joint_striker

The answer is: yes

That's a bit of a contradiction since you can still replace KeePassXC with KeePass, and vice-versa, but I assume that your primary concern might be plugin support.

Sort of, but you still need a malicious plugin, which will eventually be catalogued as malware by security solutions, whereas the passwordless export was a matter of just changing text without running any extra code.

Sort of, but you still need a malicious plugin, which will eventually be catalogued as malware by security solutions, whereas the passwordless export was a matter of just chngong text without running any extra code.

What is funny is how you bend the parameters of your argument by constantly moving the goal post. There is an ocean of difference between a backdoor integrated in a trusted software solution, which won't need code execution, evasion nor concealment, and an actual piece of catalogued malware that will trip as many alarms as the system has. It's not just a matter of perspective, you're just in denial mode still.

You can. Whitelist by signature, block everything else.

KeeThief... what a joke

Changes from 2.53 to 2.53.1: When testing a KDF ('Test' button in the database settings dialog), KeePass now spawns a child process that performs the KDF computation (which allows to cancel the test more cleanly in the case of excessive parameters; security is unaffected, because dummy data is used for the test). Removed the 'Export - No Key Repeat' application policy flag; KeePass now always asks for the current master key when trying to export data. Minor other improvements.