Skip to content
Merged
Show file tree
Hide file tree
Changes from all commits
Commits
File filter

Filter by extension

Filter by extension

Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
17 changes: 17 additions & 0 deletions src/content/docs/docs/getting-started/releases.md
Original file line number Diff line number Diff line change
Expand Up @@ -13,6 +13,23 @@ sidebar:

## Version 7

### v7.7.1

Released on July 13th, 2026

#### Hotfixes

Just when you publish a new release, there is another vulnerability reported...
Which means we need to ship a fix ASAP.

* `fix` #4514 : Hotfix on webshop by @ildyria.
> A user can craft a post request and get discounted prices on the webshop. This is now fixed.
* `fix` #4516 : Fix Sqlite bug on virtual columns by @ildyria.
> When using sqlite, the virtual columns were not properly handled. This is now fixed.

Thanks to @5ud0er for reporting the bypass vulnerability on pricing.


### v7.7.0

Released on July 13th, 2026
Expand Down
1 change: 1 addition & 0 deletions src/data/releases.ts
Original file line number Diff line number Diff line change
Expand Up @@ -8,6 +8,7 @@ export interface Release {

// Release data extracted from releases.md
export const releases: Release[] = [
{ version: 'v7.7.1', date: 'Jul 13, 2026', title: 'Hotfix', type: 'security', highlights: ['Fixes a major vulnerability in the webshop', 'minor sqlite fix'] },
{ version: 'v7.7.0', date: 'Jul 13, 2026', title: 'Album thumbs, and RSS feed customization', type: 'feature', highlights: ['Add cover to tag albums', 'Add option to disable the second line on album thumbs', 'Allow customizing RSS feed title & description', 'Fixes access rights with multiple groups', 'Fixes webshop bypass vulnerability (8.3)'] },
{ version: 'v7.6.4', date: 'Jun 26, 2026', title: 'Hotfix', type: 'security', highlights: ['Fixes a path traversal vulnerability (8.9)'] },
{ version: 'v7.6.3', date: 'Jun 24, 2026', title: 'Hotfix', type: 'security', highlights: ['Fixes a major vulnerability', 'minor fixes'] },
Expand Down
74 changes: 74 additions & 0 deletions src/pages/support.astro
Original file line number Diff line number Diff line change
Expand Up @@ -283,6 +283,80 @@ const metadata = {
]}
/>

<Features5
classes={{container: 'scale-75 -mt-32'}}
isAfterContent
isBeforeContent
title="External Security Researchers"
subtitle="Lychee is stronger thanks to the researchers who took the time to report vulnerabilities responsibly."
columns={3}
items={[
{
title: '5ud0er',
image: {
src: 'https://avatars.githubusercontent.com/u/88728909?v=4',
alt: '5ud0er',
},
},
{
title: 'UmutCPP (Ahmet Umut Oğurlu)',
image: {
src: 'https://avatars.githubusercontent.com/u/176404269?v=4',
alt: 'UmutCPP',
},
},
{
title: 'zveua',
image: {
src: 'https://avatars.githubusercontent.com/u/245133483?v=4',
alt: 'zveua',
},
},
{
title: 'morimori-dev (Nozomu Sasaki — Paul)',
image: {
src: 'https://avatars.githubusercontent.com/u/60306789?v=4',
alt: 'morimori-dev',
},
},
{
title: 'luuhung1217 (hung)',
image: {
src: 'https://avatars.githubusercontent.com/u/102791339?v=4',
alt: 'luuhung1217',
},
},
{
title: 'geo-chen (George Chen)',
image: {
src: 'https://avatars.githubusercontent.com/u/2404584?v=4',
alt: 'geo-chen',
},
},
{
title: 'offensiveee (ASSAF)',
image: {
src: 'https://avatars.githubusercontent.com/u/263050135?v=4',
alt: 'offensiveee',
},
},
{
title: 'wooseokdotkim',
image: {
src: 'https://avatars.githubusercontent.com/u/121649701?v=4',
alt: 'wooseokdotkim',
},
},
{
title: 'de3erve-hunter',
image: {
src: 'https://avatars.githubusercontent.com/u/293707138?v=4',
alt: 'de3erve-hunter',
},
},
]}
/>

<div class=`max-w-3xl mx-auto text-center p-6 rounded-md dark:shadow-none dark:border dark:border-slate-600`>
<div class="mb-4 md:mb-8 text-center max-w-3xl mx-auto">
<h2 class="text-3xl md:text-4xl font-bold leading-tighter tracking-tighter font-heading" set:html={'Translation efforts'} />
Expand Down
Loading