-
-
Notifications
You must be signed in to change notification settings - Fork 9
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Merge branch 'develop' into feature/esm
- Loading branch information
Showing
5 changed files
with
44 additions
and
8 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,36 @@ | ||
| # Changelog | ||
|
|
||
| All notable changes to this project will be documented in this file. | ||
|
|
||
| The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.1.0/), | ||
| and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html). | ||
|
|
||
| ## [Unreleased](https://github.com/cryptomator/hub/compare/1.3.4...HEAD) | ||
|
|
||
| ### Added | ||
|
|
||
| - This CHANGELOG file | ||
| - WoT: Users will now have an ECDH as well as ECDSA key (#282) | ||
| - WoT: Users can now mutually verify their identity, hardening Hub against injection of malicious public keys (#281) | ||
|
|
||
| ### Changed | ||
|
|
||
| - Updated Keycloak to 25.0.4 | ||
| - Updated to Java 21 (#272) | ||
| - Updated to Quarkus 3.8.x LTS (#272) | ||
| - Bumpd build time dependencies | ||
| - Migrated remaining commonjs modules in frontend build to ESM | ||
| - Memoize infrequently changing data, reducing XHR roundtrips | ||
| - Switched to JWK thumbprint format in user profile | ||
| - Switched to Repository Pattern (#273) | ||
|
|
||
| ### Fixed | ||
|
|
||
| - Fixed incorrect ARIA roles improving accessibility | ||
|
|
||
| ### Security | ||
|
|
||
| - CVE-2023-45133: Babel vulnerable to arbitrary code execution when compiling specifically crafted malicious code | ||
| - CVE-2024-4068: Uncontrolled resource consumption in braces | ||
| - CVE-2024-39338: Server-Side Request Forgery in axios | ||
|
|
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.
Oops, something went wrong.
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -1,4 +1,4 @@ | ||
| FROM quay.io/keycloak/keycloak:25.0.1 as builder | ||
| FROM quay.io/keycloak/keycloak:25.0.4 as builder | ||
| ENV KC_HEALTH_ENABLED=true | ||
| ENV KC_METRICS_ENABLED=true | ||
| ENV KC_HTTP_RELATIVE_PATH=/kc | ||
|
|
@@ -11,7 +11,7 @@ FROM registry.access.redhat.com/ubi9 AS ubi-micro-build | |
| RUN mkdir -p /mnt/rootfs | ||
| RUN dnf install --installroot /mnt/rootfs curl --releasever 9 --setopt install_weak_deps=false --nodocs -y; dnf --installroot /mnt/rootfs clean all | ||
|
|
||
| FROM quay.io/keycloak/keycloak:25.0.1 | ||
| FROM quay.io/keycloak/keycloak:25.0.4 | ||
| LABEL maintainer="[email protected]" | ||
| COPY --from=builder /opt/keycloak/ /opt/keycloak/ | ||
| COPY --from=ubi-micro-build /mnt/rootfs / | ||
|
|
||