❌

Normale weergave

Ontvangen β€” 9 Januari 2025 ⏭ Selfhosted

RSS-Bridge 2025-01-02

βœ‡RSS-bridge
Door: dvikan
3 Januari 2025 om 01:49

EDIT: I forgot to update version number in this release, see #4382

What's Changed

No breaking changes. Mostly fixes to existing bridges, and some new bridges.

But, beware that all bridges are now enabled by default! (instead of the selected handful).

If you dont want all bridges enabled do like this in config.ini.php:

[system]

; Only these 3 bridges are enabled
enabled_bridges[] = CssSelectorBridge
enabled_bridges[] = FeedMerge
enabled_bridges[] = FeedReducerBridge

;enabled_bridges[] = *

Noteworthy changes

When debug mode is enabled, php errors are converted to exceptions! Only in debug mode, not in prod mode.

  • fix: convert php errors to exceptions when in debug mode by @dvikan in #4176

The future

These needs to be discussed:

  • Bump min php version from 7.4 to 8.0.
  • Introduce a new document root with separate data folder (e.g. /var/www/rss-bridge/public and /var/www/rss-bridge/var/)
  • rss-bridge is trivially vulnerable to XSS in the HtmlFormat page since we dont sanitize the html(mostly harmless since theres not much to exploit). Feed readers do sanitize html so no problem there.
  • rss-bridge is trivially vulnerable to SSRF (mostly harmless? hard to exfiltrate data) Also we actually want to allow to fetch resources from non-public IP addresses, so maybe introduce a config for this allowance

See also #2735

New Contributors

Thanks all!

Full Changelog: 2024-02-02...2025-01-02

  •  
  • ↗️

RSS-Bridge 2024-02-02

βœ‡RSS-bridge
Door: dvikan
2 Februari 2024 om 18:44

Zero breaking changes

Recommended to checkout revised installation instructions for Debian 12:

https://github.com/RSS-Bridge/rss-bridge#how-to-install-on-debian-12-nginx--php-fpm

Officially hosted instance: https://rss-bridge.org/bridge01/

IRC channel #rssbridge at https://libera.chat/

Thank you to all contributors who keeps the project alive.

A subset of changes which might be interesting

Rss-Bridge can now be password protected with required token in the url:

--- config.ini.php	2024-02-02 18:41:36.881743962 +0100
+++ /tmp/1	2024-02-02 18:42:00.289567705 +0100
@@ -92,7 +92,7 @@
 password = ""
 
 ; Token authentication (URL)
-token = ""
+token = "hunter2"

New Contributors

Full Changelog: 2023-09-24...2024-02-02

  •  
  • ↗️

RSS-Bridge 2023-09-24

βœ‡RSS-bridge
Door: dvikan
25 September 2023 om 14:41

No breaking changes! (famous last words)

The caching systems have been rewritten.

All existing cache items will be considered expired.

Full Changelog: 2023-07-13...2023-09-24

New Contributors

  •  
  • ↗️

RSS-Bridge 2023-07-11

βœ‡RSS-bridge
Door: dvikan
16 Juli 2023 om 23:44

No big changes. Just keeping the project alive.

The CacheInterface has been modified with stronger typehints. Might wanna check that out if are explicitly using a cache in a
custom bridge.

  • new config enable_debug_mode and debug_mode_whitelist[] #3324
  • config now can be modified with env #3428
  • FeedMergeBridge now allows one or more feeds to fail while preserving the others #3476
  • feat: add health check action in #3484
  • feat: add system config enable_maintenance_mode #3497
  • feat(sqlite cache): add config options by #3499

See https://rss-bridge.org/bridge01/ if you want to test this release (it auto-deploys master each day).

We are considering (later) to moving the document root, see #3432

Also see #2735 for project goals and prios.

Full Changelog: 2023-03-22...2023-07-11

  •  
  • ↗️

RSS-Bridge 2023-03-22

βœ‡RSS-bridge
Door: dvikan
22 Maart 2023 om 19:37

The only breaking change is that RSS-Bridge now requires php 7.4.

  • fix: Let curl select the default HTTP version instead of hardcoding HTTP 1.1 (#3249)
  • fix: Disallow usage of default password (#3284)
  • refactor: Reformat codebase to PSR12 (#2872) [0]
  • feat: The docker container now uses libcurl-impersonate to better impersonate a browser (#2941)
  • feat: Config option to limit the maximum http message size (#3140)
  • feat: URL filter option to FilterBridge (#3212)
  • feat: Add getKey function (#3275)
  • feat: Add filecache config to enable/disable real purge (#3263)
  • feat: Add new feed format: Sfeed (#3306)
  • feat: Add config option "path" for file cache (#3297)

The public instance https://rss-bridge.org/bridge01/ runs master and can be used to test bridges before upgrading.

Docs: https://rss-bridge.github.io/rss-bridge/

Join #rssbridge on the Libera IRC network for IM [1].

[0] For the people who are concerned about the code reformatting they can
see #2872 for instructions on how to reproduce the diff.

[1] https://web.libera.chat/

  •  
  • ↗️

RSS-Bridge 2022-06-14

βœ‡RSS-bridge
Door: yamanq
14 Juni 2022 om 15:54

General changes

  • New Requirements
    • require curl extension (#2617)
    • Enable zip extension, required only for FDroidRepoBridge (#2712)
  • UI
    • BridgeCard: Use full bridge name in data-ref tag (#1560)
    • Open new feeds in a new tab (#1389)
  • Docker
    • Docker file: Fix wrong version string in docker images (#2497)
    • Add expose to dockerfile (#2762)
    • Switch to nginx in docker image (#2721)
  • Development
    • BridgeAbstract: Add loadCacheValue() and saveCacheValue()
    • Documentation: Move all wiki pages into the repo and make it pretty (#2494)
    • Multiple: Fix all exampleValues and required variables (#2296)
    • MrssFormat:: Generate using DomDocument
    • add support for more media types as enclosures, handle result of /tex… (#2324)
    • core: Add pr-html-generator (#2525)
    • feat: add a timeout option for http client (#2600)
    • feat: extract curl ua to config value (#2568)
    • refactor: add php autoloader (#2655)

