2.7.0

• [Changed] Event hash no longer includes next execution timestamp, making it stable across reschedulings
• [Fixed] "In queue" cron events failing to delete, run, or pause with "wrong_nonce" error
• [Fixed] Bulk actions (remove, pause, unpause) failing due to parallel AJAX race conditions
• [Fixed] Undefined $errors variable when removing non-protected events
• [Security] Added nonce verification to rerender AJAX endpoints to prevent CSRF
• [Security] Added capability check to form provider endpoints
• [Security] Improved output escaping in implementation code and view templates

2.6.4

• Security: Improved event hook sanitization using sanitize_text_field() to prevent XSS while allowing valid hook characters
• Security: Added validation for schedule intervals to prevent invalid values
• Security: Strengthened authorization checks in admin screen methods
• Security: Enhanced output escaping in event row view template
• Security: Standardized nonce verification in AJAX handlers with better input validation
• Security: Added proper validation and sanitization for server settings
• Security: Fixed unsanitized input in FormProvider.php schedule slug handling
• Fixed: Fixed PHP 8.4 deprecation warning with trigger_error() by replacing with exception
• Fixed: Fixed TypeError on PHP 8.3+ where count() was called on non-countable value in Event implementation
• Changed: Updated WordPress Coding Standards to version 3.2 and resolved all coding standard warnings
• Changed: Renamed reserved keyword parameters for better PHP compatibility ($protected to $is_protected, $new to $new_event)

2.6.3

• Fixed: Fixed translation loading issue that was triggered too early in AdminScreen constructor.
• Fixed: Fixed AdminScreen instance inconsistency that prevented CSS and JS assets from loading on plugin page.
• Fixed: Fixed schedules variable conflict that prevented schedules table from displaying properly.
• Changed: Merged ScreenRegisterer class with AdminScreen class for better code organization.

2.6.2

• Fixed: Fixed stable package creation issues - moved package exclusions to .distignore and ensured vendor and assets directories are included.

2.6.1

• Changed: Exclude Claude configuration files from plugin distribution exports.
• Changed: Add composer and yarn build steps to stable release workflow.

2.5.10

• [Fixed] Fixed security issue causing subscribers could see the schedules or events.

2.5.9

• [Fixed] Missing plugin assets in package.

2.5.8

• [Fixed] Undefined variable typo.

2.5.7

• [Fixed] Plugin package.

2.5.6

• [Fixed] Security vulnerability.