Bookstack - Package Updates
-
[1.12.6]
- Update BookStack to 21.04.6
- Added a way to configure options on a social driver, for the initial redirects, through the Theme::addSocialDriver system. (#2759)
- Fixed scenario where recent Image upload visibility changes caused issues on hosting where webserver and PHP process group/user differ. (#2758)
-
[1.13.0]
- Update BookStack to 21.05
- Added shelf/book/chapter/page favourite system. (#2748)
- Added previous/next navigation to chapters and pages. Thanks to @shubhamosmosys. (#2511, #1381)
- Added display of tags within search results. Thanks to @burnoutberni. (#2487, #2462)
- Added the ability to import JPEG user avatar images during LDAP login/registration.
-
[1.13.1]
- Update BookStack to 21.05.1
- Added base64 image extraction within page content. Thanks to @awarre. (#2700, #2631)
- Added Croatian translations. Thanks to @ffranchina. (#2784, #2785)
- Updated item permission roles list to be sorted alphabetically. (#2782)
- Merged in latest Crowdin translations. (#2787, #2777)
- Fixed incorrect styling of favourites sidebar when using a non-default homepage option. (#2783)
-
[1.13.2]
- Update BookStack to 21.05.2
- Added the ability to server attachments without forcing downloads. (#2791)
- Fixed issue where empty HTML comments could cause errors. (#2804)
- Updated translations with latest changes from Crowdin. (#2790)
- Extracted not found text into it's own view for easier overriding (58117bc)
-
[1.13.3]
- Update BookStack to 21.05.3
- Added a "Skip to content" link as first page focus item for accessibility use. (#2810)
- Updated social account detachment to have CSRF protection. (#2808)
- Updated PHP depedancy versions.
- Fixed issue where translations system may attempt to load from the root directory when a theme was not in use. (#2836)
-
[1.13.4]
- Update BookStack to 21.05.4
- Added VB.NET code block highlighting option. (#2869)
- Improved audit log user select list stability. (#2863)
- Fixed issue where user profile pages item "View All" links used ids hence did not link to proper searches. (#2857)
-
[1.14.1]
- Update BookStack to 21.08.1
- Updated TOTP setup flow to display a URL of the QR code contents during setup for non-QR scanning usage. (#2908)
- Updated translations with latest Crowdin updates. (#2906)
- Fixed broken page ordering on various views. (#2905)
-
[1.14.4]
- Update BooKStack to 21.08.4
- Release announcement
- Added IP address to tracked activities and displayed in audit log. Thanks to @johnroyer. (#2936, #2747)
- Added the option to use database table prefixes. Thanks to @floviolleau. (#2935)
- Allowed the use of content includes when using a custom homepage.
- Updated translations with latest content from Crowdin. (#2926)
-
[1.14.5]
- Update BookStack to 21.08.5
- Release announcement
- This security release covers a vulnerability which would allow malicious users, who have permission to update or create pages, to load content from files stored within the storage/ or public/ directories (Such as application logs) via the page HTML export system.
- Added concurrent page editing warnings upon draft save events.
-
[1.15.0]
- Update BookStack to 21.10
- Release announcement
- Added Attachment API endpoints. (#2986, #2942)
- Added Estonian language to BookStack via Crowdin. (#2979)
- Added support for base64 image content within markdown text via page POST/PUT. (#2898)
- Updated translations from Crowdin contributors. (#2983)
- Fixed padding within book-tree sidebar items. Thanks to @ffranchina. (#3000)
-
[1.15.1]
- Update BookStack to 21.10.1
- Release announcement
- Fixed image upload vulnerability. Thanks to @Haxatron (#3010)
- Fixed capitalization for Estonian language option. Thanks to @IndrekHaav. (#3008)
- Updated PHP packages to prevent abandoned warning. (#3007)
- Updated translations with latest changes from Crowdin. (#3006)
-
[1.15.3]
- Update BookStack to 21.10.3
- Release announcement
- Fixed path image file path traversal vulnerability. Thanks @theWorstComrade for reporting. (#3030)
- Prevented HTML attachments being served inline. Thanks @theWorstComrade for reporting. (#3027)
- Updated translations from latest Crowdin changes. (#3023)
-
[1.16.1]
- Update BookStack to 21.11.1
- Release announcement
- Added custom command support to the logical theme system. (#3072)
- Added support for prefers-contrast media setting to increase contrast in faded areas when active. (#2634)
- Updated TOTP confirmation view to autofocus on code input. Thanks to @raccettura. (#3068)
- Updated translations with latest changes from Crowdin. (#3057)
- Updated any links on homepage lists to be more obvious & accessible. (#3046)
- Fixed faulty page navigation links when headers are nested within other content. Thanks to @Julesdevops. (#3069, #3058)
-
[1.16.2]
- Update BookStack to 21.11.2
- Release announcement
- This is a security release that address a couple of vulnerabilities relating to API access and page draft related content visibility
- Fixed issue with greater-than-expected visibility on page-draft-related items. Thanks @Haxatron for reporting. (#3086)
- Fixed issue where public API access was not limited by system public control in certain conditions. (#3091)
