RegisterViewModel is never disposed in the recovery path: SelectionViewModel.RegisterViewModel is never set when e.IsRecovered == true, and CredentialsResetViewModel.Dispose() only detaches an event handler. This can leak the current authentication view model and leave credential state alive longer than intended. Consider explicitly disposing RegisterViewModel in this overlay's Dispose() (or ensure it is always owned/disposed by another view model in both paths).

This change makes V3 vaults fail validation (since LATEST_VERSION is now V4). The SDK login flow treats NotSupportedException as “migratable” and will open a migration UI, but the current migrator selection only supports V1→V2 and V2→V3 (no V3→V4), which will lead to a runtime failure when attempting to migrate a V3 vault. Either keep V3 as a supported unlock version for now, or add a V3→V4 migrator and update migrator selection accordingly.

The repo has migration tests covering V1→V2 and V2→V3, but this PR advances LATEST_VERSION to V4 without adding a corresponding migration path/tests. Please add automated coverage for the expected behavior with V3 vaults (either successful unlock as supported, or V3→V4 migration) so regressions are caught early.

The seeding logic overwrites index 0 for every key in _loginKeySequence.Keys. When the login flow contains multiple factors (e.g., first-stage + second-stage), the final value at index 0 will be the last key (likely the second-stage), not the first-stage key as the comment intends. This will produce an invalid combined passkey when RegisterViewModel later adds the new second-stage key.