Releases: pglombardo/PasswordPusher
v1.58.1: Latest Language Strings
9c2aa89
pglombardo
Peter Giacomo Lombardo
📝 What’s Changed
🚀 Features
- Latest Language Strings (#3470) @pglombardo
⬆️ Dependencies updates
- ⬆️ Bump aws-partitions from 1.1119.0 to 1.1120.0 (#3483) @dependabot[bot]
- ⬆️ Bump aws-partitions from 1.1118.0 to 1.1119.0 (#3480) @dependabot[bot]
- ⬆️ Bump net-imap from 0.5.8 to 0.5.9 (#3479) @dependabot[bot]
- ⬆️ Bump terser from 1.2.5 to 1.2.6 (#3478) @dependabot[bot]
- ⬆️ Bump rdoc from 6.14.0 to 6.14.1 (#3477) @dependabot[bot]
- ⬆️ Bump ostruct from 0.6.1 to 0.6.2 (#3475) @dependabot[bot]
- ⬆️ Bump matrix from 0.4.2 to 0.4.3 (#3476) @dependabot[bot]
- ⬆️ Bump aws-sdk-s3 from 1.189.1 to 1.190.0 (#3474) @dependabot[bot]
- ⬆️ Bump faraday-multipart from 1.1.0 to 1.1.1 (#3473) @dependabot[bot]
- ⬆️ Bump aws-partitions from 1.1117.0 to 1.1118.0 (#3472) @dependabot[bot]
- ⬆️ Bump prime from 0.1.3 to 0.1.4 (#3471) @dependabot[bot]
- ⬆️ Bump faraday-em_synchrony from 1.0.0 to 1.0.1 (#3469) @dependabot[bot]
- ⬆️ Bump aws-sdk-core from 3.225.2 to 3.226.0 (#3468) @dependabot[bot]
- ⬆️ Bump aws-partitions from 1.1116.0 to 1.1117.0 (#3467) @dependabot[bot]
- ⬆️ Bump debug from 1.10.0 to 1.11.0 (#3466) @dependabot[bot]
- ⬆️ Bump devise-i18n from 1.13.0 to 1.14.0 (#3465) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.58.1..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.58.0: New Secure Cookies Option
326a06e
pglombardo
Peter Giacomo Lombardo
📝 What’s Changed
This releases adds new setting secure_cookies. Enable with PWP__SECURE_COOKIES=true or setting secure_cookies: true in your settings.yml.
Enabling this security feature will put in place a few security restrictions including:
- Only send cookies over HTTPS
- Prevent Javascript from accessing cookies
- Cookies can only be accessed in same-site requests
You can read more about the strategies employed here and the attack vectors it defends against here:
https://guides.rubyonrails.org/security.html#sessions
Note that this option is disabled by default as enabling it will break those running over HTTP, on intranets and possibly those running behind some proxies.
🚀 Features
- Add a setting to use secure cookies (#3453) @ozovalihasan
⬆️ Dependencies updates
- Update the version of the mission_control-jobs gem (#3461) @ozovalihasan
- ⬆️ Bump rqrcode from 2.2.0 to 3.1.0 (#3306) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @ozovalihasan, @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.58.0..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.57.1: Minor QR Code UI Fixes; Better Form Errors
dfff50e
pglombardo
Peter Giacomo Lombardo
📝 What’s Changed
- Fix UI for QR Code pushes (#3456) @ozovalihasan
🚀 Features
- Add an initializer to customize inputs having errors (#3459) @ozovalihasan
⬆️ Dependencies updates
- ⬆️ Bump google-apis-storage_v1 from 0.52.0 to 0.53.0 (#3462) @dependabot[bot]
- ⬆️ Bump aws-sdk-kms from 1.104.0 to 1.105.0 (#3457) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @ozovalihasan, @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.57.1..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.57.0: New QR Pushes
fef2d55
pglombardo
Peter Giacomo Lombardo
📝 What’s Changed
With this release, you can now push QR codes directly to your users!
The feature is disabled by default so make sure to see the documentation on how to enable and configure.
