❌

Normale weergave

Ontvangen β€” 8 November 2024 ⏭ Selfhosted

BookStack v24.10.1

βœ‡BookStack
Door: ssddanbrown
8 November 2024 om 15:00

Links

Full List of Changes

This release contains the following fixes and changes:

  • Updated System CLI with fixes and updated dependencies. (#5312)
  • Fixed update-url command not updating revisions & drafts. (#5292)
  • Fixed the namespaces of some tests. Thanks to @LordSimal. (#5291, #5071)
  • Fixed misaligned user input validation. (#5263)
  • Updated setting categories to validate by for existing views, allowing custom categories to be used via the theme system. Thanks to @LachTrip. (#5255, #5251)
  • Updated translations with latest Crowdin changes. (#5250)

  •  
  • ↗️
Ontvangen β€” 6 November 2024 ⏭ Selfhosted

v11.2.1

βœ‡Directus
Door: github-actions[bot]
6 November 2024 om 20:43

πŸ› Bug Fixes & Optimizations

  • @directus/app
  • @directus/api
    • Skipped collection exists check when creating collections and folders (#23991 by @licitdev)

πŸ“¦ Published Versions

  • @directus/app@13.3.2
  • @directus/api@23.1.2

  •  
  • ↗️
Ontvangen β€” 5 November 2024 ⏭ Selfhosted

v11.2.0

βœ‡Directus
Door: github-actions[bot]
5 November 2024 om 23:21

✨ New Features & Improvements

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Fixed disabled state of the "Add File" empty state button for users without permissions (#23947 by @osmandvc)
    • Improved the loading and unloading speed of the data model pages (#23976 by @hanneskuettner)
    • Fix permission generation for Shares (#23716 by @Nitwel)
    • Fixed regression to item count displaying after vue-i18n upgrade (#23973 by @hanneskuettner)
  • @directus/api
  • @directus/system-data
  • @directus/types

πŸ“¦ Published Versions

  • @directus/app@13.3.1
  • @directus/api@23.1.1
  • @directus/composables@11.1.3
  • create-directus-extension@11.0.5
  • @directus/env@3.1.3
  • @directus/extensions@2.0.4
  • @directus/extensions-registry@2.0.4
  • @directus/extensions-sdk@12.1.2
  • @directus/memory@2.0.4
  • @directus/pressure@2.0.3
  • @directus/storage-driver-azure@11.1.0
  • @directus/storage-driver-cloudinary@11.1.0
  • @directus/storage-driver-gcs@11.1.0
  • @directus/storage-driver-s3@11.0.3
  • @directus/storage-driver-supabase@2.1.0
  • @directus/system-data@2.1.1
  • @directus/themes@1.0.3
  • @directus/types@12.2.1
  • @directus/utils@12.0.3
  • @directus/validation@1.0.3

  •  
  • ↗️
Ontvangen β€” 29 Oktober 2024 ⏭ Selfhosted

v11.1.2

βœ‡Directus
Door: github-actions[bot]
29 Oktober 2024 om 16:26

⚠️ Potential Breaking Changes

  • @directus/sdk

✨ New Features & Improvements

  • @directus/app
  • @directus/api
  • @directus/system-data
  • @directus/specs
  • @directus/types

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Fixed display error when selecting kanban layout for the first time (#23927 by @SP12893678)
    • Ensured elements on login page are correctly truncated when not enough space is available (#23746 by @Julias0)
    • Added condition to only show the "Create Dashboard" if the user has the correct permissions (#23828 by @SP12893678)
    • Added save options to role and policies item pages (#23820 by @ubercj)
    • Hide alias fields in the export sidebar (#23866 by @licitdev)
    • Fixed tags interface to correctly handle reset whitespace option (#23829 by @SP12893678)
    • Ensured new operation can reuse same key as previously deleted one in current flow editing session (#23874 by @SP12893678)
    • Fixed an issue where the WYSIWYG interface would reload with every keystroke if custom formats are given (#23881 by @SP12893678)
    • Updated dependencies (#23819 by @renovate)
    • Fixed pasting of multiple, comma separated numbers into the filter input (#23911 by @hanneskuettner)
  • @directus/api
    • Updated dependencies (#23819 by @renovate)
    • Fixed an issue which prevented the deletion of some nested collections when applying a snapshot (#23851 by @DanielBiegler)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
    • Added missing fields for directus_fields to GraphQL schema, SDK and docs (#23905 by @br41nslug)
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
    • Fixed an issue where the mail sender is not displayed correctly for instances that use special characters in project name (#23889 by @shaietz)
    • Fixed query time logging leaking memory for failed queries (#23926 by @SP12893678)
    • Added is_indexed to schema snapshot (#23861 by @ComfortablyCoding)
  • create-directus-project
  • create-directus-extension
  • @directus/extensions-sdk
  • @directus/memory
  • @directus/storage-driver-azure
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/storage-driver-cloudinary
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
    • Fixed the cloudinary storage driver to work again with the server health check (#23821 by @ComfortablyCoding)
  • @directus/storage-driver-gcs
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/storage-driver-s3
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/storage-driver-supabase
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/themes
  • @directus/update-check
  • @directus/storage-driver-local
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/storage
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/sdk
    • Added missing fields for directus_fields to GraphQL schema, SDK and docs (#23905 by @br41nslug)
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
    • Improved SDK relation function type (#23877 by @br41nslug)
    • Ensured failing GraphQL requests are properly handled by throwing an error and exposing errors and data information (#22666 by @GuyShane)
  • @directus/specs
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
  • @directus/system-data
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
  • @directus/types
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
  • @directus/extensions
    • Fixed extension-sdk defineHook and defineEndpoint types (#23836 by @br41nslug)

πŸ“ Documentation

  • Added missing fields for directus_fields to GraphQL schema, SDK and docs (#23905 by @br41nslug)

