v4.4.0

Features

This release updates Foal's sub-dependencies, including the express library, which presents a moderate vulnerability in versions prior to 4.19.2.

Dependencies

• @foal/aws-s3
  • @aws-sdk/client-s3@3.556
  • @aws-sdk/client-storage@3.556
• @foal/core
  • express@4.19
• @foal/swagger
  • swagger-ui-dist@5.17

Contributions

Thanks to Lucho for reporting this vulnerability in the first place!

v4.3.0

Features / improvements / fixes

• [Internal] Use fs native API with promises (PR: #1243)
• [Bug] Fix HTTP logger error when the client request is aborted (issue: #1247) (PRs: #1249, #1252)
• [CLI] Display all errors when the validation of script arguments fails (PR: #1251)

Dependencies

#1250

• @foal/aws-s3
  • @aws-sdk/client-s3@3.525
  • @aws-sdk/lib-storage@3.525
• @foal/cli
  • commander@12.0
  • node-fetch@2.7
• @foal/core
  • reflect-metadata@0.2
• @foal/jwks-rsa
  • jwks-rsa@3.1
• @foal/social
  • node-fetch@2.7
• @foal/socket.io
  • node-fetch@2.7
• @foal/swagger
  • swagger-ui-dist@5.11

v4.2.0

Features

• [Bug] Fix "foal connect angular" to support latest versions of Angular (issue: #1197) (PR: #1236)
• Allow to disable AJV strict mode (issue: #1206) (PR: #1239)
• Possibility to pass cacheControl option to static middleware (issue: #1221) (PR: #1241 )
• Logs added to socket.io controllers (PR: #1240)

v4.1.0

Features

• Add request ID (PR: #1234)
• Add Foal logger (PR: #1234)
• Support XML requests (issue: #1203) (PR: #1231)

Dependencies

• @foal/cli
  • commander@11.1
• @foal/swagger
  • swagger-ui-dist@5.9

Contributors

@paoloevan

v4.0.0

Overview and goals

#1223

Migration guide

• Run npx foal upgrade.
• Version 16 of Node is not supported anymore. Upgrade to version 18 or version 20.
• Support of MariaDB has been dropped.
• If you use any of these dependencies, upgrade typeorm to v0.3.17, graphql to v16, type-graphql to v2, class-validator to v0.14, mongodb to v5 and @socket.io/redis-adapter to v8.
• If you use both TypeORM and MongoDBStore, there is no need anymore to maintain two versions of mongodb. You can use version 5 of mongodb dependency.
• If you use @foal/socket.io with redis, install socket.io-adapter.
• Support for better-sqlite driver has been dropped. Use the sqlite3 driver instead. In DB configuration, use type: 'sqlite' instead of type: 'better-sqlite3'.
• In your project dependencies, upgrade @types/node to v18.11.9.
• If you use TypeORM with MongoDB, for the entities definitions, rename import { ObjectID } from 'typeorm'; to import { ObjectId } from 'typeorm';

Dependencies

• @foal/aws-s3
  • @aws-sdk/client-s3@3.405.0
  • @aws-sdk/lib-storage@3.405.0
• @foal/cli
  • commander@11.0
• @foal/graphiql
  • graphiql@3.0
• @foal/graphql
  • graphql@10.3
  • graphql@^16.8 (peer dependency)
• @foal/jwks-rsa
  • jwks-rsa@3.0
• @foal/mongodb
  • mongodb@5.8
• @foal/redis
  • redis@4.6
• @foal/socket.io
  • socket.io@4.7
• @foal/swagger
  • swagger-ui-dist@5.4
• @foal/typeorm
  • typeorm@0.3.17 (peer dependency)
  • mongodb@5.8 (dev dependency / driver)
  • pg@8.11 (dev dependency / driver)
• @foal/typestack
  • class-validator@0.14 (peer dependency)

v3.3.0

Features

The jsonwebtoken dependency has been upgraded to v9 to address security issues.

Note that RSA key size now must be 2048 bits or greater. Make sure to check the size of your RSA key before upgrading to this version.

Dependencies

• @foal/cli
  • ajv@8.12
• @foal/core
  • ajv@8.12
• @foal/graphql
  • ajv@8.12
• @foal/jwt
  • jsonwebtoken@9.0
• @foal/social
  • jsonwebtoken@9.0

Dev dependencies

• mocha
• rimraf
• typescript
• supertest
• concurrently
• ESLint dependencies
• nyc

v3.2.0

Features

• Re-add @foal/password (issue: #1195) (PR: 1196)
• Add ctx.controllerName and ctx.controllerMethodeName (issue: #1183) (PR: #1199)

Contributors

@lcnvdl

v3.1.0

Features

• Update the max-age attribute of the Strict-Transport-Security header to "industry standard" (issue: #1146) (PR: #1155)
• [CLI] Disable ESLint rule @typescript-eslint/no-non-null-assertion in generated projects (PR: #1178)
• [Bug] Support whitespaces around variable names in .env files (issue: #1182) (PR: #1185)
• Support custom cookie domain in social auth (issue: #1099) (PR: #1187)
• [CLI] Add foal upgrade command (issue: #1158) (PR: #1186, #1193)
• Fix: support custom OpenAPI "example" keyword in AJV validation (issue: #1192) (PR: #1194)

Dependencies

#1162

Dependencies

• @foal/aws-s3
  • @aws-sdk/client-s3@3.198.0
  • @aws-sdk/lib-storage@3.198.0
• @foal/cli
  • commander@9.4.1
• @foal/core
  • express@4.18.2
• @foal/jwks-rsa
  • jwks-rsa@2.1.5
• @foal/mongodb
  • mongodb@4.11.0
• @foal/socket.io
  • socket.io@4.5.3
• @foal/swagger
  • swagger-ui-dist@4.15.2

Contributors

• @edw1882

v3.0.2

Fixes

• Make createapp install v3 of @foal/cli (PR: #1172)

v3.0.1

Fixes

• [CLI] Support AJV formats in shell scripts (issue: #1167) (PR: #1168)