-
Notifications
You must be signed in to change notification settings - Fork 81
/
changelog.txt
395 lines (307 loc) · 13.5 KB
/
changelog.txt
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
Changes to the notification / detection script
==========
3.3.53 05.06.24
- updated versions
3.3.52 20.4.24
- updated versions
- all iOS devices <15 marked as unsupported
- all iOS devices <15 marked as not able to update
- iOS 15.8.2 marked as insecure
3.3.51 20.2.24
- updated versions
3.3.50 19.7.23
- updated versions
- added chrome extended support
- updated firefox ESR, fixes #578
- removed supported status from IE11
3.3.48 19.7.23
- updated versions
3.3.47 5.12.22
- chrome/edge/vivaldi does not transmit the minor version any more. so we have to notify just major version that are insecure
---> mark chrome before 108.0 and edge before 107.0 as insecure
(https://www.chromium.org/updates/ua-reduction/)
- add insecure message to customization documentation
3.3.46 3.12.22
- mark chrome before 108.0.5359.94 and edge before 107.0.1418.62 as insecure, because it has an actively used breach
- show a different message for insecure browsers, that is more clear for why the message is shown ("Your web browser ({brow_name}) has a serious security vulnerability!"). So far only activated for english and german. Testing it.
- also show on the main message on browser-update.org/update-browser.html if browser is insecure
3.3.45 22.11.22
- update browser versions
- mark chrome 105 as insecure
3.3.44 23.10.22
- current firefox ESR is 102 mark as supported and secure
3.3.43 11.10.22
- update browser versions
- updated insecure versions
- improved list of browsers page
- new firefox ESR realsesis 102, fixes #559
- removed supported status from Internet explorer 11
3.3.42 4.9.22
- update browser versions
3.3.41 13.7.22
- fix #552 "Edge Version Issue", when providing e:0 to reuired
3.3.40 13.7.22
- updated browser versions
3.3.39 11.3.22
- updated browser versions
3.3.38 11.2.22
- updated all browser versions, fixes #549
- latest version of mobile safari updates, improve update availability detection for iphones, fixes #548
- remove treatment of strange reall old safari and internet explorer strings. not needed anymore.
- remove analytics
3.3.37 21.12.21
- updated browser versions
- fix detection of opera desktop, fixes #547
3.3.35 19.12.21
- test/bar.html: fix issues when not using correct json format and use a textarea
- whitelist motorola edge in order not to detect it as edge browser, fixes #544
- include update.show.js with NPM package, fixes #546
- firefox 78 ESR is outdated now, fixes #538
3.3.33 23.10.21
- fix detection of opera mobile
- add normal files to npm package (update.js, ...) in order to use browser-update scripts not as a module, fixes #518
- update versions
3.3.32 13.10.21
- updated browser versions, fixes #539
3.3.31 31.7.21
- update browser versions
3.3.30 9.5.21
- fix ignore cookie not being set (npm version)
- set pause cookie with secure context if over https, fixes #455
- updated browser versions
3.3.29 19.04.21
- added footer
- page to show browser versions currently marked as insecure https://browser-update.org/browsers-marked-as-insecure.html
- linked page that lists browsers
- added and updated translations (fix danish, updated chinese, added welsh)
- new image with updated edge logo
- added cymraeg language (welsh)
3.3.28 12.3.21
- updated browser versions
- set pause cookie with secure context if over https, fixes #455
- add npm to version for npm packages
3.3.27 13.12.20
- ignore slimjet (but this is only possible if the browser identifies correctly. is has to be turned on in the slimjet browsers options)
3.3.26 26.11.20
- fix insecure chrome version number (note: this did not lead to false positive notifications), fixes #515
- whitelist basilisk
3.3.25 19.11.20
- ignore embedded browsers: QtWebEngine, Microcoft Teams, Electron (add a special notification later) fixes #509 fixes #511
- Mark chrome vulnerable below version 86.0.0.4240.111 because of an actively used zero-day exploit.
- describe self-hosting on site
3.3.24 3.10.20
- change order of specifity for custom notification text (1. use text_for_$BROWSER_in_$LANG, 2. fall back to text_for_$BROWSER, 3. fall back to text_in_$LANG, 4. fall back to text, 5. use default text), fixes #325
- fixed links on update page
3.3.23 3.10.20
- added firefox 78 as an ESR version still supported. Removed version 60 and 68.