πŸ“¦ Published Versions

  • @directus/app@13.3.0
  • @directus/api@23.1.0
  • @directus/composables@11.1.2
  • create-directus-extension@11.0.4
  • create-directus-project@11.0.2
  • @directus/env@3.1.2
  • @directus/errors@1.0.1
  • @directus/extensions@2.0.3
  • @directus/extensions-registry@2.0.3
  • @directus/extensions-sdk@12.1.1
  • @directus/memory@2.0.3
  • @directus/pressure@2.0.2
  • @directus/specs@11.1.0
  • @directus/storage@11.0.1
  • @directus/storage-driver-azure@11.0.2
  • @directus/storage-driver-cloudinary@11.0.3
  • @directus/storage-driver-gcs@11.0.2
  • @directus/storage-driver-local@11.0.1
  • @directus/storage-driver-s3@11.0.2
  • @directus/storage-driver-supabase@2.0.2
  • @directus/system-data@2.1.0
  • @directus/themes@1.0.2
  • @directus/types@12.2.0
  • @directus/update-check@12.0.2
  • @directus/utils@12.0.2
  • @directus/validation@1.0.2
  • @directus/sdk@18.0.0

  •  
  • ↗️
Ontvangen β€” 28 Oktober 2024 ⏭ Selfhosted

v2.4.1

βœ‡Cloudpanel
Door: cloudpanel-io
22 Januari 2024 om 16:11

New

  • Translations: Bosnian

Enhancements

  • The issuance of Let's Encrypt certificates is being tested against the staging environment first to avoid rate limit errors
  • The performance of creating sites, especially Node.js sites, has been enhanced

Bug Fixes

Security

  • Vulnerability that allows a user with the lowest privilege to conduct a session hijacking, subsequently gaining unauthorized access to the admin and other user accounts. (Muhammad Aizat, datack.my)

  •  
  • ↗️

v2.4.0

βœ‡Cloudpanel
Door: cloudpanel-io
27 November 2023 om 13:20

New

  • PHP 8.3 Support
  • Node.js 20 LTS Support
  • Translations: Danish, Czech

Enhancements

  • The databases are backed up prior to executing remote backup
  • The site settings and vhost are being included in the remote backup file
  • Updated phpMyAdmin to 5.2.1

Bug Fixes

Security

  • File Manager: New file chown issue (CVE-2023-43880)
  • File Manager: Zip symlink (BSDTAR) (CVE-2023-43881)
  • Command Injection (Yell Phone Naing)

  •  
  • ↗️

v2.3.0

βœ‡Cloudpanel
Door: cloudpanel-io
6 Juni 2023 om 09:19

New

  • Translations: Bulgarian
  • New CloudPanel CLI Root Commands:
    • User:
      • user:add
      • user:delete
      • user:list
    • Site:
    • site:install:certificate

Enhancements

  • The site user name and password can be entered manually for new WordPress sites.

Bug Fixes

Security

  • Critical (CVE-2023-33747): Privilege Escalation to root from user, big thanks to Muhammad (datack.my, host.sabily.info) for reporting and testing
  • OS Command Injection, big thanks to Laurence from crowdsec.net for reporting and testing

  •  
  • ↗️
Ontvangen β€” 12 Oktober 2024 ⏭ Selfhosted

v11.1.1

βœ‡Directus
Door: github-actions[bot]
8 Oktober 2024 om 22:43

⚠️ Potential Breaking Changes

  • @directus/api
    • Dropped support for the SendGrid email transport option (#23392 by @McSundae)

✨ New Features & Improvements

  • @directus/types
  • @directus/extensions-sdk
    • Added support for disabling terminal screen clearing on rebuild in watch mode (#23556 by @GuyShane)

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Fixed empty preview in Markdown interface (#23599 by @joselcvarela)
    • Fixed spacing of expand/collapse button in the data model view (#23581 by @formfcw)
    • Fixed dialog/drawer order when creating a bookmark in the collection view (#23505 by @hanneskuettner)
    • Fixed SVG truncation issue in image interface preview (#23389 by @SP12893678)
    • Fixed an issue that would cause custom role names to not be translated in the role navigation sidebar (#23651 by @SP12893678)
    • Fixed WYSIWYG interface to be updated when interface options are changed via conditions (#23773 by @SP12893678)
    • Improved behavior of the translations interface when setting 'use users language' option (#23597 by @SP12893678)
    • Fixed an issue blocking collection view after switching between Kanban bookmarks (#23774 by @hanneskuettner)
    • Improved calendar layout styling to be more consistent (#23550 by @formfcw)
    • Updated dependencies (#23796 by @renovate)
    • Ensured data in sidebar is re-fetched when switching pages while a sidebar pane is already opened (#23553 by @SP12893678)
    • Ensured errors occured within the cards layout are always shown (#23802 by @SP12893678)
    • Fixed format warnings in api/src/request/is-denied-ip.ts and app/src/interfaces/input-rich-text-html/input-rich-text-html.vue (#23584 by @ComfortablyCoding)
    • Fixed an issue that would cause log streaming to fail on Directus installations that use a subpath in the URL (#23569 by @JoshTheDerf)
    • Fixed an issue that could cause the color picker interface to crash when a invalid color was used and improved the UX of interacting with the text input of the color picker interface. (#23654 by @connorwinston)
    • Ensured users are redirected to the intended page after login via LDAP (#23788 by @mmsardar)
    • Fixed failing validation of $CURRENT_POLICIES and $CURRENT_ROLES in the filter interface (#23730 by @hanneskuettner)
    • Fixed the truncation of long collection names in the permission configuration interface (#23700 by @hanneskuettner)
  • @directus/api
  • create-directus-project
  • @directus/components
  • @directus/extensions-registry
  • @directus/release-notes-generator
  • @directus/stores
  • @directus/storage-driver-s3
  • @directus/themes
  • @directus/update-check
  • @directus/utils
  • @directus/env
    • Added option to sync SSO user information on login for LDAP, OpenID and OAuth2 (#23595 by @br41nslug)
  • @directus/sdk
    • Fixed the precedence of withToken if a token is already saved in the SDK instance (#23739 by @hanneskuettner)
    • Made the output types of SDK requests better readable in IDEs (#23494 by @fapspirit)
  • @directus/schema
    • Fixed an issue that would cause a server crash on unexpected PostgreSQL database schema contents (#23664 by @rijkvanzanten)
  • @directus/extensions-sdk
  • @directus/extensions

