Skip to content

v1.1.4

Choose a tag to compare

View all tags
@m00grin m00grin released this 08 May 04:05
· 63 commits to main since this release
v1.1.4
This tag was signed with the committer’s verified signature.
m00grin m00grin
SSH Key Fingerprint: 34Xm5zcAM5p/n6QZD3nJ7p/bbzp21Mh3/e8sHkGk+co
Verified
Learn about vigilant mode.
c084572

Fixed

  • Pi-hole v6 passwordless mode -- authentication now checks the session.valid flag rather than sid presence, so instances with no password set are handled correctly. Thanks to u/Xanderlicious for the report.
  • Pi-hole v6 query status coverage -- EDE-blocked queries (string status "EDE", integer status 18) are now counted as blocked; cached-stale queries (status 17) are now counted as cache hits. The stale "BLACKLIST" string status has been removed.
  • Carrier state race -- the carrier now correctly departs if blocking is re-enabled before it finishes arriving (triggered by a rapid external toggle or returning from a backgrounded tab).
  • Pihole mode exit race -- if enterPiholeMode was called while the exit animation timer was still pending, the game would bail out and stay dead. The timer is now cancelled and the game restarts cleanly.
  • Starfield degradation -- if stars.json fails to load, the starfield now falls back gracefully instead of getting stuck before rendering.
  • Background image injection -- BG_IMAGE is now validated as a local path or http(s):// URL before being written into CSS; character encoding expanded to cover ", ', and \.

Security

  • Added Content-Security-Policy and Referrer-Policy response headers.
  • Block timer values submitted via the API are now validated as positive integers server-side; invalid or negative values are discarded.
  • Pi-hole dashboard link (HUD and settings menu) now validates https?:// before calling window.open.
  • ESC navigation now explicitly rejects javascript: and data: scheme values in RETURN_URL. Other schemes remain supported.

Docs

  • RETURN_URL documentation in README and compose.yaml updated to clarify the full range of accepted URL schemes.
  • Meta description added to the page <head>.

Visual

  • Enemy sprites are now rendered with imageSmoothingEnabled on, reducing jaggies when rotated.

Housekeeping

  • Added .dockerignore to keep build contexts lean.
  • Trimmed uvicorn[standard] to bare uvicorn, removing unused high-throughput extras and reducing the image size.
  • query_poller tick errors are now logged at debug level instead of being silently swallowed.
Assets 2
Loading