Skip to content

Releases: mccutchen/go-httpbin

v2.17.1

08 Mar 20:10
ae8a6ed
Compare
Choose a tag to compare

What's Changed

Full Changelog: v2.17.0...v2.17.1

v2.17.0

08 Mar 19:25
37e9998
Compare
Choose a tag to compare

What's Changed

  • feat: allow configuration of underlying http.Server by @mccutchen in #199
  • ci: push to ghcr.io in addition to docker hub by @mccutchen in #200

Full Changelog: v2.16.1...v2.17.0

v2.16.1

04 Mar 11:22
3cdcb35
Compare
Choose a tag to compare

What's Changed

  • feat: allow specifying content-type for /base64 responses by @mccutchen in #198

Full Changelog: v2.16.0...v2.16.1

v2.16.0

27 Jan 03:20
ce8d747
Compare
Choose a tag to compare

What's Changed

  • feat: add /env endpoint to allow exposing operator-controlled info from the server by @mloskot in #189

New Contributors

Full Changelog: v2.15.0...v2.16.0

v2.15.0

17 Sep 04:51
34a21a3
Compare
Choose a tag to compare

Summary

  • ⚠️ Minimum Go version is now 1.22 ⚠️ due to use of new stdlib router enhancements
  • New /trailers endpoint added
  • Server-Timings headers/trailers added to endpoints with client-controlled response times

What's Changed

Full Changelog: v2.14.1...v2.15.0

v2.14.1

29 Aug 21:41
7053398
Compare
Choose a tag to compare

What's Changed

  • feat: support JSON structured log formatting by @pehlicd in #179

New Contributors

Full Changelog: v2.14.0...v2.14.1

v2.14.0

12 May 16:49
874932b
Compare
Choose a tag to compare

What's Changed

  • chore(ci): tweak codecov configuration by @mccutchen in #168
  • add appProcotol to the k8s service for port name 'http' by @bcollard in #169
  • fix: mitigate allowed redirect domain bypass by @mccutchen in #174

🔐 Security fix 🔐

This release fixes a bug that allowed clients to bypass the -allowed-redirect-domains/ALLOWED_REDIRECT_DOMAINS configuration used by the /redirect-to endpoint by passing an absolute URL without a scheme (e.g. /redirect-to?url=//evil.com).

See #173 and #174 for details about the issue and the fix, and see the Production Considerations section of the README for more info on why that configuration is important.

New Contributors

Full Changelog: v2.13.4...v2.14.0

v2.13.4

18 Feb 16:08
00a70e7
Compare
Choose a tag to compare

What's Changed

  • feat: support Fastly and Akamai headers for client IP addr by @haccht in #167

New Contributors

Full Changelog: v2.13.3...v2.13.4

v2.13.3

12 Feb 20:03
f6ce865
Compare
Choose a tag to compare

What's Changed

New Contributors

Full Changelog: v2.13.2...v2.13.3

v2.13.2

13 Jan 15:25
b292fe6
Compare
Choose a tag to compare

What's Changed

  • feat: /status endpoint supports weighted choice from multiple status codes by @mccutchen in #162

Full Changelog: v2.13.1...v2.13.2