What's Changed

• Important security patches, please update as soon as possible:
  • Sharing of links is now properly escaped within the application, preventing XSS attacks
  • RSS feeds no longer contain private links.
  • Private links are no longer exported in HTML exports.
  • Minor change: LinkAce won't fetch keyword suggestions for tags from private and reserved IP addresses like 192.168.x.x or 10.72.x.x.
  • Permission checks of system tokens were corrected to reflect the actual API usage, not the in-browser UI.
• Private RSS feeds can be accessed by using ?api_token=3|tq3K7r... within the URL again (#1034)
• Filter tags by search in the tags overview @Alitindrawan24 (#1028)
• System tokens don't fail while updating links via the API anymore (#1013)
• System tokens are now able to properly delete entities via the API
• Lists and tags starting with numbers like 10 best Soup recipes are correctly parsed in the List and Tags select while adding Links (#1017)
• Dependencies were updated.

New Contributors

• @Alitindrawan24 made their first contribution in #1028

Full Changelog: v2.3.1...v2.4.0

• Fix for disabling TLS verification for SMTP connections (#1012)
• Minor security fix: user names are only allowed to have alpha-numeric characters and dashes.
• Dependencies were updated.

• Allow more configuration options for connecting to the database via SSL, see .env Settings for details (#949)
• Improvement for handling existing (even trashed) links during adding or editing links (#1004)
• Improve handling of non-existing links, lists or tags for Postgres databases (#1005)
• Adding new tags or lists correctly takes default privacy settings into account (#1001)
• Link sharing button is removed when no sharing services are enabled (#991)
• New option for OIDC logins: SSO_OIDC_VERIFY_JWT which enables JWT verification and now defaults to true
• Dependencies were updated

What's Changed

• Allow disabling TLS/SSL verification when using SMTP for sending mails (#986)
• Selecting tags or lists now prefer existing entries instead of creating new ones (#992)
• Allow users to search shared links by @KobyW in #976
• Fix markdown rendering in link lists by using formatted_description attribute by @Copilot in #994
• Add comprehensive GitHub Copilot instructions for LinkAce development by @Copilot in #996
• LinkAce now uses the official Redis docker image instead of the Bitnami one, as Bitnami deprecated their images.
• Dependencies were updated

New Contributors

• @KobyW made their first contribution in #976
• @Copilot made their first contribution in #994

Full Changelog: v2.1.9...v2.2.0

• Dependency updates

• Fixes minor security issue with updating existing links with Javascript code.
• Updates all dependencies.

• Tag and List relations are now properly removed for deleted Links. (#941)
• Dependencies were updated.

• Dependencies were updated

• Links can now properly be sorted on the details page of Lists. (#941)
• Minor fixes and adjustments for the SQLite web setup.
• Dependencies were updated.

• Fixes the search after it was not working correctly when searching with tags or lists