Bookstack - Package Updates

girish

[1.12.4]

• Update BookStack to 21.04.4
• Full changelog
• Updated translations with latest Crowdin changes. (#2719)
• Updated Korean translations. Thanks to @Jokuna. (#2716)
• Improved error messaging when attempting to access a non-existent image file. (#2696)
• Updated table style handling across exports types to be consistent. (#2666)

nebulon

[1.12.5]

• Update BookStack to 21.04.5
• Fixed error during PDF export in some cases due to incorrect path. (#2746)
• Fixed error thrown when saving a markdown page with empty content. (#2741)
• Updated S3 ACL setting so ACLs are set via another request, as per pre-v21.04.2, but only when actually use AWS S3. (#2739)
• Updated translations with latest Crowdin changes. (#2737)
• Updated overflowing table content to be consistent. Thanks to @dopyrory3. (#2735, #2732)

nebulon

[1.12.6]

• Update BookStack to 21.04.6
• Added a way to configure options on a social driver, for the initial redirects, through the Theme::addSocialDriver system. (#2759)
• Fixed scenario where recent Image upload visibility changes caused issues on hosting where webserver and PHP process group/user differ. (#2758)

nebulon

[1.13.0]

• Update BookStack to 21.05
• Added shelf/book/chapter/page favourite system. (#2748)
• Added previous/next navigation to chapters and pages. Thanks to @shubhamosmosys. (#2511, #1381)
• Added display of tags within search results. Thanks to @burnoutberni. (#2487, #2462)
• Added the ability to import JPEG user avatar images during LDAP login/registration.

nebulon

[1.13.1]

• Update BookStack to 21.05.1
• Added base64 image extraction within page content. Thanks to @awarre. (#2700, #2631)
• Added Croatian translations. Thanks to @ffranchina. (#2784, #2785)
• Updated item permission roles list to be sorted alphabetically. (#2782)
• Merged in latest Crowdin translations. (#2787, #2777)
• Fixed incorrect styling of favourites sidebar when using a non-default homepage option. (#2783)

nebulon

[1.13.2]

• Update BookStack to 21.05.2
• Added the ability to server attachments without forcing downloads. (#2791)
• Fixed issue where empty HTML comments could cause errors. (#2804)
• Updated translations with latest changes from Crowdin. (#2790)
• Extracted not found text into it's own view for easier overriding (58117bc)

girish

[1.13.3]

• Update BookStack to 21.05.3
• Added a "Skip to content" link as first page focus item for accessibility use. (#2810)
• Updated social account detachment to have CSRF protection. (#2808)
• Updated PHP depedancy versions.
• Fixed issue where translations system may attempt to load from the root directory when a theme was not in use. (#2836)

girish

[1.13.4]

• Update BookStack to 21.05.4
• Added VB.NET code block highlighting option. (#2869)
• Improved audit log user select list stability. (#2863)
• Fixed issue where user profile pages item "View All" links used ids hence did not link to proper searches. (#2857)

girish

[1.14.0]

• Update BookStack to 21.08
• Release announcement
• Markdown Export
• Multi-Factor Authentication
• Non-Download Attachment Links
• Role-Based Export Permissions
• “Skip to content” Link

nebulon

[1.14.1]

• Update BookStack to 21.08.1
• Updated TOTP setup flow to display a URL of the QR code contents during setup for non-QR scanning usage. (#2908)
• Updated translations with latest Crowdin updates. (#2906)
• Fixed broken page ordering on various views. (#2905)

nebulon

[1.14.2]

• Update BookStack to 21.08.2
• This security release is intended to cover a couple of XSS vulnerabilities
• Release announcement

nebulon

[1.14.3]

• Update BookStack to 21.08.3
• Release announcement
• Fixed certain "Custom HTML Head Content" being incorrectly altered or converted. (#2923, #2914)
• Updated translations with latest Crowdin updates. (#2915)

girish

[1.14.4]

• Update BooKStack to 21.08.4
• Release announcement
• Added IP address to tracked activities and displayed in audit log. Thanks to @johnroyer. (#2936, #2747)
• Added the option to use database table prefixes. Thanks to @floviolleau. (#2935)
• Allowed the use of content includes when using a custom homepage.
• Updated translations with latest content from Crowdin. (#2926)

girish

[1.14.5]

• Update BookStack to 21.08.5
• Release announcement
• This security release covers a vulnerability which would allow malicious users, who have permission to update or create pages, to load content from files stored within the storage/ or public/ directories (Such as application logs) via the page HTML export system.
• Added concurrent page editing warnings upon draft save events.

nebulon

[1.14.6]

• Update BookStack to 21.08.6
• Release announcement

girish

[1.15.0]

• Update BookStack to 21.10
• Release announcement
• Added Attachment API endpoints. (#2986, #2942)
• Added Estonian language to BookStack via Crowdin. (#2979)
• Added support for base64 image content within markdown text via page POST/PUT. (#2898)
• Updated translations from Crowdin contributors. (#2983)
• Fixed padding within book-tree sidebar items. Thanks to @ffranchina. (#3000)

nebulon

[1.15.1]

• Update BookStack to 21.10.1
• Release announcement
• Fixed image upload vulnerability. Thanks to @Haxatron (#3010)
• Fixed capitalization for Estonian language option. Thanks to @IndrekHaav. (#3008)
• Updated PHP packages to prevent abandoned warning. (#3007)
• Updated translations with latest changes from Crowdin. (#3006)

nebulon

[1.15.2]

• Update BookStack to 21.10.2
• Release announcement
• Made further fixes to address image upload vulnerability. Thanks again to @haxatron (#3019)
• Updated translations with latest changes from Crowdin. (#3014)

girish

[1.15.3]

• Update BookStack to 21.10.3
• Release announcement
• Fixed path image file path traversal vulnerability. Thanks @theWorstComrade for reporting. (#3030)
• Prevented HTML attachments being served inline. Thanks @theWorstComrade for reporting. (#3027)
• Updated translations from latest Crowdin changes. (#3023)

nebulon

[1.16.0]

• Update BookStack to 21.11
• Release announcement