8000 Releases · timber/timber · GitHub
[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Skip to content

Releases: timber/timber

1.23.4

31 May 19:56
@jarednova jarednova
1.23.4
f5defda
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
1.23.4

What's Changed

Full Changelog: 1.23.3...1.23.4

Contributors

jarednova
Loading

1.23.3

27 May 21:28
@jarednova jarednova
1.23.3
1418f3c
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
1.23.3

Updates to version numbers and changelog for full consistency with WordPress.org:
https://wordpress.org/plugins/timber-library/#description

What's Changed

This incorporates the changes in 1.23.2 (below)

Security fix

  • Fix security vulnerabilities in Twig.

Details

Contributors

jarednova
Loading

v2.3.2

13 May 14:02
@github-actions github-actions
v2.3.2
08ce601
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.2 Latest
Latest

2.3.2 (2025-05-13)

Bug Fixes

  • Security: Bump minimum required Twig version to fix security issue in Twig (#3104) (9766a9c)
  • Fix MenuItem::is_external() returning false positives for relative URLs (#3089) (2a14525)
  • Fix typos in source code(#3077) (d7b3b80)

Miscellaneous Chores

  • deps: bump lycheeverse/lychee-action from 2.0.2 to 2.2.0 (#3078) (11a74ba)
  • deps: bump tj-actions/changed-files from 45 to 46 (#3105) (d8535cf)

Full Changelog

Full Changelog: v2.3.1...v2.3.2

New Contributors

Let’s meet at the WordCamp Europe in Basel

Some of Timber’s contributors and users are going to meet up at the WordCamp Europe in Basel from June 5-7. Are you coming too?

Contributors

amustill and johannpinson
Assets 2
Loading

1.24.2

13 May 14:02
@gchtr gchtr
1.24.2
777028e
Compare
Choose a tag to compare
1.24.2

Security fix

  • Fix security vulnerabilities in Twig.

Details

  • See GHSA-6j75-5wfj-gh66.
  • This pull request updates the minimum required Twig version for the Composer version of Timber 1.x to ^1.44.8 and ^2.16.1 to fix the issue.
Loading

1.23.2

13 May 14:01
@gchtr gchtr
1.23.2
f882e74
Compare
Choose a tag to compare
1.23.2

Security fix

  • Fix security vulnerabilities in Twig.

Details

Loading

v2.3.1

23 Dec 13:12
@github-actions github-actions
v2.3.1
3f6e73f
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.1

2.3.1 (2024-12-18)

Bug Fixes

  • Update Twig & twig/cache-extra dependencies to version 3.17 to fix unit tests (cbac2e0)
  • Use correct deprecation_info for Twig callables (#3064) (72a013e)
  • Fix bug with Attachment::path() method (#3073) (5434dde)
  • Fix get location by ID in Timber::get_menu_location() (#3066) (5b33ba8)
  • Fix bug when Timber::get_menu(0) returns alphabetically first menu instead of nothing (#3070) (d278f95)
  • Fix avatar test (#3071) (0e65e54)

Full changelog

Full Changelog: v2.3.0...v2.3.1

New Contributors

Become a sponsor

Do you love using Timber for your projects? Consider supporting us by becoming a sponsor. Your sponsorship helps us maintain & improve Timber for everyone! 💚🌲 Join the Timber family today.

Contributors

ashmatadeen and mrfsrf
Loading

v2.3.0

08 Nov 09:45
@github-actions github-actions
v2.3.0
55acea4
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.3.0

2.3.0 (2024-11-08)

Features

Bug Fixes

  • Add more default arguments to Timber\PagesMenu::build() method (#3050) (c7aea5d)
  • Apply Rector code standard on Timber\MenuItem (5d64d9a)
  • Fix menu location compatibility with WPML (#2733) (8603855)
  • Fix URI to FS parsing in Timber\ImageHelper (#3027) (87d3ef4), closes #3024
  • Fixes an issue where in some cases images would not be rounded properly by image operations which lead to artifacts in images. (#3046) (10ab23d)
  • Run CS fixes on codebase (#3047) (48dc3fc)

Miscellaneous Chores

  • Add several files to export-ignore (0cd0cdf)
  • deps: bump lycheeverse/lychee-action from 1.10.0 to 2.0.2 (#3053) (480534f)
  • deps: bump tj-actions/changed-files from 44 to 45 (#3031) (880c0ff)
  • Inherit funding from GitHub repo (5623a79)

Full changelog

Full Changelog: v2.2.0...v2.3.0

New Contributors

Become a sponsor

Do you love using Timber for your projects? Consider supporting us by becoming a sponsor. Your sponsorship helps us maintain & improve Timber for everyone! 💚🌲 Join the Timber family today.

Contributors

arlg, SvenJuergens, and 2 other contributors
Loading

v2.2.0

15 May 13:56
@github-actions github-actions
v2.2.0
5fc65f2
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.2.0

2.2.0 (2024-05-15)

Features

  • Upgrade Timber minimum requirements (PHP 8.1 / WordPress 6.2 / Twig 3.5) and testing (#2970) (a2f0f07)
  • Introduce Rector to upgrade code for PHP 8.1 (#2977) (9edf999)

Bug Fixes

  • Allow Timber\PostExcerpt::read_more to accept bool value (#2937) (85e2a32)
  • Fix a bug with URL check for avatars (#3002) (456c24e)
  • Fix deprecation notice since twig 3.10 to now use EscaperRuntime instead of EscaperExtension (#2997) (295349b)
  • Fix problem when an empty ACF taxonomy relationship field transform loads all terms instead of none. (#2960) (f95b82a)
  • Fix regression in image resize where crops with the default crop setting (#2998) (8090247)
  • Fix typos in codebase (#2968) (e40ceb3)
  • Improve doing_it_wrong messages for using deprecated parameters in Timber::get_attachment() and Timber::get_image() (#2999) (e6cdf7e)
  • Remove security patch not needed in PHP 8 (#2983) (8a30865)
  • Update admin notice for minimum required WordPress version (#3001) (66e92a5)