πŸ“ Documentation

πŸ“¦ Published Versions

  • @directus/app@13.2.1
  • @directus/api@23.0.0
  • @directus/components@1.0.1
  • @directus/composables@11.1.1
  • create-directus-extension@11.0.3
  • create-directus-project@11.0.1
  • @directus/env@3.1.1
  • @directus/extensions@2.0.2
  • @directus/extensions-registry@2.0.2
  • @directus/extensions-sdk@12.1.0
  • @directus/memory@2.0.2
  • @directus/pressure@2.0.1
  • @directus/release-notes-generator@1.0.1
  • @directus/schema@12.1.1
  • @directus/storage-driver-azure@11.0.1
  • @directus/storage-driver-cloudinary@11.0.2
  • @directus/storage-driver-gcs@11.0.1
  • @directus/storage-driver-s3@11.0.1
  • @directus/storage-driver-supabase@2.0.1
  • @directus/stores@1.0.1
  • @directus/themes@1.0.1
  • @directus/types@12.1.0
  • @directus/update-check@12.0.1
  • @directus/utils@12.0.1
  • @directus/validation@1.0.1
  • @directus/sdk@17.0.2

  •  
  • ↗️

v11.1.0

βœ‡Directus
Door: github-actions[bot]
3 September 2024 om 23:51

✨ New Features & Improvements

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Ensured notifications are reloaded after manually running a Flow to provide users with the latest notifications generated by the Flow (#23381 by @Dominic-Marcelino)
    • Ensured warning about unsaved changes is displayed for Flows with custom confirmation config too (#23408 by @Dominic-Marcelino)
    • Improved selection label of the "New Tab" checkbox in the html rich text editor (#23502 by @simboonlong)
    • Added notice in notifications drawer when no items are found due to applied search/filter (#23428 by @paescuj)
    • Fixed styling issues with the related-values display (#21854 by @formfcw)
    • Added system logs to the app (#23066 by @licitdev)
    • Fixed the "Archive All" notifications functionality (#23411 by @Dominic-Marcelino)
    • Fixed a syntax error that did not correctly apply the border for the v-chip component (#23540 by @formfcw)
    • Prevented a crash in the Data Studio when switching to the "Date" type while configuring Datetime interface (#23384 by @SP12893678)
    • Dropped unused translations (#23503 by @hanneskuettner)
    • Fixed the image tune menu toggle state indication in the block editor interface (#23510 by @HeikoMueller)
    • Ensured the notifications unread count is updated when un-/archiving notifications (#23407 by @paescuj)
    • Improved the grid layout for radio and checkboxes interface (#23358 by @SP12893678)
  • @directus/api
    • Fixed an issue that would prevent extensions from loading (#23492 by @rijkvanzanten)
    • Fixed server address undefined for graphql and websocket logs (#23488 by @ComfortablyCoding)
    • Fixed the length of icon fields in system collections, allowing to use icons with longer names (#23391 by @SP12893678)
    • Fixed SQL query generation for MSSQL queries that use field level permissions and sort (#23518 by @hanneskuettner)
    • Fixed the preprocessing of SQL bindings that is necessary to deduplicate identical value bindings for some SQL dialects (#23453 by @joselcvarela)
    • Fixed an issue that could cause the response cache to misbehave (769fa22 by @rijkvanzanten)
    • Fixed an issue that would cause local extensions built via workspaces to not be watched when extensions reload is active (#23100 by @bernatvadell)
    • Fixed the email.send filter to be usable in Flows in conjunction with the "Run Script" operation (#23446 by @joselcvarela)
    • Fixed the generated OpenAPI specs to include POST, PATCH and DELETE paths again (#23460 by @u12206050)
    • Fixed an issue where creating notifications could hang on SQLite (#23405 by @paescuj)
  • @directus/memory
  • @directus/env
  • @directus/sdk
  • @directus/specs
  • @directus/storage-driver-cloudinary

πŸ“ Documentation

πŸ“¦ Published Versions

  • @directus/app@13.2.0
  • @directus/api@22.2.0
  • create-directus-extension@11.0.2
  • @directus/env@3.1.0
  • @directus/extensions@2.0.1
  • @directus/extensions-registry@2.0.1
  • @directus/extensions-sdk@12.0.2
  • @directus/memory@2.0.1
  • @directus/schema@12.1.0
  • @directus/specs@11.0.1
  • @directus/storage-driver-cloudinary@11.0.1
  • @directus/types@12.0.1
  • @directus/sdk@17.0.1

  •  
  • ↗️

v10.13.3

βœ‡Directus
Door: github-actions[bot]
4 September 2024 om 00:32

πŸ› Bug Fixes & Optimizations

πŸ“ Documentation

πŸ“¦ Published Versions

  • @directus/app@12.2.3
  • @directus/api@21.0.1
  • @directus/env@1.3.2
  • @directus/memory@1.0.12

  •  
  • ↗️

v11.0.2

βœ‡Directus
Door: github-actions[bot]
14 Augustus 2024 om 17:48

✨ New Features & Improvements

  • @directus/app
    • Added the option to select a default sort field in the O2M interface (#23019 by @alexvdvalk)
  • @directus/composables
    • Enhanced & aligned item counts in collections, providing more detailed information (#22519 by @paescuj)

