passbolt-browser-extension 3.0.6 → 4.6.2

package/CHANGELOG.md

@@ -3,6 +3,952 @@ All notable changes to this project will be documented in this file.
 This project adheres to [Semantic Versioning](http://semver.org/).
 
 ## [Unreleased]
+## [4.6.2] - 2024-03-29
+### Fixed
+- PB-32394 As a user defining my passphrase while activating my account I want to know if my passphrase is part of a dictionary on form submission
+- PB-32396 As a user defining my new passphrase while changing it I want to know if my new passphrase is part of a dictionary on form submission
+- PB-32401 As an administrator defining the passphrase of the generated organization account recovery key I want to know if the passphrase is part of a dictionary on form submission
+- PB-32407 As a user editing a password I am invited to confirm its edition when this one very weak in a separate dialog on form submission
+- PB-32395 As a user defining my passphrase while requesting an account recovery I want to know if my new passphrase is part of a dictionary on form submission
+- PB-32397 As a user verifying my private key passphrase while activation my account I do not want to know if my passphrase is part of a dictionary at this stage
+- PB-32399 As a user confirming my passphrase while completing an account recovery (Admin approved) I do not want to know if my passphrase is part of a dictionary on form submission
+- PB-32398 As a user confirming my passphrase while importing my private key during an account recover I do not want to know if my passphrase is part of a dictionary on form submission
+- PB-32404 As a user creating a password from the quickaccess I am invited to confirm its creation when this one is part of a dictionary in a separate dialog on form submission
+- PB-32403 As a user updating a password I am invited to confirm its edition when this one is part of a dictionary in a separate dialog on form submission
+- PB-32405 As a user auto-saving a password from the quickaccess I should not be notified if the password is part of an exposed dictionary
+- PB-32402 As a user creating a password I am invited to confirm its creation when this one is part of a dictionary in a separate dialog on form submission
+- PB-32400 As a user confirming my passphrase while importing an account kit on the desktop app I do not want to know if my passphrase is part of a dictionary on form submission
+- PB-32406 As a user creating a password I am invited to confirm its creation when this one very weak in a separate dialog on form submission
+- PB-32427 As a user creating a password from the quickaccess I am invited to confirm its creation when this one is VERY WEAK in a separate page on form submission
+
+## [4.6.0] - 2024-03-14
+### Added
+- PB-24485 As signed-in administrator I can see the healthcheck in the UI
+- PB-29051 As a user I can use ADFS as SSO provider
+- PB-29162 As signed-in administrator I can authorize only group managers to see the users workspace
+- PB-29396 As signed-in administrator I can hide the share folder capability with a RBAC
+
+### Security
+- PB-29384 As signed-in administrator I should see a 404 when accessing a non existing administration page
+- PB-29384 As signed-in user I should see a 403 when attempting to access an administration page
+
+### Fixed
+- PB-25865 As a signed-in user I want to autofill form which listen to change events
+- PB-27709 As signed-in administrator I can reconfigure the LDAP integration after a server key rotation
+- PB-29258 A signed-in users with a large data set I should have a direct feedback when selecting a resource with the checkbox
+- PB-29506 As signed-in user, when loading the application, I should scroll to the resource detected in the url
+- PB-29548 As a signed-in administrator, editing the password expiry policy, I want to be sure that I’m editing the latest version of the settings
+- PB-29606 As signed-in user I should be able to export TOTP to keepass for Windows
+- PB-29860 As signed-in user I should see the columns header translated to my language
+- PB-29861 As signed-in user I should see the filter “Expiry” named “Expired” instead
+- PB-29895 As user importing an account to the Windows application I should be able to access the getting started help page
+- PB-29961 As signed-in user I want to see the import dialog information banner below the form and before the action buttons
+- PB-30033 As a signed-in user I should be able to sign in with the quickaccess right after launching my browser
+
+### Maintenance
+- PB-25555 Upgrade outdated dev library webpack and associated
+- PB-25556 Upgrade outdated library i18next and associated
+- PB-25689 Upgrade outdated library ip-regex and associated
+- PB-25692 Upgrade openpgpjs to v5.11
+- PB-25696 Upgrade outdated library webextension-polyfill
+- PB-25699 Upgrade outdated library xregexp
+- PB-25701 Upgrade outdated library luxon
+- PB-29162 MFA user settings screens should be served by the browser extension
+- PB-30015 Homogeneize collection constructor signature
+- PB-30017 Remove collection and entity inheritance dependency
+- PB-30021 Make collection and entity DTO optionally cloneable
+- PB-30022 Reduce the number of resources collection instantiations while displaying the number of suggested resources
+- PB-30023 Reduce the number of resources collection instantiations while displaying the suggested resources in the inform menu
+- PB-30142 Homogenize collection and entity call parameters
+- PB-30143 Ensure entities DTOs are not cloned when the data is retrieved from the API or the local storage
+- PB-30156 Ensure the tags collection is not validating multiple times the entities while getting instantiated
+- PB-30324 Reduce garbage collector usage while validating large amount of data
+
+## [4.5.2] - 2024-02-12
+### Added
+- PB-28672 As a user exporting resources I should also export TOTPs
+
+### Fixed
+- PB-25865 As a signed-in user I can autofill credentials using input and change events
+- PB-29258 As a signed-in user with a large dataset I can select a resource quickly
+- PB-29548 As a signed-in administrator I should refresh password expiry cache when navigating to the password expiry administration page
+- PB-29560 As a user importing a resources from a Windows keepass kdbx I should also import TOTPs
+- PB-29606 As a user exporting a resources to a Windows keepass kdbx I should also export TOTPs
+
+## [4.5.1] - 2024-02-09
+### Fixed
+- PB-29626 As a user I should retrieve the csrf token if the instance is running from a sub-folder
+
+## [4.5.0] - 2024-02-05
+### Added
+- PB-28679 As an administrator I can set advanced password expiry settings
+- PB-28681 As a user importing a resources from a file I should also import expiry date from keepass files
+- PB-28682 As a user I can quickly mark resources as expired
+- PB-28687 As a resource owner, I can change the resource expiration date manually
+- PB-28692 As a user I can change the expiry date of a resource automatically based on the password expiry configuration
+- PB-28850 As a signed-in user creating a resource from the app I should set the expired date if default expiry period has been defined in the organisation policies
+- PB-28851 As a signed-in user creating a resource from the quickaccess I should set the expired date if default expiry period has been defined in the organisation policies
+- PB-28852 As a signed-in user creating a resource from the auto-save I should set the expired date if default expiry period has been defined in the organisation policies
+- PB-29045 As a user I want to open the quickaccess using a keyboard shortcut
+- PB-29125 As an administrator I should not see the control function AllowIfGroupManagerInOneGroup on the UI
+
+### Improved
+- PB-15269 As a user I do not want my browser extension to make multiple calls on resources.json in a row
+- PB-21484 As an administrator I can use Microsoft 365 or Outlook as SMTP providers
+- PB-22071 As an administrator I want the SSO messages to be in correct english
+- PB-25503 As an admin I should be able to enable/disable emails that request group managers to add users to groups (LDAP/AD)
+- PB-25860 As signed-in user I want to see the full name of the user at the origin of any account recovery action
