Security Release

• Update Instructions
• Update details on blog

BookStack v25.12.9 has been released.

This is a security release to address a vulnerability where style code in page content could be used to manipulate the page beyond the expected content area in some revision views, opening up risk of potential phishing and/or tracking by bad page editors.

We advise that you update your instance if you allow untrusted users to create or edit pages.

Thanks to Alex Dan (@windbreaker555 on GitHub) for their responsible discovery and reporting of this issue.

Full List of Changes

• Updated page revision diffs to use content filtering.
• Updated preference change redirect with stronger origin checks.
• Updated application PHP dependencies.

• [p]The Dead Hand Collection is now available, featuring 17 finishes from community contributors, and including 22 all-new gloves as rare special items.[/p][/*]
• [p]Access items in the Dead Hand Collection via the Dead Hand Terminal, available as a weekly drop.[/p][/*]

• [p]Fixed a pixel gap in a door Outside Long. [/p][/*]

• [p]Updated to the latest version from the Community Workshop (Update Notes)[/p][/*]

• View downloads

• View downloads

As of February 2026, the PostgreSQL Community Association (PGCA), the official non-profit organization chartered by the PostgreSQL Core Team in 2011 to protect the Postgres brand assets, has updated its sponsorship levels and sponsorship prospectus.

Updated PGCA sponsorship levels

The PGCA Board would not be able to protect the PostgreSQL trademarks and brand assets without the generous financial support we receive from corporations, small businesses, and individual donors. We are deeply grateful for that support.

After reviewing sponsorship models used by other open source foundations, and in light of the increasing costs required to protect the PostgreSQL brand assets, we have increased the top two sponsorship levels: Benefactor and Patron, effective February 1, 2026. All other sponsorship levels remain unchanged. As always, we welcome and value donations at all levels, in any amount.

Significant update to the PGCA non-profit website

We’ve also made a significant update to the PGCA website, to modernize it and bring it forward to the present. We hope the new site makes it easier to understand the PGCA’s non-profit mission, learn how to use PostgreSQL trademarks appropriately, and donate, whether as a one-time or monthly contribution.

The updated PGCA website is at the same URL as before: www.postgres.ca.

Updated sponsorship levels and the sponsorship prospectus can be found on the Sponsors page at www.postgres.ca/sponsors/.

• read-only demo server at https://a.ocv.me/pub/demo/
• docker image ╱ similar software ╱ client testbed

there is a discord server with an @everyone in case of future important updates, such as vulnerabilities (most recently 2026-03-08)

⚠️ ATTN: this release fixes an ftp/sftp issue with shares

• GHSA-67rw-2x62-mqqm: when a share is created for just one or more files inside a folder, it was possible to use FTP or SFTP to access the other files inside that folder by guessing the filenames
  • so ignore this issue if you did not enable ftp or sftp in the server config
• it was not possible to descend into subdirectories in this manner; only the sibling files were accessible
• NOTE: this does NOT affect filekeys; this is specifically regarding the shr global-option
• password-protected shares were not affected through SFTP, only FTP

this release also fixes GHSA-rcp6-88mm-9vgf but that one is nothing to worry about

recent important news

• v1.20.9 (2025-02-25) fixed CVE-2026-27948 (XSS)

🧪 new features

• features? in this econonmy?? ain't nobody got time for that

🩹 bugfixes

• 66f1ef6 GHSA-67rw-2x62-mqqm (shares)
• 9f9d30f GHSA-rcp6-88mm-9vgf (the other thing)

🌠 fun facts

• the first cve is still by far the worst, none of the others even close... so at least that's nice
  • if you saw the cve notification and got all worked up, here's some comfy music to relax and upgrade copyparty to

⚠️ not the latest version!

Postfix stable release 3.11.1

[A hyperlinked version of this announcement will be available at https://www.postfix.org/announcements/postfix-3.11.1.html]

Postfix stable release 3.11.1 is available.

