Vaultwarden - Package Updates
Pinned
Vaultwarden
-
[1.5.0]
- Update BitwardenRS to 1.18.0
- Full changelog
- Users can be enabled/disabled from the admin panel.
- Implemented manager role.
- Now cipher updates are validated when they provide a revision date, which will prevent multiple clients from overwriting each other's changes.
- Updated web vault to 2.17.1.
-
[1.6.0]
- Update BitwardenRS to 1.19.0
- Update web vault to 2.18.1
- Admin UI: Added diagnostic and debug information.
- Admin UI: Added option to sort users by date.
- Admin UI: Added ability to modify a user's type in an organization and to delete the whole organization.
- Added support for the Personal Ownership policy, which when enabled disables the use of the personal vault to non-admin users of an organization.
- Synced global domains data with upstream.
-
[1.7.0]
- Project renamed from BitwardenRS to Vaultwarden
- Renaming announcement
- Update Vaultwarden to 2.21.0
- Add support for enabling auto-deletion of trash items after X days, disabled by default
- Updates to the icon fetching, making it more reliable in detecting icon types
-
[1.7.1]
- Update Vaultwarden to 1.22.1
- Added sends_allowed option to disable Send functionality.
- Added support for hiding the senders email address.
- Added Send options policy.
- Added support for password reprompt.
- Switched to the new attachment download API.
- Send download links use a token system to limit their downloads.
- Updates to the icon fetching.
- Support for webauthn.
- The admin page now shows which variables are overridden.
- Updated dependencies and docker base images.
- Now RSA keys are generated with the included openssl instead of calling to the openssl binary.
- The web vault doesn't require accepting the terms are conditions now, which weren't applicable for a self hosted server.
-
[1.7.2]
- Update Vaultwarden to 1.22.2
- Updated web vault to 2.21.1.
- Enforce 2FA policy in organizations.
- Protect send routes against a possible path traversal attack.
- Disable show_password_hint by default, it still can be enabled in the admin panel or with environment variables.
- Disable user verification enforcement in Webauthn, which would make some users unable to login.
- Fix issue that wouldn't correctly delete Webauthn Key.
- Added Edge extension support for Webauthn.
-
[1.7.5]
- Update Vaultwarden to 1.23.1
- Full changelog
- Add email notifications for incomplete 2FA logins by @jjlin in #2067
- Fix conflict resolution logic for read_only and hide_passwords flags by @jjlin in #2073
- Fix missing encrypted key after emergency access reject by @jjlin in #2078
- Macro recursion decrease and other optimizations by @BlackDex in #2084
- Enabled trust-dns and some updates. by @BlackDex in #2125
- Update web vault to 2.25.0
-
[1.8.1]
- Update Vaultwarden to 1.24.0
- Full changelog
- Add support for API keys by @jjlin in #2245
- Basic ratelimit for user login (including 2FA) and admin login by @dani-garcia in #2165
- Upgrade Feature-Policy to Permissions-Policy by @iamdoubz in #2228
- Set Expires header when caching responses by @RealOrangeOne in #2182
- Increase length limit for email token generation by @jjlin in #2257
- Small changes to icon log messages. by @BlackDex in #2170
- Bump rust version to mitigate CVE-2022-21658 by @dscottboggs in #2255
- Fixed #2151 by @BlackDex in #2169
- Fixed issue #2154 by @BlackDex in #2194
- Fix issue with Bitwarden CLI. by @BlackDex in #2197
- Fix emergency access invites for new users by @BlackDex in #2217
- Sync global_domains.json by @jjlin in #2156
-
[1.9.0]
- Update Vaultwarden to 2.25.0
- Full changelog
- Updated included web vault to v2.28.1
- Update Rocket to 0.5 and async, and compile on stable by @dani-garcia in #2276
- Update async to prepare for main merge + several updates by @BlackDex in #2292
- Add IP address to missing/invalid password message for Sends by @jaen in #2313
- Add support for custom .env file path by @TinfoilSubmarine in #2315
- Added autofocus to pw field on admin login page by @taylorwmj in #2328
- Update login API code and update crates to fix CVE by @BlackDex in #2354
-
[1.9.1]
- Update Vaultwarden to 1.25.1
- Full changelog
- Updated included web vault to version 2022.6.2 by @dani-garcia
- Sync global_domains.json by @jjlin in #2555
- Add TMP_FOLDER to .env.template by @fox34 in #2489
- Allow FireFox relay in CSP. by @BlackDex in #2565
- Fix hidden ciphers within organizational view. by @BlackDex in #2567
- Add password_hints_allowed config option by @jjlin in #2586
- Fall back to move_copy_to if persist_to fails while saving uploaded files. by @ruifung in #2605
-
[1.9.2]
- Update Vaultwarden to 1.25.2
- Full changelog
- Fix persistent folder check within containers by @BlackDex in #2631
- Mitigate attachment/send upload issues by @BlackDex in #2650
- Fix issue with CSP and icon redirects by @BlackDex in #2624
- Update build workflow for CI by @BlackDex in #2632
-
[1.10.0]
- Update Vaultwarden to 1.26.0
- Full changelog
- Updated web vault to v2022.10.0
- Fix uploads from mobile clients (and dep updates) by @BlackDex in #2675
- Update deps and Alpine image by @BlackDex in #2665
- Add support for send v2 API endpoints by @BlackDex in #2756
- External Links | Optimize behavior by @Fvbor in #2693
- Add Org user revoke feature by @BlackDex in #2698
- Change the handling of login errors. by @BlackDex in #2729
- Added support for web-vault v2022.9 by @BlackDex in #2732
- add not_found catcher for 404 errors by @stefan0xC in #2768
- Fix issue 2737, unable to create org by @BlackDex in #2738