+- PB-27783 As a user opening the quickaccess I should have a clear feedback if the API service is unreachable
+- PB-27961 As a signed-in user I cannot skip the administrator request to join the account recovery program
+- PB-28507 As signed-in user importing resources I should know what is supported
+- PB-28612 As a signed-in user I should see TOTP in uppercase
+- PB-28646 As an administrator in the account recovery settings I should see “Prompt” instead of “Mandatory"
+- PB-28709 Mark SASL option in Users Directory as Enterprise Edition
+- PB-28727 As an administrator in the SSO settings I should see a combobox instead of a text input for the Azure’s URL
+- PB-28923 As a user I want to be able to use passbolt in Russian
+- PB-29008 As an administrator in RBAC administration page I should not see the role to setup the desktop or mobile app if the plugin is not enabled
+- PB-29159 As a signed-in user I want the Mfa screen to be available when using the bext 4.4 and API 4.5
+- PB-29263 Replace the mechanism to have CSRF token from the cookie
+
+### Security
+- PB-29194 Upgrade vulnerable library web-ext
+- PB-28658 Mitigate browser extension supply chain attack
+- PB-28659 Mitigate browser styleguide supply chain attack
+- PB-28660 Mitigate browser windows app supply chain attack
+
+### Fixed
+- PB-22864 As a signed-in user, I should see a relevant error if I use special characters as security token
+- PB-24496 As a user I should be able to use a passphrase with emoji
+- PB-28283 As a user when I preview a secret I should see the activity sidebar updated
+- PB-28540 As a user I should scroll automatically to the resource selected from the route
+- PB-28625 As a user I can open resource url from the resource sidebar on Firefox
+- PB-28632 As a user Fix design TOTP button disabled on create and edit resource
+- PB-28696 As a user I should fill secret for TOTP with spaces
+- PB-28721 As a user I can see the beta chip next to the desktop app menu item in the users settings menu
+- PB-28753 As a user I should be able to edit a standalone TOTP from contextual menu
+- PB-28880 As a user I should not see an error when I update the description of a resource with TOTP from the information panel
+- PB-28842 As a user I can reach the Windows store passbolt app from the Desktop app setup screen
+- PB-28282 As a user deleting a TOTP I should see the relevant dialog title mentioning Resource and not password
+- PB-28873 As a signed-in user when I autofill input fields I should trigger a change event
+- PB-29006 As a user I should not have my browser extension crashing when it receives an unsupported RBAC control_function value
+
+### Maintenance
+- PB-27972 Refactor code of SSO settings
+- PB-28592 Fix minimum gecko version in firefox manifest.json
+- PB-29020 Fix detection pagemod duplicate
+
+## [4.4.2] - 2023-11-06
+### Fixed
+- PB-28880 Fix resource with TOTP when description is updated from information panel
+
+## [4.4.0] - 2023-11-06
+### Added
+- PB-25204 As a signed-in user I can create a standalone TOTP
+- PB-25206 As a signed-in user I can add a TOTP to an existing password resource
+- PB-25210 As a signed-in user I can edit a standalone TOTP
+- PB-25224 As a signed-in user I can copy a TOTP
+- PB-26088 As a signed-in user I can see standalone TOTP in the quickaccess
+- PB-27600 As an administrator I want to suspend or unsuspend a user
+- PB-27601 As a signed-in user I should see who is suspended in the ui
+- PB-27773 As an administrator I can deny access to the mobile setup screen with RBAC
+- PB-27898 As an administrator I should have the possibility to deny TOTP copy and preview actions with RBAC
+- PB-27949 As a signed-in user I can see password with totp in the quickaccess
+- PB-27950 As a user I can use generic OAuth2 as single sign on provider
+- [FEATURE INACTIVE] PB-28263 As a user I can see the resource expiry status
+- [FEATURE INACTIVE] PB-28265 As a user I can reset resource expiry date
+- [FEATURE INACTIVE] PB-28266 As an administrator I can enable the password expiry feature
+- [FEATURE INACTIVE] PB-28267 As an administrator I can set the email notifications of the password expiry feature
+
+### Improved
+- PB-19244 As a user with encrypted description resource type present when creating a resource using quickaccess the description should be encrypted by default
+- PB-25560 As an administrator on the admin settings pages I can see the source of information
+- PB-26002 As a user downloading my recovery kit I want to be warned about the critical character of this asset
+- PB-26086 As an administrator generating an account recovery key for my organization I want to confirm the passphrase
+- PB-26094 As an administrator having a passbolt trespassing the user limits I should see a better message
+- PB-27668 As a user I'd like to know what the numbers by the heart mean
+- PB-27922 As a user entering my passphrase I should see the entropy progressing
+- PB-28183 As administrator I want to see warnings while synchronising the organisation users directory
+- PB-28378 MFA screen should be display depending on the application
+
+### Fixed
+- PB-21625 As a user I shouldn't see apostrophe replaced by special characters
+- PB-25279 As a user I should see in form call to action icon be well positioned
+- PB-26000 As a user updating only a resource metadata I should not update the resource secret on the API
+- PB-27784 As an administrator I should not see the account recovery enrollment twice
+- PB-27794 Fix unsupported TOTP while decrypting TOTP on webapp
+- PB-27894 As a user I should not see my username overpass the card in the login form
+- PB-27947 Fix in-form menu generate password should not override all password fields but only new password fields
+- PB-27954 Fix message after successful transfer to mobile
+- PB-28170 Fix SMTP host from Sendgrid
+- PB-28310 As a signed-in user I should not select or unselect a resource on TOTP click
+- PB-28293 As a signed-in user I should be redirected when I click on the resource url in the information panel and contextual menu
+
+### Maintenance
+- PB-26121 Improve Styleguide coverage of password policies
+- PB-27786 As a user I should not see my passphrase part of the breach if the field is empty
+- PB-27945 Update web-ext lib to v7.8.0
+- PB-27965 Upgrade node to v18
+- PB-28148 Migrate development watcher to package.json scripts
+- PB-28275 Upgrade @babel/traverse on styleguide as it has a critical security issue
+- [FEATURE INACTIVE] PB-27605 As a signed-in user I can set up Yubikey as two-factor authentication on the client (previously done on the API served application)
+- [FEATURE INACTIVE] PB-27606 As a signed-in user I can set up TOTP as two-factor authentication on the client (previously done on the API served application)
+- [FEATURE INACTIVE] PB-27608 As a user I can sign in with TOTP and Yubikey as 2FA on the client (previously done on the API served application)
+
+### Security
+- PB-25688 As a desktop app user I should sign the exported account kit with my private key
+
+## [4.3.1] - 2023-09-28
+### Fixed
+- PB-27860 As a signed-in user I should be able to autofill from the quickaccess
+
+
+## [4.3.0] - 2023-09-21
+### Added
+- PB-24600 As a user remember me is kept checked for next time if it was used
+- PB-25192 As a signed-in user I can persist the display customizations of the resource workspace grid
+- PB-25202 As a signed-in user I can see an existing TOTP value in the password workspace grid
+- PB-25932 As a signed-in administrator I can access the user passphrase policies
+- PB-25933 As a signed-in administrator I can see the user passphrase policy settings
+- PB-25934 As a signed-in administrator I can customise the user passphrase policy settings
+- PB-25935 As a user registering to passbolt I have to comply with the policy
+- PB-25937 As a user changing my passphrase I have to comply with the policy
+- PB-27725 As a signed-in user I should not be able to edit resources with totp
+- PB-27759 As a signed-in user I shouldn't see the TOTP column in the grid if the totp plugin is disabled
+
+### Improved
