Skip to content

CIDRAM v1.28.0
Compare
Choose a tag to compare
@Maikuolan Maikuolan released this 14 Jan 09:33
· 1396 commits to v3 since this release
v1.28.0
This tag was signed with the committer’s verified signature.
Maikuolan Caleb Mazalevskis
GPG key ID: 082E6BC1046FAB95
Learn about vigilant mode.
03d36df
This commit was signed with the committer’s verified signature.
Maikuolan Caleb Mazalevskis
GPG key ID: 082E6BC1046FAB95
Learn about vigilant mode.

Version/Release 1.28.0

  • [2023.12.01; Maikuolan]: Improved escaping. Added support for specifying a Redis database number to the supplementary cache options (#540).

  • [2023.12.03; Bug-fixes; Maikuolan]: When an installed component was outdated, but the version constraints of the update's dependencies weren't met, the update shouldn't be being included in the list of outdated components for updating all at once, but was; Fixed. At the page for entering a 2FA code when logging into a 2FA-enabled account, no logout button was displayed, preventing the user from logging out easily, which may be needed in the event of not receiving any 2FA code; Fixed.

  • [2023.12.08; Bug-fix; Maikuolan]: Not escaping keys when reconstructing YAML data could prevent successful reprocessing of those keys if said keys contained any hashes or backslashes. The solution is to enforce escaping of keys when such bytes are detected, regardless of how the property for quoting keys is defined. Accordingly, that's been done, and a new method added for that purpose (#547).

  • [2023.12.12; Security; Maikuolan]: Added a method to check whether a name is reserved, and applied it as a guard at the points where signature files, modules, and events are read in, and where files are required via Run commands. Attempting to perform file operations on reserved names under Windows and some other operating systems could cause the underlying file system to attempt to communicate with a serial port instead of the intended file. PHP is likely to then wait indefinitely for a response it's unlikely to ever receive, thus locking up the process and preventing further requests unless the process is restarted. Although it's infinitesimally unlikely that a user would actually want to use a reserved name for one of their signature files, modules, events, or run commands, as the solution is exceedingly simple, with no particular performance impact, I've implemented it accordingly.

  • [2023.12.29; Bug-fix; Maikuolan]: Some of the more unusual available number formatting choices (e.g., choices not using base-10 or Arabic numerals) didn't mesh well with the JavaScript code responsible for using them; Fixed.

Caleb M (Maikuolan),
January 14, 2024.

Assets 2