v14.1.1

• Patch CVE-2021-44906 @dpassen (#803)

Other changes

• Bump follow-redirects from 1.14.4 to 1.14.8 @dependabot (#794)

v14.1.0

This release contains an emergency fix which replaces colors.js with chalk. See #781 for more info and discussion, and Marak/colors.js#285 for broader discussion about colors.js.

• Switch from colors to chalk @zbynek (#785)

v13.1.0

This release contains an emergency backport from v14.1.0 which replaces colors.js with chalk

• Switch from colors to chalk @zbynek (#785)

v14.0.0

Breaking changes

• Add encoding charset sniffing @boarwell (#736)
• Drop Node.js 10 support @boarwell (#739)
  • Required to support charset sniffing

Features and enhancements

• add passphrase option @chris--jones (#746)
• Make --ssl an alias for --tls @thornjad (#747)
• add ability to pass proxyOptions @yannickglt (#688)
• Replace mkdirp in tests with native JS @thornjad (#743)
• Implement displaying last modified date in index @owenl131 (#737)
• Adds version number to server startup output @Innoveramera (#734)

Bug Fixes

• Don't crash when file path errors @thornjad (#753)
• Fix CORS option detection @thornjad (#748)
• fix crash on redirect with formfeed in URL @thornjad (#749)
• Fixes --proxy without a protocol throwing an uncaught error @Ratcoder (#742)
• Fix tests EACCESS by finding an open port every time @thornjad (#741)
• Use relative paths in directory listing #661 @boarwell (#732)

Other changes

• Add Contributing guide @thornjad (#752)
• Eslint config - replace common-style with eslint-config-populist @chris--jones (#744)
• Update some dependencies @thornjad (#740)

Full Changelog: v13.0.2...v14.0.0

v13.0.2

Fixed

• Open browser to localhost explicitly when using 0.0.0.0 as base address (#728)

v13.0.1

Changed

• Improved format of commands in Readme (#715)

Added

• Additional settings reported on CLI startup (#654)

Removed

• Automatic hs alias (#716)

v13.0.0

This release is a move to semantic versioning ONLY. There are NO changes in this release. All future releases will follow semantic versioning.

See v0.13.0 for information about changes since the v0.12 series.

v0.13.0

A long time coming, the next major release for http-server! This will be the final release before a switch to actual semantic versioning. This release's major achievement is the internalization of the functionality of the now-abandoned ecstatic library, thus removing it as a dependency. Huge thanks to @zbynek for help on that front, as well as several other included changes.

Breaking changes:

• No longer sends the header server: http-server-${version} with every response

New features:

• All responses include Accept-Ranges: bytes to advertise support for partial requests

Fixes

• Removes dependency on the abandoned ecstatic library
• Dependency upgrades to fix several security alerts
• http-server -a 0.0.0.0 will now do what you told it to do, rather than overriding the address to 127.0.0.1
• Will no longer serve binary files with a charset in the Content-Type, fixing serving WebAssembly files, among other issues
• Support .mjs MimeType correctly

Internal

• Switched from Travis to GH Actions for CI

v0.11.2: Security update

Upgrades several dependencies to avoid security vulnerabilities, especially as mentioned in #707.

v0.12.3

Patch release to package man page