- updated browser versions
3.3.22 17.8.20
- Fix broken conditional when using `shift_page_down`
- remove old config check
3.3.21 14.8.20
- Fix cookie stuff. Remove "Secure" to also send the cookie in insecure contexts. Use "Same-Site: Lax"
3.3.20 11.8.20
- added uzbek and estonian translations
- Updated browser versions
3.3.19 26.5.20
- Chrome version 82 was skipped by google. Taking this into account we prolong the grace period until chrome 83 is available on all devices. For now marking Chrome 81 as latest version.
3.3.18 25.5.20
- latest version of iOS is for most devices 12.3, fixes #490
3.3.17 25.5.20
- updated browser versions
- removed browser statistic collection for every 1000th user
3.3.16 1.4.20
- updated browser versions
3.3.15 29.2.20
- clear cookie in test mode
3.3.14 27.2.20
- ignore oculus quest browser
- created a detailed test-page for the script https://browser-update.org/test/bar.html
- updated firefox version
- mark discontinued browsers
3.3.13 24.2.20
- take care of edge version jump between 18 and 79 when specifying relative to latest version
(e.g. with current Edge 80 e:-4 is translated to e:16 instead of e: 76)
- fix #478
3.3.12 23.2.20
- updated edge and chrome versions
- fix edge on android detection (where the latest version is still based off chrome 73)
- added option to test the script easier: Add "#ignorecookie-bu" to your url and reload the page. Then the bar will always show no matter if the "the user already saw it cookie was set", see #430
3.3.11 23.2.20
- ignore certain OPPO opera browser that cannot be updated
- fixed to not show to iphone 6 anymore, since it does not support ios 13, fixes #472
- all devices with ios 11 support ios 12
3.3.10 23.2.20
- updated browser versions
- removed npm dependency -> only a dev dependency
- added browser info to the options object, so you can get the information on the current browser, fixes #471
- correct detection of new edge browser
- offer new edge browser on all supported platforms, but for now only to current IE or edge users
3.3.9 8.1.20
- updated all browser versions
3.3.8 9.11.19
- option do disable anonymous browser statistics on every 1000th visit
3.3.7 6.11.19
- Workaround for Safari on iPadOS 13 pretending to be desktop user agent, fixes #459
3.3.6 5.11.19
- note on browser statistics
- updated safari version
3.3.5 4.11.19
- fix bot detection
- update slovenian translation
3.3.4 3.11.19
- ignore edge on android for now
- ignore some more bots
- updated a few translations
3.3.3 1.11.19
- updated versions
3.3.2 10.10.19
- whitelist chrome-lighthouse bot (google page speed), brave browser (for now) and Falkon browser, fixes #451, fixes #450
3.3.0 13.9.19
- now you can use custom notification messages for different browsers (experimental).
Explanation here: https://github.com/browser-update/browser-update/wiki/Details-on-configuration#user-content-different-messages-depening-on-browser
Fixes #433, Fixes #388
3.2.16 13.9.19
- fix another edge case in IE11: notification fallback if not specifying any version now works as expected
- updated firefox ESR versions
3.2.15
- fixed internet explorer versions to notify when just an edge version to notify was specified with negative numbers (e.g. e:-3). Fixes #440. Fixes #430.
- updated browser versions
- fixed accessibility
- npm now always works in the browser
3.2.14 13.7.19
- some translation fixes
- improve accessibility of message
3.2.13 13.7.19
- updated browser versions
3.2.12 8.5.19
- updated catalan, czech, farsi, hungarian and albanian translations of script
- better accessibility
- finnish translation
3.2.11 8.5.19
- fixed bug where specifying required version "0" did not mean "latest version", as specified in the docs, fixes #436
- updated browser versions
3.2.10 9.4.19
- updated browser versions
- changed firefox download link as it did not work in IE 11
3.2.9 10.2.19
- updated firefox, ios, opera, chrome, uc, vivaldi browser versions
3.2.8
- mark safari 12.0.1 as latest version...
