mirror of
https://github.com/freedomofpress/dangerzone.git
synced 2025-04-28 18:02:38 +02:00
9410b68c1d
Update the common `print_progress()` method in the base `IsolationProvider` class, with two extra features: 1. Always sanitize the provided text argument. 2. Mark the sanitized text argument as untrusted. This is default behavior from now on, since this function is commonly used to parse progress reports from the conversion sandbox.
169 lines
8.7 KiB
Markdown
169 lines
8.7 KiB
Markdown
# Changelog
|
|
|
|
All notable changes to this project will be documented in this file.
|
|
|
|
The format is based on [Keep a Changelog](https://keepachangelog.com/en/1.0.0/)
|
|
since 0.4.1, and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0.html).
|
|
|
|
## [Unreleased]
|
|
|
|
### Added
|
|
|
|
- Platform support: Alpha integration with Qubes OS ([issue #411](https://github.com/freedomofpress/dangerzone/issues/411))
|
|
- Platform support: Debian Trixie (13)
|
|
- Platform support: Ubuntu 23.04 (Lunar Lobster)
|
|
- Inform about new updates on MacOS/Windows platforms, by periodically checking
|
|
our GitHub releases page ([issue #189](https://github.com/freedomofpress/dangerzone/issues/189))
|
|
- Development: Use Qt6 in our CI runners and dev environments ([issue #482](https://github.com/freedomofpress/dangerzone/issues/482))
|
|
|
|
### Removed
|
|
|
|
- Platform support: Drop Fedora 36, since it's end-of-life ([issue #420](https://github.com/freedomofpress/dangerzone/issues/420))
|
|
- Platform support: Drop Ubuntu 22.10 (Kinetic Kudu), since it's end-of-life ([issue #485](https://github.com/freedomofpress/dangerzone/issues/485))
|
|
|
|
### Fixed
|
|
|
|
### Security
|
|
|
|
- Continuously scan our Python dependencies and container image for
|
|
vulnerabilities ([issue #222](https://github.com/freedomofpress/dangerzone/issues/222))
|
|
- Sanitize potentially unsafe characters from strings that are shown in a user's
|
|
terminal.
|
|
|
|
## Dangerzone 0.4.1
|
|
|
|
### Added
|
|
|
|
- Feature: Add version info in the CLI and GUI ([issue #219](https://github.com/freedomofpress/dangerzone/issues/219))
|
|
- Development: Improve CI stability and coverage
|
|
([issue #292](https://github.com/freedomofpress/dangerzone/issues/292),
|
|
[issue #217](https://github.com/freedomofpress/dangerzone/issues/217),
|
|
[issue #229](https://github.com/freedomofpress/dangerzone/issues/229))
|
|
- Development: Provide dev scripts for testing Dangerzone in a container and
|
|
running our QA pipeline
|
|
([issue #286](https://github.com/freedomofpress/dangerzone/issues/286),
|
|
[issue #287](https://github.com/freedomofpress/dangerzone/issues/287))
|
|
- Development: Support Dangerzone development on Fedora 37
|
|
([issue #294](https://github.com/freedomofpress/dangerzone/issues/294))
|
|
- Development: Allow running Mypy on MacOS M1 machines ([issue #177](https://github.com/freedomofpress/dangerzone/issues/177))
|
|
- Development: Add dummy isolation provider for testing non-conversion-related
|
|
issues in virtualized Windows and MacOS, where Docker can't run, due to the
|
|
lack of nested virtualization ([issue #229](https://github.com/freedomofpress/dangerzone/issues/229))
|
|
- Add support for more MIME types that were previously disregarded ([issue #369](https://github.com/freedomofpress/dangerzone/issues/369))
|
|
- Platform support: Add support for Fedora 38
|
|
|
|
### Changed
|
|
|
|
- Full release under Freedom of the Press Foundation: signing keys have changed from the original developer Micah Lee / First Look Media to FPF's signing keys. Linux packages moved from Packagecloud to FPF's servers
|
|
- [Installation instructions updated](https://github.com/freedomofpress/dangerzone/blob/v0.4.1/INSTALL.md) to reflect change in key owership to FPF
|
|
- Platform support: MacOS (Apple Silicon) native application with significant
|
|
performance boost ([issue #50](https://github.com/freedomofpress/dangerzone/issues/50))
|
|
- Feature: Introduce PySide6 / Qt6 support on Windows, MacOS, and Linux (dev-only) ([issue #219](https://github.com/freedomofpress/dangerzone/issues/219))
|
|
- Feature: Adjust conversion timeouts based on the document's pages/size, and
|
|
allow users to disable them with `--disable-timeouts` (available when you run
|
|
the Dangerzone from the terminal) ([issue #327](https://github.com/freedomofpress/dangerzone/issues/327))
|
|
- Development: Update Linux instructions for development on Qubes
|
|
|
|
### Removed
|
|
|
|
- Platform support: Drop Fedora 35, since it's end-of-life ([issue #308](https://github.com/freedomofpress/dangerzone/issues/308))
|
|
- Bug fix: Remove unused PDFtk and sudo libraries from the container image, to
|
|
lower its attack surface and reduce its size ([issue #232](https://github.com/freedomofpress/dangerzone/issues/232))
|
|
|
|
### Fixed
|
|
|
|
- Feature: Convert documents with non-standard permissions or SELinux labels ([issue #335](https://github.com/freedomofpress/dangerzone/issues/335))
