All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
1.5.6 - 2022-12-31
- Bump @sentry/browser from 7.23.0 to 7.28.1 by @dependabot in #572
- Bump mocha from 10.1.0 to 10.2.0 by @dependabot in #562
- Bump json5 from 2.1.3 to 2.2.2 by @dependabot in #575
- Bump @sentry/tracing from 7.24.2 to 7.28.1 by @dependabot in #576
- Bump cypress-real-events from 1.7.4 to 1.7.6 by @dependabot in #577
- Error style in upload preview element when selecting a new image by @Coteh in #574
1.5.5 - 2022-12-21
- Ability to return low resolution images by @Coteh and @mayankbucha in #553
- Deploy to Fly GitHub Actions pipeline by @Coteh in #571
- CodeQL workflow for GitHub code scanning by @lgtm-com in #522
- Bump mocha from 9.2.2 to 10.1.0 by @dependabot in #495
- Bump sinon from 13.0.2 to 14.0.1 by @dependabot in #481
- Bump ejs-lint from 1.2.2 to 2.0.0 by @dependabot in #494
- Bump @sentry/tracing from 6.19.7 to 7.17.4 by @dependabot in #508
- Bump @sentry/browser from 6.19.7 to 7.17.4 by @dependabot in #507
- Bump mocha-junit-reporter from 2.1.0 to 2.1.1 by @dependabot in #510
- Bump @sentry/webpack-plugin from 1.19.1 to 1.20.0 by @dependabot in #511
- Bump cypress from 10.10.0 to 10.11.0 by @dependabot in #512
- Bump mongoist from 2.5.5 to 2.5.6 by @dependabot in #513
- Bump @sentry/browser from 7.17.4 to 7.18.0 by @dependabot in #514
- Bump chai from 4.3.6 to 4.3.7 by @dependabot in #517
- Bump sinon from 14.0.1 to 14.0.2 by @dependabot in #518
- Bump loader-utils from 2.0.0 to 2.0.3 by @dependabot in #519
- Bump @sentry/tracing from 7.17.4 to 7.18.0 by @dependabot in #516
- Bump webpack from 5.74.0 to 5.75.0 by @dependabot in #525
- Bump cypress-real-events from 1.7.2 to 1.7.4 by @dependabot in #526
- Bump @sentry/tracing from 7.18.0 to 7.19.0 by @dependabot in #527
- Bump @sentry/browser from 7.18.0 to 7.19.0 by @dependabot in #528
- Bump mocha-junit-reporter from 2.1.1 to 2.2.0 by @dependabot in #529
- Bump express-rate-limit from 6.6.0 to 6.7.0 by @dependabot in #531
- Bump loader-utils from 2.0.3 to 2.0.4 by @dependabot in #532
- Bump @sentry/browser from 7.19.0 to 7.20.0 by @dependabot in #535
- Bump @sentry/tracing from 7.19.0 to 7.20.0 by @dependabot in #536
- Bump @sentry/tracing from 7.20.0 to 7.20.1 by @dependabot in #537
- Bump @sentry/browser from 7.20.0 to 7.20.1 by @dependabot in #538
- Bump @sentry/tracing from 7.20.1 to 7.21.0 by @dependabot in #539
- Bump prettier from 2.7.1 to 2.8.0 by @dependabot in #542
- Bump @sentry/browser from 7.20.1 to 7.21.0 by @dependabot in #541
- Bump @sentry/tracing from 7.21.0 to 7.21.1 by @dependabot in #543
- Bump @sentry/browser from 7.21.0 to 7.21.1 by @dependabot in #544
- Bump @sentry/browser from 7.21.1 to 7.22.0 by @dependabot in #549
- Bump @sentry/tracing from 7.21.1 to 7.22.0 by @dependabot in #550
- Bump @sentry/browser from 7.22.0 to 7.23.0 by @dependabot in #551
- Bump @sentry/tracing from 7.22.0 to 7.23.0 by @dependabot in #552
- Bump prettier from 2.8.0 to 2.8.1 by @dependabot in #556
- Bump @sentry/tracing from 7.23.0 to 7.24.2 by @dependabot in #557
- Bump qs from 6.5.2 to 6.5.3 by @dependabot in #558
1.5.4 - 2022-11-05
- Info label to homepage detailing limits of image upload by @Coteh in #509
1.5.3 - 2022-10-31
- Set file size limit for images by @Coteh in #499
- Move simpleimage from Heroku to Fly by @Coteh in #488
- Bump terser from 5.12.1 to 5.14.2 by @dependabot in #439
- Bump webpack-cli from 4.9.2 to 4.10.0 by @dependabot in #459
- Bump ejs from 3.1.7 to 3.1.8 by @dependabot in #462
- Bump winston-mongodb from 5.0.7 to 5.1.0 by @dependabot in #464
- Bump cypress from 10.1.0 to 10.8.0 by @dependabot in #466
- Bump winston from 3.7.2 to 3.8.2 by @dependabot in #463
- Bump dotenv from 16.0.0 to 16.0.2 by @dependabot in #469
