Skip to content

Releases: thoughtbot/clearance

v2.9.1

29 Oct 15:02
@sej3506 sej3506
v2.9.1
This tag was signed with the committer’s verified signature.
sej3506 Sara Jackson
GPG key ID: BA56567BA87EED85
Learn about vigilant mode.
704ba2a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.9.1 Latest
Latest

What's Changed

Full Changelog: v2.9.0...v2.9.1

Contributors

sej3506
Assets 2
Loading

v2.9.0

29 Oct 14:26
@sej3506 sej3506
v2.9.0
This tag was signed with the committer’s verified signature.
sej3506 Sara Jackson
GPG key ID: BA56567BA87EED85
Learn about vigilant mode.
6bd5f5b
Compare
Choose a tag to compare
v2.9.0

2.9.0 - October 29, 2024

What's Changed

  • Bumped actions/checkout from 2 to 4 by @dependabot in (#1031)
  • Added Rails 7.2 and Ruby 3.3 to testing matrix by @hasghari in (#1032)
    • This also overhauled the dummy test setup
  • Dropped support for Rails 6.1 and Ruby 3.0 (#1036)

Thanks so much to our community contributor Hamed Asghari (@hasghari)! 🎉

Contributors

hasghari and dependabot
Assets 2
Loading

v2.8.0

09 Aug 15:46
@sej3506 sej3506
v2.8.0
This tag was signed with the committer’s verified signature.
sej3506 Sara Jackson
GPG key ID: BA56567BA87EED85
Learn about vigilant mode.
90f1029
Compare
Choose a tag to compare
v2.8.0

2.8.0 - August 9, 2024

Added

  • Feature: Added allow_password_resets config option (#1019)
  • Added dependabot (#1028)
  • Added a dynamic workflow to update SECURITY.md to match thoughtbot's security template (5a5a625)

Fixed

  • Fixed some deprecation warnings (#1018)

Thanks so much to our community contributors Jos O'shea (@whatnotery) and Karine Vieira (@karinevieira)! 🎉

Contributors

whatnotery and karinevieira
Assets 2
Loading

v2.7.2

28 Jun 16:18
@sej3506 sej3506
v2.7.2
This tag was signed with the committer’s verified signature.
sej3506 Sara Jackson
GPG key ID: BA56567BA87EED85
Learn about vigilant mode.
c5c3032
Compare
Choose a tag to compare
v2.7.2

2.7.2 - June 28, 2024

Fixed

  • Fix method redefinition and circular require issues (#1027)
  • Fix validating email in strict mode (#976)
  • Update the example config in README.md (#977)

Added

  • Add specs for email validator strict mode (#1001)
  • Create SECURITY.md (#972)

Removed

  • Remove Hound README badge (#1020)

Thanks so much to our community contributors Alex Kholodniak (@kholdrex), Hamed Asghari (@hasghari), James Robey (@foucist), and Manuel Meurer (@manuelmeurer)! 🎉

Contributors

foucist, manuelmeurer, and 2 other contributors
Assets 2
Loading

v2.7.1

08 May 19:16
@sej3506 sej3506
v2.7.1
This tag was signed with the committer’s verified signature.
sej3506 Sara Jackson
GPG key ID: BA56567BA87EED85
Learn about vigilant mode.
0d8ab0e
Compare
Choose a tag to compare
v2.7.1

2.7.1 - May 8, 2024

Fixed

  • Updated sqlite3 and erb_lint gems (#1017)

Thank you to our community contributor who provided this fix while attending RailsConf 2024 - Jos O'shea (@whatnotery) 🎉

Contributors

whatnotery
Assets 2
Loading

v2.7.0

19 Apr 13:51
@sej3506 sej3506
v2.7.0
This tag was signed with the committer’s verified signature.
sej3506 Sara Jackson
GPG key ID: BA56567BA87EED85
Learn about vigilant mode.
b517324
Compare
Choose a tag to compare
v2.7.0

2.7.0 - April 19, 2024

Added

  • Call dynamic README workflow (#1004)
  • Add configuration options for failure method redirects (#1002) Dan Sharp

Fixed

  • Update specs to match on translations (#1015)

Removed

  • Drop Ruby 2.76 and Rails 6.0 (#1005)

Thank you to our community contributor Dan Sharp (@drsharp)!

Contributors

drsharp
Assets 2
Loading

v2.6.2

15 Jan 15:35
@sej3506 sej3506
v2.6.2
This tag was signed with the committer’s verified signature.
sej3506 Sara Jackson
GPG key ID: BA56567BA87EED85
Learn about vigilant mode.
7d02233
Compare
Choose a tag to compare
v2.6.2

2.6.2 - January 15, 2024

Added

  • Add CODEOWNERS file (#994)
  • Add support for Rails 7.1 (#995) Samuel Giddens
  • Add Ruby 3.2.2 to testing matrix (#991)

Fixed

  • Fix typo in Clearance::Token docs (#1000) Gabe Berke-Williams
  • Fix for setup & CI for Rails 7.1 support, update "MiniTest" to "Minitest", add handling for different versions of Rack::Utils.set_cookie_header!, remove deprecated active record handling in application.rb (#998)
  • Fix broken thoughtbot logo on README.md

Changed

  • Replace mentions of NEWS.md with CHANGELOG.md (#982)
  • Update argon2 to v2.2.0 (#989) Georg Leciejewski
  • Prefer literal hash creation notation (#984) Ivan Marynych

Thank you to our community contributors Samuel (@segiddins), Georg (@schorsch), Ivan (@loqimean), Gabe (@gabebw)!

Contributors

schorsch, gabebw, and 2 other contributors
Assets 2
Loading

v2.6.1

23 Sep 15:00
@danielnolan danielnolan
v2.6.1
104e05d
This commit was created on GitHub.com and signed with GitHub’s verified signature. The key has expired.
GPG key ID: 4AEE18F83AFDEB23
Expired
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.6.1

2.6.1 - September 23, 2022

  • Document how to report security issues
  • Only update the env["QUERY_STRING"] if the as parameter is present in
    backdoor middleware
Assets 2
Loading

v2.5.0

10 Sep 15:01
@MottiniMauro MottiniMauro
v2.5.0
This tag was signed with the committer’s verified signature. The key has expired.
MottiniMauro Mauro Mottini
GPG key ID: 45367427F3FB1031
Expired
Learn about vigilant mode.
3691c23
Compare
Choose a tag to compare
v2.5.0

[2.5.0] - September 10, 2021

Fixed

  • Fix open redirect vulnerability

Changed

  • Rename default branch to main
Assets 2
Loading

v2.4.0

09 Apr 21:11
@gnfisher gnfisher
v2.4.0
b4cf731
Compare
Choose a tag to compare
v2.4.0

2.4.0 - March 5, 2021

Added

  • Optionally use signed cookies to prevent remember token timing attacks. Big thank you for @gingerlime!
Assets 2
Loading