there is a discord server with an @everyone in case of future important updates
v1.8.7 (2023-07-23) - CVE-2023-38501 - reflected XSS
v1.8.2 (2023-07-14) - CVE-2023-37474 - path traversal (first CVE)
- all serverlogs reviewed so far (5 public servers) showed no signs of exploitation

new features

search for files by upload time
option to display upload time in directory listings
- enable globally with -e2d -mte +.up_at or per-volume with volflags e2d,mte=+.up_at
- has a ~17% performance impact on directory listings
dynamic range compressor in the audioplayer settings
--ban-404 is now default-enabled
- the turbo-uploader will now un-turbo when necessary to avoid banning itself
- this only affects accounts with permissions g, G, or h
  - accounts with read-access (and accounts with write-only access) are no longer affected by --ban-404 or --ban-url

bugfixes

#55 clients could hit the --url-ban filter when uploading over webdav
- fixed by limiting --ban-404 and --ban-url to accounts with permission g, G, or h
fixed 20% performance drop in python 3.12 due to utcfromtimestamp deprecation
- but 3.12.0 is still 5% slower than 3.11.6 for some reason
volume listing on startup would display some redundant info

timeout for unfinished uploads increased from 6 to 24 hours
- and is now configurable with --snap-drop

download link	is it good?	description
copyparty-sfx.py	✅ the best 👍	runs anywhere! only needs python
a docker image	it's ok	good if you prefer docker 🐋
copyparty.exe	⚠️ acceptable	for win8 or later; built-in thumbnailer
u2c.exe	⚠️ acceptable	CLI uploader as a win7+ exe (video)
copyparty32.exe	⛔️ dangerous	for win7 -- never expose to the internet!
cpp-winpe64.exe	⛔️ dangerous	runs on 64bit WinPE, otherwise useless