Releases: forwardemail/forwardemail.net
Releases · forwardemail/forwardemail.net
v2.8.11
12 May 07:36
Compare
Sorry, something went wrong.
No results found
v2.8.10
12 May 06:15
Compare
Sorry, something went wrong.
No results found
fix(carddav): pre-warm APN Contact cert to ensure push-transports is advertised on first PROPFIND 41e7e27
fix: fixed graphic b3efd85
fix(carddav): emit <d:status> before <d:prop> in multistatus XML ed5e3cb
v2.8.9...v2.8.10
v2.8.9
11 May 22:29
Compare
Sorry, something went wrong.
No results found
fix: revert style-src nonce — breaks Scalar API reference styles a1035e1
fix: move style-src-attr out of helmet config into nonce middleware cc545b5
v2.8.8...v2.8.9
v2.8.8
11 May 21:55
Compare
Sorry, something went wrong.
No results found
fix(carddav): set DAV header on 207 responses, parse PROPFIND body, return push-transports only when explicitly requested c861fa1
fix: suppress BSON overflow alerts, harden CSP and Referrer-Policy a64dd60
v2.8.7...v2.8.8
v2.8.7
11 May 18:41
Compare
Sorry, something went wrong.
No results found
v2.8.6
11 May 17:45
Compare
Sorry, something went wrong.
No results found
fix: expand compat TLS ciphers, fix SMTP test hang, bypass SSRF in tests db1efdf
fix(carddav): advertise push-transports on principal so iOS shows Push 16eb1a0
fix: break BSON overflow infinite retry loop by bouncing unsaveable emails 8e00c4c
fix: harden TLS configuration to pass internet.nl tests d3732fb
v2.8.5...v2.8.6
v2.8.5
11 May 10:37
Compare
Sorry, something went wrong.
No results found
fix: harden Redis cache operations in koa-cash config 0c0b4e3
fix: guard Emails model against BSON overflow (ERR_OUT_OF_RANGE) 7d63c82
fix: return 204 for Chrome DevTools well-known workspace discovery e971bbd
v2.8.4...v2.8.5
v2.8.4
11 May 09:28
Compare
Sorry, something went wrong.
No results found
fix(security): wire up DNS rebinding SSRF protection, fix ReDoS, and remove conflicting overrides 8204abb
fix(carddav): prevent 15s stall per request when APN certs unavailable 57e62a7
fix: guard against missing charts in open-startup.js XHR responses 02fbca0
fix: remove nonce from style-src to prevent unsafe-inline being ignored 6b139b0
fix: revert csp until fixed 06e6ed7
v2.8.3...v2.8.4
v2.8.3
11 May 06:55
Compare
Sorry, something went wrong.
No results found
v2.8.2
11 May 06:43
Compare
Sorry, something went wrong.
No results found
fix: CalDAV sync-collection test + CSP nonce hardening ac52d3b
fix: prevent BSON overflow crash (ERR_OUT_OF_RANGE) when saving oversized log documents d2a09db
fix(api,carddav): API CRUD parity with DAV side-effects + iOS Contacts pushkey 7388ae0
v2.8.1...v2.8.2