• Bugfix (defect introduced: 20260219): alias_maps errors when default_database_type was not set in main.cf. Fix by Michael Tokarev.

• Bugfix (defect introduced: Postfix 3.0): buffer over-read when Postfix is configured with an enhanced status code not followed by other text. For example, "5.7.2" without text after the three-number code, in an access(5) table, header or body checks, or with "$rbl_code $rbl_text" in rbl_reply_maps or default_rbl_reply. These are all uncommon configurations. Problem reported by Kamil Frankowicz.

• Bugfix (defect introduced: Postfix 3.3): null pointer in nbdb_reindexd(8) because the "service_name" value was not propagated. Report by Michael Tokarev.

• During Postfix start-up, avoid a spurious error message from nbdb_reindexd(8), when non_bdb_migration_level disables automatic re-indexing.

You can find the Postfix source code at the mirrors listed at https://www.postfix.org/.

✨ New Features & Improvements

• @directus/system-data
  • Updated latest models for Anthropic, Google, and OpenAI providers (#26865 by @bryantgillespie)
• @directus/ai
  • Updated latest models for Anthropic, Google, and OpenAI providers (#26865 by @bryantgillespie)

🐛 Bug Fixes & Optimizations

• @directus/app
  • Fixed creation of related item with empty or default state (#26844 by @powerseed)
  • Added field level MIME type restriction to file-image interface (#26831 by @AlexGaillard)
  • Fixed AI tool approval flow hanging after approving provider-executed tools. (#26839 by @bryantgillespie)
  • Fixed custom Vue operation options to persist edited values in Flow settings. (#26832 by @AbdelhamidKhald)
  • Fixed an invalid filter for M2M interfaces when the item Id is null (#26857 by @ComfortablyCoding)
  • Fixed folder navigation state being lost when reopening file selection drawer (#26649 by @costajohnt)
  • Enforced MIME type allow list on remaining v-uploads missed in first round (#26821 by @robluton)
  • Fixed client side validation breaking in drawer when dynamic variable is present. (#26795 by @powerseed)
  • Fixed Visual Editor stripping trailing slashes from URLs (#26823 by @formfcw)
  • Enabled conditional styling for string fields in pie and donut charts. (#26776 by @vizzv)
  • Updated AI SDK dependencies to latest version (#26856 by @bryantgillespie)
  • Fixed save-as-copy failing on collections with many duplication fields (#26814 by @gaetansenn)
  • Improved redirect handling (#26870 by @br41nslug)
  • Fixed unable to click on m2o fields arrow icon to open drawer (#26822 by @robluton)
• @directus/api
  • Updated AI SDK dependencies to latest version (#26856 by @bryantgillespie)
  • Improved redirect handling (#26870 by @br41nslug)
  • Fixed countAll generating an incorrect query (#26774 by @tysoncung)
  • Updated TUS validation (#26869 by @br41nslug)
  • Fixed AI assistant Fields tool call inconsistency (#26819 by @powerseed)
  • Added support for disabling OpenAPI output using OPENAPI_ENABLED (#26868 by @br41nslug)
  • Bumped underscore, tar, lodash, dompurify dependencies (#26860 by @br41nslug)
  • Fixed deleteMany returning unexpected error for non-admin with empty array (#26759 by @ComfortablyCoding)
• @directus/env
  • Added support for disabling OpenAPI output using OPENAPI_ENABLED (#26868 by @br41nslug)

📦 Published Versions

• @directus/app@15.5.1
• @directus/api@34.0.1
• @directus/ai@1.3.0
• @directus/composables@11.2.15
• create-directus-extension@11.0.31
• @directus/env@5.6.1
• @directus/extensions@3.0.21
• @directus/extensions-registry@3.0.21
• @directus/extensions-sdk@17.0.11
• @directus/memory@3.1.4
• @directus/pressure@3.0.19
• @directus/schema-builder@0.0.16
• @directus/storage-driver-azure@12.0.19
• @directus/storage-driver-cloudinary@12.0.19
• @directus/storage-driver-gcs@12.0.19
• @directus/storage-driver-s3@12.1.5
• @directus/storage-driver-supabase@3.0.19
• @directus/system-data@4.3.0
• @directus/themes@1.2.6
• @directus/types@14.3.1
• @directus/utils@13.3.1
• @directus/validation@2.0.19

The Chrome team is delighted to announce the promotion of Chrome 146 to the stable channel for Windows, Mac and Linux. This will roll out over the coming days/weeks.

