github shaarli/Shaarli v0.13.0

11 months ago

Major changes:

  • Security: Fix XSS vulnerability in tag search
  • Drop support for PHP 7.1, 7.2 and 7.3

Added

  • Docker build: add ARM64 platform and bump Github action version by @ArthurHoaro in #1965
  • github actions: build OCI images that contain both amd64 and armv7 by @nodiscc in #1962
  • Expose tags_separator config through /info API by @amadeous in #1997
  • tools: github actions: build docker images on pull requests by @nodiscc in #2014
  • doc: server configuration: add PHP 8.2 to PHP compatibility table by @nodiscc in #2021
  • Add shaarli-stack theme to Community-and-related-software.md by @dajare in #2028
  • doc: document general.download_max_size/timeout configuration settings by @nodiscc in #2036
  • doc: troubleshooting: automatic title retrieval fails when it is set by javascript by @nodiscc in #2037

Changed

  • doc: update release procedure (merge the latest release to the release branch) + use the release branch for latest release version detection by @nodiscc in #1960
  • Update german translation by @bschwede in #1969
  • Update Server-configuration.md by @reinboldg in #1973
  • Update Community-and-related-software.md by @nlegaillart in #1984
  • doc: improve docs on usage of OR operator in tags search by @nodiscc in #1987
  • docker: nginx: listen on IPv6 in addition to IPv4 by @cerebrate in #1983
  • Doc update, WebSub (formerly PubSubHubbub) plugin by @clach04 in #2008
  • doc: community/related software/integration with other platforms: add link to shaarli debian package by @nodiscc in #2018
  • replace mkdocs with sphinx/myst-parser for HTML documentation generation, documentation improvements by @nodiscc in #2025

Fixed

Removed

Security

  • Fix XSS vulnerability in tag search by @ArthurHoaro in #2039
  • tools: run trivy vulnerability scanner on the 'latest' docker image by @nodiscc in #1980
  • github actions: fix value of TRIVY_TARGET_DOCKER_IMAGE by @nodiscc in #1989
  • tools/CI: scan repository with trivy security scanner (yarn.lock, composer.lock) by @nodiscc in #1998
  • tools/tests: update trivy to v0.44.0 by @nodiscc in #2012
  • docker: update base alpine docker image to 3.16.7 by @nodiscc in #2024

Full Changelog: v0.12.2...v0.12.3

Don't miss a new Shaarli release

NewReleases is sending notifications on new releases.