- Bump @sentry/webpack-plugin from 1.18.9 to 1.19.0 by @dependabot in #470
- Bump prettier from 2.6.2 to 2.7.1 by @dependabot in #471
- Bump mongoist from 2.5.4 to 2.5.5 by @dependabot in #473
- Bump webpack from 5.72.0 to 5.74.0 by @dependabot in #474
- Bump express-rate-limit from 6.4.0 to 6.6.0 by @dependabot in #475
- Bump got and nodemon by @dependabot in #467
- Bump express-session from 1.17.2 to 1.17.3 by @dependabot in #476
- Bump mocha-junit-reporter from 2.0.2 to 2.1.0 by @dependabot in #484
- Bump body-parser from 1.20.0 to 1.20.1 by @dependabot in #485
- Bump cypress from 10.8.0 to 10.9.0 by @dependabot in #486
- Bump dotenv from 16.0.2 to 16.0.3 by @dependabot in #487
- Bump express from 4.18.1 to 4.18.2 by @dependabot in #489
- Bump cypress from 10.9.0 to 10.10.0 by @dependabot in #492
- Bump @sentry/webpack-plugin from 1.19.0 to 1.19.1 by @dependabot in #493
1.5.2 - 2022-06-21
- Bump express from 4.18.0 to 4.18.1 by @dependabot in #414
- Bump nodemon from 2.0.15 to 2.0.16 by @dependabot in #416
- Upgrade Cypress to v10, replace cypress-file-upload with selectFile, replace bcrypt with bcryptjs by @Coteh in #426
1.5.1 - 2022-05-01
- More logs for user login, to print the username being logged in by @Coteh in #266
- Bump husky from 7.0.2 to 7.0.4 by @dependabot in #376
- Bump proxyquire from 2.0.1 to 2.1.3 by @dependabot in #241
- Bump copy-webpack-plugin from 6.0.3 to 6.4.1 by @dependabot in #242
- Bump mongoist from 2.5.3 to 2.5.4 by @dependabot in #370
- Bump mocha-junit-reporter from 1.23.3 to 2.0.2 by @dependabot in #379
- Bump pretty-quick from 3.1.2 to 3.1.3 by @dependabot in #378
- Bump winston-mongodb from 4.0.9 to 5.0.7 by @dependabot in #381
- Bump body-parser from 1.18.2 to 1.20.0 by @dependabot in #382
- Bump dotenv from 9.0.2 to 16.0.0 by @dependabot in #384
- Bump express-rate-limit from 5.1.1 to 6.3.0 by @dependabot in #383
- Bump sinon from 9.0.2 to 13.0.2 by @dependabot in #371
- Bump mocha from 7.2.0 to 9.2.2 by @dependabot in #375
- Bump webpack-cli from 3.3.12 to 4.9.2 by @dependabot in #374
- Bump webpack from 4.46.0 to 5.72.0 by @dependabot in #385
- Bump express from 4.16.2 to 4.17.3 by @dependabot in #392
- Bump winston from 3.3.3 to 3.7.2 by @dependabot in #391
- Bump html-entities from 2.3.2 to 2.3.3 by @dependabot in #387
- Bump session-file-store from 1.2.0 to 1.5.0 by @dependabot in #390
- Bump chai from 4.2.0 to 4.3.6 by @dependabot in #398
- Bump cypress from 9.1.1 to 9.5.4 by @dependabot in #388
- Bump ejs from 2.5.7 to 3.1.6 by @dependabot in #399
- Bump ejs from 3.1.6 to 3.1.7 by @dependabot in #404
- Bump express-rate-limit from 6.3.0 to 6.4.0 by @dependabot in #405
- Bump pixelmatch from 5.2.1 to 5.3.0 by @dependabot in #406
- Bump cypress from 9.5.4 to 9.6.0 by @dependabot in #408
- Bump express from 4.17.3 to 4.18.0 by @dependabot in #409
- Bump @sentry/browser from 6.19.6 to 6.19.7 by @dependabot in #410
- Bump @sentry/webpack-plugin from 1.18.8 to 1.18.9 by @dependabot in #411
- Bump @sentry/tracing from 6.19.6 to 6.19.7 by @dependabot in #412
- Delete images prompt is not centered #278 by @alvarotorrestx in #281
- Overlay and notification box centering by @Coteh in #413
1.5.0 - 2022-04-17
- Refactor routes so they are split into separate files by @Coteh in #372
- /users route now has aliases /user and /u, user check moved into user subrouter
- /images route now has aliases /image and /i
- /check_username is now /check/username
- /change_password is now /settings/change_password
- Add middleware for session handler
- Break out other middlewares into their own files
- Add option to run Node.js debugger on integ/unit tests
- Update Sentry dependencies to latest by @Coteh in #367
- Bump minimist from 1.2.5 to 1.2.6 by @dependabot in #368