|
|
- Bug fix: Report exceptions during conversions ([issue #309](https://github.com/freedomofpress/dangerzone/issues/309))
|
|
- Bug fix: (Windows) Fix Dangerzone description on "Open With" ([issue #283](https://github.com/freedomofpress/dangerzone/issues/283))
|
|
- Bug fix: Remove document conversion artifacts when conversion fails and store
|
|
them on volatile memory instead of on a disk directory
|
|
([issue #317](https://github.com/freedomofpress/dangerzone/issues/317))
|
|
|
|
### Security
|
|
|
|
- Bug fix: Do not print debug logs in end-user executables ([issue #316](https://github.com/freedomofpress/dangerzone/issues/316))
|
|
|
|
## Dangerzone 0.4.0
|
|
|
|
- Platform support: Re-add Fedora 37 support
|
|
- Platform support: Add Debian Bookworm (12) support ([issue #172](https://github.com/freedomofpress/dangerzone/issues/172))
|
|
- Platform support: Reinstate Ubuntu Focal support ([issue #206](https://github.com/freedomofpress/dangerzone/issues/206))
|
|
- Platform support: Add Ubuntu 22.10 "Kinetic Kudu" support ([issue #265](https://github.com/freedomofpress/dangerzone/issues/265))
|
|
- Feature: Support bulk conversion to safe PDFs ([issue #77](https://github.com/freedomofpress/dangerzone/issues/77))
|
|
- Feature: Option to archive unsafe directories ([issue #255](https://github.com/freedomofpress/dangerzone/pull/255))
|
|
- Feature: Support python 3.10
|
|
- Feature: When quitting while still converting, confirm if user is sure
|
|
- Bug fix: Fix unit tests on Windows
|
|
- Bug fix: Do not hardcode "docker" in help messages, now that Podman is also used ([issue #122](https://github.com/freedomofpress/dangerzone/issues/122))
|
|
- Bug fix: Failed execution no longer produces an empty "safe" documents ([issue #214](https://github.com/freedomofpress/dangerzone/issues/214))
|
|
- Bug fix: Malfunctioning "New window" logic was replaced with multi-doc support ([issue #204](https://github.com/freedomofpress/dangerzone/issues/204))
|
|
- Bug fix: re-adds support for 'open with Dangerzone' from finder on macOS ([issue #268](https://github.com/freedomofpress/dangerzone/issues/268))
|
|
- Bug fix: (macOS) quit Dangerzone when main window is closed ([issue #271](https://github.com/freedomofpress/dangerzone/issues/271))
|
|
|
|
|
|
## Dangerzone 0.3.2
|
|
- Bug fix: some non-ascii characters like “ would prevent Dangerzone from working ([issue #144](https://github.com/freedomofpress/dangerzone/issues/144))
|
|
- Bug fix: error where Dangerzone would show "permission denied: '/tmp/input_file'" ([issue #157](https://github.com/freedomofpress/dangerzone/issues/157))
|
|
- Bug fix: remove containers after use, enabling Dangerzone to run after 1000+ converted docs ([issue #197](https://github.com/freedomofpress/dangerzone/pull/197))
|
|
- Security: limit container capabilities, run in container as non-root and limit privilege escalation ([issue #169](https://github.com/freedomofpress/dangerzone/issues/169))
|
|
|
|
|
|
## Dangerzone 0.3.1
|
|
|
|
- Bug fix: Allow converting documents on different mounted filesystems than the container volume
|
|
- Bug fix: In GUI mode, don't always OCR document
|
|
- Bug fix: In macOS, fix "open with" Dangerzone so documents are automatically selected
|
|
- Windows: Change packaging to avoid anti-virus false positives
|
|
|
|
## Dangerzone 0.3
|
|
|
|
- Removes the need for internet access by shipping the Dangerzone container image directly with the software
|
|
- Friendly user experience with a progress bar
|
|
- Support for Macs with M1 chips
|
|
|
|
## Dangerzone 0.2.1
|
|
|
|
- Switch from Docker to Podman for Linux
|
|
- Improve CLI colors
|
|
|
|
## Dangerzone 0.2
|
|
|
|
- Command line support and improved terminal output
|
|
- Additional container hardening
|
|
- Fix macOS crash on quit
|
|
- Fix --custom-container CLI argument
|
|
|
|
## Dangerzone 0.1.5
|
|
|
|
- Add support for macOS Big Sur
|
|
- Drop support for Ubuntu 19.10
|
|
|
|
## Dangerzone 0.1.4
|
|
|
|
- Suppress confusing stderr output, and fix bug when converting specific documents
|
|
- Switch from PyQt5 to PySide2
|
|
- Improve Windows and Mac packaging
|
|
- Add support for Fedora 32
|
|
|
|
## Dangerzone 0.1.3
|
|
|
|
- Add support for Ubuntu 20.04 LTS (#79)
|
|
- Prevent crash in macOS if specific PDF viewers are installed (#75)
|
|
|
|
## Dangerzone 0.1.2 (Linux only)
|
|
|
|
- Add support for Ubuntu 18.04 LTS
|
|
|
|
## Dangerzone 0.1.1
|
|
|
|
- Fix macOS bug that caused a crash on versions earlier than Catalina
|
|
- Fix macOS app bundle ODF extensions (`.ods .odt`)
|
|
- Allow Linux users to type their password instead of adding their user to the `docker` group
|
|
- Use Docker instead of Podman in Fedora
|
|
- Allow the use of either OS-packaged Docker or Docker CE in Linux
|
|
- Allow opening `.docm` files
|
|
- Allow using a custom container for testing
|
|
|
|
## Dangerzone 0.1
|
|
|
|
- First release
|