This release is a move to semantic versioning ONLY. There are NO changes in this release. All future releases will follow semantic versioning.
See v0.13.0 for information about changes since the v0.12 series.
v0.13.0
A long time coming, the next major release for http-server! This will be the final release before a switch to actual semantic versioning. This release's major achievement is the internalization of the functionality of the now-abandoned ecstatic library, thus removing it as a dependency. Huge thanks to @zbynek for help on that front, as well as several other included changes.
Breaking changes:
No longer sends the header server: http-server-${version} with every response
New features:
All responses include Accept-Ranges: bytes to advertise support for partial requests
Fixes
Removes dependency on the abandoned ecstatic library
Dependency upgrades to fix several security alerts
http-server -a 0.0.0.0 will now do what you told it to do, rather than overriding the address to 127.0.0.1
Will no longer serve binary files with a charset in the Content-Type, fixing serving WebAssembly files, among other issues
Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.
Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR:
- `@dependabot rebase` will rebase this PR
- `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it
- `@dependabot merge` will merge this PR after your CI passes on it
- `@dependabot squash and merge` will squash and merge this PR after your CI passes on it
- `@dependabot cancel merge` will cancel a previously requested merge and block automerging
- `@dependabot reopen` will reopen this PR if it is closed
- `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
- `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
- `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
dependabot[bot]
commented
3 years ago
Bumps http-server from 0.12.3 to 13.0.0.
Release notes
Sourced from http-server's releases.
Commits
a93a34013.0.077243e70.13.0a845834Update dependency treef2c0dfbupdate milestoneaec3911update security for release1f994c0Merge pull request #591 from http-party/no_server_headersc57654dMerge branch 'master' into no_server_headersa4ec10bMerge pull request #713 from http-party/codeql-bye-bye6b87653drop codeqla7fdf0fremove server headerDependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting
@dependabot rebase.Dependabot commands and options
You can trigger Dependabot actions by commenting on this PR: - `@dependabot rebase` will rebase this PR - `@dependabot recreate` will recreate this PR, overwriting any edits that have been made to it - `@dependabot merge` will merge this PR after your CI passes on it - `@dependabot squash and merge` will squash and merge this PR after your CI passes on it - `@dependabot cancel merge` will cancel a previously requested merge and block automerging - `@dependabot reopen` will reopen this PR if it is closed - `@dependabot close` will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually - `@dependabot ignore this major version` will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this minor version` will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself) - `@dependabot ignore this dependency` will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)