New bridges

Modified bridges

  • Amazon: Add Sweden & Turkey
  • Arte7Bridge: Support all languages (#2543)
  • BinanceBridge: Remove announcements because of Cloudflare issue (#2610)
  • DavesTrailerPageBridge: Add timestamps to feed (#2456)
  • DeveloppezDotComBridge: Full rewrite of bridge DeveloppezDotCom (#2689)
  • EZTVBridge: Switch to using EZTV API (#2476)
  • FlickrBridge: Add content option to By username (#1861)
  • FurAffinityUserBridge: Replate username/password with cookie login (#1641)
  • GelbooruBridge: + inheriting Bridges. Switch to using Gelbooru API (#2472)
  • GiphyBridge: use not rate limited public api key (#2625)
  • GitHub: Allow custom search query (#2593)
  • GiteaBridge: Rewrite to decouple from Gogs and add contexts (#2718)
  • GithubPullRequestBridge: Sort by newest PRs instead of latest updated (#2064)
  • GolemBridge: Remove image galleries (#2761)
  • HaveIBeenPwnedBridge: Use API to get Data (#2720)
  • InstagramBridge: Documentation for configuring this bridge (#2437)
  • MixcloudBridge: switch to using API (#2591)
  • NordbayernBridge: add author & timestamp of article (#2309)
  • PhoronixBridge: support multipage and embed benchmarks (#2522)
  • PixivBridge: Add User context (#2650)
  • TelegramBridge: Fix issues & add support for location messages (#2133)
  • UnsplashBridge: extend functionality (#1813)

Removed bridges

  • ABCTabsBridge: Remove multiple broken, unneeded bridges (#2595)
  • ContainerLinuxReleasesBridge: Delete bridge (#2455)
  • DaveRamseyBlogBridge: fix: remove dead bridge #2345 (#2574)
  • DownDetectorBridge: Remove bridge (#2579)
  • ETTVBridge: fix: remove bridge ETTVBridge (#2511)
  • FootitoBridge: chore: remove bridge (#2576)
  • HentaiHaven: remove dead bridge (#2562)
  • LichessBridge: Remove multiple broken, unneeded bridges (#2595)
  • Mangareader: chore: remove dead bridge (#2597)
  • NeuviemeArt: Exterminate dead bridge (#2784)
  • OpenClassroomsBridge: Remove bridge (#2582)
  • OsmAndBlog: Remove bridge (#2775)
  • QPlayBridge: chore: remove dead bridge (#2564)
  • RTBFBridge: remove dead and unmaintained bridge (#2596)
  • SupInfoBridge: Remove multiple broken, unneeded bridges (#2595)
  • TagBoardBridge: fix: remove dead bridge
  • TheTVDBBridge: fix: remove dead bridge
  • ThingiverseBridge: chore: remove dead bridge (#2563)
  • WallpaperStopBridge: Delete bridge (#2458)
  • WosckerBridge: Remove multiple broken, unneeded bridges (#2595)
  • YahtzeeDevDiaryBridge: Remove bridge (#2580)
  • ZoneTelechargement: Remove bridge (#2678)

Full Changelog: 2022-01-20...2022-06-14

  •  
  • ↗️

RSS-Bridge 2022-01-20

βœ‡RSS-bridge
Door: em92
20 Januari 2022 om 06:20

General changes

  • CI:
    • Add support for php 8.0 and 8.1 (#2405)
    • Tag docker images with the commit sha (#2418)
    • Temporarly (or permanently) disable phpunit7 until it starts working again (#2392)
    • Update ubuntu version (16.04 => 20.04) (#2136)
  • UI:
    • Dark mode based on user's browser preferences (#2029)
    • Make HTML format default, remove other buttons (#2101)
    • Add button for bridge maintainers' donation URLs (#2102)
  • Docker:
    • Allow to define port via HTTP_PORT (#2285)
    • Add custom config location (#2098)
    • Add support for arm32/64 (#2104)
    • New docker build mechanism (#2268)
  • Features and fixes for bridge maintainers:
    • Accept additional "successful" 2xx status codes (#2310)
    • Backported str_starts_with, str_ends_with and str_contains from php 8 (#2318)
    • BridgeImplementationTest: Implement feature for testing detectParameters method (c580219)
    • Remove redundant "or returnServerError" after getContents/getSimpleHTMLDom/getSimpleHTMLDomCached (#2398)
    • XPathAbstract: Fix encoding of feed output (#2297)
  • Features and fixes for instance admins:
    • Implemented feature to read config from environment variables (#2100)
    • Drop php 5.6 and php 7.0 support (#2224)
  • Others:
    • README: Clarify problems with InstagramBridge and FacebookBridge (#2401)
    • BridgeImplementationTest: Allow multiple contexts to have an empty parameters array (#1954)
    • contrib: Add directory for unorganized bin of various useful things contributed by the community around RSS-Bridge

New bridges

Maintainer changes:

  • Twitter: arnd-s is now maintainer of this bridge instead of pmaziere
  • OpenClassrooms: sebsauvage does not maintain this bridge. No maintainer for this bridge
  • WordPress: aledeg does not maintainer this bridge. No maintainer for this bridge