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Fixed bookmark duplication when rapidly switching between bookmarks (#23324 by @SP12893678)
    • Fixed translations interface that attempted to query the language direction field, even if unconfigured and unavailable (#23300 by @hanneskuettner)
    • Fixed readonly mutation to fields in the store via item drawer (#23277 by @azrikahar)
    • Fixed the sorting behavior when adding new items to a O2M relation that uses a string sort field (e.g. through manual (#23348 by @hanneskuettner)
      sorting in the table interface)
    • Enhanced & aligned item counts in collections, providing more detailed information (#22519 by @paescuj)
    • Improved WYSIWYG editor to hide the toolbar if no toolbar items are selected (#23310 by @Dominic-Marcelino)
    • Fixed the WYSIWYG interface to correctly apply the font configured in the interface settings (#23343 by @formfcw)
  • @directus/api
    • Persist default value and nullable during field schema update (#23151 by @echocrow)
    • Fixed caching behavior of permissions that contain dynamic variables (#23321 by @hanneskuettner)
    • Fixed the permission application for relational _some and _none filters (#23272 by @hanneskuettner)
    • Fixed an issue where the first column would be missing when importing UTF-8 BOM CSV files (#23332 by @azrikahar)
    • Fixed sort field default for related o2m items in case of missing permissions (#23267 by @hanneskuettner)
    • Fixed typo for invalid aggregate query parameter log (#23334 by @azrikahar)
    • Fixed item permission checking for collections that have permissions with no field access (#23357 by @hanneskuettner)
    • Fixed deep groupBy queries for O2M relations, where results were not correctly grouped under their respective parent (#23279 by @hanneskuettner)
      items
    • Fixed the notification for finished file exports to be sent out to users without requiring any permissions on directus_notifications (#23336 by @azrikahar)
    • Fixed the retrieval of updatable singleton field permissions in the /permissions/me/<collection> endpoint (#23269 by @hanneskuettner)
    • Fixed permissions migration to work with more MySQL flavors (#23327 by @hanneskuettner)
    • Fixed "DB_CLIENT" Environment Variable is missing. appearing during directus init (#23256 by @ComfortablyCoding)
    • Fixed M2A querying when the user does not have access to all related collections (#23340 by @hanneskuettner)
    • Ensured payload validation accounts for preset data (#23346 by @hanneskuettner)

πŸ“¦ Published Versions

  • @directus/app@13.1.0
  • @directus/api@22.1.1
  • @directus/composables@11.1.0
  • create-directus-extension@11.0.1
  • @directus/extensions-sdk@12.0.1

  •  
  • ↗️

v11.0.1

βœ‡Directus
Door: github-actions[bot]
8 Augustus 2024 om 19:12

There were a handful reports about the migrations from v10-v11 failing, so we pushed a couple patches to make it more reliable πŸ™‚

✨ New Features & Improvements

  • @directus/api
    • Added transaction retry mechanism for SQLite if a SQLITE_BUSY errors occurs (#23243 by @joggienl)
    • Added support for listening on unix sockets via a new UNIX_SOCKET_PATH variable (#23150 by @McSundae)
  • @directus/env
    • Added support to provide a cast prefix to config variables which are read from a file using the _FILE suffix (#22164 by @joselcvarela)

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Removed update delay in the block editor interface (#23115 by @SP12893678)
    • Fixed list structure in draggable lists (#23116 by @SP12893678)
    • Fixed an issue that would cause the translations display not to use the correct language if the user relied on "system (#23240 by @danilobuerger)
      language"
  • @directus/api
    • Improved policies migration to handle a missing foreign key on directus_permissions.role more gracefully (#23251 by @hanneskuettner)
    • Ensured the migrations are properly executed when bootstrapping MySQL (#23233 by @paescuj)
    • Fixed drop foreign key if has different constraint name on permissions policies migrations (#23253 by @joselcvarela)
    • Fixed the init CLI command for MySQL to use the new mysql2 package (#23231 by @paescuj)

πŸ“ Documentation

  • Added support for listening on unix sockets via a new UNIX_SOCKET_PATH variable (#23150 by @McSundae)
  • Added support to provide a cast prefix to config variables which are read from a file using the _FILE suffix (#22164 by @joselcvarela)

πŸ“¦ Published Versions

  • @directus/app@13.0.1
  • @directus/api@22.1.0
  • @directus/env@3.0.0

  •  
  • ↗️

v11.0.0

βœ‡Directus
Door: github-actions[bot]
6 Augustus 2024 om 21:59

Policies

Directus v11 contains a brand new permissions system that's based on policies. We've provided a migration, so the upgrade path is the same as with other releases. This is a big release, which changes the paradigm on how permissions are attached and executed. Please make a database backup before upgrading your version of Directus.

⚠️ Potential Breaking Changes

  • @directus/app
  • @directus/api
    • Replaced the database client library mysql with mysql2, used for MySQL/MariaDB (#22534 by @paescuj)
    • Added a new policy based permissions system (#22773 by @rijkvanzanten)
  • @directus/extensions
    • Changed module preRegisterCheck signature to align with the changes made for Policies (#22773 by @rijkvanzanten)
  • @directus/system-data
    • Added new collections and fields and updated existing fields and permissions needed for Policies (#22773 by @rijkvanzanten)
  • @directus/types
  • @directus/utils
    • Added new dynamic variables to parseFilter and added the processChunk helper (#22773 by @rijkvanzanten)

✨ New Features & Improvements

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Ensured collections in system permissions interface are scrolled into view when added but out of view (#23036 by @paescuj)
    • Ensured the permissions table under policies is displayed correctly on mobile devices (#22985 by @paescuj)
    • Fixed table layout default query, to not include presetational fields (#22840 by @hanneskuettner)
    • Fixed missing policies in public role policy selection (#23192 by @hanneskuettner)
  • @directus/api
    • Fixed groupBy behavior that resulted in an internal server error when used with relational item permissions (#23185 by @hanneskuettner)
    • Fixed an issue that would cause the API to return an error when a root field in a m2a builder was queried (#23181 by @rijkvanzanten)
    • Fixed reduceSchema to strip out collection the user does not have access to (#22916 by @hanneskuettner)
    • Fixed user counting where users were double counted and inactive users with policies were counted as well (#23184 by @rijkvanzanten)
    • Fixed filter creation in fetchPolicies for users without roles (#22936 by @hanneskuettner)
    • Fixed aggregation field existence and permission checks (#23022 by @hanneskuettner)
    • Fixed down migration erroring on post migration permissions (#23097 by @ComfortablyCoding)
    • Fixed permission checking for o2m related fields (#23199 by @hanneskuettner)
    • Ensured that policies attached to a user, role and parent roles are correctly prioritized (#22967 by @paescuj)
    • Ensured the default DB_FILENAME option from the Docker Image is not applied when using MySQL/MariaDB, fixing a corresponding warning (#22970 by @cliqer)
    • Fixed the policies migration for the case where permissions had been configured for the public role (#22811 by @paescuj)
    • Fix query error on some DB vendors when using multi relation sort (#22872 by @hanneskuettner)
    • Migrated NotificationsService to new policies system (#22914 by @hanneskuettner)
    • Fixed broken permissions for sorting of aggregate query when using the aggregate result as sort field (#23193 by @hanneskuettner)
    • Fixed an issue where keys in filter operand objects where incorrectly checked for field permissions (#22915 by @hanneskuettner)

