Matrix (Synapse/Element) - Package Updates

nebulon

[1.8.39]

• Update Element to 1.11.39
• Full changelog
• Deprecate camelCase config options (#25800).
• Deprecate customisations in favour of Module API (#25736). Fixes #25733.
• Update labs.md for knock rooms (#25923). Contributed by @charlynguyen.
• Package release builds of element-web in package.element.io debs (#25198).
• Allow knocking rooms (#11353). Contributed by @charlynguyen.
• Support adding space-restricted joins on rooms not members of those spaces (#9017). Fixes #19213.
• Clear requiresClient and show pop-out if widget-api fails to ready (#11321). Fixes vector-im/customer-retainer#73.
• Bump pagination sizes due to hidden events (#11342).
• Remove display of key backup signatures from backup settings (#11333).
• Use PassphraseFields in ExportE2eKeysDialog to enforce minimum passphrase complexity (#11222). Fixes #9478.
• Fix "Export chat" not respecting configured time format in plain text mode (#10696). Fixes #23838. Contributed by @rashmitpankhania.
• Fix some missing 1-count pluralisations around event list summaries (#11371). Fixes #25925.
• Fix create subspace dialog not working for public space creation (#11367). Fixes #25916.
• Search for users on paste (#11304). Fixes #17523. Contributed by @peterscheu-aceart.
• Fix AppTile context menu not always showing up when it has options (#11358). Fixes #25914.
• Fix clicking on home all rooms space notification not working (#11337). Fixes #22844.
• Fix joining a suggested room switching space away (#11347). Fixes #25838.
• Fix home/all rooms context menu in space panel (#11350). Fixes #25896.
• Make keyboard handling in and out of autocomplete completions consistent (#11344). Fixes #25878.
• De-duplicate reactions by sender to account for faulty/malicious servers (#11340). Fixes #25872.
• Fix disable_3pid_login being ignored for the email field (#11335). Fixes #25863.
• Upgrade wysiwyg editor for ctrl+backspace windows fix (#11324). Fixes vector-im/verticals-internal#102.
• Unhide the view source event toggle - it works well enough (#11336). Fixes #25861.

girish

[1.74.0]

• Turn addon can be optionally enabled/disabled

nebulon

[1.8.40]

• Update Element to 1.11.40
• Full changelog
• Hide account deactivation for externally managed accounts (#11445). Fixes #26022. Contributed by @kerryarchibald.
• OIDC: Redirect to delegated auth provider when signing out (#11432). Fixes #26000. Contributed by @kerryarchibald.
• Disable 3pid fields in settings when m.3pid_changes capability is disabled (#11430). Fixes #25995. Contributed by @kerryarchibald.
• OIDC: disable multi session signout for OIDC-aware servers in session manager (#11431). Contributed by @kerryarchibald.
• Implement updated open dialog method of the Module API (#11395). Contributed by @dhenneke.
• Polish & delabs Exploring public spaces feature (#11423).
• Treat lists with a single empty item as plain text, not Markdown. (#6833). Fixes vector-im/element-meta#1265.
• Allow managing room knocks (#11404). Contributed by @charlynguyen.
• Pin the action buttons to the bottom of the scrollable dialogs (#11407). Contributed by @dhenneke.
• Support Matrix 1.1 (drop legacy r0 versions) (#9819).
• Fix path separator for Windows based systems (#25997).
• Fix instances of double translation and guard translation calls using typescript (#11443).
• Fix export type "Current timeline" to match its behaviour to its name (#11426). Fixes #25988.
• Fix Room Settings > Notifications file upload input being shown superfluously (#11415). Fixes #18392.
• Simplify registration with email validation (#11398). Fixes #25832 #23601 and #22297.
• correct home server URL (#11391). Fixes #25931. Contributed by @NSV1991.
• Include non-matching DMs in Spotlight recent conversations when the DM's userId is part of the search API results (#11374). Contributed by @mgcm.
• Fix useRoomMembers missing updates causing incorrect membership counts (#11392). Fixes #17096.
• Show error when searching public rooms fails (#11378).

nebulon

[1.75.1]

• Update Synapse to 1.91.1
• Full changelog
• Fix a performance regression introduced in Synapse 1.91.0 where event persistence would cause an excessive linear growth in CPU usage. (#16220)

nebulon

[1.75.2]

• Update Synapse to 1.91.2
• Full changelog
• Revert MSC3861 introspection cache, admin impersonation and account lock. (#16258)

nebulon

[1.76.0]

• Update Synapse to 1.92.1
• Full changelog
• Revert MSC3861 introspection cache, admin impersonation and account lock. (#16258)
• Fix incorrect docstring for Ratelimiter. (#16255)

girish

[1.9.0]

• Update Element to 1.11.41
• Full changelog
• Make SVGR icons use forward ref (#26082).
• Add support for rendering a custom wrapper around Element (#25537). Contributed by @maheichyk.
• Allow creating public knock rooms (#11481). Contributed by @charlynguyen.
• Render custom images in reactions according to MSC4027 (#11087). Contributed by @sumnerevans.
• Introduce room knocks bar (#11475). Contributed by @charlynguyen.
• Room header UI updates (#11507). Fixes #25892.

