2.1.0 (Mr. Meeseeks)

2022-08-18

Added

• Secrets storage with UI and secret variables in build interpolation (you can use it like %SECRET:secret_name%. See documentation). Issue #14.
• Optional logging into database webhook requests payloads (option php-censor.webhook.log_requests). Issue #384.
• Steps inside stages (test, deploy etc.) which allow to have several same plugins into one stage. Issue #91. Pull request #417. Thanks to @KieranFYI. Usage example:

  setup: # <--- stage
    setup_env: # <--- step 1
      plugin: shell # <--- step 1 plugin name
      commands:
        - "php -r \"copy('.env.ci', '.env');\""
        - "php artisan key:generate"
        - "chmod -R 777 storage bootstrap/cache"
    migrate: # <--- step 2
      plugin: shell # <--- step 2 same plugin name
      commands:
        - "php artisan migrate"

• GET-parameter environment for Git webhook. Issue #407.
• Cloning/coping projects ability.
• [PHP Unit] Coverage trand for builds in the timeline on dashboard.

Changed

• Massive refactoring: added types, dependency injection, new tests, documentation, fixed code style etc. Issue #413. Pull requests #412, #424 and #425. Thanks to @KieranFYI and @Ooypunk.
• Integrated symfony/http-foundation library as a new HTTP part of project.
• Integrate some features from php-censor/common library.
• Improved UI: fixed colors and ratio for Chart.js charts, added ability to disable AJAX UI reloading (option php-censor.realtime_ui), improved error trends view. Pull request #426. Thanks to @KieranFYI.
• Improved Ukrainian localization. Pull request #419. Thanks to @oshka.

Fixed

• Install command return code.
• [PHPUnit] Xdebug settings for coverage option. Pull request #427. Thanks to @KieranFYI.

2.0.10 (Rick Sanchez)

2022-06-26

Fixed

• Updated dependencies. Fixed:

  • guzzlehttp/guzzle (6.5.7) | CVE-2022-31090: CURLOPT_HTTPAUTH option not cleared on change of origin | GHSA-25mq-v84q-4j7r

  • guzzlehttp/guzzle (6.5.7) | CVE-2022-31091: Change in port should be considered a change in origin GHSA-q559-8m2m-g699

2.0.9 (Rick Sanchez)

2022-06-11

Fixed

• Updated dependencies. Fixed:

  • guzzlehttp/guzzle (6.5.6) | CVE-2022-31042: Failure to strip the Cookie header on change in host or HTTP downgrade | GHSA-f2wf-25xc-69c9

  • guzzlehttp/guzzle (6.5.6) | CVE-2022-31043: Fix failure to strip Authorization header on HTTP downgrade | GHSA-w248-ffj2-4v5q

Changed

• Added secrets to PHP Censor CI config (.php-censor.yml).

2.0.8 (Rick Sanchez)

2022-06-08

Fixed

• Updated dependencies. Fixed:

  • guzzlehttp/guzzle (6.5.5) | CVE-2022-29248: Cross-domain cookie leakage | GHSA-cwmx-hcrq-mhc3.

  • guzzlehttp/psr7 (1.8.3) | CVE-2022-24775: Inproper parsing of HTTP headers | GHSA-q7rv-6hp3-vh96.

2.0.7 (Rick Sanchez)

2022-01-19

Fixed

• [PhpCsFixer] Problems with udiff option.

1.3.7 (Jerry Smith)

2022-01-19

Fixed

• [PhpCsFixer] Problems with udiff option.

2.0.6 (Rick Sanchez)

2021-12-19

Fixed

• [Codeception] Updated Codeception version (See: CVE-2021-23420).

Changed

• Several documentation improvements.
• Improved code style.

1.3.6 (Jerry Smith)

2021-12-18

Fixed

• [Codeception] Updated Codeception version (See: CVE-2021-23420).

Changed

• Several documentation improvements.
• Improved code style.

2.0.5 (Rick Sanchez)

2021-08-22

Fixed

• Bug with wrong type when field "access_information" is empty (null).
• [PhpCsFixer] Support for version 3.0+. Pull request #414. Thanks to @StudioMaX.
• [Mysql, Pgsql, Sqlite] Variables interpolation for queries. Pull requests #415, #416. Thanks to @KieranFYI.

Removed

• Useless TravisCI and CodeCov configs.

1.3.5 (Jerry Smith)

2021-08-22

Fixed

• [PhpCsFixer] Support for version 3.0+. Pull request #414. Thanks to @StudioMaX.
• [Mysql, Pgsql, Sqlite] Variables interpolation for queries. Pull requests #415, #416. Thanks to @KieranFYI.

Removed

• Useless TravisCI and CodeCov configs.