- Bump prettier from 2.4.1 to 2.6.2 by @dependabot in #364
- Bump validator from 9.4.1 to 13.7.0 by @dependabot in #329
- Bump express-session from 1.15.6 to 1.17.2 by @dependabot in #245
- Bump bcrypt from 5.0.0 to 5.0.1 by @dependabot in #234
- Bump nodemon from 1.19.4 to 2.0.15 by @dependabot in #373
- Bump multer from 1.3.0 to 1.4.4 by @dependabot in #344
1.4.0 - 2022-03-25
- Username auto fill in registration box if entered in login box by @toth2000 in #285
- Placeholder image that is displayed when direct link is used for image that does not exist by @Coteh in #290
- Evaluation Mode (#251) by @mayankbucha in #288
- Add Sentry to frontend by @Coteh in #296
- Image thumbnails to user comments section by @Coteh in #298
- Gitpod support by @Coteh in #305
- Prettier (for code formatting) by @Coteh in #315
- Cypress tests by @Coteh in #361
- Allow session secret to have a default value in dev and in test by @Coteh in #282
- Bump winston from 3.2.1 to 3.3.3 by @dependabot-preview in #192
- Turn on dryRun mode for Sentry webpack plugin when in development mode. by @Coteh in #307
- Close server if db is closed by @Coteh in #317
- Revise all routes so that now they all return a specific content type, and remove all response type parameters. by @Coteh in #336
- EXIF rotation from preview image and remove EXIF dependencies from frontend by @Coteh in #326
- Frontend webpack rebuild in dev stack config by @Coteh in #306
1.3.1 - 2021-07-24
- Missing CSRF token with image delete (#280)
1.3.0 - 2021-07-24
- Username check to signup form (#257) - @Coteh
- Signup to Upload Images mode (#253) (#267) - @mayankbucha
- Set username limit, with 24 as the default (#261) - @mayankbucha
- Ensure a session secret is provided in production environment. (#270) - @Coteh
- Change Upload icon (#255) - @Coteh
- Update footer for 2021 (#260) - @Coteh
- Replace html encoding function with html-entities library. (#271) - @Coteh
- User dropdown on desktop nav for long and short usernames by locking its position to the right (#263) - @mayankbucha
- fix: package.json & package-lock.json to reduce vulnerabilities (ejs) (#275) - @snyk-bot
1.2.2 - 2021-06-02
- Bump dotenv from 4.0.0 to 9.0.2 (#229)
- Garbled "Return to Homepage" text in error page (#254)
1.2.1 - 2021-05-16
- Google Analytics (Universal Analytics) to track website visits (#232)
- Debugger config (#189)
- Update MongoDB version in docker-compose stack to match MongoDB Atlas (#231)
- Update run command in heroku.yml (d228c71)
- Various other dependency upgrades (see full diff)
- Crash when exiftran not found (#189)
1.2.0 - 2020-08-29
- User Images section to user profile (#137)
- Missing csrf field in settings view (#177)
- Secure attribute to cookie (#183)
- Test for new password being same as old password (#176)
- Settings button on mobile menu (#178)
- heroku.yml for automated Heroku deployment (#185)
- Disable OWASP password strength check in dev (#175)
- Use development HTTPS server in dev (#184)
- Bump bcrypt version to v5.0.0 (#148)
- Update collecticons to v3.0.0 (#181)
- Various other dependency upgrades (see full diff)
- fromUrl from settings-view endpoint (#139)
1.1.0 - 2020-05-22
- Change Password feature (#88)
- Auth module
- CSRF middleware (#58)
- Rate limiting (#64)
- CircleCI and fix all current failing tests (#91)
- Replace logging system with winston (#72)
- Add more restrictions to getRedirectPath (#67)
- Update footer for 2020 (#71)
- Update webpack v3 to v4 (#46)
- Passwords over 72 characters truncated (#22)
- NoSQL injection with user login (#51)
- Missing variable declarations and semicolons (#50)
- Fix misc issues reported by lgtm (#66)
- Various npm vulnerabilities fixed (ie. bcrypt, bson, etc. had their security updates applied)
1.0.0 - 2018-10-18
Initial Release