Skip to content

Commit d62a793

Browse files
dlendlen
committed
Merge branch 'release/4.1.1' into 'develop'
chore(release): Added release notes and changelog for 4.1.1 See merge request passbolt/passbolt_docker!218
2 parents 488679b + 52679a2 commit d62a793

File tree

2 files changed

+24
-5
lines changed

2 files changed

+24
-5
lines changed

CHANGELOG.md

Lines changed: 17 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -3,8 +3,23 @@
33
All notable changes to this project will be documented in this file.
44
This project adheres to [Semantic Versioning](http://semver.org/).
55

6-
## [Unreleased](https://github.com/passbolt/passbolt_docker/compare/4.1.0...HEAD)
7-
- Add EMAIL_TRANSPORT_DEFAULT_PASSWORD and EMAIL_TRANSPORT_DEFAULT_PASSWORD to docker secrets.
6+
## [Unreleased](https://github.com/passbolt/passbolt_docker/compare/4.1.1...HEAD)
7+
8+
## [4.1.1](https://github.com/passbolt/passbolt_docker/compare/4.1.0...4.1.1) - 2025-04-02
9+
10+
### Added
11+
12+
- Support EMAIL_TRANSPORT_DEFAULT_PASSWORD and EMAIL_TRANSPORT_DEFAULT_PASSWORD to docker secrets.
13+
14+
### Fixed
15+
16+
- Readme requirements no longer contain rng/tools or haveged mentions. Kernels newer than 5.12 should not require such tools for entropy generation
17+
- Readme instructions for non-root first user creation added
18+
- Readme PASSBOLT_SSL_FORCE default value updated to false
19+
20+
### Changed
21+
22+
- Entrypoint no longer checks for entropy_avail size. Fixes #229
823

924
## [4.1.0](https://github.com/passbolt/passbolt_docker/compare/4.0.0...4.1.0) - 2024-12-30
1025

RELEASE_NOTES.md

Lines changed: 7 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -1,4 +1,8 @@
1-
Announcing the immediate availability of passbolt's docker image 4.1.0.
1+
Announcing the immediate availability of passbolt's docker repository 4.1.1.
22

3-
This is a minor change that fixes a logging issue where 500 errors were not redirected to standard output.
4-
Also, it fixes issues on image testing and added the release notes automation on GitHub.
3+
This release adds docker secrets support for EMAIL_TRANSPORT_DEFAULT_PASSWORD
4+
and EMAIL_TRANSPORT_DEFAULT_USERNAME environment variables thanks to @Shtiggs
5+
6+
It also includes a warning message when APP_FULL_BASE_URL environment variable
7+
is not set to mitigate host header injection attacks. You can obtain more
8+
information about the subject in the following link: <https://owasp.org/www-project-web-security-testing-guide/v42/4-Web_Application_Security_Testing/07-Input_Validation_Testing/17-Testing_for_Host_Header_Injection>

0 commit comments

Comments
 (0)