Skip to content

Latest commit

 

History

History
509 lines (382 loc) · 11 KB

HISTORY.md

File metadata and controls

509 lines (382 loc) · 11 KB

2.1.0 / 2024-09-10

  • Changes from 1.16.0

2.0.0 / 2024-08-23

  • deps:
    • parseurl@^1.3.3
    • excape-html@^1.0.3
    • encodeurl@^2.0.0
    • supertest@^6.3.4
    • safe-buffer@^5.2.1
    • nyc@^17.0.0
    • mocha@^10.7.0
  • Changes from 1.x

2.0.0-beta.2 / 2024-03-20

2.0.0-beta.1 / 2022-02-05

  • Change dotfiles option default to 'ignore'
  • Drop support for Node.js 0.8
  • Remove hidden option; use dotfiles option instead
  • deps: [email protected]

1.16.0 / 2024-09-10

  • Remove link renderization in html while redirecting

1.15.0 / 2022-03-24

1.14.2 / 2021-12-15

1.14.1 / 2019-05-10

  • Set stricter CSP header in redirect response
  • deps: [email protected]
    • deps: range-parser@~1.2.1

1.14.0 / 2019-05-07

1.13.2 / 2018-02-07

  • Fix incorrect end tag in redirects
  • deps: encodeurl@~1.0.2
    • Fix encoding % as last character
  • deps: [email protected]
    • deps: depd@~1.1.2
    • deps: encodeurl@~1.0.2
    • deps: statuses@~1.4.0

1.13.1 / 2017-09-29

1.13.0 / 2017-09-27

  • deps: [email protected]
    • Add 70 new types for file extensions
    • Add immutable option
    • Fix missing </html> in default error & redirects
    • Set charset as "UTF-8" for .js and .json
    • Use instance methods on steam to check for listeners
    • deps: [email protected]
    • perf: improve path validation speed

1.12.6 / 2017-09-22

1.12.5 / 2017-09-21

  • deps: parseurl@~1.3.2
    • perf: reduce overhead for full URLs
    • perf: unroll the "fast-path" RegExp
  • deps: [email protected]
    • Fix handling of modified headers with invalid dates
    • deps: etag@~1.8.1
    • deps: [email protected]

1.12.4 / 2017-08-05

1.12.3 / 2017-05-16

1.12.2 / 2017-04-26

1.12.1 / 2017-03-04

  • deps: [email protected]
    • Fix issue when Date.parse does not return NaN on invalid date
    • Fix strict violation in broken environments

1.12.0 / 2017-02-25

  • Send complete HTML document in redirect response
  • Set default CSP header in redirect response
  • deps: [email protected]
    • Fix false detection of no-cache request directive
    • Fix incorrect result when If-None-Match has both * and ETags
    • Fix weak ETag matching to match spec
    • Remove usage of res._headers private field
    • Support If-Match and If-Unmodified-Since headers
    • Use res.getHeaderNames() when available
    • Use res.headersSent when available
    • deps: [email protected]
    • deps: etag@~1.8.0
    • deps: [email protected]
    • deps: http-errors@~1.6.1

1.11.2 / 2017-01-23

1.11.1 / 2016-06-10

  • Fix redirect error when req.url contains raw non-URL characters
  • deps: [email protected]

1.11.0 / 2016-06-07

  • Use status code 301 for redirects
  • deps: [email protected]
    • Add acceptRanges option
    • Add cacheControl option
    • Attempt to combine multiple ranges into single range
    • Correctly inherit from Stream class
    • Fix Content-Range header in 416 responses when using start/end options
    • Fix Content-Range header missing from default 416 responses
    • Ignore non-byte Range headers
    • deps: http-errors@~1.5.0
    • deps: range-parser@~1.2.0
    • deps: statuses@~1.3.0
    • perf: remove argument reassignment

1.10.3 / 2016-05-30

  • deps: [email protected]
    • Fix invalid Content-Type header when send.mime.default_type unset

