What's Changed

Fixes path traversal file: syntax

https://nvd.nist.gov/vuln/detail/CVE-2024-56509

• Fixing test for CVE-2024-56509 by @dgtlmoon in #2864

Full Changelog: 0.48.04...0.48.05

What's Changed

• Re #2826 - Windows was sometimes missing timezone data by @dgtlmoon in #2845

Full Changelog: 0.48.03...0.48.04

Made a small mess releasing the last version to pypi :) tho this is the same 0.48.02

What's Changed

• Re #2769 - Support for commented out notification URLs by @dgtlmoon in #2825
• Re #2785 Make 'tag' sticky - redirect to current tag on edit or add watch by @dgtlmoon in #2824
• Notifcations - Adding "HTML Color" notification format option by @dgtlmoon in #2837
• Re #2554 - Colors should be same as UI, {{diff_full}} token should also get HTML colours by @dgtlmoon in #2842
• Default notification format now "HTML color" by @dgtlmoon in #2843

Full Changelog: 0.48.01...0.48.02

Full Changelog: 0.48.00...0.48.01

What's Changed

• More debug around queue size by @dgtlmoon in #2776
• Disable version check option - #2773 by @dgtlmoon in #2775
• UI - Show local timezone info in settings (for future functionality) by @dgtlmoon in #2793
• VisualSelector - Use 'deflate' for storing elements.json, 90% file size reduction by @dgtlmoon in #2794
• Update .gitignore and .dockerignore by @kruton in #2797
• Python 3.13 compatibility by @kruton in #2791
• Always use UTC by @dgtlmoon in #2799
• Add Turkish phrases for out-of-stock detection by @TaylanTatli in #2809
• Time scheduler / duration by @dgtlmoon in #2802
• Fix HIDE_REFERER env option by @Tschrock in #2787

New Contributors

• @TaylanTatli made their first contribution in #2809
• @Tschrock made their first contribution in #2787

Full Changelog: 0.47.06...0.48.00

CVE-2024-51998 - file:/ path traversal access should not be allowed to access a file without ALLOW_FILE_URI (single forward slash)

What's Changed

• Pinning werkzeug by @dgtlmoon in #2757
• Price tracker - fix for sites that supply an empty additional price by @dgtlmoon in #2758
• Update docker-compose.yml by @arthurnn in #2767

New Contributors

• @arthurnn made their first contribution in #2767

Full Changelog: 0.47.05...0.47.06

What's Changed

• Filters - Process all CSS and XPath 'subtract' selectors in a single pass to prevent index shifting and reference loss during DOM manipulation. by @dgtlmoon in #2754
• Slightly better backup handling UI by @dgtlmoon in #2755

CVE-2024-51483 security update

Full Changelog: 0.47.04...0.47.05

What's Changed

• "Block change detection when text exists" should not trigger a change when the original text returns by @dgtlmoon in #2709
• Fix mobile styling inconsistencies and resolve diff page overflow issue by @ojigs in #2716
• #2727 fix notification test on empty list by @dgtlmoon in #2731
• "Send test notification" in "Restock" mode was not working correclty when restock tokens "{{restock.price}}" were in the notification body and headers by @dgtlmoon in #2737
• Add additional out-of-stock detection for PT by @goncalossilva in #2738
• #2502 - Add jinja2 template handling to request body by @cdubz in #2740
• Re #2742 Notifications - post://, get:// etc , Fixing URL encoding of headers so that '+' in URL is correctly parsed as ' ' (and other url-encodings) by @dgtlmoon in #2745
• Re #2747 - Do not recheck 'paused' watches on edit/save by @dgtlmoon in #2750

New Contributors

• @goncalossilva made their first contribution in #2738
• @cdubz made their first contribution in #2740

Full Changelog: 0.47.03...0.47.04

What's Changed

• Remove same checksum skip by @dgtlmoon in #2700
• UI fix for tabs behind menu/header

Full Changelog: 0.47.01...0.47.03