In 3.1.0, escape sequences manually handled with _term.drain_escape().
Risk: If user drags file while the program is in sub-menu (like entering a password), path can be partially read as the password.
Fix: Ensure terminal buffer is cleared immediately before any prompt_secret call to prevent "ghost" characters from D&D logic leaking into password buffer.
In 3.1.0, escape sequences manually handled with _term.drain_escape().
Risk: If user drags file while the program is in sub-menu (like entering a password), path can be partially read as the password.
Fix: Ensure terminal buffer is cleared immediately before any prompt_secret call to prevent "ghost" characters from D&D logic leaking into password buffer.