Releases: gohugoio/hugo
Releases · gohugoio/hugo
v0.125.5
v0.125.4
What Changed
- Fix rebuilds when running hugo -w 7203a95 @bep #12296
- tpl/tplimpl: Fix double-escaping in opengraph template fb51b69 @jmooring #12418
- commands: Clarify that create or install a theme are two options fe84cc2 @Habbie
- config: Setups with only one active language can never be multihost babcb33 @bep #12288
- Use Apache License without modification 6b86797 @bep #12415
- build(deps): bump github.com/tdewolff/minify/v2 from 2.20.19 to 2.20.20 fb08439 @dependabot[bot]
Contributors
jmooring, bep, and 2 other contributors
Assets 24
v0.125.3
This release fixes a security issue reported by @ejona86 (see #12411) that could allow XSS injection from Markdown content files if one of the internal link or image render hook templates added in Hugo 0.123.0 are enabled. You typically control and trust the content files, but according to Hugo's security model, we state that "template and configuration authors (you) are trusted, but the data you send in is not."
- markup/goldmark: Fix data race in the hugocontext wrapper 509ab08 @bep
- tpl: Escape .Title in built-in image and link render hooks 15a4b9b @bep
- tpl/tplimpl: Improve embedded templates 10a8448 @jmooring #12396
- SECURITY.md: Update link to security model 722c486 @ejona86
- modules: Fix potential infinite loop in module collection f40f50e @bep #12407
Contributors
jmooring, bep, and ejona86
Assets 24
v0.125.2
What's Changed
- Only add root sections to the section pages menu 06d2489 @bep #12399
- Fix partial rebuilds for SCSS fetched with GetMatch and similar Fixes #12395 004b694 @bep
- commands: Add gen chromastyles --lineNumbersTableStyle flag da6112f @jmooring #12393
- resources/images: Fix TestColorLuminance on s390x faf9fed @bep
- commands: Provide examples for chromastyles flags 11aa893 @jmooring #12387
Contributors
jmooring and bep
Assets 24
v0.125.1
v0.125.0
Some of the notable new features in this release:
- strings.Diff template func.
- .PageInner in render hooks to get the inner page when using
.RenderShortcodein a shortcode, typically used to resolve links and page resources relative to an includedPage. - Add
Luminanceto$image.Color, allowing for sorting by relative luminance. e197c7b @bep #10450
This release is built with Go 1.22.2 (#12351) which comes with a fix for security issue CVE-2023-45288. We don't see how that could be exploited in Hugo, but we do appreciate that people want a clean security report.
Bug fixes
- Fix server rebuilds when adding a content file on Linux fa60a2f @bep #12362
- helpers: Fix TrimShortHTML when used with AsciiDoc content 6049ba9 @jmooring #12369
- github: Fix CI build 9323376 @bep
- all: Fix duplicate words in comments bf0b140 @grimreaper
- all: Typo fixes 17765a7 @coliff
- hugolib: Fix regression for blank summaries 2664052 @curegit
- Fix sectionPagesMenu for pages in root level 488b21d @bep #12306
- Fix resource bundling for overlapping page.md vs page.txt 983b8d5 @bep #12320
- Fix panic with debug.Dump with Page when running the server 38e05bd @bep #12309
- resources/page: Fix GoDoc comment 27414d4 @availhang
Improvements
- Add Luminance to Color e197c7b @bep #10450
- Pass .RenderShortcodes' Page to render hooks as .PageInner df11327 @bep #12356
- github: Add a "free space" step on Ubuntu 8e50ccf @bep
- helpers: Add BenchmarkTrimShortHTML bfc3122 @bep
- github: Update actions 00ae8e8 @bep
- github: Format GitHub actions files e423e56 @bep
- hugolib: Display server address after each rebuild 09eb822 @jmooring #12359
- resources/page: Add taxonomies Page method a6e8439 @jmooring #12316
- commands: Adjust completions 38f68cd @bep
- completion: Improve existing argument completions, add many more a67650b @scop
- Upgrade to Go 1.22.2 2a060b3 @bep #12351
- babel: Run go fmt 92de862 @bep
- babel: Close file before removing 7907935 @testwill
- bump golang.org/x/mod from 0.16.0 to 0.17.0 02d5ec1 @dependabot[bot]
- resources/page: Escape hash sign in permalinks 4500b0e @sorenisanerd #4926 #8232 #12342
- tpl/strings: Improve type checking 7bf1abf @jmooring
- tpl/tplimpl: Improve youtube shortcode 8a0ea12 @jmooring #3694 #9213 #10520 #10575 #10576
- errors: Return error from cast.ToStringE() consistently 6f07e59 @seiyab
- tpl/tplimpl: Improve embedded opengraph template 2da4ec5 @jmooring #8296 #8698 #8991 #9818 #9866 #10647
- tpl/strings: Create strings.Diff template function 6624979 @jmooring #12330
- tpl/tplimpl: Optionally exclude content from sitemap 6738a3e @jmooring #653 #12282
- tpl/tplimpl: Remove trailing slash from void elements 2f7df4b @jmooring #11867
- tpl/tplimpl: Update RSS template f0a26cf @jmooring #3918 #11692
- tpl/tplimpl: Update schema template 74ce5dc @jmooring #7570
- resources: Use different cache key when copying resources 54a8f0c @jmooring #10412 #12310
- tpl/tplimpl: Update Google Analytics template and config ebfca61 @jmooring #11802 #10093
- hugolib: Conditionally suppress .Site.Author deprecation notice e191774 @jmooring #12297
Dependency Updates
- build(deps): bump github.com/pelletier/go-toml/v2 from 2.2.0 to 2.2.1 fe63de3 @dependabot[bot]
- build(deps): bump google.golang.org/protobuf from 1.31.0 to 1.33.0 a18e2bc @dependabot[bot]
- build(deps): bump golang.org/x/tools from 0.19.0 to 0.20.0 97df6be @dependabot[bot]
- build(deps): bump golang.org/x/net from 0.23.0 to 0.24.0 e9b8bec @dependabot[bot]
- build(deps): bump github.com/getkin/kin-openapi from 0.123.0 to 0.124.0 888cc1e @dependabot[bot]
- build(deps): bump github.com/pelletier/go-toml/v2 from 2.1.1 to 2.2.0 060cce0 @dependabot[bot]
- build(deps): bump github.com/yuin/goldmark from 1.7.0 to 1.7.1 5608ba1 @dependabot[bot]
- build(deps): bump github.com/aws/aws-sdk-go-v2/service/cloudfront 2fedca6 @dependabot[bot]
- build(deps): bump golang.org/x/net from 0.22.0 to 0.23.0 07873b7 @dependabot[bot]
Documentation
Contributors
scop, sorenisanerd, and 9 other contributors
Assets 24
v0.124.1
Contributors
bep and anthonyfok
Assets 24
v0.124.0
The new feature in this release is a new segments configuration section and a new --renderSegments flag/config key. This release also updates to Go 1.22.1 that fixes a security issue in the template package that Hugo uses (CVE-2023-45289, see golang/go#65697). We don't see how this could be exploited in Hugo, but we appreciate that Hugo users want to have a clean security report.
