Has this package been orphaned? It seems unlikely that a security tool such as a password manager would lag one year behind upstream's current version?
Should we just call it quit and switch to the upstream AppImage? I'm not being snarky here - this is a safety issue. A word of reassurance (or of any other news) from the maintainer would be welcome.