Modified bridges

  • ARDMediathek
    • Switch to JSON-API (#2380)
  • ASRockNews
  • AmazonPriceTracker
  • AmazonPriceTracker
    • Fixes for subscription items (#2205)
  • AppleAppStore
  • AppleMusic
    • Complete rebuild for new site (#2134)
  • AutoJM
    • Rework of the script to handle the new website (#2390)
  • BakaUpdatesMangaReleases
    • Added option to display releases based on a user list
  • Bandcamp
    • Add support for labels (#2286)
  • Binance
  • CeskaTelevize
    • Follow website changes (#2420)
  • ComboiosDePortugal
    • Temporarily ignore certificate checks (#2403)
  • CourrierInternational
    • Switch to FeedExpander (#2107)
  • DarkReading
    • Fix content extraction (#2315)
  • DealabsBridge
    • Set the Feed URL according to the parameters (#2320)
    • Update groups (#2083)
  • Derpibooru
    • Fix parsing of title (#2346)
    • Make it work again (#2079)
  • DuckDuckGo
  • Economist
    • Fix if no article image present (#2328)
    • Full rework (#2272)
  • ExtremeDownload
  • FSecureBlog
    • Limit number of returned items (#2300)
  • Facebook
    • Increase cache timeout (#2149)
    • teromene and logmanoriginal do not maintain this bridge defacto
  • Filter
    • Various improvements (#2148)
  • FirefoxAddons
    • Fix add-on download links (#2338)
    • Fix download link extraction (#2120)
    • Remove duplicate code (#2209)
  • FuturaSciences
    • Improve content extraction (#2317)
  • GBAtemp
    • Fix news extraction (#2241)
  • Giphy
    • Repair broken bridge (#2347)
  • GitHubGist
    • fix use the css selector "contains" to find a class in the middle of the utility classes (#2306)
  • HackerNewsUserThreads
    • Repair broken bridge (#2344)
  • HentaiHaven
    • domain and content retrieval update (#2402)
  • HotUKDealsBridge
    • Set the Feed URL according to the parameters (#2320)
    • Update groups (#2083)
  • InternetArchive
    • Add detectParameters (#2142)
  • Itchio
    • Remove reliance on in-page timestamps (#2127)
  • MozillaBugTracker
    • Fix incorrect newlines in feed title (#2298)
  • MozillaSecurity
    • Limit items to 20 (#2287)
  • Mydeals
    • Set the Feed URL according to the parameters (#2320)
    • Update groups (#2083)
  • NYT
    • Fix article parsing (#2106)
  • NationalGeographic
  • Nextgov
    • Update categories, fix missing element (#2316)
  • NineGag
    • Updated sections and added video
  • NordBayern
    • Fix election articles (#2253)
    • Add city of Erlangen (#2248)
    • Exclude slideshows when handling articles (#2117)
    • Fix banner URL (#2326)
    • Fix banner images (#2384)
    • Fix jpeg regex (#2118)
    • Follow site updates (#2169)
  • PcGamer
    • Use meta tags to generate feed contents (#2271)
  • Pikabu
    • Cut "script" element from post body (#2125)
    • Do not strip strikethrough tags in body content (716f5dd)
    • Remove whitespace from fake news marker (0ee549f)
  • Pixiv
  • PresidenciaPTBridge
    • Support multiple sections (#2082)
  • RaceDepartment
    • Follow site changes (#2087)
  • RadioMelodie
    • Add timestamp support and content fix (#2105)
    • Fix to use the new website layout (#2330)
    • Replace JS Audio Player (#2233)
  • Reddit
    • Add keyword search function (#2229)
    • Add option to choose for New, Hot and Top submissions (#2189)
    • Return back NSFW posts to feed (#2257)
  • Releases3DS
    • Remove requests to IGN (#2246)
  • Reuters
    • Change timestamp, add new feed, add alt text to image (#2150)
    • Migrate to new API (#2348)
  • Scmb
    • Remove "read more" text only if it exists (#2368)
  • Soundcloud
    • Add support for albums, reposts & likes (#2236)
  • Telegram
    • Add test cases for detectParameters
  • ThePirateBay
    • Repair broken bridge
  • Twitter
    • Continue using existing guesttoken from cache, when requesting a new one failed (#2396)
    • Increase guest token expiry time (#2374)
    • Use Twitter API V1.1 guest/activate for requesting new guest tokens (#2414)
  • Vk
    • Correct video title (9254d14)
    • Do not add repost of deleted post to feed (9254d14)
  • Wikipedia
    • Update elements (#2167)
  • Youtube
    • New features, fixes and refactors (#2208) (#2115)
  • ZoneTelechargement
    • Update website URL (#2289)

Removed bridges

  •  
  • ↗️

RSS-Bridge 2021-04-25

βœ‡RSS-bridge
Door: em92
25 April 2021 om 12:35

General changes

  • BridgeAbstract: Correct getIcon method (fc81bed)
  • BridgeCard: Display configuration options (if enabled) when bridge has no parameters (#1968)
  • CI: Replace Travis CI with Github Actions (#1926)
  • Dockerfile: Clean up apt cache, make image smaller (#1880)
  • FeedExpander: Handle Atom enclosures (#2039)
  • FormatFactory: Ignore case in format values (#1967)
  • HtmlFormat: Use str_ireplace() when creating feed format URLs (#2008)
  • JS: Fixed TypeError: textValue is null (2ddd357)
  • README: Fix typo (#2004)
  • README: Update build status badges (#1995)
  • contents.php: Fix logical error in getSimpleHTMLDOMCached function (#1974)
  • core: Add configuration for bridges, allowing private bridges (#1343)
  • core: Use more correct text to indicate errored response from upstream (3226a5e)