• Crimson Desert: Game crashes when launched on R595 drivers [5861012]
• Resident Evil Requiem: White glowing light/dots may appear in game when Subsurface Scattering is enabled [5915673]
• Star Citizen: Game client crashes when launched [5935027]

• When the graphics card is overclocked, GPU voltage may become capped, preventing it from boosting to expected levels [5934973]
• Intermittent application crash or driver timeout may be observed when playing multi-key DRM content in a browser on HDCP 1.x monitors [5934450]

• View downloads
• View release notes

nginx-1.29.6 mainline version has been released, featuring sticky sessions support for upstreams.

12.16 - 2026-03-10

⛰️ Features

• (packaging) Add libqt6pas dependency - (a3e6d0b)
• (packaging) Ship qt6 build in deb package, enhance control file fields - (992b673)
• (ui) Turn all TEdit's with NumbersOnly into TSpinEditEx - (96bb466)
• Select just created table copy - (18e9431)
• Add toolbar button for toggling reverse foreign key listing, so the user has the chance to disable its potentially long during query - (938f303)
• Reverse foreign keys on "Foreign keys" tab in table editor - (ca48343)
• Add menu item Edit > Copy column names - (ce93931)
• Prevent loading an SQL file multiple times into an editor - (153e61d)
• Add sshpass.exe v1.0.6 for Windows, and refactor Windows installer script - (d79d462)
• Inject app name and version into potentially long during SQL queries for the SQL export - (93e1b39)
• Run user startup script in DoAfterConnect call, which includes reconnects - (1b27b1d)
• Add "Display" main menu, move some spread items there, and add two items for toggling log panel and tree filters - (c0fbcff)
• Support BOOLEAN column type in MySQL - (e796ad1)
• Re-enable clickable "Analyze query" label on host > processes - (678c7b8)
• Create SQL export option for wrapping DML commands in a BEGIN/COMMIT transaction - (5560454)
• Display approximate row count of tables in database tab on MS SQL - (146044f)
• Support full table status option in SQLite, showing "Rows" from COUNT(*) for each table - (422935a)
• Add security policy for supported versions and reporting - (7ce4a23)
• Prefer KILL QUERY over KILL on MySQL and MariaDB, when using the "Kill process" menu item in Host > processlist - (b3743d8)
• New attempt to leave the main window invisible behind the session manager - (be5322c)
• Show virtual, stored and hidden columns in SQLite - (0a87a73)

🚀 Enhancements

• Move color scheme submenu from Tools to Display menu - (f7f90e8)
• Export tables which are hidden through the table filter - (42e5277)

