Offen v0.1.0-alpha.10 Release Notes
Release Date: 2020-06-29 // almost 4 years ago-
๐ This is an exciting release as it is likely to be our last alpha version / pre-release. It contains a lot of feedback we received from a recent security audit and focuses on hardening the application further. This version if fully compatible with
v0.1.0-alpha.9
.๐ Features
- โฌ๏ธ Upgrade dexie version and further tighten CSP #399
- โ Add strict transport policy headers to html responses and script #400
- Establish password policy #405
- Harden server by applying selective rate limits to routes #406
๐ Fixes
- Properly implement in memory fallback key storage #403
- ๐ Tighten event validation and parsing #401
Chores
- โ Add Hacker News to referrer buckets #404
- Do not apply rate limiting rules when running behind a reverse proxy #409
๐ Docs