- CHANGED: Saving markdown pastes uses
.md
extension instead of.txt
(#1293) - CHANGED: Enable strict type checking in PHP (#1350)
- CHANGED: Various tweaks of the
bootstrap5
template, suggested by the community - FIXED: Reset password input field on creation of new paste (#1194)
- FIXED: Allow database schema upgrade to skip versions (#1343)
- FIXED:
bootstrap5
dark mode toggle unset on dark browser preference (#1340) - FIXED: Prevent bypassing YOURLS proxy URL filter, allowing to shorten non-self URLs
This release addresses an issue with the YOURLS proxy's filter that allowed it to shorten other URLs then the configured PrivateBin instance. This issue only affects instances that use the YOURLS URL-shortener proxy. More details on this issue can be found in the security advisory.