Miscellaneous Chores

  • deps: bump lycheeverse/lychee-action from 1.9.3 to 1.10.0 (#2980) (dd34720)
  • deps: bump tj-actions/changed-files from 42 to 44 (#2959) (66eabe2)
  • Set proper return types on build methods (#2976) (6b72908)
  • Update all links in the codebase and documentation to https (#2947) (05af54f)

Full changelog

Full Changelog: v2.1.0...v2.2.0

New Contributors

Become a sponsor

Do you love using Timber for your projects? Consider supporting us by becoming a sponsor. Your sponsorship helps us maintain & improve Timber for everyone! 💚🌲 Join the Timber family today.

Contributors

baglio
Loading

v2.1.0

10 Apr 15:29
@github-actions github-actions
v2.1.0
d353d19
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
v2.1.0

2.1.0 (2024-04-10)

Security fix

  • Fix a security vulnerability where a file processed through Timber image operations could possibly execute arbitrary code in certain circumstances (13c6b0f).

Details
The vulnerability could be exploited if your website processes user file inputs (like a form upload) or sideloaded images directly with one of the Timber image operations like Resize, Letterbox, Retina, ToJpg or ToWebp without prior checks whether the uploaded files are really images. We couldn’t replicate the vulnerability in a default WordPress installation, where a user uploads files through the media library. But there could be cases where your website might be vulnerable if a user can upload files in another way.

Important

This vulnerability only exists for websites running on PHP 7.4.

Features

  • Add new timber/cache/transient_key filter to cache methods for transient key used for caching (#2878) (b347677)
  • Add new timber/image_helper/sideload_image/basename filter for sideloaded images basename (e4ff72f)
  • Add new timber/output/pre-cach filter to $output before it is cached (#2910) (d1356fd)
  • Add User::is_current() and User::profile_link() methods (#2924) (b048da8)
  • Add WordPress escaping functions via Twig filters (#2933) (a88aa00)
  • Allow pagination object to be generated using $prefs only (99219a9) and (2834fd4)
  • Bump php-stubs/acf-pro-stubs to ^6.0 (ac17052)
  • Update ECS config and apply standards (#2893) (71111e1)

Bug Fixes

  • Add classes in MenuItem (#2905) (7e00eeb)
  • Allow overwrite of default avatar in comments. (#2786) (9c6e0e3), closes #2468
  • Fix minor coding style issue in loader.php to make ECS happy (#2950) (6e8b6ab)
  • Ignore acf_get_field_type void errors (441ef9e)
  • Make PostIterator::last_post() nullable (#2918) (064dde7)
  • Prevent unneeded blog switching in multisite env (#2781) (d81f995)
  • Fix unnecessary lowercasing parameters in Timber\URLHelper (#2877) (664ea62)
  • Fix some file permissions in docs (#2842) (337d54d)
  • Tests: Split test running for integrations (plugins) (#2904) (8d03809)
  • Tests: Fix tests failing since Twig 3.8.0 (#2895) (f4a233e)
  • Tests: Fix missing constants in static analysis test (ae50ccd)
  • Tests: Use new filter in tests (c12e9af)
  • Tests: Fix phpstan tests by (#2886)
  • Docs: Simplify an if-check in the ACF docs (96d2874)

Miscellaneous Chores

  • Add script descriptions in Composer file (#2951) (5785128)
  • Add Timber authors (567475e)
  • Create SECURITY.md (#2939) (be36065)
  • Remove Lando config (#2899) (6fa8ffc)
  • Update links in CONTRIBUTING.md (3b2c855)
  • deps: bump lycheeverse/lychee-action from 1.8.0 to 1.9.1 (1ca79af)
  • deps: bump lycheeverse/lychee-action from 1.9.1 to 1.9.3 (#2907) (eecfb03)
  • deps: bump peter-evans/create-issue-from-file from 4 to 5 (#2906) (64703f8)
  • deps: bump ramsey/composer-install from 2 to 3 (#2941) (97010c4)
  • deps: bump tj-actions/changed-files from 39 to 42 (964f11a)

New Contributors

Full Changelog: 2.0.0...v2.1.0

Contributors

rubas, jasalt, and 6 other contributors
Loading

1.24.1

10 Apr 15:29
@gchtr gchtr
1.24.1
f8f2e5a
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.
Compare
Choose a tag to compare
1.24.1

Security fix

  • Fix a security vulnerability where a file processed through Timber image operations could possibly execute arbitrary code in certain circumstances.

Details
The vulnerability could be exploited if your website processes user file inputs (like a form upload) or sideloaded images directly with one of the Timber image operations like Resize, Letterbox, Retina, ToJpg or ToWebp without prior checks whether the uploaded files are really images. We couldn’t replicate the vulnerability in a default WordPress installation, where a user uploads files through the media library. But there could be cases where your website might be vulnerable if a user can upload files in another way.

Important

This vulnerability only exists for websites running on PHP 7.4 or lower.

What’s changed

  • Allow the Timber\PostPreview::read_more to accept a boolean value by @gerardo-rodriguez in #2578
  • Fix tests failing with WordPress 6.4 by @gchtr in #2964
  • Remove functionality that disabled updates via the dashboard for major and minor releases by @Levdbas in #2963

Contributors

Full Changelog: 1.24.0...1.24.1

Contributors

gerardo-rodriguez, gchtr, and 2 other contributors
Loading
0