| Version | Supported |
|---|---|
| 1.2.x | ✅ Yes |
| 1.1.x | ✅ Yes |
| 1.0.x | ✅ Yes |
| < 1.0 | ❌ No |
SaneClip includes several security features:
- Optional biometric authentication to access clipboard history
- 30-second grace period after authentication
- Falls back gracefully when Touch ID unavailable
- Detects quick-clear patterns (items copied then cleared within 3 seconds)
- Automatically removes likely password manager entries from history
- Configurable via Settings
- All clipboard data stored locally in
~/Library/Application Support/SaneClip/ - 100% on-device — no cloud sync, no network calls
- No analytics or telemetry
- App is signed with hardened runtime
- Notarized by Apple
- No code injection vulnerabilities
If you discover a security vulnerability, please:
- Do NOT open a public GitHub issue
- Email security concerns to: hi@saneapps.com
- Include:
- Description of the vulnerability
- Steps to reproduce
- Potential impact
- Suggested fix (if any)
- Acknowledgment: Within 48 hours
- Initial assessment: Within 1 week
- Fix timeline: Depends on severity, typically 1-4 weeks
- We will coordinate with you on disclosure timing
- Credit will be given unless you prefer anonymity
- We aim to fix critical issues before public disclosure
- Enable Touch ID if you handle sensitive data
- Review excluded apps to ensure password managers are blocked
- Clear history before sharing your screen
- Keep updated — enable automatic updates in Settings
SaneClip is designed for individual users on personal Macs. It is NOT designed for:
- Enterprise/multi-user environments (no access controls)
- Highly sensitive data (consider dedicated password managers)
- Air-gapped or compliance-regulated systems
SaneClip uses these third-party dependencies:
| Package | Purpose | Security Review |
|---|---|---|
| Sparkle | Auto-updates | Widely used, EdDSA signed |
| KeyboardShortcuts | Global hotkeys | Well-maintained |
All dependencies are pinned to specific versions.