I integrated many pull requests from contributors (thanks to all magmi developper community, you’re doing a great job).
I just changed the security code based on Liam Witlshire patch to use magento database password to perform magmi embedded WWW auth.
So now, all security alerts should be closed on latest magmi master branch (up to date both on GitHub & SF Git repos).
The 0.7.22 release is to be out this week, including more than 1 year of commits & refactorings.
Thanks to all people supporting magmi, while the releases were not done, the code was always updated ,so the project is still very active.