Sourced from github.com/labstack/echo/v4's releases.
v4.10.2
Security
filepath.Clean
behaviour has changed in Go 1.20 - adapt to it #2406- Add
middleware.CORSConfig.UnsafeWildcardOriginWithAllowCredentials
to make UNSAFE usages of wildcard origin + allow cretentials less likely #2405Enhancements
- Add more HTTP error values #2277
v4.10.1
Security
- Upgrade deps due to the latest golang.org/x/net vulnerability #2402
Enhancements
- Add new JWT repository to the README #2377
- Return an empty string for ctx.path if there is no registered path #2385
- Add context timeout middleware #2380
- Update link to jaegertracing #2394
v4.10.0
Security
We are deprecating JWT middleware in this repository. Please use https://github.com/labstack/echo-jwt instead.
JWT middleware is moved to separate repository to allow us to bump/upgrade version of JWT implementation (
github.com/golang-jwt/jwt
) we are using which we can not do in Echo core because this would break backwards compatibility guarantees we try to maintain.This minor version bumps minimum Go version to 1.17 (from 1.16) due
golang.org/x/
packages we depend on. There are several vulnerabilities fixed in these libraries.Echo still tries to support last 4 Go versions but there are occasions we can not guarantee this promise.
Enhancements
- Bump x/text to 0.3.8 #2305
- Bump dependencies and add notes about Go releases we support #2336
- Add helper interface for ProxyBalancer interface #2316
- Expose
middleware.CreateExtractors
function so we can use it from echo-contrib repository #2338- Refactor func(Context) error to HandlerFunc #2315
- Improve function comments #2329
- Add new method HTTPError.WithInternal #2340
- Replace io/ioutil package usages #2342
- Add staticcheck to CI flow #2343
- Replace relative path determination from proprietary to std #2345
- Remove square brackets from ipv6 addresses in XFF (X-Forwarded-For header) #2182
- Add testcases for some BodyLimit middleware configuration options #2350
- Additional configuration options for RequestLogger and Logger middleware #2341
... (truncated)
Sourced from github.com/labstack/echo/v4's changelog.
v4.10.2 - 2023-02-22
Security
filepath.Clean
behaviour has changed in Go 1.20 - adapt to it #2406- Add
middleware.CORSConfig.UnsafeWildcardOriginWithAllowCredentials
to make UNSAFE usages of wildcard origin + allow cretentials less likely #2405Enhancements
- Add more HTTP error values #2277
v4.10.1 - 2023-02-19
Security
- Upgrade deps due to the latest golang.org/x/net vulnerability #2402
Enhancements
- Add new JWT repository to the README #2377
- Return an empty string for ctx.path if there is no registered path #2385
- Add context timeout middleware #2380
- Update link to jaegertracing #2394
v4.10.0 - 2022-12-27
Security
We are deprecating JWT middleware in this repository. Please use https://github.com/labstack/echo-jwt instead.
JWT middleware is moved to separate repository to allow us to bump/upgrade version of JWT implementation (
github.com/golang-jwt/jwt
) we are using which we can not do in Echo core because this would break backwards compatibility guarantees we try to maintain.This minor version bumps minimum Go version to 1.17 (from 1.16) due
golang.org/x/
packages we depend on. There are several vulnerabilities fixed in these libraries.Echo still tries to support last 4 Go versions but there are occasions we can not guarantee this promise.
Enhancements
- Bump x/text to 0.3.8 #2305
- Bump dependencies and add notes about Go releases we support #2336
- Add helper interface for ProxyBalancer interface #2316
- Expose
middleware.CreateExtractors
function so we can use it from echo-contrib repository #2338- Refactor func(Context) error to HandlerFunc #2315
- Improve function comments #2329
... (truncated)
47844c9
Changelog for v4.10.2f909660
Add middleware.CORSConfig.UnsafeWildcardOriginWithAllowCredentials to
make UN...ef4aea9
use different variable name so returned function would not accidentally
be ab...7c75310
Clean on go1.20 (#2406)04ba8e2
Add more http error values (#2277)b888a30
Changelog for v4.10.12c25767
remediate flaky timeout testsa3998ac
Upgrade deps due to the latest golang.org/x/net vulnerability45da0f8
remove .travis.yml6b09f3f
Update link to jaegertracing