v0.97.1

[eliandoran]

v0.97.1

Tip

This release is functionally identical to v0.97.0, but it fixes the version number not being correctly set in the release, causing some issues with the cache.

Caution

Important Security Update

This release addresses a security vulnerability that could make password-based attacks against your Trilium instance more feasible. We strongly recommend upgrading to this version as soon as possible, especially if your Trilium server is accessible over a network.

For more details about this security fix, please see our published security advisory which will be available 14 days after this release.

Important

If you enjoyed this release, consider showing a token of appreciation by:

• Pressing the “Star” button on GitHub (top-right).
• Considering a one-time or recurrent donation to the lead developer via GitHub Sponsors or PayPal.

Changes from v0.97.0

💡 Key highlights

• “Books” have been renamed to Collections to better match their intentions.
  • A new collection was introduced, table.
    • See the in-app documentation for more information.
    • Custom table theme for Trilium by @adoriandoran
  • Geomap: The geomap was converted from a standalone note type to a collection.
  • The collections are not displayed directly in “Insert child” in the note tree with predefined configuration such as promoted attributes to make them easier to use (e.g. for calendar, geomap).
• A new editing mechanism was introduced: quick edit. This opens notes for editing in a popup instead of a tab, allowing easy access. This is especially useful for collections, to edit notes without switching context.

🐞 Bugfixes

• Missing note meta. Can't export empty note and involved note tree
• Mermaid notes sluggish
• In-app help confusing due to ligatures
• Geo map: tooltip not showing.
• Nix flake support broke with electron 37 upgrade
• Signing on Windows did not work on the previous release.
• When editing a note in Linux, middle-clicking a note title in tree pane triggers a paste action
• Editor not focused after switching tabs.
• PDF file preview: inconvenient 10px scrollable margin at the bottom.
• Calendar view:
  • Subtree children not displayed when in calendar root.
  • Title changes to events not reflected.
• Attributes Dialogue Doesn't Display for existing attributes
• Issues on Prometeus dashboard due to timestamps
• Ckeditor (re)-creation likely causes important lagging when coming from code note

✨ Improvements

• Export to ZIP:
  • Improve error handling
  • Improve handling of notes with empty title.
• Tree context menu: reorder the note types of “Insert (child) note...” by @adoriandoran
• Note map: add attributes to include or exclude relations by @kieranknowles1
• iframe sandbox allow popups
• Badges for the note type context menu by @adoriandoran
• The “Book/Collection Properties" ribbon tab no longer focuses automatically.
• Geomap improvements:
  • Geolocation now displayed in the context menu.
  • Context menu for empty spaces on the map, for quickly viewing the location or adding a new marker.
  • Adding markers by drag & dropping from note tree.
  • Read-only mode to prevent modification such as dragging.
  • Calendar View: Added options to hide weekends & display week numbers directly from the “Collection Properties” in the ribbon.
• Tree Context Menu: relocate the "Duplicate subtree" menu item by @adoriandoran

📖 Documentation

• New features, table.
• Updated collections.
• Keyboard shortcuts for the note tree.

🛠️ Technical updates

• Updated to Electron 37.2.2.
• Mindmap dependency (MindElixir) was updated to the latest major version.
• Mermaid diagrams updated to the latest version (new diagram type tree map supported).
• CKEditor updated to latest major version (46).

---

This discussion was created from the release v0.97.1.

[thfrei]

Important Security Update
This release addresses a security vulnerability that could make password-based attacks against your Trilium instance more feasible. We strongly recommend upgrading to this version as soon as possible, especially if your Trilium server is accessible over a network.

@eliandoran Thanks for the update. I think it's great that you adress security! However, the wording seems quite confusing to me. With the release, I guess you mean that password-based attacks are less feasible...
I'm looking forward on the details in a couple of days.

[perfectra1n]

addresses a security vulnerability that could make password-based attacks against your Trilium instance more feasible

The vulnerability itself makes password-based attacks against a Trilium instance more feasible.