OpSec

Detection patch & Quality of Life Updates

HTTP Fingerprinting Patch

• Patched a detection vector in OpSec's local URL blocking. The redirect handling code OpSec inherited from ExploitPreventer allowed for discrepancies from a vanilla client's response.

New Features

• Extended Minecraft support all the way back to 1.20 release (Oldest known key resolution exploitable version). Block Local URLs is disabled on 1.20.1 due to an unreliable mixin conflict with a legacy Meteor client version.
• Translations for OpSec's UI. New bundled languages include: German, Spanish, Hindi, Japanese, Korean, Russian, Vietnamese, Simplified Chinese and Traditional Chinese.

Other Changes

• New mod icon.
• Removed the ability to channel spoofing toggle since it's already handled by vanilla spoofing and whitelist behavior, making it harder for user misconfiguration.
• Removed identity tab and moved brand section to protection tab,
• Removed unused icons, tamper warning's dismiss button, and consolidated /opsec command feedback styling.
• Chat signing alerts now gate behind debug alerts.
• Dropped the redundant hardcoded vanilla keybind list and read the actual vanilla defaults from the running Minecraft version instead.
• Meteor Fix toggle is now hidden on Minecraft 26.1+ due to Meteor's removal of the problematic mixin on later versions.
• Bumped Mod Menu dependency.
• Cleaned up ~400 lines of dead code.

For Minecraft Fabric 1.20 to 26.1.2 Full Changelog: https://github.com/aurickk/OpSec/compare/V1.1.3...V1.1.4