nebulon

[1.9.1]

• Update Element to 1.11.42
• Full changelog
• Update Compound to fix Firefox-specific avatar regression (#11604). Fixes #26155.

girish

[1.9.2]

• Update Element to 1.11.43
• Full changelog

girish

[1.76.1]

• Update Synapse to 1.92.2
• Full changelog

nebulon

[1.76.2]

• Update Synapse to 1.92.3
• Full changelog
• Pillow 10.0.1 is now mandatory because of libwebp CVE-2023-4863, since Pillow provides libwebp in the wheels. (#16347)

nebulon

[1.9.3]

• Update Element to 1.11.44
• Full changelog
• Make video & voice call buttons pin conference widget if unpinned (#11576). Fixes vector-im/customer-retainer#72.
• OIDC: persist refresh token (#11249). Contributed by @kerryarchibald.
• ElementR: Cross user verification (#11364). Fixes #25752. Contributed by @florianduros.
• Default intentional mentions (#11602).
• Notify users about denied access on ask-to-join rooms (#11480). Contributed by @nurjinjafar.
• Allow setting knock room directory visibility (#11529). Contributed by @charlynguyen.

girish

[1.77.0]

• Update Synapse to 1.93.0
• Full changelog
• GHSA-4f74-84v3-j9q5 / CVE-2023-41335 — Low Severity Temporary storage of plaintext passwords during password changes.
• GHSA-7565-cq32-vx2x / CVE-2023-42453 — Low Severity Improper validation of receipts allows forged read receipts.
• Add automatic purge after all users have forgotten a room. (#15488)
• Restore room purge/shutdown after a Synapse restart. (#15488)
• Support resolving homeservers using matrix-fed DNS SRV records from MSC4040. (#16137)
• Add the ability to use G (GiB) and T (TiB) suffixes in configuration options that refer to numbers of bytes. (#16219)
• Add span information to requests sent to appservices. Contributed by MTRNord. (#16227)
• Add the ability to enable/disable registrations when using CAS. Contributed by Aurélien Grimpard. (#16262)
• Allow the /notifications endpoint to be routed to workers. (#16265)

nebulon

[1.9.4]

• Update Element to 1.11.45
• Full changelog
• Fix Emoji font on Safari 17 (#11673).

girish

[1.78.0]

• Update base image to 4.2.0

girish

[1.9.5]

• Update Element to 1.11.46
• Full changelog
• Use .well-known to discover a default rendezvous server for use with Sign in with QR (#11655). Contributed by @hughns.
• Message layout will update according to the selected style (#10170). Fixes #21782. Contributed by @manancodes.
• Implement MSC4039: Add an MSC for a new Widget API action to upload files into the media repository (#11311). Contributed by @dhenneke.
• Render space pills with square corners to match new avatar (#11632). Fixes #26056.

girish

[1.79.0]

• Update Synapse to 1.94.0
• Full changelog
• Render plain, CSS, CSV, JSON and common image formats in the browser (inline) when requested through the /download endpoint. (#15988)
• Add experimental support for MSC4028 to push all encrypted events to clients. (#16361)
• Minor performance improvement when sending presence to federated servers. (#16385)
• Minor performance improvement by caching server ACL checking. (#16360)

girish

[1.9.6]

• Update Element to 1.11.47
• Full changelog
• Iterate io.element.late_event decoration (#11760). Fixes #26384.
• Render timeline separator for late event groups (#11739).
• OIDC: revoke tokens on logout (#11718). Fixes #25394. Contributed by @kerryarchibald.
• Show io.element.late_event in MessageTimestamp when known (#11733).
• Show all labs flags if developerMode enabled (#11746). Fixes #24571 and #8498.
• Use Compound tooltips on MessageTimestamp to improve UX of date time discovery (#11732). Fixes #25913.
• Consolidate 4s passphrase input fields and use stable IDs (#11743). Fixes #26228.
• Disable upgraderoom command without developer mode enabled (#11744). Fixes #17620.

girish

[1.80.0]

• Update Synapse to 1.95.0
• Full changelog
• Remove legacy unspecced knock_state_events field returned in some responses. (#16403)
• Fix a bug introduced in Synapse 1.81.0 where an AttributeError would be raised when _matrix/client/v3/account/whoami is called over a unix socket. Contributed by @Sir-Photch. (#16404)
• Properly return inline media when content types have parameters. (#16440)
• Prevent the purging of large rooms from timing out when Postgres is in use. The timeout which causes this issue was introduced in Synapse 1.88.0. (#16455)
• Improve the performance of purging rooms, particularly encrypted rooms. (#16457)
• Fix a bug introduced in Synapse 1.59.0 where servers could be incorrectly marked as available after an error response was received. (#16506)

girish

[1.80.1]

• Update Synapse to 1.95.1
• Full changelog
• GHSA-mp92-3jfm-3575 / CVE-2023-43796 — Moderate Severity