+- PB-22801 As an administrator I want to use a decrypted organization account recovery key
+- PB-24089 Add Range component to styleguide
+- PB-25301 Replace the 'unlock' icon to enhance visibility
+- PB-25512 As a signed-in user I want to see previewed password with a bigger font
+- PB-25965 As a signed-in user I shouldn't see the resources chips initialized with 0 as long as the breadcrumb is not rendered
+- PB-27624 Release notes automation
+
+### Fixed
+- PB-18482 Fix missing translation in quickaccess resource view page
+- PB-18520 Fix missing translation in user theme settings page
+- PB-25247 As a user, I should not be able to configure MFA if I am not running HTTPS
+- PB-25319 Fix double slashes in URLs builder in apiClient
+- PB-25375 As a user I should not see the passbolt icon on gmail email search
+- PB-25521 Fix web application loading skeleton
+- PB-25956 Fix extra bracket typo in password generator screen
+- PB-25962 As a signed-in user I should see the more button for folders, group and tag with border-radius
+- PB-25966 Fix translations source strings issues reported by community in password policies administration screen
+- PB-26140 Fix double detached quick access windows when the quick access is triggered by a sign-in from the in-form menu
+- PB-26147 Fix user theme settings page title typo
+- PB-26148 As a user when I signed out I should have the same theme on the login screen
+- PB-26202 As a signed-in user, I should not be able to associate a mobile if I am not running HTTPS
+
+### Maintenance
+- PB-24795 Improve browser extension coverage of password policies
+- PB-25551 Upgrade outdated development library web-ext to 7.6.2
+- PB-25557 Remove xmldom dependency as direct dependency
+- PB-25695 Remove unused utility hashString
+- PB-25697 Remove unused jquery, copy-webpack-plugin dependency and references
+- PB-25698 Remove cross-fetch unused direct dependency
+- PB-25700 Remove simplebar as direct dev dependency
+- PB-27662 Drive progress dialog with dedicated context
+- PB-27706 Homogeneize resource plaintext secret as an object
+
+### Experimental
+- PB-25824 As an unknown user I should be invited to configure the desktop application
+- PB-25825 As an unknown user configuring the desktop app I should be able to import an account kit
+- PB-25826 As an unknown user configuring the desktop app I should see the detail of the account kit & verify my passphrase when importing an account
+
+
+## [4.2.0] - 2023-08-21
+### Added
+- PB-24268 As a signed-in user I can reorder & show/hide columns of the resource workspace grid
+- PB-25189 As a signed-in user I can resize the columns of the resource workspace grid
+- PB-25283 As a signed-in administrator I can access the password policies
+- PB-25283 As a signed-in administrator I can see the password policies settings
+- PB-25283 As a signed-in administrator I can customise the password policies
+- PB-25283 As a signed-in user I generate passwords using the password policies of my organization
+- PB-25283 As a signed-in user I am warned about passwords which are part of a dictionary
+
+### Improved
+- PB-25251 As a sign-in user I want the passwords to be rendered with a monospace font
+- PB-25288 As a signed-in user I should see the number or resources or users filtered in the workspace from the breadcrumb
+
+### Fixed
+- PB-22555 As a German-speaking signed-in user I want to autofilll my password and name when the input identifiers are in German
+- PB-24612 As a user I should not see “remember until I log out” option in the quickaccess it the option is disabled from the servers
+- PB-25259 Fix dropdown profile style
+- PB-25260 As a user I should be redirect to the resource workspace when signing in right after a sign out
+- PB-25261 Fix box-shadow on more button for folders
+- PB-25320 In-form menu icon was moving when scrolling on page
+- PB-25504 As a user I want to use SSO with Firefox
+- PB-25807 As a signed in user I should see my profile metadata updated after editing my profile
+- PB-25816 As a signed-in user, the link in resource activity or user account recovery activity should be valid
+- PB-25822 Fix typos in User Directory settings interface
+
+### Maintenance
+- PB-25390 Upgrade outdated library word-wrap
+- PB-25391 Udgrade outdated library tough-cookie
+- PB-25704 Upgrade outdated library babel
+
+### Experimental
+- PB-25185 As LU user on the browser extension, I want to export my account to configure the windows application
+- PB-25253 Desktop bootstrapped applications should have CSP rules enforced prior to execute any javascript
+
+## [4.1.2] - 2023-07-26
+### Improvement
+- PB-25251 As a signed-in user previewing a password, I should be able to distinguish look alike characters
+
+### Fixed
+- PB-25502 Fix web navigation issue when a port already exists and port disconnection is not fired
+- PB-25339 Fix application refusing to load when detecting passbolt event activities
+- PB-25311 Fix as anonymous user with the browser extension not configured I should be redirected to passbolt getting started page when using the toolbar icon
+- PB-24933 Fix in-form menu detection not working when existing tab port disconnection occurs after webnavigation event
+
+### Maintenance
+- PB-25471 Crowdin should export only a selected subset of languages
+- PB-25272 Github actions updates for storybook
+- PB-25172 Remove former demo application, replaced by storybook
+
+## [4.1.0] - 2023-06-21
+### Added
+- PB-24169 As an administrator I want to customise what capabilities users are allowed to access on the UI of my organisation
+- PB-24598 SSO allow administrators to remap email/username properties
+
+### Fixed
+- PB-14174 As a user I want the inform menu not to be displayed outside my browser window
+- PB-24657 As a user I should see the triage page even when SSO is misconfigured
+- PB-25031 Fix margin on folder name in the information panel
+
+### Improvement
+- PB-24619 As LU I should see the link on the same line in a paragraph
+- PB-24646 As LU, I should see colored passwords
+
+### Maintenance
+- PB-24622 Put back the rolled-back code for LDAP multi-domain and field-mapping feature
+- PB-24794 Adapt browser extension to not crash when unknown content types are retrieved from the API
+
+### Security
+- PB-23852 PBL-02-002 As a user I should sign-out using POST method
+- PB-24997 Change static images URL to be served from the browser extension instead of the API
+
+## [4.0.4] - 2023-06-07
+### Fixed
+- PB-24932 Fix: As a user I want to be able to sign-in through SSO from the inform menu
+
+## [4.0.3] - 2023-06-05
+### Fixed
+- PB-24734 Fix As a registered user I would like to be able to use SSO login via the quickaccess
+
+## [4.0.1] - 2023-05-17
+### Fixed
+- PB-24639 Fix: As an administrator I want to be see which users have activated MFA from the users workspace
+
+## [4.0.0] - 2023-05-02
+### Added
+- PB-23531 As an administrator I can setup google as SSO provider
+- PB-23532 As a user I can sign-in with SSO
+- PB-23535 As a user I want to self register with SSO enabled
+- PB-23952 As an administrator I want to synchronize only groups belonging to a given parent group
+- PB-24168 As a user I want to use an accessible version of the UI
+
+### Improvements
+- PB-21564 Application should be aware of authentication status as soon as the user is getting signed out
+
+### Fix
+- PB-21488 Fix the loading of pagemods when user data is not set in the local storage
+- PB-23547 As a signed-in user I should auto-filling credentials in iframe even if there is an empty iframe src ahead
+- PB-24076 Fix ApiClient BaseUrl generation to avoid double slashes in the final URL
+- PB-24100 As a developer I want to use a fix working version of storybook
+- PB-24145 As a signed-in user the inform integration should not freeze the browser if there is a lots of dom changes
+- PB-24260 As a signed-in user I should not see a resource stays selected after moves in a folder
+
+### Security
+- PB-22858 As a user the session storage should have a limit of port by tab
+- PB-22859 As a user the web integration pagemod should be attached only on top frame
+- PB-23556 PBL-08-002 WP2: Passphrase Retained In Memory Post-Logout
