Upcoming
release-2024-11
November 2024 Release
Caveat π₯
These are the release notes of the upcoming release (pull requests merged to the main branch).
- βΉοΈ this document is updated automatically by a bot (pr’s to categorize section)
- βΉοΈ this document will be roughly updated manually once a week (put PRs + description to the right section)
- π₯ We don’t guarantee stable APIs. They can still change until the official release
- π₯ Integration against the upcoming release (currently
masterbranch) is at your own risk
PRs to Categorize
- fix(deps): update dependency jose from 5.9.4 to v5.9.6 (master)
- fix(deps): update aws-sdk (master) (patch)
- Feat: assistant component trigger
- Feat: assistant component trigger
- li-task-v2 modes
- li-task-v2 modes
- Editor: teaser-improvementes-4
- Server: teaser-improvements-4
- Editor: teaser-improvementes-3
- Server: teaser-improvements-3
- Editor: teaser-improvementes-1
- New metadata plugin li-unique-id
- New metadata plugin li-unique-id
- Feat: webhooks expose more user actor info when config is set
- Feat: webhooks expose more user actor info when config is set
- Only allow insertion of components that are configured in the content type
- New command API commands
- Feat: planning system remove enabled config and license reporting
- Fix aws signing in with opensearch
- Toolbar Layout Tweaks
- fix(publish control): Button
- Fix version bumps for new metadata column on document_revisions
- Downgrade severity when authenticating group assigned does not exist
- Fix teaser level behavior
- Fix teaser level behavior
- Teaser Component optimizations and reference transfer
- Do not set url querystring in import filename
- Feat: assistant add custom error messages
- Feat: assistant add custom error messages
- Improve back button logic for issue navigation
- Teaser components conditions and optimizations
- videoSourcePolicy
- videoSourcePolicy
- Move metadata onto revisions table
- Do not mutate li-document-search intitialContent object
- Fix empty check of li-document-search params
- Teaser components sidepanel design
- Support excludeFromTextCount on container directives
- Support excludeFromTextCount on container directives
- fix(multiselect): Scrolling
- Fix image url patching when crop x or y coordinates are not present
- Allow empty
oembed.allowedCoreProvidersarray in the server configuration - App structure simplification
- fix(manual-status): breaking onto newline
- fix: focalpoint reactivity
- Support prefilling of directives with multiple metadata values of media library entries
- Support prefilling of directives with multiple metadata values of media library entries
- Normalize date fields while indexing
- Fix: close info panel on clicking outside but also when button is clicked again
- Make toolbar actions reactive
- Upload center fixes
- Expose maxSize attribute that defines the maximum bytes on file uploads
- Only show invalid file size error once during image upload
- Fix restoring documents from local storage after design version bumps
- Support loading users with any archived state
- fix(admin-dashboard): occupation filter
- Disable assistants when workspace is read-only
- fix: info panel goto button
- Delete unused event related to LIBREAKING035
- Only set default locale if none is present on document create
- Fix: always show push message button
To get an overview about new functionality, read the Release Notes.
To learn about the necessary actions to update Livingdocs to release-2024-11, read on.
Attention: If you skipped one or more releases, please also check the release-notes of the skipped ones.
Webinar
- Feature Webinar Recording: TODO
- Feature Webinar Documentation: TODO
- Dev Webinar Recording: TODO
- Dev Webinar Slides: TODO
- Release Newsletter Subscription
System Requirements
Suggested
| Name | Version |
|---|---|
| Node | 22 |
| NPM | 10 |
| Postgres | 16 |
| Elasticsearch OpenSearch | 8.x v2.3.0 |
| Redis | 7 |
| Livingdocs Server Docker Image | livingdocs/server-base:22 |
| Livingdocs Editor Docker Image | livingdocs/editor-base:22 |
| Browser Support | Edge >= 92, Firefox >= 90, Chrome >= 92, Safari >= 15.4, iOS Safari >= 15.4, Opera >= 78 |
Minimal
| Name | Version |
|---|---|
| Node | 18 |
| NPM | 9 |
| Postgres | 13 |
| Elasticsearch OpenSearch | 7.x 1 |
| Redis | 6.2 |
| Livingdocs Server Docker Image | livingdocs/server-base:18.8 |
| Livingdocs Editor Docker Image | livingdocs/editor-base:18.10 |
| Browser Support | Edge >= 92, Firefox >= 90, Chrome >= 92, Safari >= 15.4, iOS Safari >= 15.4, Opera >= 78 |
Breaking Changes π₯
server
Operations
Migrate the Postgres Database π₯
It’s a simple/fast migration with no expected data losses.
# run `livingdocs-server migrate up` to update to the newest database schema
livingdocs-server migrate up
server
Internal
Metadata table migration to document_revisions π₯
server
Command API
Command API insertComponent validation π₯
server
Search
Strict limit validation for li-document-search π₯
Deprecations
server/editor
Integrations
Desk-net rename to Kordiam β οΈ
server
Search
contentTypes in li-document-search β οΈ
server/editor
Menu Tool
Menu tool β οΈ
Features
server
Page management
Teaser Components π
server
Content Management
Print Copy π
editor
Task Management
Task Screens π
server
Command API
Command API enhancements π
server
Assistants
Assistants: Component Trigger π
editor
Assistants
Assistants: Error messages π
server
Metadata
li-unique-id metadata plugin π
editor
Content Management
Enhanced componentDirectivesPrefilling π
server
Integrations
Desk-net rename to Kordiam π
editor
Media Management
Video Source Policy π
server
Webhooks
Webhooks: User Actor Info π
server
Access Control Management
inboxWrite access right π
Vulnerability Patches
We are constantly patching module vulnerabilities for the Livingdocs Server and Livingdocs Editor as module fixes are available. Below is a list of all patched vulnerabilities included in the release.
Livingdocs Server
This release we have patched the following vulnerabilities in the Livingdocs Server:
- CVE-2024-45813 patched in
find-my-wayv8.2.2 - CVE-2024-47764 patched in
cookiev0.7.0
No known vulnerabilities. π
Livingdocs Editor
This release we have patched the following vulnerabilities in the Livingdocs Editor:
- CVE-2024-45296 patched in
path-to-regexpv6.3.0 - CVE-2024-45813 patched in
find-my-wayv8.2.2 - CVE-2024-47764 patched in
cookiev0.7.0
We are aware of the following vulnerabilities in the Livingdocs Editor:
- CVE-2023-44270 vulnerability in
postcss, it affects linters using PostCSS to parse external Cascading Style Sheets (CSS). It is not exploitable in the editor as we don’t load untrusted external CSS at build time. - CVE-2023-26116, CVE-2023-26118, CVE-2023-26117, CVE-2022-25869, CVE-2022-25844 are all AngularJS vulnerabilities that don’t have a patch available. We are working on removing all AngularJS from our code and vulnerabilities will go away when we complete the transition to Vue.js.
Patches
Here is a list of all patches after the release has been announced.
Livingdocs Server Patches
Livingdocs Editor Patches
Icon Legend
- Breaking changes: π₯
- Feature: π
- Bugfix: πͺ²
- Chore: π§
