v1.1.3

Security Fixes

🔒 Fixed critical temporary file cleanup vulnerability - Temporary files created during multipart form parsing are now properly cleaned up from disk, preventing:

• Information disclosure of sensitive uploaded data
• Disk space exhaustion from accumulated temp files
• File descriptor leaks in error scenarios

Documentation

• Updated README with support information for GMO FlattSecurity's OSS Developer Support Program
• Added GMO OSS badge to README

Dependency Updates

• Bumped github.com/labstack/echo/v4 from 4.13.3 to 4.13.4
• Bumped go.uber.org/mock from 0.5.0 to 0.6.0
• Bumped github.com/gin-gonic/gin from 1.10.0 to 1.11.0
• Bumped golang.org/x/sync from 0.10.0 to 0.17.0
• Updated GitHub Actions dependencies (checkout, setup-go, upload-artifact, golangci-lint, codecov)

Full Changelog

Full Changelog: v1.1.2...v1.1.3

v1.1.2

dependency update

What's Changed

• Bump codecov/codecov-action from 4.4.1 to 4.5.0 by @dependabot in #27
• Bump golang.org/x/sync from 0.7.0 to 0.8.0 by @dependabot in #29
• Bump golang.org/x/sync from 0.8.0 to 0.9.0 by @dependabot in #32
• Bump codecov/codecov-action from 4.5.0 to 4.6.0 by @dependabot in #30
• Bump go.uber.org/mock from 0.4.0 to 0.5.0 by @dependabot in #31
• Bump codecov/codecov-action from 4.6.0 to 5.0.2 by @dependabot in #33
• Bump codecov/codecov-action from 5.0.2 to 5.0.7 by @dependabot in #34
• Bump codecov/codecov-action from 5.0.7 to 5.1.2 by @dependabot in #41
• Bump reviewdog/action-golangci-lint from 2.6 to 2.7 by @dependabot in #37
• Bump github.com/labstack/echo/v4 from 4.12.0 to 4.13.3 by @dependabot in #40

Full Changelog: v1.1.1...v1.1.2

v1.1.1

dependency update

What's Changed

• add http example by @mazrean in #14
• fix codecov by @mazrean in #15
• Bump codecov/codecov-action from 4.1.0 to 4.1.1 by @dependabot in #16
• add NextPart benchmark by @mazrean in #17
• Bump codecov/codecov-action from 4.1.1 to 4.2.0 by @dependabot in #19
• Bump golang.org/x/sync from 0.6.0 to 0.7.0 by @dependabot in #18
• Bump codecov/codecov-action from 4.2.0 to 4.3.0 by @dependabot in #21
• Bump github.com/labstack/echo/v4 from 4.11.4 to 4.12.0 by @dependabot in #22
• Bump github.com/gin-gonic/gin from 1.9.1 to 1.10.0 by @dependabot in #24
• Bump codecov/codecov-action from 4.3.0 to 4.3.1 by @dependabot in #23
• Bump codecov/codecov-action from 4.3.1 to 4.4.0 by @dependabot in #25
• Bump codecov/codecov-action from 4.4.0 to 4.4.1 by @dependabot in #26

Full Changelog: v1.1.0...v1.1.1

v1.1.0

What's Changed

• unwrap echo error by @mazrean in #13

Full Changelog: v1.0.0...v1.1.0

v1.0.0

What's Changed

• write godoc by @mazrean in #12

Full Changelog: v0.1.0...v1.0.0

v0.1.0

What's Changed

• ベンチマーク用CI修正 by @mazrean in #2
• README by @mazrean in #1
• Bump codecov/codecov-action from 3.1.4 to 4.1.0 by @dependabot in #7
• Bump reviewdog/action-golangci-lint from 2.5 to 2.6 by @dependabot in #5
• write README by @mazrean in #3
• multiparts/formで過去に発生したCVEの対策設定 by @mazrean in #8
• ベンチマーク環境追記 by @mazrean in #9
• fix codecov badge by @mazrean in #10
• ベンチマーク、テストの強化 by @mazrean in #11

New Contributors

• @mazrean made their first contribution in #2
• @dependabot made their first contribution in #7

Full Changelog: https://github.com/mazrean/formstream/commits/v0.1.0