🐛 Bug Fixes

• Crash on macOS, due to running Connection.ShowWarnings directly in the TQueryThread - (d62807a)
• Less aggressive debug compile mode, made the app unresponsive when trying to close - (8d48099)
• Two more exception causes found in uploaded reports - (e33ea1d)
• Sporadic "no database selected" when updating grid header with row details - (c9eb765)
• Wrong use of Copy(), which is one-based not zero-based, and remove translated appendix to snipped log message which may use critical chars and confuse SynEdit - (e3fc3f5)
• Various crash causes, reported in uploaded bug reports - (6215d19)
• Missing required package LazControls for TSpinEditEx - (519a84a)
• Remove default keystrokes from query editor: 2x ecRedo and 1x ecDeleteLine - (2bc9d78)
• Wrong SQL on MS SQL when renaming table per table editor - (a763fd1)
• Use default brew path to sshpass on macOS - (b7c3d07)
• Status bar text gets written into the panel right besides the current one, on Linux/macOS - (dfb86d5)
• Several crash causes Host subtabs when connection is lost externally - (1029657)
• Non stored global setting for "sort alphabetically" checkbox in column selection - (0ccb1ac)
• High CPU load and unresponsiveness through SynEdit highlighter when starting to edit large text in popup editor - (676fcd7)
• Crash when enabling TShellListView.MultiSelect in OnFormShow, now sets options per setter method, before FormShow - (2acce35)
• Crash on right-click in empty area of query result grid - (6309305)
• Data grid context menu not opening after click in empty area - (10fc117)
• Repaint columns list after move up/down a column - (6a0cbe3)
• Out-of-memory error in call to sqlite3_open() on a non-existent SQLite database file - (e93924f)
• Font bold + italic setting not stored in settings - (cc5b811)
• Potentially crashing typecast in LoadRecentFilter - (da07591)
• Non-themed white area on TTabControl, fix from zamtmn/metadarkstyle#75 - (7554364)
• Forgotten files in c01a439 - (8098296)
• Initial FK names assigned in TfrmTableEditor.listForeignKeysNewText() were lacking the referencing table's table name in case the referencing table was not created yet (pr from Jochen Neubeck) - (d8cd61c)
• Wrong schema queries in SQLite, always shows columns and indexes of first database file - (7072986)
• BIT values in MS SQL grid queries prefixed with MySQL b'' style - (7456c38)
• Random crash in dodgy typecast TEdit/TEditButton - (37add0f)
• Crash when moving added column to very bottom - (b739799)
• Load any foreign keys, anyway if the user owns them, on PostgreSQL - (dbab4cb)
• Wrong captions on quick filter actions shown in preferences > shortcuts - (3e0bf91)
• Crash in OpenTextFile, for a 0-bytes file - override the encoding to one without BOM - (27e26a6)
• Keep column default value in table editor, when user changes its datatype to one in the same category as before (int => bigint) - (3c518ad)
• Trim away spaces around name of routine parameter silently - (b681ebf)
• Re-enable dropping sql files on main form - (314db47)
• Missing translations, and rephrase the "themes not supported" text - (7dfad02)
• TDBQuery.TableName always returned an empty string on MS SQL - (520a90c)
• TDBQuery.Col() crashes with "Column not available" on certain locales - (a01acd1)
• Reset DesignTimePPI in all forms from 120 to the default 96, let the IDE scale controls down and move or add some defaults like LCLVersion. - (e635ae5)
• Allow $$ as delimiter again on non-PostgreSQL connections, and ` on non-MySQL connections - (71bb25b)

🚜 Refactor

• Migration from Array[TSQLSpecifityId] to TSqlProvider - (31ba8bf)

📚 Documentation

• (ui) Mark VCL styles as deprecated - (1ce80ea)

🎨 Styling

• (ui) Remove border around reverse foreign key list - (6ed145e)

⚙️ Miscellaneous Tasks

• Bump version for v12.16 release - (d141124)
• Move OpenSSL license file out of the dll folder - (5772d09)
• Add Wine deprecation note used in the Windows builds - (5e34fa9)

Localize

• Update compiled translation files from Transifex - (a5f1a19)

Ui

• Hint the user in which path we are going to look for sshpass (macOS and Windows) - (86a96bd)

Contributors

• @ansgarbecker

ci: bump version for v12.16 release

ci: bump version for v12.15.0.7171

• View downloads
• View release notes

• View downloads
• View release notes

Bug Fixes

• WC-1488: Fixed unable to authenticate with the YouTube destination in Output Settings.
• WC-1468: Fixed a bug that prevented several Elgato devices from appearing in the Add Source menu.
• WC-1439: Fixed certain serial licenses do not display the license tab in Preferences. This prevented users from deactivating their licenses.
• WC-1431: Fixed the countdown clock gets stuck at 00:00 on Windows.
• WC-1400: Fixed Black Duck.
• WC-1392: Fixed Multistream sessions cannot be created when opening Wirecast documents quickly.
• WC-1179: Updated the minimum macOS version to 14.0.
• WC-1047: Fixed an outdated dialog when the subscription expires.
• WC-1038: Fixed the Facebook Speed Test.

