UPDATE about HavenoDEX / RetoSwap from Haveno lead dev Woodser:
v1.5 is tagged. This version fixes a critical exploit that allowed an attacker to manipulate the initialization protocol and create compromised multisig trade wallets before funds were deposited.
Following the incident, critical paths in the code have been reviewed for additional potential vulnerabilities leading up to multisig creation. Defensive checks are added in 
to verify peer identities against known public key rings for strict cryptographic continuity. Anyone is welcome to audit the code for further vulnerabilities, and we ask that findings be disclosed responsibly.
This version also updates Tor and improves its permissions on Windows.
Full release notes: 
What's Changed
- Always verify peer identity against known public key rings by woodser #2315
- Update Tor Browser to 15.0.13, binary to 0.4.9.8 #2321
- Update demo video to v1.4 by fxrstor #2319
- Update documentation links with standardized hyphens #2320
GitHub
core: always verify trade message sender against pub key rings by woodser · Pull Request #2315 · haveno-dex/haveno
Decentralized P2P exchange platform built on Monero and Tor - core: always verify trade message sender against pub key rings by woodser · Pull Req...
GitHub
Release v1.5.0 · haveno-dex/haveno
build: bump version to 1.5.0 (#2323)