+- PB-23942 PBL-08-008 WP2: Lack of explicit CSP on extension manifest
+- PB-23797 Backport MV3 port manager on MV2 without using the webNavigation permission
+
+### Maintenance
+- PB-18667 Migrate gpgAuth session check loop into a dedicated service startLoopAuthSessionCheckService
+- PB-22641 As a user the browser extension should handle when the version is updated
+- PB-22642 As a developer, when inform call to action and inform menu are destroyed, I should remove the port reference in the session storage and portManager
+- PB-24105 As a user I want to trigger file download on firefox with file pagemod
+- PB-24131 As a developer I should have class files in the correct folder
+- PB-24134 As a developer I should be able to run the CI pipeline even if the audit job is failing
+- PB-24147 Remove legacy entry point to check if the user is authenticated
+
+## [3.12.1] - 2023-03-29
+### Fix
+- PB-23930 Fix the removal of the SSO kit on CSRF token error
+- PB-23949 Fix as a user I should be able to use uppercase characters for username
+- PB-24041 Fix missing import XRegExp
+- PB-24065 Fix to prevent the browser extension from crashing if the server is configured with an unsupported SSO provider
+
+## [3.12.0] - 2023-03-15
+### Added
+- PB-22521 As a signed-in user, I want to export resources in logmeonce csv
+- PB-22520 As a signed-in user, I want to export resources in nordpass csv
+- PB-22519 As a signed-in user, I want to export resources in dashlane csv
+- PB-22518 As a signed-in user, I want to export resources in safari csv format
+- PB-22517 As a signed-in user, I want to export resources in mozilla csv
+- PB-22515 As a signed-in user, I want to export resources in bitwarden csv
+- PB-22516 As a signed-in user, I want to export resources in chromium based browsers csv
+- PB-22838 As an administrator I can customise the application email validation
+
+### Improvements
+- PB-22896 Improve DUO style
+
+### Fix
+- PB-23281 Fix as a user I should see an accurate entropy when a password contain words from a dictionary
+- PB-23541 As a user I can use SSO recover when Passbolt is served from a subfolder
+
+### Security
+- PB-23706 As an administrator I should be the only one to know which users have enabled MFA
+
+
+## [3.11.2] - 2023-03-03
+### Security
+- PB-23328 - PBL-08-001 WP2 Credentials Leakage via Clickjacking - As a signed-in user I should not be able to open the application iframe in an untrusted parent frame
+- PB-23327 - PBL-08-001 WP2 Credentials Leakage via Clickjacking - As a signed-in user I should not be able to open the quickaccess in an iframe
+
+## [3.11.1] - 2023-02-27
+### Added
+- PB-22081 As a signed-in user I can import my passwords from a Mozilla web browsers csv export
+- PB-22082 As a signed-in user I can import my passwords from Safari web browser csv export
+- PB-22116 As a signed-in user I can import my passwords from a Dashlane csv export
+- PB-22117 As a signed-in user I can import my passwords from a Nordpass csv export
+- PB-22510 As a signed-in user I can import my passwords from a LogMeOnce csv export
+- PB-22866 As a user I want to use passbolt in Italian
+- PB-22866 As a user I want to use passbolt in Portuguese (Brazil)
+- PB-22866 As a user I want to use passbolt in Korean
+- PB-22866 As a user I want to use passbolt in Romanian
+- PB-22882 As a user I can use the SSO feature to speed up the extension configuration process
+
+### Improved
+- PB-21408 As a logged-in user navigating to the account recovery user settings from the MFA user settings I should not see the screen blinking
+- PB-21548 As a signed-in user I can access my MFA settings for a given provider following a dedicated route
+- PB-22647 As a signed-in user I want to use my personal google email server as SMTP server
+- PB-22699 A a user I want a unified experience using pwned password feature
+- PB-22725 As a signed-in user I want to see an introduction screen prior setting up Duo v4
+- PB-22835 As an administrator I can define the optional SMTP Settings “client” setting
+- PB-22861 As an administrator I want to manage Duo v4 settings
+
+### Fixed
+- PB-22387 As an administrator generating an account recovery organization key, I should see the warning banner after submitting the form
+- PB-22587 Fix the CSV exports columns presence and order
+- PB-22588 As a signed-in user I want to import resources in Lastpass csv export following their conventions
+- PB-22701 As a signed-in user I should not see the MFA mandatory dialog if there are no MFA providers enabled for my organization
+- PB-22704 As a user with a configured account and SSO, I should be able to recover/setup another account
+- PB-23277 As a signed-in user I should not have a 404 error with the flag mfa policy disable
+
+### Security
+- PB-21645 As content code application I should be restricted to open ports only for applications I am allowed to open
+- PB-21754 As a user I should not see any trace of previously downloaded content in my history
+- PB-23279 As a user completing a setup I should not have access to the background page decryption secret capabilities
+
+### Maintenance
+PB-19641 Handle the setup and recover runtime object
+- PB-19675 As a signed-in user I want to perform a recover using the browser extension with MV3
+- PB-19676 As a signed-in user I want to perform a setup using the browser extension with mv3
+- PB-19677 As a signed-in user I want to perform a sign-in using the browser extension with MV3
+- PB-19678 As a signed-in user I want to start the application using the browser extension with mv3
+- PB-21750 As service worker I should be able to wake up a disconnected application port
+- PB-21822 As a signed-in user I want to open quickaccess using the browser extension with MV3
+- PB-21823 As a signed-in user I want to see the web integration using the browser extension with MV3
+- PB-21824 As a signed-in user I want to see the web public sign in using the browser extension with MV3
+- PB-21829 Clean port after a web navigation on the main frame
+- PB-21996 As a signed-in user I want to see the in form call to action using the browser extension with MV3
+- PB-21997 As a signed-in user I want to see the in form menu using the browser extension with MV3
+- PB-22009 Create a service to parse the webIntegration in url
+- PB-22076 Handle flush local storage on browser runtime onStartUp for MV3
+- PB-22077 Handle config init and post logout on service worker startup
+- PB-22078 Create a polyfill to handle browser.action on MV2
+- PB-22113 As a signed-in user I should be able to open the quickaccess popup from inform menu with MV3
+- PB-22412 As a signed-in user I want to use account recovery process using the browser extension with MV3
+- PB-22648 Adapt payload when back return duo settings
+- PB-22896 Update styles to adapt to Duo forms updates
+- PB-22898 Update login form design styles
+
+## [3.10.0] - 2023-02-09
+### Added
+- PB-21752 As an anonymous user I can self register if the organization allows my email domain
+- PB-21999 As a signed-in administrator I can force users to authenticate with MFA at each sign-in
+- PB-22000 As a signed-in administrator I can force users to enable MFA
+- PB-22080 As a signed-in user I should be able to import chromium based browsers csv
+- PB-21874 As signed-in user I should be able to import bitwarden csv
+
+### Improved
+- PB-21910 As a signed-in administrator on the self registration admin settings form I want to see the domain warnings while typing and not after blur event
+- PB-22007 As a user finalizing my account recovery I should be able to authenticate with SSO after my first sign out
+- PB-22619 As a user authenticating with SSO, I should close the SSO popup when I am navigating away in the main frame
+- PB-22617 As a user authentication with SSO, closing the third party popup should not redirect me to the passphrase screen
+
+### Fixed
+- PB-18371 Fix contextual menu positioning issue when right clicking at the bottom of the page
+- PB-22386 As an administrator I want to know if the weak passphrase I am entering to generate an organization recovery key has been pwned
+- PB-22387 As an administrator generating an account recovery organization key, I should see the warning banner after submitting the form