New bridges

Modified bridges

  • AmazonPriceTracker
    • Add support for Swedish Amazon (#1856)
  • AppleMusic
    • Use title from website (#1855)
  • Arte7
    • Mitsu is no longer maintainer of the bridge
  • Bandcamp
    • Fix title extraction on empty band pages (#1966)
  • Basta
    • Use defaultLinkTo() (#1862)
  • DockerHub
    • Add detectParameters() (#1996)
  • DownDetector
  • Dribbble
    • Fix pictures parsing (#1911)
  • Economist
    • Fixes for fetching new page structure (#1836)
  • ExtremeDownload
  • FirefoxAddons
    • Add detectParameters() (#1997)
  • Flickr
    • Add filter by media and sort by options (#1758)
  • GenshinImpact
    • Use Asia/Shanghai time zone for article dates (#2040)
  • GithubIssue
    • Fix issue id and comment id extraction (#1950)
  • HDWallpapers
  • Instagram
    • Remove redundant data collection for sidecar and video (#1920)
    • pauder is defacto not a maintainer of InstagramBridge
  • InternetArchive
    • Fix collection links (#1551)
  • KernelBugTracker
    • Use defaultLinkTo() (#1862)
  • LeBonCoin
  • MondeDiplo
    • Fix blog article uri (#1961)
  • Nordbayern
    • Fixed typo of region "Hilpoltstein" (#1962)
  • NyaaTorrents
    • Allow searching by username (#2033)
    • Rewrite as Feed Expander (#2073)
  • Pikabu
    • Marking posts from "Как Π±Ρ‹ Новости" section, which are funny and deliberately fake (#2032)
  • RadioMelodie
    • Fix header image (#1985)
  • Reddit
    • Add detectParameters (#2070)
    • Rewrite to use JSON (#1781)
    • Add score filter (#2045)
    • Add user option (#1943)
  • Reporterre
    • Use defaultLinkTo() (#1862)
  • Rule34paheal
    • Use full size image (#1775)
  • Skimfeed
    • Add parameter detection (#1877)
  • Soundcloud
    • Fix client ID extraction (#1973)
  • Telegram
    • Add detectParameters() (#1998)
  • Telegram
    • Display the name of the attachments (#2003)
  • Telegram
    • Revert "Prevent double encoding entities" (#1182)
  • TheYetee
    • Fix HTML parsing (#1986)
  • TwitScoop
    • Remove less than (<) character from item title (#2034)
  • Twitter
    • Add option to hide pinned tweet (#1908)
  • Twitter
    • Fix username matching to be case insensitive with noretweet option (#1924)
  • Twitter
    • Improve timeline processing for username mode (#1946)
  • Vk
    • Remove non ascii chars from post date to correctly parse it (#1977)
    • Improved post author computation (#1802)
    • Show repost sources (#1802)
    • Handle second copy quote (#1802)
    • Fixed incorrect image uri's (#1802)
  • ZoneTelechargement
    • Add support for Streaming links (#1858)
    • Change URL load method (#2044)
    • Update Direct Download Unprotected URL (#1963)
    • Update URL and fix typos (#1936)
    • Update unprotected URL and Feed URL (#2065)

Removed bridges

  •  
  • ↗️
Ontvangen β€” 4 Januari 2025 ⏭ Selfhosted

BookStack v24.12.1

βœ‡BookStack
Door: ssddanbrown
4 Januari 2025 om 23:35

Links

Full List of Changes

This release contains the following fixes and changes:

  • Updated export logic to have better temp file clean-up. (#5374, #5379)
  • Updated in-app export endpoints to have rate limits. (#5379)
  • Updated translations with latest Crowdin changes. (#5370)
  • Updated PHP dependency package versions.
  • Fixed markdown editor focus jumping on image insert. (#5384)

  •  
  • ↗️
Ontvangen β€” 23 December 2024 ⏭ Selfhosted

BookStack v24.12

βœ‡BookStack
Door: ssddanbrown
23 December 2024 om 13:01

Links

Full List of Changes

  • Added new portable ZIP import/export format. (#5260, #43)
  • Added support for concatenating multiple LDAP attributes in displayName. Thanks to @MatthieuLeboeuf. (#5295, #1684)
  • Added book and chapter titles to search API results. Thanks to @rashadkhan359. (#5280, #5140)
  • Added cover image details to book/shelf API list responses. (#5180)
  • Updated dev dockerfile setup to simplify things. Thanks to @johnroyer. (#5293)
  • Updated guest account form to hide language preference to prevent confusion. (#5356)
  • Updated new WYSIWYG editor codebase to merge nodes & re-organise code. (#5349)
  • Updated notification handling to not block user with errors on send failures. (#5315)
  • Updated our JavaScript service files to TypeScript. (#5259)
  • Updated project NPM package & SASS deprecations/changes. (#5354)
  • Updated the new WYSIWYG editor with a range of fixes/updates. (#5365)
  • Updated translations with latest Crowdin changes. (#5345)
  • Fixed API attachment update issue when name not provided. (#5353)
  • Fixed attachment actions showing when lacking permissions. (#5323)
  • Fixed missing book description and formatting in markdown exports. Thanks to @czemu. (#5313)
  • Fixed page indexing breaking with very large pages. (#5322)

  •  
  • ↗️

FreshRSS 1.25.0

βœ‡FreshRSS
Door: Alkarex
23 December 2024 om 12:19

In this release, the coding focus has been on moving to PHP 8.1+ and refactoring the integration of the SimplePie library (which was long due). At the same time, plenty of new features have been added. Enjoy! πŸŽ„

Breaking changes πŸ’₯:

  • Require PHP 8.1+ (and improved support of PHP 8.4+)
  • Require PostgreSQL 10+ or MariaDB 10.0.5+ or MySQL 8+

A few highlights ✨:

  • Add support for regex search (regular expressions)
    • ⚠️ Advanced regex syntax for searches depends on the database used (SQLite, PostgreSQL, MariaDB, MySQL),
      but FreshRSS filter actions such as auto-mark-as-read and auto-favourite always use PHP PCRE2 syntax.
  • Allow dynamic search operator in user queries, like search:UserQueryA date:P1d
  • New feed mode HTML+XPath+JSON dot notation (JSON in HTML)
  • Better HTTP compliance with support for HTTP response headers Cache-Control: max-age and Expires
  • New unicity policies and heuristic for feeds with bad article IDs (reduce the problem of duplicated articles)
  • New option to automatically mark new articles as read if an identical title already exists in the same category
  • Add ability to remove content from articles with CSS selectors, also when not using full content
  • New condition option to selectively retrieve full content of articles
  • New UI feature to download a user’ SQLite database or a database SQLite export (to be produced by CLI)
  • Supported by Capy Reader (Android, open source)
  • Many bug fixes, UI improvements, and a lot more

This release has been made by @aledeg, @Alkarex, @Art4, @ColonelMoutarde, @Frenzie, @math-GH, @ramazansancar
and newcomers @DevGrohl, @UserRoot-Luca, @aarnej, @andrey-utkin, @bhj, @christophehenry, @davralin, @drego85, @ev-gor, @killerog, @kwarraich, @minna-xD, @mtalexan, @oshaposhnyk, @patHyatt

