We ran further full security audits across login, sessions, integrations, and billing, and closed the findings. As with our previous hardening passes, everything here is invisible in normal use — nothing changes in how you work in Stela. Some of the areas we tightened: Stronger login and session protection — We added extra safeguards around multi-factor authentication and the full session lifecycle, from sign-in through sign-out. Safer handling of external data — Data that reaches Stela from outside sources now passes through additional layers of validation and isolation before it touches anything else. Tighter, reviewed access controls — We completed a full review of permissions across the app, tightened them so each action is limited to the roles meant to have it, and documented the model so it stays that way.