πŸ“¦ Published Versions

  • @directus/app@13.0.0
  • @directus/api@22.0.0
  • @directus/components@1.0.0
  • @directus/composables@11.0.0
  • @directus/constants@12.0.0
  • create-directus-extension@11.0.0
  • create-directus-project@11.0.0
  • @directus/env@2.0.0
  • @directus/errors@1.0.0
  • @directus/extensions@2.0.0
  • @directus/extensions-registry@2.0.0
  • @directus/extensions-sdk@12.0.0
  • @directus/format-title@11.0.0
  • @directus/memory@2.0.0
  • @directus/pressure@2.0.0
  • @directus/random@1.0.0
  • @directus/release-notes-generator@1.0.0
  • @directus/schema@12.0.0
  • @directus/specs@11.0.0
  • @directus/storage@11.0.0
  • @directus/storage-driver-azure@11.0.0
  • @directus/storage-driver-cloudinary@11.0.0
  • @directus/storage-driver-gcs@11.0.0
  • @directus/storage-driver-local@11.0.0
  • @directus/storage-driver-s3@11.0.0
  • @directus/storage-driver-supabase@2.0.0
  • @directus/stores@1.0.0
  • @directus/system-data@2.0.0
  • @directus/themes@1.0.0
  • @directus/tsconfig@2.0.0
  • @directus/types@12.0.0
  • @directus/update-check@12.0.0
  • @directus/utils@12.0.0
  • @directus/validation@1.0.0
  • @directus/sdk@17.0.0

  •  
  • ↗️

v10.13.2

βœ‡Directus
Door: github-actions[bot]
6 Augustus 2024 om 20:27

⚠️ Potential Breaking Changes

  • @directus/api
    • Introduced created_on date field for files and adjusted uploaded_on to be updated with every upload (#23035 by @paescuj)

✨ New Features & Improvements

  • @directus/api
    • Enabled caching of field information as part of schema caching (#19480 by @u12206050)
    • Enabled caching of foreign keys as part of schema caching (#19391 by @u12206050)
    • Introduced the email.send filter event, allowing to modify email options via Flows or Custom Extensions (#23024 by @joselcvarela)
  • @directus/errors

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Introduced created_on date field for files and adjusted uploaded_on to be updated with every upload (#23035 by @paescuj)
    • Fixed TUS file upload logic to include the file UUID to enable file info fetching (#23086 by @hanneskuettner)
    • Introduced the email.send filter event, allowing to modify email options via Flows or Custom Extensions (#23024 by @joselcvarela)
    • Ensured that the expand-collapse-buttons of the data model view appear just as important as they are (#22988 by @formfcw)
    • Ensured dropdown interface correctly handles case when no options are provided (#23092 by @SP12893678)
    • Ensured that the metadata of the Marketplace extension page is well aligned with the content column (#22980 by @formfcw)
    • Fixed SVG support on image interface (#23084 by @joselcvarela)
    • Added auto reset of value to dropdown interface after conditional update of options (#23007 by @SP12893678)
    • Fixed an issue that would cause the versioning dropdown to be displayed squashed on long version names (#23162 by @SP12893678)
    • Fixed an issue that would cause detail groups to be collapsed on save and stay (#23099 by @SP12893678)
    • Ensured the "Expand All/None" buttons under Data Model are only shown if there are grouped collections (#22989 by @paescuj)
    • Fixed an issue that could cause the calendar layout to crash on invalid dates (#23106 by @SP12893678)
    • Added first and last page buttons to pagination in relational interfaces (#23063 by @joselcvarela)
  • @directus/api
    • Simplified schema caching by removing sharedSchemaCache (#23098 by @licitdev)
    • Redacted access_token in the query string when LOG_STYLE=raw (2e893f9 by @licitdev)
    • Fixed filename_disk extension not getting updated when replacing an image with another file extension (#23127 by @that1matt)
    • Added null filtering to equality operators (#23163 by @licitdev)
    • Ensured the error message of unknown errors is returned correctly for admin users (#22379 by @paescuj)
    • Treat exif metadata as a progressive enhancement by no longer crashing a file upload on metadata load failure (#23075 by @rijkvanzanten)
    • Fixed environment variable parsing to always convert to number of bytes (#22957 by @hanneskuettner)
    • Fixed an issue where the query trace logger could lead to a crash with a failing query on MySQL (#23095 by @paescuj)
    • Fixed TUS file upload logic to include the file UUID to enable file info fetching (#23086 by @hanneskuettner)
    • Ensured ASSETS_TRANSFORM_IMAGE_MAX_DIMENSION is also respected for extraction of metadata during image upload (#23064 by @AndriyAntonenko)
    • Fixed cached schema infinite loop in slow network environments (#23141 by @joselcvarela)
    • Fixed an issue that would cause the logger redactor to fail when an invalid URL was requested (#22960 by @rijkvanzanten)
  • @directus/types
    • Added null filtering to equality operators (#23163 by @licitdev)
    • Introduced created_on date field for files and adjusted uploaded_on to be updated with every upload (#23035 by @paescuj)
  • @directus/system-data
    • Introduced created_on date field for files and adjusted uploaded_on to be updated with every upload (#23035 by @paescuj)
    • SDK removed dependency on system-data package (#23146 by @br41nslug)
  • @directus/specs
    • Introduced created_on date field for files and adjusted uploaded_on to be updated with every upload (#23035 by @paescuj)
  • @directus/sdk
  • @directus/schema
    • Fixed remaining performance issues with schema introspection on MS SQL (#23198 by @paescuj)