Full changelog:

  • Features
    • Add support for regex search (regular expressions) #6706, #6926
      • ⚠️ Advanced regex syntax for searches depends on the database used (SQLite, PostgreSQL, MariaDB, MySQL),
        but FreshRSS filter actions such as auto-mark-as-read and auto-favourite always use PHP PCRE2 syntax.
    • Allow dynamic search operator in user queries, like search:UserQueryA date:P1d #6851
    • New feed mode HTML+XPath+JSON dot notation (JSON in HTML) #6888
    • Better HTTP compliance with support for HTTP response headers Cache-Control: max-age and Expires #6812, FreshRSS/simplepie#26
    • Support custom HTTP request headers per feed (e.g. for Authorization) #6820
    • New unicity policies and heuristic for feeds with bad article IDs #4487, #6900
    • Fallback to GUID if article link is empty #7051
    • New option to automatically mark new articles as read if an identical title already exists in the same category #6922
    • New reading view option to display unread articles + favourites #7088
      • And corresponding new filter state &state=96 (no UI button yet)
    • Add ability to remove content from articles with CSS selectors, also when not using full content #6786, #6807
    • Update phpgt/cssxpath library with improved CSS selectors #6618
      • Support for :last-child, :first-of-type, :last-of-type, ^=, |=
    • New condition option to selectively retrieve full content of articles
      #33fd07f6f26310d4806077cc87bcdf9b8b940e35, #7082
    • Allow parentheses in quoted search #7055
    • New UI feature to download a user’ SQLite database or a database SQLite export (to be produced by CLI) #6931
    • New button to delete errored feeds from a category #7030
    • Better import of Inoreader user labels #6791
    • Rebuild feed favicon on cache clear #6961
    • New sharing with Bluesky #7116
    • New sharing with Telegram #6838
  • Bug fixing
    • Fix searches with a parenthesis before an operator like ("a b") or (!c) #6818
    • Fix auto-read tags #6790
    • Fix CSS selector for removing elements #7037, #7073,
      #7081, #7091, #7083
    • Fix redirection error after creating a new user #6995
    • Fix favicon error in case of wrong URL #6899
    • Use cURL to fetch extensions list (allows e.g. IPv6) #6767
    • Fix XML encoding in cURL options #6821
    • Fix initial UI scroll for some browsers #7059
    • Fix menu for article tags in some cases #6990
    • Fix share menu shortcut #6825
    • Fix HTML regex pattern during install for compatibility with v mode #7009
    • More robust creation of user data folder #7000
  • API
    • Fix API for categories and labels containing a + #7033
      • Compatibility with FocusReader
    • Supported by Capy Reader (Android, open source) capyreader#492
    • Improved UI for API #7048
    • Allow adding multiple feeds to a category via API #7017
    • API support edit multiple tags #7060
    • API return all categories also those without any feed #7020
  • Compatibility
  • Deployment
    • Docker: dev image freshrss/freshrss:oldest updated to Alpine 3.16 with PHP 8.1.22 and Apache 2.4.59 #6711
    • Docker alternative image updated to Alpine 3.21 with PHP 8.3.14 and Apache 2.4.62 #5383
    • Update Dockerfiles to newer key-value format #6819
    • Docker minor improvement of entrypoint #6827
  • SimplePie
  • Security
    • Apache protect more non-public folders and files #6881, #6893, #7008
    • Add privacy settings on extension list retrieval #4603, #7132
    • Fix login in unsafe mode when using a password with special XML characters #6797
    • Fix login in e.g. Brave browser by avoiding synchronous XHR #7023
    • Fix invalid login message #7066
    • Modernise windows.open noopener (to avoid flash of white page in dark mode) #7077, #7089
  • UI
    • Searchable My Labels field #6753
    • Add subscription management button to reading view #6946
    • New option for showing label menu in article row #6984
    • Move to next unread label on mark as read #6886
    • Improved article footer for small / mobile screens #7031
    • Improve Web accessibility: fix aria-hidden bug, and use HTML5 hidden #6910
    • Default styles for <pre> and <code> #6770
    • Refactor the sharing menu to use a <template> instead of duplicated HTML code #6751, #7113
    • Refactor the label menu to use a <template> #6864
    • Rework UI for authors #7054
      • Avoid Unicode escape of authors in HTML UI #7056
    • Improved subscription management page #6816
    • Improve user query management page #7062
    • Restore JavaScript form validation compatibility with Web browsers using older engines (SeaMonkey) #6777
    • Reorganise some options #6920
    • New shortcut ? to show shortcut page and help #6981
    • Use of consistent colours in statistics #7090
    • Various UI and style improvements #6959
  • Extensions
    • New extension hook simplepie_after_init #7007
  • I18n
  • Misc.

  •  
  • ↗️
Ontvangen β€” 18 December 2024 ⏭ Selfhosted

v11.3.5

βœ‡Directus
Door: github-actions[bot]
18 December 2024 om 17:25

✨ New Features & Improvements

  • @directus/app
    • Added support for title and text fields to display related values in the kanban layout (#23538 by @matt-rolley)

πŸ› Bug Fixes & Optimizations

  • @directus/app
  • @directus/api
    • Fixed incorrect updating of user's role when OIDC role mapping is not set (#24252 by @licitdev)

