v1.4.0

This release adds (optional) support for OIDC providers (like Google Workspace) that require a client secret. See: #799

Full Changelog: v1.3.4...v1.4.0

v1.3.4

This release prevents the URL scraping from actually downloading content for any non-HTML pages you shorten.

See: #793

v1.3.3

This release fixes regex that's used to validate the branded link.

Now, the regex check should 1. actually run on the frontend, and 2. should be consistent across the frontend and the backend!

v1.3.2

This release updates additional peer dependencies to fix potential security vulnerabilities.

What's Changed

• Bump webpack from 5.65.0 to 5.76.2 by @dependabot in #785
• Bump ua-parser-js from 0.7.31 to 0.7.34 in /website by @dependabot in #784
• Bump react-admin from 3.19.0 to 3.19.12 by @dependabot in #779
• Bump http-cache-semantics from 4.1.0 to 4.1.1 by @dependabot in #774
• Bump http-cache-semantics from 4.1.0 to 4.1.1 in /website by @dependabot in #773

Full Changelog: v1.3.1...v1.3.2

v1.3.1

This update fixes the CSP policy, allowing the QR code image to be loaded.

In addition, it contains numerous dependency updates to fix supply chain security issues.

All users are encouraged to update to the newest version as soon as possible.

What's Changed

• Update dependency cimg/postgres to v14.2 by @renovate in #724
• Update github/codeql-action action to v2 by @renovate in #729
• Update dependency redis to v7 by @renovate in #731
• Update dependency @hapi/bourne to v3 by @renovate in #732
• Bump ejs from 3.1.6 to 3.1.7 by @dependabot in #733
• Update docusaurus monorepo to v2.0.0-beta.20 by @renovate in #713
• Revert "Update docusaurus monorepo to v2.0.0-beta.20" by @JaneJeon in #735
• Update dependency cimg/redis to v7 by @renovate in #736
• Bump async from 2.6.3 to 2.6.4 by @dependabot in #740
• Bump semver-regex from 3.1.3 to 3.1.4 by @dependabot in #741
• Bump got from 11.8.2 to 11.8.5 by @dependabot in #743
• Bump terser from 5.10.0 to 5.14.2 by @dependabot in #745
• Bump terser from 5.10.0 to 5.14.2 in /website by @dependabot in #744
• Update dependency sharp to 0.30.5 [SECURITY] by @renovate in #748
• Added new docker compose deployment method and associated .env, and modified README by @HrBingR in #750
• Bump jose from 2.0.5 to 2.0.6 by @dependabot in #752
• Bump loader-utils from 1.4.0 to 1.4.1 by @dependabot in #758
• Bump loader-utils from 2.0.2 to 2.0.3 in /website by @dependabot in #759
• Bump loader-utils from 1.4.1 to 1.4.2 by @dependabot in #761
• Bump loader-utils from 2.0.3 to 2.0.4 in /website by @dependabot in #760
• Bump minimatch, recursive-readdir and serve-handler in /website by @dependabot in #763
• Bump minimatch and recursive-readdir by @dependabot in #762
• Bump qs and express by @dependabot in #764
• Bump decode-uri-component from 0.2.0 to 0.2.2 by @dependabot in #765
• Update dependency jsonwebtoken to 9.0.0 [SECURITY] by @renovate in #767
• Bump json5 from 1.0.1 to 1.0.2 by @dependabot in #768
• Bump json5 from 2.2.1 to 2.2.3 in /website by @dependabot in #769
• Bump knex from 2.0.0 to 2.4.0 by @dependabot in #770
• Bump cookiejar from 2.1.2 to 2.1.4 by @dependabot in #771
• Bump @sideway/formula from 3.0.0 to 3.0.1 by @dependabot in #775

New Contributors

• @HrBingR made their first contribution in #750

Full Changelog: v1.3.0...v1.3.1

v1.3.0

This is a "feature" release that adds the ability to configure how Blink determines the real IP address using the TRUST_PROXY environment variable. Please see the configuration section in the docs for more details.

What's Changed

• Update docusaurus monorepo to v2.0.0-beta.15 by @renovate in #706
• Bump simple-get from 4.0.0 to 4.0.1 in /website by @dependabot in #707
• Bump follow-redirects from 1.14.7 to 1.14.8 by @dependabot in #710
• Bump follow-redirects from 1.14.7 to 1.14.8 in /website by @dependabot in #709
• Bump prismjs from 1.25.0 to 1.27.0 in /website by @dependabot in #714
• Update actions/checkout action to v3 by @renovate in #715
• Bump node-forge from 1.2.1 to 1.3.0 by @dependabot in #718
• Bump node-forge from 1.2.1 to 1.3.0 in /website by @dependabot in #717
• Bump minimist from 1.2.5 to 1.2.6 by @dependabot in #720
• Bump minimist from 1.2.5 to 1.2.6 in /website by @dependabot in #719
• Update dependency ioredis to v5 by @renovate in #721

Full Changelog: v1.2.13...v1.3.0

v1.2.13

This release contains dependency updates to address security issues.

What's Changed

• Update dependency concurrently to v7 by @renovate in #702
• Update dependency knex to v1 by @renovate in #704

Full Changelog: v1.2.12...v1.2.13

v1.2.12

This release fix releases (yo dawg) now that CircleCI wouldn't run on force-pushed taggs anymore.

Full Changelog: v1.2.4...v1.2.12

v1.2.5: fix got issues (#701)

This release contains fixes for links that may not be scrape-able within the configured time limit

v1.2.1

This release fixes a minor UI bug (styling), and moves to a new mode of releasing (so that latest isn't just unstable in disguise)!

What's Changed

• Update dependency openid-client to v5 by @renovate in #681

New Contributors

• @renovate made their first contribution in #681

Full Changelog: v1.2.0...v1.2.1