• read-only demo server at https://a.ocv.me/pub/demo/
• docker image ╱ similar software ╱ client testbed

there is a discord server with an @everyone in case of future important updates, such as vulnerabilities (most recently 2026-03-08)

⚠️ ATTN: this release fixes a vulnerability

GHSA-m6hv-x64c-27mm the nohtml volflag did not prevent javascript inside SVG images from executing -- a malicious user with write-access could upload an SVG file which would execute as javascript when someone opens it 1c9f894

recent important news

• v1.20.9 (2025-02-25) fixed CVE-2026-27948 (XSS)

🧪 new features

• version-checker (thx @icxes!) c6965f0
  • default-disabled; you must choose a URL to grab security advisories from to enable it
  • periodically checks the security advisories and shows a warning in the controlpanel if you're running a vulnerable version
  • can optionally panic and shutdown the server if you prefer that
  • man, the timing on this though... absolute cinema

🩹 bugfixes

• fix nohtml not being aware that SVG images can execute javascript 1c9f894
  • a new volflag noscript was also added; nohtml will automatically enable noscript, but noscript can also be useful on its own; see readme
• various upload rules fixes:
  • #1335 rotf couldn't handle trailing slash (thx @NecRaul!) 8e20506
  • #1337 rotn didn't always count correctly (thx @NecRaul!) 23d4a62
  • rotn didn't apply to dupes 00e821d
• combining rp-loc and site was a bit jank (thx @new-sashok724!) 31b2384
• global-option idp-store: 2 would result in excessive config reloading 1272de9
• fix fd-leak when indexing certain compressed files, including epub books 8b5ac23
• forget-ip: fix sqlite cursor-locking 37123e3

🔧 other changes

• #1316 Chinese translation got a huge makeover (thx @satgo1546 and @lxdlam!) b015274
• #1324 better rclone advice on the connect-page 8941701
• static website resources, previously served from /.cpr/ have moved to /.cpr/w/ for easier configuration of allowlists in reverseproxies and authentication middlewares 753ff54

🌠 fun facts

• according to the SVG spec, images being able to execute javascript is a feature and intentional behavior... what a concept!

⚠️ not the latest version!

This is a small update that adds a new translation (Kazakh) and updates the bundled DDS and JPEG XL FileType plugins to their latest versions.

Get the Update

There are two releases of Paint.NET:

• Microsoft Store release (recommended)

  • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
  • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
• Classic Desktop release
  • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
  • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to Settings -> Updates -> Check Now.
  • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.11:

• New: Added a Kazakh (kk) translation
• Updated the bundled DDS FileType Plus plugin to v1.12.14 (thanks @null54!)
• Updated the bundled JPEG XL FileType plugin to v1.2.1 (thanks @null54!)

This is a hotfix for 5.1.10 that fixes the DxgiAdapterService, which is used by plugins that initialize DirectX using their own interop.

The 5.1.10 update was a maintenance release that added a Romanian translation, fixed some important bugs, and updated the bundled FileType plugins.