- Add QR Code pushes (#3418) @ozovalihasan 💪
⬆️ Dependencies updates
- Bump brace-expansion from 1.1.11 to 1.1.12 (#3452) @dependabot[bot]
- ⬆️ Bump aws-partitions from 1.1115.0 to 1.1116.0 (#3451) @dependabot[bot]
- ⬆️ Bump aws-sdk-s3 from 1.189.0 to 1.189.1 (#3446) @dependabot[bot]
- ⬆️ Bump aws-partitions from 1.1114.0 to 1.1115.0 (#3447) @dependabot[bot]
- ⬆️ Bump aws-sigv4 from 1.12.0 to 1.12.1 (#3445) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @ozovalihasan, @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.56.7..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.56.6: Admin Dashboard: Fix User Edit
06f62ac
pglombardo
Peter Giacomo Lombardo
📝 What’s Changed
- Admin Dashboard: Fix User Edit (#3444) @pglombardo
⬆️ Dependencies updates
- ⬆️ Bump sqlite3 from 2.6.0 to 2.7.0 (#3442) @dependabot[bot]
- ⬆️ Bump aws-partitions from 1.1113.0 to 1.1114.0 (#3441) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.56.6..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.56.5: Fix Broken Interpolations
86a1116
pglombardo
Peter Giacomo Lombardo
📝 What’s Changed
- Fix Bad Interpolations in Translated Strings (#3440) Thanks for reporting @spacemania!
⬆️ Dependencies updates
- ⬆️ Bump aws-sdk-kms from 1.103.0 to 1.104.0 (#3438) @dependabot[bot]
- ⬆️ Bump aws-partitions from 1.1112.0 to 1.1113.0 (#3437) @dependabot[bot]
- ⬆️ Bump rubocop-ast from 1.45.0 to 1.45.1 (#3436) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.56.5..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.56.4: Drop Legacy Model Support
8ce4215
pglombardo
Peter Giacomo Lombardo
📝 What’s Changed
This release wraps up the model unification by dropping the old tables and removing support for the legacy models.
If you have legacy data and the data migration job hasn't completed yet, this release will fail to boot with the message:
Data migration not completed. Please run v1.56.3 first and allow the data migration to complete. Then update to this version. See https://github.com/pglombardo/PasswordPusher/releases/tag/v1.56.0 for more information.
If this is the case, then run v1.56.3 and allow the data migration to complete. This usually takes less than 30 minutes maximum.
Details about the data migration and how to monitor are in v1.56.0 release notes.
🚀 Features
- Drop Legacy Tables & Models (#3432) @pglombardo
👥 List of contributors
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.56.4..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.56.3: Dashboard Updates & Latest Language Strings
161271c
pglombardo
Peter Giacomo Lombardo
📝 What’s Changed
A few visual updates to the dashboard.
🚀 Features
- Dashboard Visual Improvements (#3434) @pglombardo
- Latest Language Strings (#3433) @pglombardo
⬆️ Dependencies updates
- ⬆️ Bump rack-cors from 2.0.2 to 3.0.0 (#3367) @dependabot[bot]
- ⬆️ Bump aws-sdk-kms from 1.102.0 to 1.103.0 (#3430) @dependabot[bot]
- ⬆️ Bump aws-sdk-core from 3.225.0 to 3.225.1 (#3431) @dependabot[bot]
- ⬆️ Bump aws-partitions from 1.1111.0 to 1.1112.0 (#3429) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.56.3..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.56.2: Public Gateway Fix
c72ff4d
pglombardo
Peter Giacomo Lombardo
The recent unification of routes and models in v1.56.0 broke legacy URLs for the public gateway. This release fixes all routes for the pwpush-public-gateway container.
📝 What’s Changed
- Public Gateway: Add legacy route redirects (#3428) @pglombardo
- Update push forms (#3419) @ozovalihasan
⬆️ Dependencies updates
- ⬆️ Bump aws-partitions from 1.1110.0 to 1.1111.0 (#3426) @dependabot[bot]
- ⬆️ Bump bigdecimal from 3.2.1 to 3.2.2 (#3425) @dependabot[bot]
- ⬆️ Bump rack from 3.1.15 to 3.1.16 (#3424) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @ozovalihasan, @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.56.2..and go to http://localhost:5100
🔗 Useful Links
Contributors
Assets 2
v1.56.1: MariaDB & CVE Fix
1cfc11f
pglombardo
Peter Giacomo Lombardo
This release fixes a bug reported by MariaDB users and resolves a reported CVE in the Docker container. CVE details in #3420
📝 What’s Changed
- Push Create: Add fix for MariaDB id type conflict (#3423) @pglombardo
- CVE-2025-22871: Update to resolve (#3420) @pglombardo
⬆️ Dependencies updates
- ⬆️ Bump rubocop-ast from 1.44.1 to 1.45.0 (#3421) @dependabot[bot]
👥 List of contributors
@dependabot[bot], @pglombardo and dependabot[bot]
🛥️ Docker Images
Available on Docker Hub:
https://hub.docker.com/r/pglombardo/pwpush
🏃♂️ Run This Version
docker run -d -p 5100:5100 pglombardo/pwpush:1.56.1..and go to http://localhost:5100