To play nicer with autocrypt users GpgOL now supports two new options:

• Import any keys included in mails:
  • Imports keys from autocrypt headers or keys attached to a mail.
  • Default off because this opens the user up to keyring pollution.

The "Automatically secure messages" option now has a new modifier:

• Also with untrusted keys:
  • This toggles autosecure even if uids with unknown validity would be used.
  • Default off for various reasons which we should not discuss here.