Skip to content

v4.11.3

Compare
Choose a tag to compare
@aldas aldas released this 07 Nov 12:22
· 46 commits to master since this release
4b26cde

Security

  • 'c.Attachment' and 'c.Inline' should escape filename in 'Content-Disposition' header to avoid 'Reflect File Download' vulnerability. #2541

Enhancements

  • Tests: refactor context tests to be separate functions #2540
  • Proxy middleware: reuse echo request context #2537
  • Mark unmarshallable yaml struct tags as ignored #2536