All Versions
309
Latest Version
Avg Release Cycle
12 days
Latest Release
929 days ago

Changelog History
Page 8

  • v2.115.1 Changes

    February 24, 2021
    • ๐Ÿ›  Fixes an error when saving an edited Tag in the Tag Manager.

  • v2.115.0 Changes

    February 02, 2021
    • When enableAltField option is set to true, add an alt field to apostrophe-images schema. And use it in apostrophe-images-widget, in <img> alt attributes.

  • v2.114.0 Changes

    January 13, 2021
    • ๐Ÿ›  Fixes image manager double-scroll bar bug.
    • ๐Ÿ’… When a styles config with a single object is passed to an apostrophe-rich-text widget, use that as the default style. Thanks to Fredrik Ekelund for the contribution.
    • ๐Ÿ‘ The media library now offers filters by orientation (landscape, portrait, square) and by file type (jpg, png, gif). Thanks to Michelin for their support of this work.
    • Orientation properties for attachments have been cleaned up, and a migration provided. All attachments for images will have correct square, landscape and portrait boolean flags.

  • v2.113.2 Changes

    December 14, 2020
    • ๐Ÿš‘ Hotfixes for Node 14 compatibility issues relating to watching template files for modification.
    • ๐Ÿ‘Œ Improvements to README.

  • v2.113.1 Changes

    November 04, 2020
    • โšก๏ธ Updates the logo in the README.

  • v2.113.0 Changes

    October 21, 2020
    • โœ‚ Remove published columns in apostrophe-users and apostrophe-groups, the modules where this field does not exist.
    • โž• Add type to forbiddenFields for apostrophe-pieces schemas. Thanks to Jose96GIT for the contribution. If you are using Apostrophe Workflow, you must be on 2.38.2 or later of that module because of this update.

  • v2.112.1 Changes

    October 07, 2020
    • ๐Ÿ”ง When configuring columns in the pieces manager, the listProjection option was accidentally altered in a way that would impact other subclasses of pieces. This has been fixed.

  • v2.112.0 Changes

    October 02, 2020

    • ๐Ÿ”’ Security: Apostrophe's oembed support has always consulted a list of safe sites, however the fallback support for embedding site previews via Open Graph did not consult such a list. There was no XSS risk, but this could be exploited to scan for open ports behind a firewall, and potentially to obtain title tags and page body text from webpages behind a firewall as well, if they had no login provisions. Note that this risk existed only if the public Apostrophe site was running on a server that could "see" these Intranet sites, which is rare (a public website is usually not hosted on an Intranet, port forwarding would typically be needed to make that possible). However to eliminate the risk our Open Graph fallback support now consults the same list of safe sites used for oembed. This Open Graph embed feature is not actually used by Apostrophe's video widgets, so this change will only impact developers who discovered the feature and chose to use it independently. If you are affected, add additional sites to the safeList option of apostrophe-oembed. For backwards compatibility the whitelist option is also accepted. Thanks to Rudi van Hierden for reporting the issue.

    • โšก๏ธ Security: the uploadfs module has been updated. Since this is a sub-dependency you must npm update your Apostrophe project to get this update, which eliminates npm audit warnings regarding Google Cloud Storage. Note that after this update Google Cloud Storage can no longer be used with Apostrophe if your server is still running Node 8. Other storage backends still work with Node 8 as of this writing.

    • โฌ†๏ธ Node 8 deprecation notice: for the time being, Apostrophe does still run on Node 8. However, since Node 8 has passed its end of life date, this support is unofficial and may be terminated soon. All projects should upgrade to a current Long Term Support version of Node.

    • Clean up fs.watch calls from the nunjucks loader properly when destroying an apos object, so that the process can close and/or memory be recovered.

  • v2.111.5 Changes

    October 07, 2020
    • Clean up fs.watch calls from the nunjucks loader properly when destroying an apos object, so that the process can close and/or memory be recovered.

  • v2.111.4 Changes

    September 23, 2020
    • 0๏ธโƒฃ The View File button now accesses the original version of an image, not a scaled version. This was always the intention, but 2.x defaults to the full size and we initially missed it. Thanks to Quentin Mouraret for this contribution.
    • LESS compilation errors during apostrophe:generation are now reported properly, resulting in a clean process exit. Previously they resulted in a hung process.