1.6.7
- Fixed queue lookup for posts/products after removing meta_query from selection logic.
- Manual Publish Next now scans newest unflagged items, matching Manage Posts/Products.
- Automatic publishing scans eligible batches until no unflagged item remains.

1.6.6
- Fixed Plugin Check findings from the 2026-06-06 report.
- Renamed the public plugin name to avoid restricted WordPress.org terms.
- Removed manual textdomain loading for WordPress.org compatibility.
- Reworked log writing to use WP_Filesystem helpers and removed legacy plugin-folder chmod handling.
- Reworked flag management screens to avoid metadata-filter list queries and to escape generated pagination/rows.
- Added nonce-safe screen detection for Welcome and flag-management admin scripts.
- Prefixed remaining global helper functions.
- Replaced legacy random fallback fallback usage with wp_rand().
- Removed unexpected Markdown repo-candidate file from the plugin root.
- Reduced readme tags to five and shortened the short description.
- Removed short URL references and production deprecated warning calls from the bundled HTML-to-Markdown library copy.

1.6.5
- Prepared repository-candidate hardening pass.
- Added encrypted-at-rest storage for private posting keys and endpoint fallback credentials.
- Added migration from legacy plaintext secret options to encrypted options when OpenSSL AES-256-GCM is available.
- Removed shared/default endpoint secrets from code and stopped displaying endpoint secrets in settings fields.
- Kept WordPress admin notices visible above the Welcome page instead of globally suppressing notices.
- Updated plugin headers/readme metadata for WordPress 7.0 testing target.
- Added textdomain loading and a POT translation template scaffold.

1.6.4
- Added multilingual Welcome page content based on WordPress locale: EN, PL, ES, IT and FR.
- Improved Welcome page layout and default top-level plugin page.

1.6.3
- Made the Welcome screen the default top-level plugin page.
- Added a professional tabbed Welcome page with Blurt logo, account registration links, publishing guidance, frontends and security notes.

1.6.2
- Removed shared default endpoint token and HMAC secret.
- Added individual endpoint key generation.
- Added Blurt custom_json proof for generated fallback credentials.
- Added endpoint registration support.
- Added WordPress.org-style readme.txt.
- Added setting sanitization callbacks.
- Moved logs to wp-content/uploads/blurt-publisher-logs.
- Added nonce/capability checks to the error console.