Get the Update

There are two releases of Paint.NET:

• Microsoft Store release (recommended)

  • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
  • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
• Classic Desktop release
  • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
  • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to Settings -> Updates -> Check Now.
  • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.10:

• Fixed the DxgiAdapterService not implementing IDxgiAdapterService2 due to a bad merge conflict

Changes in 5.1.10 that were new since 5.1.9:

• New: Added a Romanian (RO) translation
• Fixed a crash (BadNumberException) when moving selected pixels off-canvas, then modifying the selection, then moving the selected pixels back on-canvas
• Changed Effects->Noise->Add Noise’s Coverage property to be a float instead of an integer
• Fixed a rare crash when the system wakes from sleep
• Fixed a small GCHandle leak
• Fixed HlslTernaryFunctionEffect when using 3 value parameters
• Added IDxgiAdapterService2 for plugin use
• Updated the bundled AvifFileType plugin to v3.13.1 (thanks @null54!) 
• Updated the bundled JPEG XL FileType plugin to v1.2.0, which improves support for HBD/HDR image loading (thanks @null54!)
• Updated the bundled WebP FileType plugin to v1.6.0 (thanks @null54!)

This is a maintenance release that adds a Romanian translation, fixes some important bugs, and updates the bundled FileType plugins.

Get the Update

There are two releases of Paint.NET:

• Microsoft Store release (recommended)

  • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
  • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
• Classic Desktop release
  • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
  • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to Settings -> Updates -> Check Now.
  • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.9:

• New: Added a Romanian (RO) translation
• Fixed a crash (BadNumberException) when moving selected pixels off-canvas, then modifying the selection, then moving the selected pixels back on-canvas
• Changed Effects->Noise->Add Noise’s Coverage property to be a float instead of an integer
• Fixed a rare crash when the system wakes from sleep
• Fixed a small GCHandle leak
• Fixed HlslTernaryFunctionEffect when using 3 value parameters
• Added IDxgiAdapterService2 for plugin use
• Updated the bundled AvifFileType plugin to v3.13.1 (thanks @null54!)
• Updated the bundled JPEG XL FileType plugin to v1.2.0, which improves support for HBD/HDR image loading
  (thanks @null54!)
• Updated the bundled WebP FileType plugin to v1.6.0 (thanks @null54!)

This is a maintenance release that adds a Bulgarian translation and fixes some important bugs.

Get the Update

There are two releases of Paint.NET:

• Microsoft Store release (recommended)

  • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
  • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
• Classic Desktop release
  • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
  • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to Settings -> Updates -> Check Now.
  • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.8:

• New: Added Bulgarian (bg) translation
• Fixed: The Levels and Auto-Level adjustments were crashing with panoramic images due to a bug in Direct2D that caused it to attempt allocating a texture that was too large
• Fixed: Using a non-solid fill pattern with a non-opaque color was resulting in the wrong colors being drawn to the layer due to a mixup between straight and premultiplied alpha
• Fixed: Non-CMYK images with an embedded CMYK color profile were being rendered with completely wrong colors
• Fixed a few small memory leaks

This is a simple maintenance release that mostly fixes a few small bugs, and updates the bundled DDS FileType plugin.

Get the Update

There are two releases of Paint.NET:

• Microsoft Store release (recommended)

  • You can purchase it here. This helps fund development and is an alternative or supplement to sending in a donation. In addition, updates happen automatically in the background when you’re not using the app.
  • If you already have it installed, the update should happen automatically once Microsoft certifies the update, usually within the next day or so. To get the update immediately (once it’s certified), you can follow the instructions listed here.
• Classic Desktop release
  • Download the installer from the website. This is the recommended download if you don’t have Paint.NET installed. It can also be used to update the app.
  • If you already have it installed, you should be offered the update automatically within the next few days, but you can also get it immediately by going to Settings -> Updates -> Check Now.
  • Offline Installers and Portable ZIPs are available over on GitHub.

Change Log

Changes since 5.1.7:

• Fixed an issue where a JPEG with an XYZ color profile was taking a very long time to load
• Fixed the ability to use relative paths to open images via paintdotnet.exe when Paint.NET is already open
• New: Added +/- buttons in the toolbar for the Text tool’s font size
• Improved the robustness of file saving in pathological scenarios (e.g. power outage at the very end of saving)
• Added a /resetWindows command-line parameter to assist in troubleshooting scenarios
• Updated the bundled DDSFileTypePlus plugin to v1.12.13 (thanks @null54!)