+- PB-22388 Fix as a user recovering my account i should not see that the passphrase i entered has been pwned if it is not the valid passphrase
+- PB-22084 As a signed-in user I can import my passwords from 1Password csv export with their new header conventions
+
+### Maintenance
+- PB-21562 Refactor service worker port and add coverage
+- PB-21813 Unit test the private key's passphrase rotation SSO kit regeneration
+- PB-21878 Unit test the user stories related to SSO via quickaccess
+- PB-21932 Unit test: As AD I want my SSO kit to be generated when saving a new SSO settings
+- PB-21933 Create a service to parse the sign in url
+- PB-22337 Merge both controller AuthController and AuthSignInController to keep consistency
+- PB-22353 Remove redundant toDto function in SsoClientPartEntity
+- PB-22403 Instead of using new URL when getting sso url login, use an entity to ensure consistency and that the data is validated
+- PB-22478 As a developer I should be sure my changes don’t introduce regression in the build
+- PB-22479 As a developer I should be sure my changes don't introduce dependency vulnerabilities
+- PB-22614 Avoid telemetries to be sent to Storybook
+- PB-22630 Fix the Unit test in the browser extension about  method that shouldn't be called
+
+## [3.9.2] - 2023-01-31
+### Fixed
+- PB-22557: As LU I should be able to download file on chromium based browsers
+
+## [3.9.0] - 2023-01-18
+### Added
+- PB-21383 As AD I can save the SSO server settings
+- PB-21383 As AD I can disable the SSO server settings
+- PB-21393 As a registered user I can use the SSO feature to sign in to passbolt
+- PB-21400 As LU I can rotate my private key's passphrase and still be able to sign in via SSO
+- PB-21735 As a signed-in administrator in the administrator workspace, I can see the user
+self registration settings option in the left-side bar
+- PB-21740 As a signed-in administrator I can remove a domain from the user self registration list
+- PB-21767 As AN I want to have the SSO login displayed by default when I have an SSO kit available
+- PB-21768 As AD I want my SSO kit to be generated when saving a new SSO settings if I don't have already one
+- PB-21769 As AN I want to use SSO login from the quickaccess
+- PB-21814 As LU When rotating my passphrase I want to clean my SSO kit on the API
+- PB-21842 As AN I want to have help if I can't remember my passphrase and SSO login is activated
+- PB-21907 As a signed-in on the self registration admin settings form, I want to see the warning message on a row domain even when there are errors on other domains rows
+- PB-21908 As a signed-in administrator on the self registration admin settings form, I should not see an error when I enable the settings which previously were containing error
+- PB-21909 As a signed-in administrator on the self registration admin settings form, I want to see the new row having focus when I click on the add a new row button
+- PB-22006 - As a user finalising my recover I should be able to authenticate with SSO after my first sign out
+
+### Improved
+- PB-21920 As a user I want to use the new PwnedPasswords service when I setup an account, recover an account, change my passphrase or generate a organisation recovery key
+- PB-19793 As a user I want to see a consistent layout while signing-in to passbolt
+- PB-20561 As a user changing my passphrase I would like to see the passphrase field description translated
+- PB-21490 As an administrator I shouldn't see the "save required" banner after saving the SMTP settings
+- PB-20559 As an administrator I want clearer account recovery email notification descriptions relative to administrators
+- PB-21746 As a signed-in user I want to autofill french authentication form using french language as field name
+- PB-21612: Refactor fileController into a dedicated service
+- PB-19156: Replace setInterval by alarm in worker::waitExists
+
+### Fixed
+- PB-19649 As a user sharing a resource/folder, I should be able to see the number of users contained in groups search result
+- PB-21443 As a user on the administration section I would like to see the passbolt logo
+- PB-21476 As signed-in user, I want to copy content in my clipboard using passbolt over http
+- PB-22022 Fix height for the svg Passbolt logo
+
+### Maintenance
+- PB-19054 Remove the usage of the soon the soon unavailable global “window” object
+- PB-19292 As a user I want file downloads to be compatible with MV3 as well
+- PB-19299 Remove the usage of the soon the soon unavailable global “window” object in the unit tests
+- PB-19309 Remove the usage of the soon the soon unavailable global “window” object in the “Random” crypto helper
+- PB-19586 Refactor administration screen actions components
+- PB-19639 Refactor applications port connection bootstrap
+- PB-19650 Handle MV3 port re-connection
+- PB-19657 Add frameId to the ScriptExecution
+- PB-21370 Reduce repository size
+- PB-21435 Bootstrap MV3 service worker
+- PB-21486 Increase code coverage relative to the SMTP authentication method recently added in the SMTP settings admin screen
+- PB-21911 As a developer I want to know the source (author, url, license) of the src/react-extension/lib/Domain/Domains.js list
+
+
+## [3.8.2] - 2022-11-27
+### Fixed
+- PB-21565: As a logged-in user, I should decide to keep my session alive until I sign out
+- PB-21372: As a logged-in user, I should see folders without caret aligned
+
+## [3.8.0] - 2022-11-04
+### Added
+- PB-19151: As a logged-in user, I want to be able to use Solarized light and dark themes
+- PB-19220: As an administrator, I want to manage the organization SMTP settings in the administration workspace
+
+### Improved
+- PB-19229: As an administration, I want to see the passwords I entered in the MFA administration settings forms
+- PB-19226: As a logged-in user, I want to move resources to another folder with better performances
+- PB-19034: As a group manager I should see if there is more than 3 users in a group I'm editing
+- PB-19214: As a logged-in user, I want to see long entities names fitting in dialog
+
+### Fixed
+- PB-19228: As a user, I should see a feedback when the password or description fields content is truncated by a field limit
+- PB-19216: As a logged-in user, I want to populate a form from the Quick Access after the generation of new credentials
+- PB-20978: As a logged-in user, I want to autocomplete using reserved keywords
+
+### Security
+- PB-19537: As a user I want my password fields to be hidden in Passbolt forms when the form is being submitted
+- PB-18639: Restrict the port connection to our extension only for chrome
+
+### Maintenance
+- PB-19237: As a developer, I should see the “change user passphrase” stories in storybook
+- PB-18499: [MV3] Bootstrap MV3 build
+- PB-18600: [MV3] Migrate passphrase “remember me” code into a service
+- PB-18640: [MV3] Use alarms API instead of setTimeout and setInterval
+- PB-18641: [MV3] Use ProgressService instead of ProgressController
+- PB-18649: Use navigator.clipboard API instead of the copy to clipboard iframe mechanism
+- PB-18657: [MV3] Implement a scripting polyfill to ensure scripts and css can be injected with both manifest versions
+- PB-19231: Improve “select” styleguide component unit tests coverage
+- PB-19232: Implement browser extension app url parser
+- PB-19238: Move events create and get to dedicated controllers
+- PB-19558: Run storybook test against CI
+- PB-19586: Create email notifications actions
+
+## [3.7.3] - 2022-09-24
+### Security
+- PB-19090 Ensure we are spell-jacking proof for our input password
+
+## [3.7.2] - 2022-09-13
+### Fixed
+- PB-17158: As LU I want to see an entropy at 0 when the typed passphrase is exposed in a data breach
+- PB-18370: As LU I want to see the user settings yubikey form matching the common form style
+- PB-18417: As AN I want to see the server key change error with the proper design
+- PB-17154: As AD I want to see the input field in user directory UI with the proper design
+
+### Maintenance
+- PB-17720: As AD I wish the account recovery setting page not to refresh infinitely