πŸ“ Documentation

πŸ“¦ Published Versions

  • @directus/app@12.2.2
  • @directus/api@21.0.0
  • @directus/composables@10.1.16
  • create-directus-extension@10.1.15
  • @directus/env@1.3.1
  • @directus/errors@0.4.0
  • @directus/extensions@1.0.10
  • @directus/extensions-registry@1.0.10
  • @directus/extensions-sdk@11.0.10
  • @directus/memory@1.0.11
  • @directus/pressure@1.0.22
  • @directus/schema@11.0.4
  • @directus/specs@10.2.11
  • @directus/storage-driver-azure@10.0.24
  • @directus/storage-driver-cloudinary@10.0.24
  • @directus/storage-driver-gcs@10.0.25
  • @directus/storage-driver-s3@10.1.1
  • @directus/storage-driver-supabase@1.0.16
  • @directus/system-data@1.1.1
  • @directus/themes@0.3.11
  • @directus/types@11.2.1
  • @directus/utils@11.0.11
  • @directus/validation@0.0.19
  • @directus/sdk@16.1.2

  •  
  • ↗️

v11.0.0-rc.3

βœ‡Directus
Door: github-actions[bot]
10 Juli 2024 om 15:58

⚠️ Potential Breaking Changes

  • @directus/app
  • @directus/api
    • Replaced the database client library mysql with mysql2, used for MySQL/MariaDB (#22534 by @paescuj)
    • Added a new policy based permissions system (#22773 by @rijkvanzanten)
  • @directus/utils
    • Added new dynamic variables to parseFilter and added the processChunk helper (#22773 by @rijkvanzanten)
  • @directus/types
  • @directus/extensions
    • Changed module preRegisterCheck signature to align with the changes made for Policies (#22773 by @rijkvanzanten)
  • @directus/system-data
    • Added new collections and fields and updated existing fields and permissions needed for Policies (#22773 by @rijkvanzanten)

✨ New Features & Improvements

πŸ› Bug Fixes & Optimizations

  • @directus/app
  • @directus/api
    • Fixed reduceSchema to strip out collection the user does not have access to (#22916 by @hanneskuettner)
    • Fixed environment variable parsing to always convert to number of bytes (#22957 by @hanneskuettner)
    • Fixed filter creation in fetchPolicies for users without roles (#22936 by @hanneskuettner)
    • Fixed the policies migration for the case where permissions had been configured for the public role (#22811 by @paescuj)
    • Fix query error on some DB vendors when using multi relation sort (#22872 by @hanneskuettner)
    • Migrated NotificationsService to new policies system (#22914 by @hanneskuettner)
    • Fixed an issue where keys in filter operand objects where incorrectly checked for field permissions (#22915 by @hanneskuettner)
    • Fixed an issue that would cause the logger redactor to fail when an invalid URL was requested (#22960 by @rijkvanzanten)

πŸ“¦ Published Versions

  • @directus/app@13.0.0-rc.2
  • @directus/api@21.0.0-rc.0
  • @directus/composables@10.1.16-rc.0
  • @directus/constants@11.1.0-rc.1
  • create-directus-extension@10.1.15-rc.0
  • @directus/env@1.3.1-rc.0
  • @directus/errors@0.4.0-rc.1
  • @directus/extensions@2.0.0-rc.1
  • @directus/extensions-registry@1.0.10-rc.0
  • @directus/extensions-sdk@11.0.10-rc.0
  • @directus/memory@1.1.0-rc.1
  • @directus/pressure@1.0.22-rc.0
  • @directus/storage-driver-azure@10.0.24-rc.0
  • @directus/storage-driver-cloudinary@10.0.24-rc.0
  • @directus/storage-driver-gcs@10.0.25-rc.0
  • @directus/storage-driver-s3@10.1.1-rc.0
  • @directus/storage-driver-supabase@1.0.16-rc.0
  • @directus/system-data@2.0.0-rc.1
  • @directus/themes@0.3.11-rc.0
  • @directus/types@12.0.0-rc.1
  • @directus/utils@12.0.0-rc.1
  • @directus/validation@0.0.19-rc.0
  • @directus/sdk@16.2.0-rc.1

  •  
  • ↗️

v10.13.1

βœ‡Directus
Door: github-actions[bot]
9 Juli 2024 om 18:13

✨ New Features & Improvements

  • @directus/api
    • Added support for the ADMIN_TOKEN environment variable (#22724 by @burka)
  • @directus/env
    • Added support for the ADMIN_TOKEN environment variable (#22724 by @burka)

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Fixed an issue causing the tus uplaods not to respect the relative path of the app (#22918 by @JoshTheDerf)
  • @directus/api

πŸ“ Documentation

  • Added support for the ADMIN_TOKEN environment variable (#22724 by @burka)

πŸ“¦ Published Versions

  • @directus/app@12.2.1
  • @directus/api@20.1.0
  • @directus/env@1.3.0

  •  
  • ↗️

v10.13.0

βœ‡Directus
Door: github-actions[bot]
2 Juli 2024 om 17:44

⚠️ Potential Breaking Changes

  • @directus/api
    • Ensured service integrity, by calling corresponding specified services out of other services (#22738 by @paescuj)
    • Included admin users under the app access limit (#22760 by @licitdev)

✨ New Features & Improvements

  • @directus/app
    • Added toggles to quickly expand or collapse all rows on the data model view (#22780 by @drennvinn)
    • Added a default preset for bookmarks to display the relevant fields by default (#22699 by @paescuj)
    • Implemented support for chunked uploads using the TUS protocol (#22901 by @br41nslug)
  • @directus/api
    • Implemented support for chunked uploads using the TUS protocol (#22901 by @br41nslug)
  • @directus/env
    • Implemented support for chunked uploads using the TUS protocol (#22901 by @br41nslug)
  • @directus/storage
    • Implemented support for chunked uploads using the TUS protocol (#22901 by @br41nslug)
  • @directus/storage-driver-local
    • Implemented support for chunked uploads using the TUS protocol (#22901 by @br41nslug)
  • @directus/storage-driver-s3
    • Implemented support for chunked uploads using the TUS protocol (#22901 by @br41nslug)
  • @directus/system-data
    • Implemented support for chunked uploads using the TUS protocol (#22901 by @br41nslug)
  • @directus/types
    • Implemented support for chunked uploads using the TUS protocol (#22901 by @br41nslug)