Bug fixes
- Fix .Parent when there are overlapping regular pages inbetween f1d7559 @bep #12263
- hugolib: Fix sitemap index with monolingual site 3935faa @jmooring #12266
- all: Typo fixes 78178d0 @coliff
- Fix translationKey handling for term pages 68d92ef @bep #12261
- Fix intersect and similar for term entry page collections b40f3c7 @bep #12254
- Fix server rebuilds when adding sub sections especially on Windows 07b2e53 @bep #12230
- Fix panic when changing archetype files when servere is running 9ca1de0 @bep #12195
- Fix front matter date location when value gets inherited from other dates 9668759 @bep #12236
- Fix Name for nested resourced fetched in resources.ByName and similar 9e9b1f1 @bep #12214
Improvements
- Add segments config + --renderSegments flag 1f1c62e @bep #10106
- hugolib: Remove Site.HomeAbsURL 558f74f @bep
- hugolib: Deprecate site methods Author, Authors, and Social d4d49e0 @jmooring #12228
- Upgrade to Go 1.22.1 57206e7 @bep #12250
- tpl/tplimpl: Modify figure shortcode to look for page resource 48a0fea @jmooring #12244 #12245
- common/hugo: Rename IsMultiHost and IsMultiLingual dc6a292 @jmooring #12232
- hugolib: Deprecate .Site.MultiLingual in favor of hugo.IsMultiLingual 4f92f94 @jmooring #12224
- tpl/tplimpl: Remove deprecated method from sitemapindex.xml f038a51 @jmooring
Dependency Updates
- deps: Upgrade github.com/gohugoio/hugo-goldmark-extensions/passthrough v0.1.0 => v0.2.0 ba03114 @bep
- build(deps): bump github.com/evanw/esbuild from 0.20.1 to 0.20.2 b1f8676 @dependabot[bot]
- build(deps): bump golang.org/x/tools from 0.18.0 to 0.19.0 b4bff61 @dependabot[bot]
- build(deps): bump github.com/tdewolff/minify/v2 from 2.20.17 to 2.20.19 d2cebee @dependabot[bot]
- deps: Upgrade github.com/alecthomas/chroma/v2 to v2.13.0 be914ff @myitcv #11862
- build(deps): bump golang.org/x/mod from 0.15.0 to 0.16.0 e626750 @dependabot[bot]
Documentation
Build Setup
Contributors
jmooring, bep, and 3 other contributors
Assets 24
v0.123.8
- docs: Fix hyphens and grammar in synopsis of command 'hugo server' ada3fce @deining
- Fix resource name in resources.ByType a4b1747 @bep #12190
- Fix global resource isn't published when using an uncommon code construct 4d5e173 @bep #12190
- Fix section page resource not published if resource filename partially matches content file name 4271b6b @bep #12198
- Fix taxonomy kind template lookup issue 0567a3e @bep #12193
- markup/goldmark: TOC: render strikethrough, emojis 134e7d1 @lyind #7169 #11783 #12022
- Add hugo.IsMultiHost 1f48b71 @razonyang
- resources/images: Retain newlines with text overlays 05e23bd @jmooring #12206
- Don't auto-create empty sections for nested taxonomies 7afac3f @bep #12188
- tpl/tplimpl: Honor markdown attributes in embedded image render hook 632ad74 @jmooring #12203
Contributors
jmooring, bep, and 3 other contributors
Assets 24
v0.123.7
What's Changed
- hugofs: Fix vertical mount merge issue 2b2f2b7 @bep #12175
- Fix and add integration test for the Bootstrap SCSS module for both Dart Sass and Libsass 0d6e593 @bep #12178
- Fix resources.GetMatch, resources.Match, and resources.ByType to they don't normalize permalinks 7023cf0 @bep #12182
- Make sure that sitemaps gets generated even if there is a content bundle with the same path 9dfa9e7 @bep #12183
- resources/page: Make Taxonomy.Get and Taxonomy.Count case-insensitive 3f217fd @jmooring #12177
Contributors
jmooring and bep