+- PB-18498: As a developer I wish to build the background page in manifest version 2 with webpack
+
+### Improved
+- PB-16898: As AN I want to the full list of supported browser if I'm not using one
+- PB-18495: As LU I want to see effective date as tooltip of calculated relative date
+- PB-17152: As LU for a first install with chrome, I wish to see the 'eye catcher' with a good contrast
+- PB-18659: As LU I want to be able to give to folder names up to 256 characters
+- PB-17062: As a developer I can customize and test new theme on storybook
+- PB-16946: As a developer I want to have a new theme in Storybook
+
+## [3.7.1] - 2022-08-11
+### Fixed
+- PB-18420 As AN completing the setup I should understand what information the account recovery feature will treat
+
+### Maintenance
+- PB-18421 As a developer I can build a custom theme
+
+### Security
+- PBL-07-004 WP1: Finished account recovery aids future key compromise
+
+## [3.7.0] - 2022-07-26
+### Added
+- PB-15305 As LU I can access the mobile configuration page from the profile dropdown
+- PB-16925 As AN I can access the sign in form of my organization from passbolt.com
+- PB-17094 Mark account recovery feature as stable
+- PB-17095 As a user I can use passbolt in Spanish
+- PB-17095 As a user I can use passbolt in Lituanian
+
+### Improved
+- PB-14103 As a user I want to be able to use the autofill on dzb-bank.de
+- PB-14865 As LU I should see the warning messages on all dialogs with the same design
+- PB-16560 As LU I should be able to read textarea content of dialog without zooming it
+- PB-16641 As AD I want to have a clear error message when I import an account recovery organization key having an expiry date
+- PB-16665 As a user I should see proper error message when an unexpected error happened in the quickaccess
+- PB-16695 As a translator I can provide translation for languages that have multiple plurals
+- PB-16937 As group manager I want to see a dialog skeleton when I'm editing a group having a large number of members
+- PB-16942 Improve UI performance while adding a user to an existing group
+- PB-16944 Improve UI performance while sharing multiple passwords in bulk
+- PB-16991 Improve UI performance of the create group dialog
+- PB-16995 Improve UI performance while adding a user or group to the list of people to share a password with
+- PB-16998 As GM selecting a user to add to a group, I should see the latest member added
+- PB-16703 As a user I can autofill my username on ovh.com
+- PB-16757 As a user on a screen with low dpi I do not want to have a blur effect on the text
+- PB-16759 As a user I want to see a coherent UI on a screen with a large resolution
+
+### Fixed
+- PB-15049 As a user I should be able to complete the setup even if my machine and the server do not have a synchronized time
+- PB-15247 As a user I should not see passbolt setup/recover starting on pages having similar urls
+- PB-16169 As LU I want to see the feedback card call to actions aligned to the left
+- PB-16640 As AD I should be able to subscribe to the account recovery program right after configuring it for the organization
+- PB-16663 Misc style fixes on account recovery download generated key dialog
+- PB-16763  As LU I should be able to change my passphrase and download the new recovery kit
+- PB-16769 As LU I should be able to save passwords with an uri greater than 1024 from the in-form integration
+- PB-16793 Misc style fixes on account recovery administration page
+- PB-16807 As a user I should see the spinner Icon in the Autocomplete component
+- PB-16840 As a user I should not get an error if a gpg key is stored in the local storage with a gpg key expiry set to null
+- PB-16841 As AD I should not be able to import a public organization key having an expiration date
+- PB-16883 As AD I want to be able to select Groups parent group and Users parent group fields in the User Directory interface
+- PB-16926 As LU I should be able to see the right 'Modified' date property in the user sidebar
+- PB-16928 As a translator I should not have strings with unpredictable variables to translate
+- PB-17012 As a user if my domain changed, I should still see the login form after completing a setup, recover or an account recovery
+- PB-17013 As LU I should see the pre-loading / skeleton style properly
+- PB-17090 As a contributor I want to be able to switch theme in storybook
+- PB-17155 As a user I want to see my security token with the chosen colors on the account recovery complete screen
+
+### Maintenance
+- PB-13559 CI to report on code coverage
+- PB-13887 Prepare theme colors file to welcome the theme customization feature
+- PB-14271 Follow-up add className disabled for input text div
+- PB-14876 Add test for browser integration scroll parent on iframe
+- PB-16770 Update React to version 17
+- PB-16994 Remove check extension configured for browser integration bootstrap
+- PB-17029 As contributor I want to see a storybook home page
+- PB-17032 Remove translatable strings that are duplicated
+- PB-17071 Log verify gpg key error on authentication screen
+
+### Security
+- PB-15259 As LU sharing a resource/folder I want to see a unified tooltip that informs me about a user fingerprint
+- PB-16141 As AN importing a key during the setup, I should be warned when my passphrase is part of a data breach
+- PB-16152 As AD I can not generate an account recovery key with a password which is part of a data breach
+- PB-16154 As AN I cannot bypass the data breach assertion while completing the setup
+- PB-16595 As AD reviewing an account recovery request I should get an error if the domain stored in the encrypted password data is not similar to mine
+
+## [3.6.2] - 2022-06-02
+### Improved
+- PB-16651 As LU I want to get a clear message if I enroll to a disabled account recovery program
+- PB-15677 As LU I want to see openpgp assertions messages translated into my language
+
+### Fixed
+- PB-16736 Fix as AN I can accept a new server key
+
+## [3.6.1] - 2022-05-31
+### Improved
+- PB-16116 Change user creation dialog tips following the introduction of account recovery
+- PB-16119 As LU changing my security token I should be able to access documentation about phishing attacks
+- PB-16166 Change nested folders icons size
+- PB-16206 Change search bar padding
+- PB-16207 Change midgar theme hover background colour
+- PB-16208 Change midgar inset shadow highlight opacity
+- PB-16209 Change inside fields buttons radius
+- PB-16210 Change midgar hover/active grid lines backgrounds
+- PB-16211 Change midgar active button background
+- PB-16212 Change authentication loading spinner padding
+- PB-16213 As LU I should see a beta pill next to the account recovery menu entry
+- PB-16556 Change midgar sign-in form background
+- PB-16559 Change user settings account recovery layout
+- PB-16588 As GM editing group memberships, I want to see the tooltip icon aligned with the username
+- PB-16589 Change the attention required icon color in the user settings menu
+- PB-16592 Change quickaccess connecting state box background
+- PB-16603 Change grids font weight
+- PB-16605 Reduce letter spacings globally
+- PB-16639 As LU enrolling to the account recovery program I should be requested my passphrase
+
+### Fixed
+- PB-14278 As LU I should see warning messages on form fields
+- PB-16117 As AD I should not see the MFA status in the user sidebar if the user is not active
+- PB-16146 As AD I should not be able to copy the public key of a inactive user
+- PB-16558 As AN on unauthenticated page I should not see “about us” cta tooltip
+- PB-16604 As a LU I should be able to sort the grid by Username and URI
+- PB-16661 As a AN I can accept a server key rotation when the server key stored in the local storage cannot be parsed
+
+### Maintenance
+- PB-16155 Apply linter on all styleguide src code
+- PB-14951 Move common test material
+
+## [3.6.0] - 2022-05-23
+### Added
+- PB-12965 As AD I can enable account recovery for the organization
+- PB-13759 As AD I can rotate the organization account recovery key
+- PB-16193 As AD I can see a user account recovery requests history
+- PB-13012 As a user who lost its credentials I can request an account recovery