1.10.2 / 2016-01-19

  • deps: parseurl@~1.3.1
    • perf: enable strict mode

1.10.1 / 2016-01-16

  • deps: escape-html@~1.0.3
    • perf: enable strict mode
    • perf: optimize string replacement
    • perf: use faster string coercion
  • deps: [email protected]
    • deps: depd@~1.1.0
    • deps: destroy@~1.0.4
    • deps: escape-html@~1.0.3
    • deps: range-parser@~1.0.3

1.10.0 / 2015-06-17

  • Add fallthrough option
    • Allows declaring this middleware is the final destination
    • Provides better integration with Express patterns
  • Fix reading options from options prototype
  • Improve the default redirect response headers
  • deps: [email protected]
  • deps: [email protected]
    • Allow Node.js HTTP server to set Date response header
    • Fix incorrectly removing Content-Location on 304 response
    • Improve the default redirect response headers
    • Send appropriate headers on default error response
    • Use http-errors for standard emitted errors
    • Use statuses instead of http module for status messages
    • deps: [email protected]
    • deps: etag@~1.7.0
    • deps: [email protected]
    • deps: on-finished@~2.3.0
    • perf: enable strict mode
    • perf: remove unnecessary array allocations
  • perf: enable strict mode
  • perf: remove argument reassignment

1.9.3 / 2015-05-14

1.9.2 / 2015-03-14

  • deps: [email protected]
    • Throw errors early for invalid extensions or index options
    • deps: debug@~2.1.3

1.9.1 / 2015-02-17

1.9.0 / 2015-02-16

1.8.1 / 2015-01-20

1.8.0 / 2015-01-05

1.7.2 / 2015-01-02

  • Fix potential open redirect when mounted at root

1.7.1 / 2014-10-22

1.7.0 / 2014-10-15

1.6.5 / 2015-02-04

  • Fix potential open redirect when mounted at root
    • Back-ported from v1.7.2

1.6.4 / 2014-10-08

  • Fix redirect loop when index file serving disabled

1.6.3 / 2014-09-24

1.6.2 / 2014-09-15

1.6.1 / 2014-09-07

1.6.0 / 2014-09-07

  • deps: [email protected]
    • Add lastModified option
    • Use etag to generate ETag header
    • deps: debug@~2.0.0

1.5.4 / 2014-09-04

  • deps: [email protected]
    • Fix a path traversal issue when using root
    • Fix malicious path detection for empty string path

1.5.3 / 2014-08-17

1.5.2 / 2014-08-14

1.5.1 / 2014-08-09

  • Fix parsing of weird req.originalUrl values
  • deps: parseurl@~1.3.0
  • deps: [email protected]

1.5.0 / 2014-08-05

1.4.4 / 2014-08-04

1.4.3 / 2014-07-29

1.4.2 / 2014-07-27

1.4.1 / 2014-07-26

1.4.0 / 2014-07-21

1.3.2 / 2014-07-11

1.3.1 / 2014-07-09

  • deps: parseurl@~1.1.3
    • faster parsing of href-only URLs

1.3.0 / 2014-06-28

  • Add setHeaders option
  • Include HTML link in redirect response
  • deps: [email protected]
    • Accept string for maxAge (converted by ms)

1.2.3 / 2014-06-11

1.2.2 / 2014-06-09

1.2.1 / 2014-06-02

  • use escape-html for escaping
  • deps: [email protected]
    • Send max-age in Cache-Control in correct format

1.2.0 / 2014-05-29

  • deps: [email protected]
    • Calculate ETag with md5 for reduced collisions
    • Fix wrong behavior when index file matches directory
    • Ignore stream errors after request ends
    • Skip directories in index file search
    • deps: [email protected]

1.1.0 / 2014-04-24

1.0.4 / 2014-04-07

  • Resolve relative paths at middleware setup
  • Use parseurl to parse the URL from request

1.0.3 / 2014-03-20

  • Do not rely on connect-like environments

1.0.2 / 2014-03-06

1.0.1 / 2014-03-05

  • Add mime export for back-compat

1.0.0 / 2014-03-05

  • Genesis from connect