Skip to content

CHANGELOG.md

Latest commit

 

History

History
153 lines (114 loc) · 3.53 KB

CHANGELOG.md

File metadata and controls

153 lines (114 loc) · 3.53 KB

Release Next

  • introduced osv-scanner.toml to silence non-affecting vulnerability reports
  • dependency updates

Release 1.8.1

  • hardened workflows
  • improved documentation
  • fixed an issue in the directory listing concerning symlinks
  • included third-party licenses in deliverables
  • moved testreport functionality from workflow to Makefile
  • dependency updates
  • initial MSIX package support

Release 1.8.0

  • introduced new -index option to control directory listing
  • update Makefile to give Version v0.0 in case of no version tag
  • dependency updates

Release 1.7.2

  • Makefile cleanup and modularization
  • default executable prefix changed from sonic to sonicweb
  • TLS test-keys and -certificates now use ECDSA instead of RSA
  • dependency updates

Release 1.7.1

  • add warning if try-file patterns resemble absolute Windows/UNC paths (helps detect MSYS/MinGW auto path conversion)
  • dependency updates

Release 1.7.0

  • added monitoring to deployment configuration
  • reworked Open Telemetry integration
  • moved instrumentation and server lifecycle into submodules
  • update dependencies
  • the minimum Go version is now 1.26

Release 1.6.1

  • added asset and container provenance
  • added SRI hashes to the documentation demo page
  • leaner script loading for the documentation demo page
  • dependency updates

Release 1.6.0

  • provide prebuild (multi-arch) docker images
  • update documentation for docker usage
  • check that the build target for cross-compilation is set correctly

Release 1.5.3

  • added fuzz testing
  • document internal functions
  • dependency updates

Release 1.5.2

  • changed release artifacts for Windows to 7z
  • fixed Windows executable file suffix

Release 1.5.1

  • added golangci-lint and adapted code
  • dependency updates
  • update to Go 1.25
  • added Community Code of Conduct
  • removed automaxprocs, as this is working fine as of Go 1.25

Release 1.5.0

  • added -clientca option to enable mTLS connections
  • improved shutdown handling
  • dependency updates

Release 1.4.1

  • update dependencies
  • build using Go 1.24.3 that also fixes a vulnerability in os.Root

Release 1.4.0

  • added -tryfile option, to replace original URI with a given list of files to try first
  • added a single-page application example to illustrate the try-file usage
  • added -tlscert and -tlskey parameter, enabling serving via TLS
  • fixed manpage headers
  • add support for automatic certificates via Let's Encrypt via -acmedomain, -certcache and -acmeendpoint parameters

Release 1.3.0

  • additional-header parameter -header
  • additional-header-from-file parameter -headerFile
  • parameter -wafcfg to add configurations to the Coraza Web Application Firewall

Release 1.2.1

  • use AlphaOne1/geany for logo output
  • dependency updates
  • source location logging only for DEBUG log level
  • removed unused utility functions

Release 1.2.0

  • update to Go 1.24
  • use os.Root for file access protection
  • update dependencies

Release 1.1.0

  • add Dockerfile
  • added packaging for deb and rpm
  • add helm chart
  • add opentelemetry tracing support
  • added English, German and Spanish man-pages

Release 1.0.0

Initial release

  • command line configurable webserver
  • access logging
  • correlation id
  • Coraza WAF middleware