Releases: jhuckaby/Cronicle
Version 0.9.1
- Typo, missed reference to old legacy dependency.
- Added v0.9 upgrade note to top of README.
Version 0.9.0
Cronicle v0.9 has some major dependency updates to patch vulnerabilities:
- Bumped socket.io to v4.4
- Removed mkdirp
- Bumped uglifyjs to v3.14.3
- Bumped shell-quote to v1.7.3
- Bumped pixl-server-storage to v3.0.11
IMPORTANT NOTE
For those upgrading multi-server clusters from v0.8 to v0.9, you must upgrade all of your servers for them to be able to communicate. In v0.9 we have upgraded to socket.io v4.4, which is incompatible with socket.io v1.7.3 that previous Cronicle versions used. We had to upgrade this dependency due to high severity vulnerabilities. Since this is a breaking API change for them, you cannot run "mixed" server clusters with some servers on Cronicle v0.8 and others on v0.9. They all have to be on v0.8 or they all have to be on v0.9.
So, it is recommended that you first disable the main scheduler on your master server (checkbox in top-right corner of the UI), wait for all jobs to complete, then shut down all servers and upgrade them all together. Then start them all up again, and finally re-enable the scheduler.
Version 0.8.61
Version 0.8.61
- Implemented
max_jobs
feature (global maximum).
Version 0.8.60
- Bumped pixl-mail to v1.0.11 for vuln in nodemailer.
- See: https://www.npmjs.com/advisories/1708
Version 0.8.59
- Bumped pixl-request to v1.0.36 for decomp bug fix.
- Fixes #405
Version 0.8.58
- Bumped jquery to v3.5.0 for vuln
- Bumped chart.js to v2.9.4 for vuln
- Bumped netmask to v2.0.1 for vuln
- Patched a few security holes where users could inject HTML into the browser. Fixes #404
- Thanks to @mikeTWC1984
Version 0.8.57
- Make sure titles do not contain HTML metacharacters. Fixes #389.
- Race condition with "Run Again" and get_log_watch_auth. Added retries.
Version 0.8.56
- Now setting
no_rewind
for timeout aborts. Fixes #369.
Version 0.8.55
- Now supporting web_hook_custom_opts for custom HTTP options in all outbound web hook requests.
- Bumped pixl-request to v1.0.35 for auto-proxy support.
- Should fix #370