+- PB-13025 As AD I can approve or reject an account recovery request
+- PB-16117 As AD I can see a user MFA status in the details sidebar
+- PB-15033 As a user who lost its credentials I can request help to an administrator
+- PB-14672 As a user I should see the new design on the password workspace
+- PB-14673 As a user I should see the new design on the user workspace
+- PB-14674 As a user I should see the new design on the user settings workspace
+- PB-15026  As a user I should see the new design on the administration workspace
+- PB-14675 As a user I should see the new design on the authentication screens
+- PB-14677 As a user I should see the new design on the quickaccess application
+- PB-14960 As a user I should see the new design on the web integration inform menu
+- PB-14131 As AN performing a setup, I can import ECC keys
+
+### Improved
+- PB-14896 As AN performing a setup, I should not be able to import an already decrypted key
+- PB-14816 As AN performing a setup, I should not be able to use a passphrase which is part of a data breach
+- PB-14462 As AN on the authentication screens, I should see unexpected errors details
+- PB-14203 As LU on the application, I should see unexpected errors details
+- PB-13852 Improve encryption/decryption performances
+
+### Security
+- PB-13908 As AN performing a setup, I generate key of 3072 bits
+- PB-13908 As AN performing a setup, I cannot import keys weaker than 3072 bits
+
+### Fixed
+- PB-15241 As a user I can use the web integration inform menu in iframe authentication forms
+- PB-13901 As AN performing a sign-in, I should be prompted the server key changed only when the parsed key changed
+- PB-14130 As LU I can select multiple passwords filtered by folder
+- PB-14405 Fix misc sentences plural
+
+### Maintenance
+- PB-14155 Upgrade node to version 16
+- PB-13852 Upgrade openpgp.js to version 5
+- PB-14672 Increase storybook screens coverage
+- PB-14052 Increase browser extension code coverage
+
+## [3.5.2] - 2022-04-12
+### Improved
+- PB-14880 Debounce/throttle resource workspaces API requests
+
+## [3.5.1] - 2022-03-29
+### Fixed
+- PB-14378 Tab doesn't always have defined url, title and favIconUrl properties on chrome.tabs.onUpdated event listener callback
+
+## [3.5.0] - 2021-01-12
+### Added
+- PB-13161 As LU I should be able to passbolt with my Android mobile
+- PB-13161 As LU I should be able to passbolt with my IOS mobile
+- PB-13321 As a user I can use passbolt in Dutch
+- PB-13321 As a user I can use passbolt in Japanese
+- PB-13321 As a user I can use passbolt in Polish
+
+### Improved
+- PB-9402 As LU I should be able to create and import passwords having a name and username of 255 characters long
+- PB-13178 As a user visiting the web stores I should be aware that the application supports multiple languages
+- PB-9748 Optimize in-form menu integration performance by avoiding the CTA mutation observer to be called when passbolt manipulates the DOM itself
+
+### Security
+- PB-13162 Upgrade QRCode library to v1.5.0
+
+### Fixed
+- PB-12819 Fix as LU I should autofill/auto-save on forms having only a password field
+- GITHUB-136 Fix as LU I want to see the in-form menu CTA well positioned on pages having no scroll but CSS transformation
+- GITHUB-137 Fix as a user I should see the in-form menu CTA on modal having a z-index greater that 1000
+- PB-13268 As LU I should be able to put comma in my user names
+- PB-12873 As LU I shouldn’t see double escaped characters on the translation of strings including variables
+
+### Maintenance
+- PB-12955 Fix error and warning messages in unit test console
+- PB-13309 Upgrade dev dependency webpack-dev-server to v4.7.2
+
+## [3.4.0] - 2021-12-01
+### Added
+- PB-9826 As a user I want to use passbolt natively on Edge
+- PB-1743 As LU I want to tag resource using drag and drop
+- PB-8372 As LU I want to see the quickaccess application in dark mode
+- PB-8371 As LU I want to see the login screen in dark mode
+- PB-8371 As AN I want to see the recover & setup screens in dark mode as per my OS preferences
+
+### Improvement
+- PB-9374 As LU I want to see the loading text translated in all the setup/recover screens
+- PB-9374 As LU I want to see the next button translated in all the setup/recover screens
+- PB-8521 As LU I want to preview my passphrase when I sign-in with the quickaccess
+- PB-8521 As LU I want to preview the password protecting a kdbx when I import a kdbx protected by password
+- PB-9292 As LU I want to see the neat grids checkboxes
+- PB-8935 As LU changing my passphrase I want to see my security token when my current passphrase is requested
+- PB-9315 As AN I want to see some space between my name and my avatar on the login screen
+- PB-9318 As LU already logged in I don't want to see any error when I try to sign-in again
+
+### Fixed
+- PB-9316 Fix as LU I don't want to see a padding at the right of the quickaccess right after signing in
+- PB-9759 Fix as LU I don't want to see in form menu CTA if the associated input field was removed from the DOM
+- PB-9376 Fix as LU I want to see the sub-folders caret aligned with the sub-folders names
+- PB-8900 Fix as LU I don't want to see the sub-folders of the last folder displayed on top of the tags section
+- PB-9648 Fix as LU I don't want to see in form menu CTA displayed out of its associated input field
+- PB-9409 Fix as LU I don't want to see a dead link on the update my passphrase settings screen
+- PB-8934 Fix as LU I want to see the key UI in the key inspector screen of the profile instead of my account full name
+- PB-9410 Fix as LU changing my passphrase I should see the processing button aligned with the other form button
+- PB-9321 Fix spelling mistakes reported by the community
+- PB-9287 Fix as LU I want to see the text displayed in the recovery process "check your email" screen will the right size
+- PB-8939 Fix as LU I don't want to see the progress dialog current operation details on 2 lines
+- PB-9286 Fix as LU I want to see the locale dropdown field of the setup/recover screen well positioned
+- PB-8938 Fix as LU previewing a password in the resource details sidebar I don't want to see the password spread over 2 lines
+- PB-8937 Fix as LU previewing a password in the grid I don't want to see the password spread over 2 lines
+- PB-9285 Fix as LU uploading an invalid avatar I want to see an error having the same style as other form fields errors
+- PB-9331 Fix as LU I should not see the in-form menu CTA on the passbolt trusted domain
+- PB-9317 Fix theme selection screen does not work when server url is not a TLD
+
+### Security
+- SEC-315 fix Upgrade validator dependency
+
+### Maintenance
+- PB-8523 Ignore "src/css" folder in styleguide dependency npm package
+- PB-8432 Improve the way styles are loaded in storybook
+- PB-5897 Add language switch in storybook for all components
+- PB-8374 Lint background page source code
+
+## [3.3.1] - 2021-10-26
+### Fixed
+- PB-9388 Fix unnecessary organization settings API calls
+
+## [3.3.0] - 2021-10-20
+### Added
+- PB-7608 As LU I should be able to customize the password generator parameters
+- PB-7608 As LU I should be able to use emojis in the generated passwords
+- PB-7608 As LU I should be able to generate passphrase instead of passwords
+- PB-7606 As LU I should be able to see how many credentials are suggested for the page I’m currently on by looking at the passbolt icon in the toolbar
+- PB-7649 As LU I should be prompted to save a new credential when I generate a password for a new sign-up form
+- PB-7683 As LU I should be able to auto-fill a suggested credential directly from inside an authentication form
+- PB-7693 As LU I should be able to generate a password directly from inside a sign-up form
+- PB-8189 As a user should be able to use the application in German or Swedish
+- PB-6034 As LU I should be able to configure my mobile [experimental]
+
+### Improvement
+- PB-7639 As LU I should be able to import folders containing slash in their names
+- PB-8256 As LU I should be able to see the username and password fields pre-filled when I create a password with the quickaccess
+- PB-8088 As LU I should not see the quickaccess passphrase capture screen shaking when it appears