3.2.7 8.1.19
- correct handling of semver version strings with negative numbers
3.2.6 7.1.19
- fixed which versions of edge are not supported anymore
- updated browser versions
3.2.5 19.12.18
- updated firefox, opera, chrome, vivaldi, yandex versions
- ingnore firefox focus for now
3.2.4 12.11.18
- updated browser versions
3.2.3 22.10.18
- updated FF, Chrome, Safari version
- updated translations (farsi, english, hungarian)
3.2.2 4.10.18
- updated versions of almost all browsers
- if option "noclose" is specified, the bar also does not close if the update button is pressed
- reminderClosed: 0 can be passed. Then the user cannot close the bar, fixes #414
- updated translations
3.2.1 26.7.18
- fixed firefox esr detection
- updated firefox version
3.2.0 26.7.18
- fix when permanently ignoring did not work on some sites (where reminder=0 was set), fixes #399
- updated chrome version
- ignore CM browser
- add option "notify_lts" to also notify firefox browser that has still "Long term support" (LTS). Normal behaviour is to ignore this version as long as it is supported, fixes #362
- better detection of firefox ESR. E.g. Firefox 52.0.2 is no ESR version, Firefox 52.2 is!, fixes #362
- in test mode, print if the cookie to temporarily ignore the bar is set
- better readability of debug message in test mode
- better detection if iOS devices can be updated to the latest version of iOS
3.1.13 17.6.18
- ignore prerender bot
- minimum versions only for old api
3.1.12 12.6.18
- updated chrome, ios and uc browser current version
- updated insecure versions for edge, yandex, firefox, chrome
3.1.10 3.6.18
- ignore new waterfox user agent string
3.1.9
- fix bug in npm version
3.1.7 22.5.18
- ignore waterfox browser
3.1.6 16.5.18
- samsung internet latest version is 6.4, 7.0 is still beta
- updated browser versions of vivaldi, edge and opera
- show hide permanent also for reminderClosed<24 (hours) but then hide the text ("you will be reminded in x days")
3.1.5 9.5.18
- better handling of left-to-right languages (arabic, hebrew, persian)
- more translations of new text
3.1.4 8.5.18
- fixed specifying Internet Explorer (and fallback from Edge), fixes #375
3.1.2 8.5.18
- New style text formatting for more languages
- better compatibility for taiwanese chinese
3.1.1 8.5.18
- improve test mode:
- show script version
- show reasons to show or hide notification
- improved style
- fixed bug with permanent hide
- rename no_os_update to no_device update to clarify
- ignore chrome os (for now)
- mark old android browser as insecure
- op.hide_reasons: list of reasons for the bar to be hidden
3.1.0
- do not make whole bar clickable if custom text is set
- check for %s in text to decide if legacy style should be used
- state when the user will be reminded again in days, option to permanent hide if reminderClosed > 1 day
3.0.8 3.5.17
- option url_permanent_hide allows to set a url where to go if the users presses the permanent hide button
- custom improvements
- set style explicit on buttons and not on all links, to allow to use custom text with links
- do not make the whole bar clickable (if update button is present). this is also to allow custom text with links
- do not change throw error when ignore-button is not present
- fixes #391
- fixes #390
3.0.7 1.5.17
- ignore new viasat sparrow browser
- updated versions: samsung to 7.0
3.0.6 23.4.18
- mark also one version prior to the latest version as supported for chrome, opera and firefox to give more time for users to transition to the latest version
- update chrome version to 66
3.0.5 23.4.18
- mark IE 11 as supported
- mark FF 52 as "LTS"
- set current chrome from 66 to 65, to not notify unsupported chrome 65 which has been released only 6 days ago. wait 10 days for that.
- mark ios < 8 as no_os_update=true
- mark ios > 11 as no_os_update=false
3.0.4 22.4.18
- almost all css selectors via classes
3.0.3 21.4.18
- if test is on a debug script is loaded and information stating this is only a test message, and additionally more information on the detection
3.0.2 21.4.18
- renamed translation strings
- detecting amazon silk, but ignored for now, TODO
3.0.1 21.4.18
- require instead of notify: specify version which is required on the site. This is easier with minor version comparison
3.0.0 20.4.18
Big rewrite:
- excessive tests
- $bu_get_browser() now returns an object with a lot of information around the browser:
- if it is insecure
- if it is still updated
- years since release
- the rendering eingine
- if it is on mobile
- if the underlying operating system can be updated if the browser updates are limited by the os (like e.g. on iOs, very old macs, or very old windows systems)
- semantic version comparison
- Option to not shift the page down when the bar is shown on top
- new (backwards compatible) html layout of the message that can be customized more flexible
- the bar can now be permanently hidden to be more friendly to users that can for some reason not update their browser (for now until translations flow in only for english)
- by default the browser-update page now opens in https (except for IE, which in old versions might not work)
- the message text is now modular in order to show different messages for browsers with severe security issues
- now notifying severely insecure versions if insecure: true is configured
- now notifying unsupported versions if unsupported: true is configured
2.3.3 19.4.18
- new browser versions