Version 1.3.2

Overview

Version 1.3.2 is a maintenance release that addresses security vulnerabilities in dependencies, fixes pnpm install warnings (peer webpack and deprecated subdependencies), resolves lint and build warnings in the app and documentation, and updates documentation to reflect the current Docker script names and package versions.

Security

Dependency vulnerability fixes

Dependabot dependency updates (documentation): Merged two Dependabot PRs to address vulnerabilities in the documentation workspace:
- ajv in /documentation: updated from 8.17.1 to 8.18.0 and from 6.12.6 to 6.14.0.
- fast-xml-parser in /documentation: updated from 5.3.5 to 5.3.8. Both were merged via the dependabot multi-update for /documentation.
pnpm overrides for high-severity vulnerabilities: Added pnpm overrides to fix four high-severity issues:
- minimatch (>=3.1.4): Fixes GHSA-3ppc-4f35-3m26 (ReDoS via repeated wildcards), GHSA-7r86-cg39-jmmj (combinatorial backtracking), and GHSA-23c5-xmqv-rm74 (nested extglobs backtracking) in documentation > @docusaurus/core > serve-handler > minimatch.
- serialize-javascript (>=7.0.3): Fixes GHSA-5c6j-r48x-rmvq (RCE via RegExp.flags and Date.prototype.toISOString()) in webpack > terser-webpack-plugin > serialize-javascript.

Bug fixes

pnpm install warnings: Resolved three install-time warnings: (1) Unmet peer webpack@5.104.1 from next-intlayer > @intlayer/webpack (project has webpack 5.105.3) by adding pnpm.peerDependencyRules.allowedVersions.webpack: "5" in root package.json. (2) Deprecated subdependencies prebuild-install@7.1.3 (from better-sqlite3) and whatwg-encoding@3.1.1 (from documentation > docusaurus-search-local > cheerio) by adding pnpm.allowedDeprecatedVersions for both so install runs without warnings.
Application logs viewer (exhaustive-deps): Resolved react-hooks/exhaustive-deps warning for the auto-scroll effect. logData is intentionally omitted from the dependency array so scrolling occurs only when auto-scroll or the selected file changes, not on every poll; new-line scrolling is handled in loadLogs. Added an eslint-disable-next-line with a short comment.
Build warning vscode-languageserver-types (documentation): Suppressed Webpack "Critical dependency: require function is used in a way in which dependencies cannot be statically extracted" for transitive dependency vscode-languageserver-types (from intlayer-editor) in the documentation (Docusaurus) build via an inline plugin in documentation/docusaurus.config.ts that adds ignoreWarnings. The warning occurs during the docs build only, not the main app.

Documentation

Docker script names: Documentation now uses the current npm/pnpm script names: docker-up → docker:up, docker-down → docker:down, docker-clean → docker:clean, docker-devel → docker:devel. Updated in AGENTS.md and documentation (setup.md, devel.md, release-management.md).
Package versions: Documentation and project rules updated to match package.json: pnpm 10.30.3, TypeScript ^5.9.3, Next.js ^16.1.6, React ^19.2.4, Tailwind CSS ^4.2.1, intlayer family ^8.1.8, lucide-react ^0.575.0, react-day-picker ^9.14.0, react-hook-form ^7.71.2, ESLint ^9.16.0, webpack ^5.105.3. Updated in AGENTS.md, documentation/docs/development/setup.md, documentation/docs/development/development-guidelines.md, and .cursor/rules/project-rule.mdc.

Migration notes

From version 1.3.1

When upgrading to version 1.3.2:

No database migration required: This release does not require any database schema changes.
Docker commands: If you use the documented pnpm scripts, use pnpm docker:up, pnpm docker:down, pnpm docker:clean, and pnpm docker:devel instead of the previous docker-up, docker-down, etc.
Dependencies: Run pnpm install to apply the updated lockfile and overrides; no manual dependency changes are required for typical installations.

Support

Getting help

Documentation: User Guide
Email settings: Email configuration guide
API reference: API documentation
Migration guide: Version upgrade migration
Community: GitHub Discussions
Issues: GitHub Issues

Reporting bugs

When reporting bugs, please include:

Version: 1.3.2
Operating system and version
Docker/podman version
Container type (Docker or podman/Pod)
Error messages and logs
Steps to reproduce

Changelog

Version 1.3.2 changes

Fixed: pnpm install warnings — peer webpack (allowedVersions) and deprecated subdependencies (prebuild-install, whatwg-encoding) via allowedDeprecatedVersions in root package.json.
Fixed: Application logs viewer useEffect exhaustive-deps warning (intentional dependency array; added eslint-disable with comment).
Fixed: Build warning vscode-languageserver-types in documentation (Docusaurus) via ignoreWarnings in docusaurus.config.ts.
Security: Dependabot updates for ajv and fast-xml-parser in documentation workspace.
Security: pnpm overrides for minimatch (>=3.1.4) and serialize-javascript (>=7.0.3) to address high-severity vulnerabilities.
Changed: Documentation updated with Docker script names (docker:up, docker:down, docker:clean, docker:devel).
Changed: Documentation and project rules updated with current package versions from package.json.

License

This project is licensed under the Apache License 2.0.

Overview​

Security​

Dependency vulnerability fixes​

Bug fixes​

Documentation​

Migration notes​

From version 1.3.1​

Support​

Getting help​

Reporting bugs​

Changelog​

Version 1.3.2 changes​

License​