All Versions
42
Latest Version
Avg Release Cycle
157 days
Latest Release
1277 days ago
Changelog History
Page 1
Changelog History
Page 1
-
v5.1.4 Changes
September 18, 2020๐ Security
- ๐ Increase minimum DOMPurify version to 2.0.16 due to recent upstream security advisories
-
v5.1.3 Changes
October 15, 2019๐ Security
- ๐ Increase minimum DOMPurify version to 2.0.6 due to recent upstream security advisories
-
v5.1.2 Changes
September 15, 2018๐ Security
- ๐ Bump Dockerfile base image to Alpine 3.8.1 to fix an
apk
remote code execution vulnerability
- ๐ Bump Dockerfile base image to Alpine 3.8.1 to fix an
-
v5.1.1 Changes
May 06, 2018๐ This will be the last release line to support Node.js 4, 5 and 7.
๐ Improved
- ๐ณ Backport Docker image infrastructure
๐ Fixed
- Backport fix for non-public images always returning 403 Forbidden (#1438)
-
v5.1.0 Changes
January 05, 2018๐ This will be the last release line to support Node.js 4, 5 and 7.
๐ Improved
- ๐ง Generate startup log warnings on bad configurations, including insecure
secret
values and internal parameters - โ Add a
Dockerfile
- โ Added [zero-downtime upgrade support][]
๐ Changed
- โก๏ธ Update deps
- ๐ Enable some more tests and start tracking code coverage with Coveralls
- ๐ Expand package.json metadata
- Clarify semver-major local modification policy
- ๐ Move most documentation to ReadTheDocs (#1496)
๐ Fixed
bin/pump-import-collection
no longer crashes due to anunderscore-contrib
reference- ๐ Fix the logged-out mobile homepage's menu icon being black (#1445)
- ๐ Fix the JavaScript license page not loading Bootstrap properly (#1432)
- ๐ Fix some README config options
- SockJS connections no longer fail due to authorization problems (#1475)
- ๐ง Generate startup log warnings on bad configurations, including insecure
-
v5.1.0-beta.0 Changes
December 09, 2017๐ Improved
- ๐ง Generate startup log warnings on bad configurations, including insecure
secret
values and internal parameters - โ Add a
Dockerfile
- โ Added zero-downtime upgrade support
๐ Changed
- โก๏ธ Update deps
- ๐ Enable some more tests and start tracking code coverage with Coveralls
- ๐ Expand package.json metadata
- Clarify semver-major local modification policy
- ๐ Move most documentation to ReadTheDocs (#1496)
๐ Fixed
bin/pump-import-collection
no longer crashes due to anunderscore-contrib
reference- ๐ Fix the logged-out mobile homepage's menu icon being black (#1445)
- ๐ Fix the JavaScript license page not loading Bootstrap properly (#1432)
- ๐ Fix some README config options
- SockJS connections no longer fail due to authorization problems (#1475)
- ๐ง Generate startup log warnings on bad configurations, including insecure
-
v5.0.4 Changes
September 18, 2020๐ Security
- ๐ Increase minimum DOMPurify version to 2.0.16 due to recent upstream security advisories
-
v5.0.3 Changes
October 15, 2019๐ Security
- ๐ Increase minimum DOMPurify version to 2.0.6 due to recent upstream security advisories
-
v5.0.2 Changes
October 01, 2017๐ Fixed
connect-auth-pumpio
is pulled from npm instead of GitHub again
-
v5.0.1 Changes
October 01, 2017๐ This release was a private beta due to the security fixes being slightly risky for stability.
๐ The relevant security bugs were publicly disclosed on October 1st, 2017.
๐ Security
- ๐ Fix multiple denial-of-service security vulnerabilities in indirect dependencies: advisory 1, advisory 2, advisory 3 (no CVEs available)