Skip to content

v0.13.0

Latest
Latest

Choose a tag to compare

View all tags
@github-actions github-actions released this 04 Nov 06:11
· 8 commits to main since this release
v0.13.0
a080f04
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

0.13.0 (2025-11-04)

Bug Fixes

  • add nil-safe metadata handling and improve code quality (736e6bc)
  • add path traversal protection to file loading operations (a4528a2)
  • add URL scheme validation to prevent XSS via dangerous protocols (a4c2c00)
  • Added omitempty tags to optional Spec fields so empty server, tag, and tag group collections no longer serialize as JSON nulls. (ac7cb0f)
  • prevent panic on malformed YAML type assertions in loader (9822c34)
  • prevent XSS vulnerabilities in HTML rendering with template-based escaping (dc732d0)
  • rename Server to ServerOverride to prevent collision with model.Server (a9a8982)
  • restructure authentication options to prevent conflicts between multiple auth methods (9ecef46)
  • strengthen CSS sanitization against XSS bypass techniques (3020639)

Features

  • add comprehensive authentication support with OAuth2, API Keys, and HTTP auth (f60570d)
  • add comprehensive examples for scalar-go library (2972c18)
  • add custom JavaScript injection support (4fa5e56)
  • add missing Scalar configuration option constants (e0199c9)
  • add option functions for new Scalar configuration features (00c7adc)
  • add RenderMode type with data-attribute and javascript-api modes (ed24e2f)
  • add structured configuration types for complex Scalar options (678d101)
  • add toolbar visibility control and complete JavaScript API documentation (18d90b9)
  • create separate HTML templates for data-attribute and JavaScript API modes (7c82fc9)
  • implement BuildInitScript for JavaScript API rendering mode (7f7c1c2)
  • update renderHTML to support both render modes and custom JS injection (4511df7)
Assets 2
Loading