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Improved bookmark edit view, arranging fields by purpose and giving more space to the filter (#22701 by @paescuj)
    • Include image file extensions inside WYSIWYG (#22789 by @that1matt)
    • Fixed the input pattern check in the filter component (#22697 by @paescuj)
    • Improved tooltip arrow rendering for high resultion displays (#22858 by @hanneskuettner)
  • @directus/api
    • Fixed session verification for shares (#22865 by @ikovac)
    • Fixed an issue where copying-to-clipboard displayed a success notification even though it failed (#22797 by @DanielBiegler)
    • Added missing share ID when refreshing/updating share sessions (#22867 by @paescuj)
    • Added total file size to the telemetry report (#22736 by @licitdev)
    • Fixed error extraction for MySQL unique primary key constraints (#22434 by @hanneskuettner)
    • Fixed an issue that would ignore the filename_disk value if it was provided during file uploads (#22848 by @rijkvanzanten)
    • Fixed an issue that could cause time type fields to be treated as a string in GraphQL (#22726 by @joselcvarela)
    • Fixed the interpretation of CORS config options, allowing to use "falsy" values like CORS_ORIGIN: false and CORS_MAX_AGE: 0 (#22721 by @joselcvarela)
  • @directus/system-data
    • Fixed an issue that caused the uploaded_on time to be set in a different format than modified_on in SQLite (#22885 by @rijkvanzanten)
    • Added missing system relations to prevent them showing up in a schema snapshot (#22844 by @hanneskuettner)
  • @directus/storage-driver-cloudinary
    • Fixed upload resource type guessing to consider the file extension in a case insensitive manner (#22744 by @hanneskuettner)
  • @directus/sdk
    • Fixed an issue where request could sometimes fail when using a custom storage implementation with async setter (#22672 by @br41nslug)
  • @directus/errors

πŸ“¦ Published Versions

  • @directus/app@12.2.0
  • @directus/api@20.0.0
  • @directus/composables@10.1.15
  • create-directus-extension@10.1.14
  • @directus/env@1.2.0
  • @directus/errors@0.3.3
  • @directus/extensions@1.0.9
  • @directus/extensions-registry@1.0.9
  • @directus/extensions-sdk@11.0.9
  • @directus/memory@1.0.10
  • @directus/pressure@1.0.21
  • @directus/storage@10.1.0
  • @directus/storage-driver-azure@10.0.23
  • @directus/storage-driver-cloudinary@10.0.23
  • @directus/storage-driver-gcs@10.0.24
  • @directus/storage-driver-local@10.1.0
  • @directus/storage-driver-s3@10.1.0
  • @directus/storage-driver-supabase@1.0.15
  • @directus/system-data@1.1.0
  • @directus/themes@0.3.10
  • @directus/types@11.2.0
  • @directus/utils@11.0.10
  • @directus/validation@0.0.18
  • @directus/sdk@16.1.1

  •  
  • ↗️
Ontvangen β€” 9 Oktober 2024 ⏭ Selfhosted

BookStack v24.10

βœ‡BookStack
Door: ssddanbrown
9 Oktober 2024 om 11:54

Links

Full List of Changes

  • Added ability to configure the PDF export command timeout. (#5119)
  • Added new Lexical based editor. (#5058)
  • Added not operator to search. (#4536)
  • Added OpenSearch support. Thanks to @maximilian-walter. (#5198)
  • Added SAS and R code language support. (#5206)
  • Added search term negation support. (#5239)
  • Added Welsh language to language list. (#5240)
  • Updated dompdf and bacon-qr-code libraries to new major versions. (#5222)
  • Updated page editor type to always exist in API and database. (#5117)
  • Updated translations with latest Crowdin changes. (#5188)
  • Updated user account creation to provide better email failure feedback. (#5195)
  • Fixed drifting search icon on smaller screen sizes. (#5204)

  •  
  • ↗️
Ontvangen β€” 6 September 2024 ⏭ Selfhosted

FreshRSS 1.24.3

βœ‡FreshRSS
Door: Alkarex
6 September 2024 om 19:23

This is a quality-focussed release for the 1.24.x series meant to provide a good product to people blocked on PHP 7.4, while we will increase the requirements to PHP 8.1+ from the next release.

A few highlights ✨:

  • Last version supporting PHP 7.4 before requiring PHP 8.1+
  • Last version supporting PostgreSQL 9.5 before requiring PostgreSQL 10+
  • Last version supporting MariaDB 5.5 before requiring MariaDB 10.0.5+
  • Last version supporting MySQL 5.5.3 before requiring MySQL 8+
  • Many bug and regression fixes

This release has been made by @Alkarex, @math-GH and newcomer @pando85

Full changelog:

  • Bug fixing
    • Fix mark-as-read from user query #6738
    • Fix regression for shortcut to move between categories #6741
    • Fix feed title option #6771
    • Fix XPath for HTML documents with broken root (used by CSS selectors to fetch full content) #6774
    • Fix UI regression in Mapco/Ansum themes #6740
    • Fix minor style bug with some themes #6746
    • Fix export of OPML information for date format of JSON and HTML+XPath feeds #6779
  • Security
    • OpenID Connect better definition of session parameters #6730
  • Compatibility
    • Last version supporting PHP 7.4
  • Misc.
    • Use charset for JSON requests from the UI #6710
    • Use .html extension for the local cache of full content pages instead of .spc #6724
    • Update dev dependencies #6739, #6758,
      #6759, #6760

  •  
  • ↗️
Ontvangen β€” 29 Augustus 2024 ⏭ Selfhosted

BookStack v24.05.4

βœ‡BookStack
Door: ssddanbrown
29 Augustus 2024 om 17:16

Security Release

BookStack v24.05.4 has been released.

