serverSettings 9.7.4

What's Changed

Breaking Changes

Deprecated since Jahia 8.0, the portlet functionality has been removed in Jahia 8.1.9.0.

Following investigations, it was discovered that this deprecated feature could expose Jahia to security vulnerabilities, decision was made to remove it.

Note that portlets were already removed from Jahia 8.2.0.0+

• fix(security): Prevent path traversal attack by @baptistegrimaud in #162
• chore(security): portlet removal (backport) by @baptistegrimaud in #167

Other Changes

• fix(security): bump path-to-regexp (CVE-2024-45296) by @baptistegrimaud in #163

New Contributors

• @baptistegrimaud made their first contribution in #163

Full Changelog: 9_7_2...9_7_4

serverSettings-9.10.0

What's Changed

Improvements

• BACKLOG-23044 : remove edit mode shortcut in webprojects for distant publication servers by @dgriffon in #129
• BACKLOG-23323 New background jobs page in server settings by @r3dm1ke in #133
• BACKLOG-23323 Improvements to the background jobs page by @r3dm1ke in #136
• BACKLOG-23323 Permissions migration script and styling by @r3dm1ke in #137
• BACKLOG-23501: Use groovy to patch permissions by @AKarmanov in #141

Bug fixes

• BACKLOG-23323 Fixes after bg job api revert by @r3dm1ke in #135

Other Changes

• BACKLOG-22955: Add missing param for Slack notif by @rknj in #127
• TECH-1639 Upgrade actions by @Janin-Michel-Mathias in #128
• SEC-108: Temporarily setting a resolution for path-to-regexp to v1.9.0 by @Fgerthoffert in #132
• BACKLOG-23323: update provisioning by @sdusolle in #138

New Contributors

• @ksagnard made their first contribution in #131
• @r3dm1ke made their first contribution in #134
• @sdusolle made their first contribution in #138
• @jahia-ci made their first contribution in #139

Full Changelog: 9_9_0...9_10_0

serverSettings 9.7.2

Full Changelog: 9_7_1...9_7_2

serversettings-9.9.0

9_9_0

[skip ci] [maven-release-plugin]copy for tag 9_9_0

serversettings-9.7.1

9_7_1

[skip ci] [maven-release-plugin]copy for tag 9_7_1