Hi!

We're thrilled to announce VLS v0.13 "Celestial Citadel"! This release brings a fresh wave of improvements designed to enhance configuration, boost security, and streamline our core functionalities.

Key Highlights:

  • Enhanced Configuration: Now you can configure SimplePolicy values via vlsd2.toml.
  • Robust Core Improvements: New methods for channel ID derivation and tighter controls on database IDs help safeguard channel creation.
  • Better Testing & Security: Added basic fuzzing for vls-core and updates to critical components like the STM32 signer and time crate.
  • Streamlined Architecture: Refactored lightning-storage-server and updated dependencies (including LDK 0.0.123 with rust-bitcoin 0.30) for improved performance and maintainability.

While this release is secure against the most common ways a malicious node may steal user funds, it does not yet capture all scenarios in which a user might lose funds.

We recommend running VLS in testnet or with limited funds in production until we reach our production release milestone and you are comfortable it adequately protects against all scenarios relevant to your use case.

See here for an independent security review of our architecture and code, up until January 2023.

We invite developers and Lightning enthusiasts to try out v0.13 and share your feedback. Join our discussions on Matrix and help shape the future of VLS on our GitLab issues page.

Looking Ahead

Our roadmap is packed with exciting features, including Disaster Recovery, extended protocol support, and advanced multi-signer capabilities. Stay tuned for more updates as we continue to push the boundaries of secure Lightning infrastructure.

For a detailed list of changes, please check out the CHANGELOG.

Help us Secure the Lightning Network

Help us improve the security of the Bitcoin Lightning Network:


Happy Signing!