This is a security release to address issues found in LDAP group syncing, where in certain scenarios a user could be matched to extra roles incorrectly, and an issue with content visibility in "book-show" API responses which would not have permissions applied properly.

Upgrade is strongly advised for instances where LDAP authentication is used with group syncing, or where the REST API is used to fetch contents of books ("books-read" endpoint).

Thanks to Linus Nagel and their team at WorkSimple GmbH for reporting this API vulnerability.

Full List of Changes

  • Updated API docs with consistent parameter types. (#5183)
  • Updated default content iframe embed max-width to align with other content types. (#5130)
  • Updated LDAP group sync to query via full DN.
  • Updated translations with latest Crowdin changes. (#5118)
  • Fixed books read API response not applying visibility control to chapter contents.
  • Fixed API docs users response showing extra property. (#5178)
  • Fixed database error thrown when using out dev docker setup. (#5124)
  • Fixed RTL display issues with tasklist checkboxes. (#5134)

  •  
  • ↗️
Ontvangen β€” 23 Augustus 2024 ⏭ Selfhosted

FreshRSS 1.24.2

βœ‡FreshRSS
Door: Alkarex
23 September 2024 om 22:49

This is a quality-focussed release for the 1.24.x series meant to provide a good product to people blocked on PHP 7.4, while we will increase the requirements to PHP 8.1+ from the next 1.25.x series.

A few highlights ✨:

  • New global option to automatically add articles to favourites
  • New option to share articles from the article title line
  • Add core extensions, shipped by default: UserCSS and UserJS
  • Security: Force log out of users when they are disabled
  • Many bug and regression fixes

This release has been made by @Alkarex, @ColonelMoutarde, @den13501, @hkcomori, @math-GH
and newcomers @dservian, @crisukbot, @TomW1605

Full changelog:

  • Features
    • New global option to automatically add articles to favourites #6648
    • New possibility to share a user query in JSON GReader format #6655
    • New fields image and description for user query share #6541
    • Show article first words when an article title is empty #6240
    • New option to share articles from the article title line #6395
    • Improve JSON Dot Notation module to access more string-friendly types #6631
    • Improve detection of image types for enclosures not providing a type #6653
    • Add sharing to archive.is #6650
  • Security
    • Force log out of users when they are disabled #6612
    • Increase default values for OpenID Connect OIDCSessionMaxDuration and OIDCSessionInactivityTimeout #6642
    • Add default API CORS HTTP headers to shareable user queries #6659
  • Bug fixing
    • Fix parentheses for complex OR Boolean search expressions #6672
    • Fix keep max unread #6632
    • Fix regression in mark as read upon gone #6663
    • Fix regression on mark duplicate titles as read for modified articles #6664
    • Fix regression for Fever API, remove dependency to Exif extension #6624
    • Fix muted feeds for WebSub #6671
    • Fix performance / deadlock of PostgreSQL and MySQL / MariaDB during schema updates #6692
    • Fix HTTP cache of main page (regression since 1.18.0) #6719
    • Fix HTTP cache of shareable user queries #6718
    • Fix HTTP cache for feeds with modified Last-Modified when content is not modified #6723
  • Extensions
    • Add core extensions, shipped by default: UserCSS and UserJS #6267
      • Replaces CustomCSS and CustomCS extensions
    • Strong type array parameter helper #6661
  • CLI
    • Add quiet option to cli/db-backup.php #6593
  • Compatibility
  • Deployment
    • Docker default image (Debian 12 Bookworm) updated to PHP 8.2.20 and Apache 2.4.61
    • Docker alternative image updated to Alpine 3.20 with PHP 8.3.10 and Apache 2.4.62 #5383
    • Docker: Alpine dev image freshrss/freshrss:newest updated to PHP 8.4.0beta3 and Apache 2.4.62 #5764
  • UI
    • Default dark mode to auto #5582
    • New option to control action icons position in reading view #6297
    • Sticky buttons at the bottom of settings #6304
    • Various UI and style improvements #6446, #6485,
      #6651
  • I18n
    • Czech: use correct ISO 639-1 code cs (and not cz, which is the country) #6514
    • Improve Japanese #6564
    • Improve Spanish #6634
    • Improve Traditional Chinese #6691
  • Misc.

  •  
  • ↗️
Ontvangen β€” 14 Juli 2024 ⏭ Selfhosted

BookStack v24.05.3

βœ‡BookStack
Door: ssddanbrown
14 Juli 2024 om 18:19

Links

Full List of Changes

This release contains the following fixes and changes:

  • Updated translations with latest Crowdin changes. (#5065)
  • Updated callouts with LTR text handling where supported. (#5104)
  • Updated project PHP and JavaScript dependencies.
  • Fixed blocked diagrams.net loading when using a custom URL that includes a port. (#5107)
  • Fixed OIDC incorrectly calling userinfo endpoint when valid empty groups provided. (#5101)
  • Fixed image replacement being case-sensitive when it should not be. Thanks to @DanielGordonIT. (#5096) (#5095)
  • Fixed HTML code block highlighting when custom self-closing tags are used. (#5078)
  • Fixed testing when custom ALLOWED_IFRAME_SOURCES is set. Thanks to @mueller-contria. (#5069) (#5068)

  •  
  • ↗️
Ontvangen β€” 3 Juli 2024 ⏭ Selfhosted

BookStack v24.05.2

βœ‡BookStack
Door: ssddanbrown
10 Juni 2024 om 12:44

Links

Full List of Changes

This release contains the following fixes and changes:

  • Fixed initial page publish changelog message not being saved if set. (#5056)
  • Fixed incorrect WYSIWYG code shortcut reference. Thanks to @bradenterpstra01. (#5036)
  • Added role create/update validation to warn about too-long external auth ID values. (#5037)
  • Updated GIF thumbnail generation to no support animation, to avoid issues with large-frame-count GIFs. (#5029)
  • Updated translations with latest Crowdin changes. (#5022)
  • Updated backup code description text to clarify their use. (#5017)
  • Updated docker-compose.yml to remove deprecated version. Thanks to @michaelortnerit. (#5052)

  •  
  • ↗️
❌