πŸ“¦ Published Versions

  • @directus/app@13.4.0
  • @directus/api@23.3.2

  •  
  • ↗️
Ontvangen β€” 17 December 2024 ⏭ Selfhosted

v11.3.4

βœ‡Directus
Door: github-actions[bot]
17 December 2024 om 17:31

πŸ› Bug Fixes & Optimizations

πŸ“¦ Published Versions

  • @directus/app@13.3.8
  • @directus/api@23.3.1
  • @directus/sdk@18.0.3

  •  
  • ↗️
Ontvangen β€” 16 December 2024 ⏭ Selfhosted

v11.3.3

βœ‡Directus
Door: github-actions[bot]
16 December 2024 om 17:41

✨ New Features & Improvements

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Ensure floating view will not scroll top after route change (#23920 by @SP12893678)
    • Improved perf by preventing an unnecessary permissions lookup (#24178 by @paescuj)
    • Fixed permission checks when creating or editing related items (#24177 by @paescuj)
    • Fixed calendar layout locale for "Norwegian" (#24205 by @hanneskuettner)
    • Fixed the alignment of the select-all checkbox in the notifications drawer (#24213 by @Dominic-Marcelino)
    • Enhanced vertical alignment of SSO icons on login page (#24119 by @robsoncombr)
    • Fixed an issue with unintentional sorting after editing items in relational interfaces (#24172 by @osmandvc)
    • A potential licensing issue was reported in our use of TinyMCE (used for the WYSIWYG interface) after they changed licenses in the new major version. We've downgraded to the previous major which is MIT-licensed to resolve that while we look for a long term solution. (#24181 by @paescuj)
    • Fixed the display of relational fields in nested groups (#24183 by @formfcw)
    • Improved the default user created display template by using the avatar field (#24160 by @gavalierm)
    • Fixed thumbnails not appearing in File Library after upload (#24087 by @joselcvarela)
    • Increase raw-editor max-height (#24199 by @gloriarodrife)
  • @directus/api
    • Prevented websocket heartbeat handler from erroring on startup (#24211 by @br41nslug)
    • Added assigning admin policy to a new role created via command line when needed (#24022 by @NickSettler)
    • Fixed retention time based query not being database agnostic (#24179 by @ComfortablyCoding)
    • Added idToken to providerPayload in auth.create and auth.update filter hooks (#24154 by @m3Lith)
    • Improved the performance of relational lookups (#23907 by @jclaveau)
    • Reverted query generation for M2M relations that share the same junction table in #23879 (#24149 by @licitdev)
  • @directus/sdk
    • Add a discriminated union scenario to m2a query type resolution (#23708 by @datner)

πŸ“ Documentation

πŸ“¦ Published Versions

  • @directus/app@13.3.7
  • @directus/api@23.3.0
  • @directus/sdk@18.0.2

  •  
  • ↗️
Ontvangen β€” 3 December 2024 ⏭ Selfhosted

v11.3.2

βœ‡Directus
Door: github-actions[bot]
3 December 2024 om 18:46

πŸ› Bug Fixes & Optimizations

  • @directus/app
  • @directus/api
    • Fixed an issue that could cause the schema cache to not be invalidated on schema apply (#24128 by @rijkvanzanten)
    • Added user existence check when migrating legacy comments (#24134 by @licitdev)

πŸ“¦ Published Versions

  • @directus/app@13.3.6
  • @directus/api@23.2.2

  •  
  • ↗️

v11.3.1

βœ‡Directus
Door: github-actions[bot]
2 December 2024 om 23:52

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Fixed WYSIWYG file upload extension to use filename_disk (#24097 by @that1matt)
  • @directus/api
    • Fixed an issue that could cause the migrations to fail on certain database versions (#24126 by @ComfortablyCoding)
    • Fix specifications.ts to generate required array in OpenAPI schema (#24123 by @Zyles)

πŸ“¦ Published Versions

  • @directus/app@13.3.5
  • @directus/api@23.2.1

  •  
  • ↗️
Ontvangen β€” 2 December 2024 ⏭ Selfhosted

v10.13.4

βœ‡Directus
Door: github-actions[bot]
2 December 2024 om 18:30

πŸ› Bug Fixes & Optimizations

  • @directus/api
    • Added HTML sanitization in comments

πŸ“¦ Published Versions

  • @directus/api@21.0.2

  •  
  • ↗️

v11.3.0

βœ‡Directus
Door: github-actions[bot]
2 December 2024 om 18:15

✨ New Features & Improvements

πŸ› Bug Fixes & Optimizations

πŸ“ Documentation

πŸ“¦ Published Versions

  • @directus/app@13.3.4
  • @directus/api@23.2.0
  • @directus/composables@11.1.5
  • create-directus-extension@11.0.7
  • @directus/env@4.1.0
  • @directus/extensions@2.0.6
  • @directus/extensions-registry@2.0.6
  • @directus/extensions-sdk@12.1.4
  • @directus/memory@2.0.6
  • @directus/pressure@2.0.5
  • @directus/storage-driver-azure@11.1.2
  • @directus/storage-driver-cloudinary@11.1.2
  • @directus/storage-driver-gcs@11.1.2
  • @directus/storage-driver-s3@11.0.5
  • @directus/storage-driver-supabase@2.1.2
  • @directus/system-data@2.1.2
  • @directus/themes@1.0.5
  • @directus/utils@12.0.5
  • @directus/validation@1.0.5
  • @directus/sdk@18.0.1

  •  
  • ↗️
Ontvangen β€” 29 November 2024 ⏭ Selfhosted

BookStack v24.10.3

βœ‡BookStack
Door: ssddanbrown
29 November 2024 om 15:00

Links

Full List of Changes

This release contains the following fixes and changes:

  • Updated PHP dependency package versions.
  • Updated translations with latest Crowdin changes. (#5331)
  • Fixed attachment stream handling for better Chrome video support. (#5342, #5088)
  • Fixed page include issue caused by PHP 8.3.14 bug. (#5341)
  • Fixed OIDC userinfo handling when response included charset content type. Thanks to @wesbiggs. (#5337)
  • Fixed differing code line height between dark/light modes. (#5146)

  •  
  • ↗️
Ontvangen β€” 26 November 2024 ⏭ Selfhosted

v2.5.0

βœ‡Cloudpanel
Door: cloudpanel-io
26 November 2024 om 10:27

New

  • PHP 8.4 Support
  • MariaDB 11.4 Support
  • Translations: Hungarian, Slovak, Thai

