What's Changed
- Use strings.Cut in a few places by @JRaspass in #971
- Fix non-constant format strings in t.Fatalf by @JRaspass in #972
- Apply fieldalignment fixes to optimize struct memory layout by @pixel365 in #974
- go 1.24 by @pkieltyka in #977
- chore: delint ioutil usage by @costela in #962
- Fixed typo in Router interface definition by @mithileshgupta12 in #958
- Add support for TinyGo by @efraimbart in #978
- Exclude middleware/profiler.go in TinyGo, as there's no net/http/pprof pkg by @cxjava in #982
- Make use of strings.Cut by @scop in #1005
- Change install command format to code block by @sglkc in #1001
- Correct documentation by @mrdomino in #992
Security fix
- Fixes GHSA-vrw8-fxc6-2r93 - "Host Header Injection Leads to Open Redirect in RedirectSlashes" commit
- a lower-severity Open Redirect that can't be exploited in browser or email client, as it requires manipulation of a Host header
- reported by Anuraag Baishya, @anuraagbaishya. Thank you!
New Contributors
- @pixel365 made their first contribution in #974
- @mithileshgupta12 made their first contribution in #958
- @efraimbart made their first contribution in #978
- @cxjava made their first contribution in #982
- @sglkc made their first contribution in #1001
- @mrdomino made their first contribution in #992
Full Changelog: v5.2.1...v5.2.2