 120 commits rewritten)",
+        "Force-pushed cleaned history to Gitea (old commits garbage-collected)",
+        "Created apikeys.example.json template for future contributors",
+        "Rotated Venice API key \u2014 old key revoked by user",
+        "VPS file permissions hardened: chmod 600 api/data/apikeys.json",
+        "Verified raw URL git.jaeswift.xyz/.../apikeys.json now returns HTTP 404",
+        "Audit confirmed: zero occurrences of any API key in git history across all branches"
+      ]
+    },
     {
       "version": "1.31.0",
       "date": "19/04/2026",