chore: release v0.4.28

ZimengXiong · ZimengXiong · commit 4f1d4f5f51f4 · 2026-03-20T14:23:17.000-07:00
diff --git a/RELEASE.md b/RELEASE.md
@@ -1,6 +1,15 @@
-# ExcaliDash v0.4.27
+# ExcaliDash v0.4.28
 
-Release date: 2026-02-18
+Release date: 2026-03-20
+
+Fixes #92, #89, and #90
+
+- Removed the broken Save to... menu entry from the editor. ExcaliDash already provides its own export flow, and the
+  upstream destination dialog was not supported.
+- Fixed shared-drawing undo so each user only undoes their own local changes instead of rolling back collaborator
+  updates.
+- Fixed a drawing-specific editor state issue that could break hand-tool or middle-mouse panning in some shared
+  drawings.
 
 ## Upgrading
 
@@ -27,9 +36,9 @@ Edit `docker-compose.prod.yml` and pin the release tags:
 ```yaml
 services:
   backend:
-    image: zimengxiong/excalidash-backend:0.4.27
+    image: zimengxiong/excalidash-backend:v0.4.28
   frontend:
-    image: zimengxiong/excalidash-frontend:0.4.27
+    image: zimengxiong/excalidash-frontend:v0.4.28
 ```
 
 Example:
@@ -39,34 +48,3 @@ docker compose -f docker-compose.prod.yml up -d
 ```
 
 </details>
-
-### Authentication and user management
-
-- Added a full authentication platform with local registration/login and password reset.
-- Added bootstrap setup and onboarding controls for first admin creation.
-- Added admin and user-management flows, including profile and impersonation-aware UI behavior.
-- Added OIDC-enabled auth options and hardened token/session controls for hybrid deployments.
-
-### Sharing, collaboration, and permissions
-
-- Added sharing options between users and permission-aware sharing behavior.
-- Enforced immediate permission revocation during collaboration sessions.
-- Improved real-time ordering synchronization across collaborators.
-- Reduced shared-view leakage of sensitive owner metadata.
-
-### Security and reliability
-
-- Tightened CSRF handling for auth, session, and socket workflows.
-- Added additional security testing around sandboxing, login attempts, and request validation.
-- Added audit event scaffolding and improved startup/migration safety.
-
-### Import/export and data workflows
-
-- Added import/export support for backup and restore use-cases.
-- Improved exported drawing metadata handling and streaming behavior.
-- Improved upload/import compatibility and preview/update behavior during edits.
-
-### Collaboration and UI experience
-
-- Added profile/admin pages, dashboard and settings improvements.
-- Reduced fragile browser-context behavior in update checks, editor state handling, and collaboration flows.
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-0.4.27
+0.4.28
diff --git a/backend/package.json b/backend/package.json
@@ -1,6 +1,6 @@
 {
   "name": "backend",
-  "version": "0.4.27",
+  "version": "0.4.28",
   "description": "",
   "main": "index.js",
   "scripts": {
diff --git a/frontend/package.json b/frontend/package.json
@@ -1,7 +1,7 @@
 {
   "name": "frontend",
   "private": true,
-  "version": "0.4.27",
+  "version": "0.4.28",
   "type": "module",
   "scripts": {
     "dev": "vite --port 6767",

Original file line number	Diff line number	Diff line change
`@@ -1,6 +1,6 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "backend",`
`3`		`- "version": "0.4.27",`
	`3`	`+ "version": "0.4.28",`
`4`	`4`	`"description": "",`
`5`	`5`	`"main": "index.js",`
`6`	`6`	`"scripts": {`
Original file line number	Diff line number	Diff line change
`@@ -1,7 +1,7 @@`
`1`	`1`	`{`
`2`	`2`	`"name": "frontend",`
`3`	`3`	`"private": true,`
`4`		`- "version": "0.4.27",`
	`4`	`+ "version": "0.4.28",`
`5`	`5`	`"type": "module",`
`6`	`6`	`"scripts": {`
`7`	`7`	`"dev": "vite --port 6767",`