V3.0.3-Beta Changelog Notes
This is the changelog notes for the V3.0.3-beta release. Check out the following updates made in this release.
XSS Vulnerability Fix
One of our beta testers has identified XSS vulnerability on avatar change for the organization and user profile. We have fixed this by restricting the image uploads to only png, jpg & jpeg. Also in our API, we are using web3.storage to upload these avatar images on IPFS and store it in our database. This reduces the chance of storing malicious code directly in our database.
Stop deployment Feature
You may have created a development that you don't need anymore, Previously, it was necessary to wait for such deployments to complete. Today we have implemented a stop deployment feature.
Arweave Upload Boost
We have identified that uploading files on arweave sometime gives 404 due to the arweave network rejecting the file uploads.
To Fix this:
Override Install Command and Build Command
In this release, we have added an option for users to override the install command and build command. We have also removed the dependency on the package manager to make it easy for the developer to update their custom commands.
From your feedback, we've shipped some bug fixes to improve your product experience.
Here are some of the recent ones
Let us know how we can help improve your experience with Spheron
Join our Telegram channel: https://t.me/argoofficial
Join our Discord group: https://discord.gg/P59SG38AXf
Follow us on Twitter : https://twitter.com/SpheronHQ
Follow us on LinkedIn :https://www.linkedin.com/company/spheron