Bug Fixes

  • #471 username error
  • #476 Shebang incorrect in /usr/bin/clpctl
  • #484 Unexpected brackets at the beginning of files
  • #500 Custom cron commands are not working
  • #505 Web based File Manager does not upload files
  • #511 .well-known directory deleted after certificate renew
  • #527 Unable to login with site user via ssh key when ftp user is created (Thanks to ccMatrix)
  • #530 File permissions revert to 0770 after file modification
  • #535 "Additional Configuration Directives" doesn't allow for spaces in value
  • #540 S3 backup - Region - Middle East (UAE) me-central-1 missing
  • Translation Fixes

Enhancements

  • Added new AWS regions for S3 remote backup

Security

  • Privilege Escalation from clpctlWrapper command (Yell Phone Naing) (HIGH)
  • Privilege Escalation: Site User Access Allows Linux Password Changes (HIGH) (Yell Phone Naing)
  • Server IP disclosure despite using Cloudflare (Yell Phone Naing)

  •  
  • ↗️
Ontvangen β€” 20 November 2024 ⏭ Selfhosted

v11.2.2

βœ‡Directus
Door: github-actions[bot]
20 November 2024 om 15:25

⚠️ Potential Breaking Changes

  • @directus/env
    • Fixed enforcing chunkSize when TUS is not enabled and updated the default TUS_CHUNK_SIZE to 8mb (#24002 by @ComfortablyCoding)

πŸ› Bug Fixes & Optimizations

  • @directus/app
  • @directus/api
  • @directus/storage-driver-cloudinary
    • Fixed enforcing chunkSize when TUS is not enabled and updated the default TUS_CHUNK_SIZE to 8mb (#24002 by @ComfortablyCoding)
  • @directus/storage-driver-supabase
    • Fixed enforcing chunkSize when TUS is not enabled and updated the default TUS_CHUNK_SIZE to 8mb (#24002 by @ComfortablyCoding)
  • @directus/storage-driver-azure
    • Fixed enforcing chunkSize when TUS is not enabled and updated the default TUS_CHUNK_SIZE to 8mb (#24002 by @ComfortablyCoding)
  • @directus/storage-driver-gcs
    • Fixed enforcing chunkSize when TUS is not enabled and updated the default TUS_CHUNK_SIZE to 8mb (#24002 by @ComfortablyCoding)
  • @directus/constants
    • Fixed enforcing chunkSize when TUS is not enabled and updated the default TUS_CHUNK_SIZE to 8mb (#24002 by @ComfortablyCoding)
  • @directus/storage-driver-s3

πŸ“ Documentation

  • Fixed enforcing chunkSize when TUS is not enabled and updated the default TUS_CHUNK_SIZE to 8mb (#24002 by @ComfortablyCoding)

πŸ“¦ Published Versions

  • @directus/app@13.3.3
  • @directus/api@23.1.3
  • @directus/composables@11.1.4
  • @directus/constants@12.0.1
  • create-directus-extension@11.0.6
  • @directus/env@4.0.0
  • @directus/extensions@2.0.5
  • @directus/extensions-registry@2.0.5
  • @directus/extensions-sdk@12.1.3
  • @directus/memory@2.0.5
  • @directus/pressure@2.0.4
  • @directus/storage-driver-azure@11.1.1
  • @directus/storage-driver-cloudinary@11.1.1
  • @directus/storage-driver-gcs@11.1.1
  • @directus/storage-driver-s3@11.0.4
  • @directus/storage-driver-supabase@2.1.1
  • @directus/themes@1.0.4
  • @directus/types@12.2.2
  • @directus/utils@12.0.4
  • @directus/validation@1.0.4

  •  
  • ↗️
Ontvangen β€” 13 November 2024 ⏭ Selfhosted

BookStack v24.10.2

βœ‡BookStack
Door: ssddanbrown
13 November 2024 om 13:05

Security Release

BookStack v24.10.2 has been released.

This is a security release to address a vulnerability in our dependencies where specifically formatted requests could be used to manipulate application configuration in environments where a certain PHP option (register_argc_argv) is enabled. This is not an option that's typically enabled in production web-serving environments, but it's advised to update where uncertain.

Full List of Changes

  • Updated application PHP dependencies.
  • Updated translations with latest Crowdin changes. (#5317)

  •  
  • ↗️
Ontvangen β€” 8 November 2024 ⏭ Selfhosted

BookStack v24.10.1

βœ‡BookStack
Door: ssddanbrown
8 November 2024 om 15:00

Links

Full List of Changes

This release contains the following fixes and changes:

  • Updated System CLI with fixes and updated dependencies. (#5312)
  • Fixed update-url command not updating revisions & drafts. (#5292)
  • Fixed the namespaces of some tests. Thanks to @LordSimal. (#5291, #5071)
  • Fixed misaligned user input validation. (#5263)
  • Updated setting categories to validate by for existing views, allowing custom categories to be used via the theme system. Thanks to @LachTrip. (#5255, #5251)
  • Updated translations with latest Crowdin changes. (#5250)

  •  
  • ↗️
Ontvangen β€” 6 November 2024 ⏭ Selfhosted

v11.2.1

βœ‡Directus
Door: github-actions[bot]
6 November 2024 om 20:43

πŸ› Bug Fixes & Optimizations

  • @directus/app
  • @directus/api
    • Skipped collection exists check when creating collections and folders (#23991 by @licitdev)

πŸ“¦ Published Versions

  • @directus/app@13.3.2
  • @directus/api@23.1.2

  •  
  • ↗️
Ontvangen β€” 5 November 2024 ⏭ Selfhosted

v11.2.0

βœ‡Directus
Door: github-actions[bot]
5 November 2024 om 23:21

✨ New Features & Improvements

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Fixed disabled state of the "Add File" empty state button for users without permissions (#23947 by @osmandvc)
    • Improved the loading and unloading speed of the data model pages (#23976 by @hanneskuettner)
    • Fix permission generation for Shares (#23716 by @Nitwel)
    • Fixed regression to item count displaying after vue-i18n upgrade (#23973 by @hanneskuettner)
  • @directus/api
  • @directus/system-data
  • @directus/types