+- PB-7599 As AN installing the extension on chrome I should be able to see instructions regarding how to pin the extension in the toolbar
+- PB-7626 As LU I should be able to auto-fill a form by directly clicking on a credential suggested by the browser extension quickaccess without seeing the credential details first
+- PB-6132 As LU I should be able to see the role column inside the users grid
+- As LU I should be able to see my quickaccess with a larger wi
+
+### Fixed
+- PB-7813 Fix as LU I shouldn't be able to export from the folders section label if the exports feature is disabled
+- PB-8306 Fix as LU I should see a content skeleton during loading on the share dialog of the application
+- PB-8525 Fix as LU signing-in for the first time with the quickaccess I should be able  to see the tags category
+- PB-7364 As GM I should not see the group name editable in the group edit dialog
+
+### Security
+- PB-8368 Password secret complexity calculation algorithm should take in account graphemes
+- PB-8453 Mark password fields that are viewable as not auto-completable
+- PB-8455 Update dependencies, remove unused grunt-contrib-concat
+
+### Maintenance
+- PB-8367 Add code coverage automation
+- PB-8492 Optimize passbolt-styleguide dependency package size
+- PB-7575 Remove jQuery dependency
+- PB-6057 Remove underscore dependency
+
+## [3.2.3] - 2021-06-07
+### Fixed
+- PB-7561 Fix as LU I should import CSV containing non latin1 characters
+- PB-7563 Update passbolt styleguide dependencies
+
+## [3.2.2] - 2021-05-31
+### Fixed
+- PB-7569 As AN with an unconfigured extension on chrome I should not get an error clicking on the toolbar passbolt icon
+
+## [3.2.1] - 2021-05-26
+### Added
+- PB-5054 French internationalization
+- PB-5526 As AD I can manage the subscription key from the administration panel
+
+### Fixed
+- PB-5366 Fix share autocomplete search results can be invalid
+- PB-5498 Fix image version displayed after avatar upload
+- PB-5861 Fix serializePlaintextDto should validate secret maxlength if resourceTypeId is set to legacy type, or not set
+- PB-5909 Fix as LU aborting a preview operation I should not see an empty preview
+- PB-5983 Fix as LU I can import passwords with non latin characters
+- PB-6008 Fix as LU I should get a feedback in the quickaccess when I try to autofill credentials on a page, but an error occurred
+- PB-6080 Fix add favorites fetch payload error
+
+### Improvement
+- PB-5443 As LU I should get a visual feedback when the maximum length of the secret fields is reached so that I do not loose data
+- PB-5455 As LU selecting a description order to copy it should not enter the description edit mode
+- PB-5496 As LU updating my avatar I should see the error message if an error occurred
+- PB-5857 As LU I should be able to change the user role in the create/edit user dialog by clicking on the checkbox label
+
+### Security
+- PB-6012 Fix the quickaccess suggestion component should not suggest TLD entries (PB-01-002)
+
+### Maintenance
+- PB-5069 Migrate moment to Luxon
+- PB-5884 Move quickaccess front end code to the styleguide repository
+- PB-5887 Fix semantic gap in naming conventions in styleguide
+- PB-5959 Bump webpack to v5
+
+## [3.1.0] - 2021-03-17
+### Added
+- PB-4924 As LU I should be able to edit my security token
+- PB-4917 As LU I should be able to change my passphrase
+- PB-3550 As LU I can preview a password in the passwords grid
+- PB-3575 As LU I can preview a password in the quick access
+- PB-3570 As LU I can preview a password in the password details sidebar
+
+### Fixed
+- PB-5437 As LU I should see the group edit dialog when I follow a group edit permalink
+- Allow resizing of textarea
+
+## [3.0.7] - 2021-03-04
+### Fixed
+- GITHUB-156 Fix import/export and legacy API v2
 
 ## [3.0.6] - 2021-03-02
 ### Fixed
@@ -581,12 +1527,53 @@ This project adheres to [Semantic Versioning](http://semver.org/).
 - AP: User with plugin installed
 - LU: Logged in user
 
-[Unreleased]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.6...HEAD
-[3.0.6]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.0...v3.0.6
-[3.0.5]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.0...v3.0.5
-[3.0.4]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.0...v3.0.4
-[3.0.3]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.0...v3.0.3
-[3.0.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.0...v3.0.2
+[Unreleased]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.6.0...HEAD
+[4.6.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.5.2...v4.6.0
+[4.5.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.5.1...v.4.5.2
+[4.5.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.5.0...v.4.5.1
+[4.5.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.4.2...v.4.5.0
+[4.4.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.4.0...v.4.4.2
+[4.4.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.3.1...v.4.4.0
+[4.3.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.3.0...v.4.3.1
+[4.3.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.2.0...v.4.3.0
+[4.2.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.1.2...v.4.2.0
+[4.1.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.1.0...v4.1.2
+[4.1.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.0.4...v4.1.0
+[4.0.4]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.0.3...v4.0.4
+[4.0.3]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.0.1...v4.0.3
+[4.0.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v4.0.0...v4.0.1
+[4.0.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.12.1...v4.0.0
+[3.12.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.12.0...v3.12.1
+[3.12.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.11.2...v3.12.0
+[3.11.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.11.0...v3.11.2
+[3.11.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.10.0...v3.11.0
+[3.10.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.9.2...v3.10.0
+[3.9.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.9.0...v3.9.2
+[3.9.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.8.0...v3.9.0
+[3.8.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.7.3...v3.8.0
+[3.7.3]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.7.2...v3.7.3
+[3.7.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.7.1...v3.7.2
+[3.7.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.7.0...v3.7.1
+[3.7.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.6.2...v3.7.0
+[3.6.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.6.1...v3.6.2
+[3.6.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.6.0...v3.6.1
+[3.6.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.5.2...v3.6.0
+[3.5.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.5.1...v3.5.2
+[3.5.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.5.0...v3.5.1
+[3.5.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.4.0...v3.5.0
+[3.4.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.3.1...v3.4.0
+[3.3.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.3.0...v3.3.1
+[3.3.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.2.3...v3.3.0
+[3.2.3]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.2.2...v3.2.3
+[3.2.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.2.1...v3.2.2
+[3.2.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.1.0...v3.2.1
+[3.1.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.7...v3.1.0
+[3.0.7]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.6...v3.0.7
+[3.0.6]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.5...v3.0.6
+[3.0.5]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.4...v3.0.5
+[3.0.4]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.3...v3.0.4
+[3.0.3]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.2...v3.0.3
+[3.0.2]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.1...v3.0.2
 [3.0.1]: https://github.com/passbolt/passbolt_browser_extension/compare/v3.0.0...v3.0.1
 [3.0.0]: https://github.com/passbolt/passbolt_browser_extension/compare/v2.13.8...v3.0.0
 [2.13.8]: https://github.com/passbolt/passbolt_browser_extension/compare/v2.13.7...v2.13.8