Caveat π₯
These are the release notes of the upcoming release (pull requests merged to the main branch).
- βΉοΈ this document is updated automatically by a bot (pr’s to categorize section)
- βΉοΈ this document will be roughly updated manually once a week (put PRs + description to the right section)
- π₯ We don’t guarantee stable APIs. They can still change until the official release
- π₯ Integration against the upcoming release (currently
master
branch) is at your own risk
PRs to Categorize
- fix(deps): update dependency jose from 5.9.4 to v5.9.6 (master)
- fix(deps): update aws-sdk (master) (patch)
- Feat: assistant component trigger
- Feat: assistant component trigger
- li-task-v2 modes
- li-task-v2 modes
- Editor: teaser-improvementes-4
- Server: teaser-improvements-4
- Editor: teaser-improvementes-3
- Server: teaser-improvements-3
- Editor: teaser-improvementes-1
- New metadata plugin li-unique-id
- New metadata plugin li-unique-id
- Feat: webhooks expose more user actor info when config is set
- Feat: webhooks expose more user actor info when config is set
- Only allow insertion of components that are configured in the content type
- New command API commands
- Feat: planning system remove enabled config and license reporting
- Fix aws signing in with opensearch
- Toolbar Layout Tweaks
- fix(publish control): Button
- Fix version bumps for new metadata column on document_revisions
- Downgrade severity when authenticating group assigned does not exist
- Fix teaser level behavior
- Fix teaser level behavior
- Teaser Component optimizations and reference transfer
- Do not set url querystring in import filename
- Feat: assistant add custom error messages
- Feat: assistant add custom error messages
- Improve back button logic for issue navigation
- Teaser components conditions and optimizations
- videoSourcePolicy
- videoSourcePolicy
- Move metadata onto revisions table
- Do not mutate li-document-search intitialContent object
- Fix empty check of li-document-search params
- Teaser components sidepanel design
- Support excludeFromTextCount on container directives
- Support excludeFromTextCount on container directives
- fix(multiselect): Scrolling
- Fix image url patching when crop x or y coordinates are not present
- Allow empty
oembed.allowedCoreProviders
array in the server configuration - App structure simplification
- fix(manual-status): breaking onto newline
- fix: focalpoint reactivity
- Support prefilling of directives with multiple metadata values of media library entries
- Support prefilling of directives with multiple metadata values of media library entries
- Normalize date fields while indexing
- Fix: close info panel on clicking outside but also when button is clicked again
- Make toolbar actions reactive
- Upload center fixes
- Expose maxSize attribute that defines the maximum bytes on file uploads
- Only show invalid file size error once during image upload
- Fix restoring documents from local storage after design version bumps
- Support loading users with any archived state
- fix(admin-dashboard): occupation filter
- Disable assistants when workspace is read-only
- fix: info panel goto button
- Delete unused event related to LIBREAKING035
- Only set default locale if none is present on document create
- Fix: always show push message button
To get an overview about new functionality, read the Release Notes.
To learn about the necessary actions to update Livingdocs to release-2024-11
, read on.
Attention: If you skipped one or more releases, please also check the release-notes of the skipped ones.
Webinar
- Feature Webinar Recording: TODO
- Feature Webinar Documentation: TODO
- Dev Webinar Recording: TODO
- Dev Webinar Slides: TODO
- Release Newsletter Subscription
System Requirements
Suggested
Name | Version |
---|---|
Node | 22 |
NPM | 10 |
Postgres | 16 |
Elasticsearch OpenSearch | 8.x v2.3.0 |
Redis | 7 |
Livingdocs Server Docker Image | livingdocs/server-base:22 |
Livingdocs Editor Docker Image | livingdocs/editor-base:22 |
Browser Support | Edge >= 92, Firefox >= 90, Chrome >= 92, Safari >= 15.4, iOS Safari >= 15.4, Opera >= 78 |
Minimal
Name | Version |
---|---|
Node | 18 |
NPM | 9 |
Postgres | 13 |
Elasticsearch OpenSearch | 7.x 1 |
Redis | 6.2 |
Livingdocs Server Docker Image | livingdocs/server-base:18.8 |
Livingdocs Editor Docker Image | livingdocs/editor-base:18.10 |
Browser Support | Edge >= 92, Firefox >= 90, Chrome >= 92, Safari >= 15.4, iOS Safari >= 15.4, Opera >= 78 |
Breaking Changes π₯
Migrate the Postgres Database π₯
It’s a simple/fast migration with no expected data losses.
# run `livingdocs-server migrate up` to update to the newest database schema
livingdocs-server migrate up
Metadata table migration to document_revisions π₯
Command API insertComponent
validation π₯
Strict limit
validation for li-document-search
π₯
Deprecations
Desk-net rename to Kordiam β οΈ
contentTypes
in li-document-search
β οΈ
Menu tool β οΈ
Features
Teaser Components π
Print Copy π
Task Screens π
Command API enhancements π
Assistants: Component Trigger π
Assistants: Error messages π
li-unique-id
metadata plugin π
Enhanced componentDirectivesPrefilling
π
Desk-net rename to Kordiam π
Video Source Policy π
Webhooks: User Actor Info π
inboxWrite
access right π
Vulnerability Patches
We are constantly patching module vulnerabilities for the Livingdocs Server and Livingdocs Editor as module fixes are available. Below is a list of all patched vulnerabilities included in the release.
Livingdocs Server
This release we have patched the following vulnerabilities in the Livingdocs Server:
- CVE-2024-45813 patched in
find-my-way
v8.2.2 - CVE-2024-47764 patched in
cookie
v0.7.0
No known vulnerabilities. π
Livingdocs Editor
This release we have patched the following vulnerabilities in the Livingdocs Editor:
- CVE-2024-45296 patched in
path-to-regexp
v6.3.0 - CVE-2024-45813 patched in
find-my-way
v8.2.2 - CVE-2024-47764 patched in
cookie
v0.7.0
We are aware of the following vulnerabilities in the Livingdocs Editor:
- CVE-2023-44270 vulnerability in
postcss
, it affects linters using PostCSS to parse external Cascading Style Sheets (CSS). It is not exploitable in the editor as we don’t load untrusted external CSS at build time. - CVE-2023-26116, CVE-2023-26118, CVE-2023-26117, CVE-2022-25869, CVE-2022-25844 are all AngularJS vulnerabilities that don’t have a patch available. We are working on removing all AngularJS from our code and vulnerabilities will go away when we complete the transition to Vue.js.
Patches
Here is a list of all patches after the release has been announced.
Livingdocs Server Patches
Livingdocs Editor Patches
Icon Legend
- Breaking changes: π₯
- Feature: π
- Bugfix: πͺ²
- Chore: π§