PlayerVaultZ

[1.1.0] - 2026-05-27

Search crash — Replaced the WesJD AnvilGUI library with Paper's native MenuType.ANVIL API. The old library used versioned NMS packages (org.bukkit.craftbukkit.v1_21_R5) that do not exist in Paper 26.1.x, causing a NoClassDefFoundError whenever a player opened the search GUI.
Search field pre-filled with "Spyglass" — The anvil rename field now starts blank instead of showing the item's material name.
Security config not loading — YAML key paths in SecurityConfig were mismatched (e.g. security.input-validation.* vs the actual item-validation.*), causing all security settings to silently fall back to defaults.
logAllTransactions field rename — AuditLogger referenced a field that had been renamed to logTransactions, which would have caused a compile error on a clean build.
Plugin uptime showing Unix epoch — getUptime() was returning System.currentTimeMillis() directly instead of subtracting the start time, showing billions of hours of uptime.
ItemFlag.HIDE_ITEM_SPECIFICS — Replaced with HIDE_ADDITIONAL_TOOLTIP in IconSelectorGUI and VaultSelectorGUI to match the renamed enum in Paper 1.21.x.

Security system — Stripped unimplemented Phase 3–5 dead code (duplication detection, anomaly detection, honeypot vaults). The three active layers (item validation, rate limiting, audit logging) are unchanged.
checkVaultAccess — Switched from CompletableFuture.supplyAsync() to completedFuture() so the security check is synchronous and cannot arrive after the inventory event has already been processed.
SecurityViolationType — Removed unused enum values: DUPLICATION_DETECTED, ANOMALOUS_BEHAVIOR, HONEYPOT_ACCESS, SUSPICIOUS_TIMING.

AnvilGUI dependency — net.wesjd:anvilgui removed from pom.xml. The CodeMC Maven repositories that existed solely for this dependency are also removed.

security.yml — Removed three sections that were never read by the plugin: performance, bypasses, and unused audit sub-keys (log-suspicious-patterns, file-prefix, max-file-size-mb, max-files, include-metadata).
config.yml — Removed security.audit-logging (dead key; audit is controlled by security.yml → audit.enabled).