v1.5.5

Highlights

• We finally added the option for setting explicit header order! Use CURLOPT_HTTPHEADER_ORDER or --http-header-order.
• Security hardening: Starting this one, releases are immutable now.

What's Changed

• Change example URL in README by @jaideraf in #240
• Fix targets documentation by @bashonly in #243
• Add option for setting explicit header order by @lexiforest in #246

New Contributors

• @jaideraf made their first contribution in #240
• @bashonly made their first contribution in #243

Full Changelog: v1.5.2...v1.5.5

v1.5.4

Sorry, ignore this too.

v1.5.3

Ignore this release, assets were not uploaded properly.

v1.5.2

What's Changed

• Add CURLOPT_SSL_SIG_HASH_ALGS_H3 for per-protocol signature algorithms by @DigitalCyberSoft in #230
• Fix server side request forgery with safe redirect option by @lexiforest in #235
• Do not split cookies for http 1.1 by @lexiforest in #236

New Contributors

• @DigitalCyberSoft made their first contribution in #230

Full Changelog: v1.5.1...v1.5.2

v1.5.1

Fix http version and impersonation option order conflict (#219)

v1.5.0

Full http3 support is finally here: udp proxy and http3 fingerprints are now official!

We added chrome145 and firefox147 with builtin http3 fingerprints support. This release also brings a few other significant enhancements that have been exploited in the wild.

What's Changed

• Add option for setting form boundary by @lexiforest in #213
• Turn ECH to true correctly, and align with browser behavior by @lexiforest in #214
• Do not override header when using CURL_IMPERSONATE by @lexiforest in #215
• Add support for http3 fingerprints by @lexiforest in #217
• Allow user to change the order of Host header in http 1.1

Full Changelog: v1.4.4...v1.5.0

v1.4.4

Enable true ECH

v1.4.3

What's Changed

• Add loongarch64 build by @wxpppp in #210

New Contributors

• @wxpppp made their first contribution in #210

Full Changelog: v1.4.2...v1.4.3

v1.4.2

Only include libidn2 on linux

v1.4.1

Disable LDAP