πŸ“¦ Published Versions

  • @directus/app@13.3.1
  • @directus/api@23.1.1
  • @directus/composables@11.1.3
  • create-directus-extension@11.0.5
  • @directus/env@3.1.3
  • @directus/extensions@2.0.4
  • @directus/extensions-registry@2.0.4
  • @directus/extensions-sdk@12.1.2
  • @directus/memory@2.0.4
  • @directus/pressure@2.0.3
  • @directus/storage-driver-azure@11.1.0
  • @directus/storage-driver-cloudinary@11.1.0
  • @directus/storage-driver-gcs@11.1.0
  • @directus/storage-driver-s3@11.0.3
  • @directus/storage-driver-supabase@2.1.0
  • @directus/system-data@2.1.1
  • @directus/themes@1.0.3
  • @directus/types@12.2.1
  • @directus/utils@12.0.3
  • @directus/validation@1.0.3

  •  
  • ↗️
Ontvangen β€” 29 Oktober 2024 ⏭ Selfhosted

v11.1.2

βœ‡Directus
Door: github-actions[bot]
29 Oktober 2024 om 16:26

⚠️ Potential Breaking Changes

  • @directus/sdk

✨ New Features & Improvements

  • @directus/app
  • @directus/api
  • @directus/system-data
  • @directus/specs
  • @directus/types

πŸ› Bug Fixes & Optimizations

  • @directus/app
    • Fixed display error when selecting kanban layout for the first time (#23927 by @SP12893678)
    • Ensured elements on login page are correctly truncated when not enough space is available (#23746 by @Julias0)
    • Added condition to only show the "Create Dashboard" if the user has the correct permissions (#23828 by @SP12893678)
    • Added save options to role and policies item pages (#23820 by @ubercj)
    • Hide alias fields in the export sidebar (#23866 by @licitdev)
    • Fixed tags interface to correctly handle reset whitespace option (#23829 by @SP12893678)
    • Ensured new operation can reuse same key as previously deleted one in current flow editing session (#23874 by @SP12893678)
    • Fixed an issue where the WYSIWYG interface would reload with every keystroke if custom formats are given (#23881 by @SP12893678)
    • Updated dependencies (#23819 by @renovate)
    • Fixed pasting of multiple, comma separated numbers into the filter input (#23911 by @hanneskuettner)
  • @directus/api
    • Updated dependencies (#23819 by @renovate)
    • Fixed an issue which prevented the deletion of some nested collections when applying a snapshot (#23851 by @DanielBiegler)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
    • Added missing fields for directus_fields to GraphQL schema, SDK and docs (#23905 by @br41nslug)
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
    • Fixed an issue where the mail sender is not displayed correctly for instances that use special characters in project name (#23889 by @shaietz)
    • Fixed query time logging leaking memory for failed queries (#23926 by @SP12893678)
    • Added is_indexed to schema snapshot (#23861 by @ComfortablyCoding)
  • create-directus-project
  • create-directus-extension
  • @directus/extensions-sdk
  • @directus/memory
  • @directus/storage-driver-azure
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/storage-driver-cloudinary
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
    • Fixed the cloudinary storage driver to work again with the server health check (#23821 by @ComfortablyCoding)
  • @directus/storage-driver-gcs
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/storage-driver-s3
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/storage-driver-supabase
    • Updated dependencies (#23819 by @renovate)
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/themes
  • @directus/update-check
  • @directus/storage-driver-local
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/storage
    • Allow for cachebusting when reading images from cloudinary to use the latest image for preview generation. (#23639 by @Nitwel)
  • @directus/sdk
    • Added missing fields for directus_fields to GraphQL schema, SDK and docs (#23905 by @br41nslug)
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
    • Improved SDK relation function type (#23877 by @br41nslug)
    • Ensured failing GraphQL requests are properly handled by throwing an error and exposing errors and data information (#22666 by @GuyShane)
  • @directus/specs
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
  • @directus/system-data
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
  • @directus/types
    • Consolidated Content Versions with a new delta field under directus_versions (#23612 by @licitdev)
  • @directus/extensions
    • Fixed extension-sdk defineHook and defineEndpoint types (#23836 by @br41nslug)

πŸ“ Documentation

  • Added missing fields for directus_fields to GraphQL schema, SDK and docs (#23905 by @br41nslug)

πŸ“¦ Published Versions

  • @directus/app@13.3.0
  • @directus/api@23.1.0
  • @directus/composables@11.1.2
  • create-directus-extension@11.0.4
  • create-directus-project@11.0.2
  • @directus/env@3.1.2
  • @directus/errors@1.0.1
  • @directus/extensions@2.0.3
  • @directus/extensions-registry@2.0.3
  • @directus/extensions-sdk@12.1.1
  • @directus/memory@2.0.3
  • @directus/pressure@2.0.2
  • @directus/specs@11.1.0
  • @directus/storage@11.0.1
  • @directus/storage-driver-azure@11.0.2
  • @directus/storage-driver-cloudinary@11.0.3
  • @directus/storage-driver-gcs@11.0.2
  • @directus/storage-driver-local@11.0.1
  • @directus/storage-driver-s3@11.0.2
  • @directus/storage-driver-supabase@2.0.2
  • @directus/system-data@2.1.0
  • @directus/themes@1.0.2
  • @directus/types@12.2.0
  • @directus/update-check@12.0.2
  • @directus/utils@12.0.2
  • @directus/validation@1.0.2
  • @directus/sdk@18.0.0

  •  
  • ↗️
Ontvangen β€” 28 Oktober 2024 ⏭ Selfhosted

v2.4.1

βœ‡Cloudpanel
Door: cloudpanel-io
22 Januari 2024 om 16:11

New

  • Translations: Bosnian

Enhancements

  • The issuance of Let's Encrypt certificates is being tested against the staging environment first to avoid rate limit errors
  • The performance of creating sites, especially Node.js sites, has been enhanced

Bug Fixes

Security

  • Vulnerability that allows a user with the lowest privilege to conduct a session hijacking, subsequently gaining unauthorized access to the admin and other user accounts. (Muhammad Aizat, datack.my)

  •  
  • ↗️
❌