• Fix data race in ScreenManager that causes WebKit DisplayLink deadlock on display configuration change (e.g. external monitor hot-plug during sleep/wake)

🤖 This is an automated nightly release generated from the latest changes in the v3-alpha branch.

Installation:

go install github.com/wailsapp/wails/v3/cmd/wails3@v3.0.0-alpha.77

⚠️ Alpha Warning: This is pre-release software and may contain bugs or incomplete features.

• Directly sets CFBundleIconName to appicon when Assets.car exists in PR by @symball

🤖 This is an automated nightly release generated from the latest changes in the v3-alpha branch.

Installation:

go install github.com/wailsapp/wails/v3/cmd/wails3@v3.0.0-alpha.76

⚠️ Alpha Warning: This is pre-release software and may contain bugs or incomplete features.

• Fix wails3 doctor reporting incorrect WebKitGTK packages on Fedora, openSUSE, Arch, and NixOS — 4.0 fallback entries have been removed since v3 requires the 4.1 API at compile time (#5071)
• Fix openSUSE webkit2gtk doctor package name (webkit2gtk4_1-devel → webkit2gtk3-devel, the correct openSUSE package name) (#5071)
• Fix Unexpected token '<' error when /wails/custom.js is missing in desktop dev mode. Added explicit 404 handler for /wails/custom.js and case-insensitive Content-Type validation in loadOptionalScript to prevent HTML SPA fallbacks from being injected as JavaScript. (#5068)

🤖 This is an automated nightly release generated from the latest changes in the v3-alpha branch.

Installation:

go install github.com/wailsapp/wails/v3/cmd/wails3@v3.0.0-alpha.75

⚠️ Alpha Warning: This is pre-release software and may contain bugs or incomplete features.

lego is an independent, free, and open-source project, if you value it, consider supporting it! ❤️

Everybody thinks that the others will donate, but in the end, nobody does.

So if you think that lego is worth it, please consider donating.

For key updates, see the changelog.

• b682f8494cca7fd9859adc8814b253e6855b7faa Add DNS provider for 1cloud.ru (#2921)
• 79b83fe1e38e6b93443077014fb51d3ba3bfed7b Add DNS provider for Netnod (#2919)
• ca178943d0a6394ae44d94ed37306d66b14ee2c2 Add DNS provider for UCloud (#2972)
• 61bd6bf0b9bc49c740528316dc8054871127d706 Add DNS provider for online.net (#2964)
• 4f6a481bc4298383b1d2514f3dab0dbd0120b544 bluecatv2: fix documentation
• aa6fcebccb73828e933c33363dccc0a93a101988 fix: check base64url token
• 1274ec8741d7ac0b4232775e358bc95db44d961c oraclecloud: support profile session token (#2965)
• cff2cd750413febbec64cb5fb3eedfc5a2e31a49 rfc2136: add RFC3645 (TSIG-GSS) support (#2946)
• 33754b3b216169b18d580bddf1837e713bff7c30 rfc2136: add dnsupdate as alias (#2957)
• 79796e155e4460967458c0df8fe58ea390cfe08f yandex360: update API docs links (#2922)

This release contains new features, improvements, and bug fixes

• US-1360 Merge PDFs using PDF Streams
• US-1370 Font subsetting support for OTF fonts
• US-1364 ReaderOpts add ParserAutoRepair option to enable auto-repair of malformed PDFs during parsing

• US-200 Font file support for GSUB parsing into font parsing (ttfparser.go)
• US-1253 Merge TTF and OTF font processing as one
• US-1357 Update unidoc/typesetting version
• US-1365 Timestamp server test mockup
• US-1372 core test coverage to 75%
• US-1378 contentstream test coverage to 78%
• US-1379 model test coverage to 60%
• US-1380 render test coverage to 65%
• US-1381 pdfutil test coverage to 58%
• US-1381 model/optimize test coverage to 65%
• US-1385 Pool flate.Reader Instances via sync.Pool

• US-1371 Extract text issue with ActualText replacement in TJ arrays fix
• US-1356 Data race in JBIG2 decoder causes OOM crash under concurrent PdfReaderLazy usage fix
• US-1252 Some text space is missing when rendering Arabic and Latin using OTF text shaping fix
• US-1387 Generated file 2_p_multi.pdf has error: The font 'FreeSans' contains bad /Widths in Adobe Reader fix

• Go 1.26 and golangci-lint updates by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2146
• Add WithLimit methods for uncompression by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2147
• Honor Root for fs.FS and normalize fs-style roots by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2145
• Sanitize header values in all setter paths to prevent CRLF injection by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2162
• Add ServeFileLiteral, ServeFSLiteral and SendFileLiteral by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2163
• Prevent chunk extension request smuggling by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2165
• Validate request URI format during header parsing to reject malformed requests by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2168
• HTTP1/1 requires exactly one Host header by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2164
• Strict HTTP version validation and simplified first line parsing by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2167
• Only normalize pre-colon whitespace for HTTP headers by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2172
• fs: reject '..' path segments in rewritten paths by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2173
• fasthttpproxy: reject CRLF in HTTP proxy CONNECT target by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2174
• fasthttpproxy: scope proxy auth cache to GetDialFunc by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2144
• feat: enhance performance by @ReneWerner87 in https://github.com/valyala/fasthttp/pull/2135
• export ErrConnectionClosed by @pjebs in https://github.com/valyala/fasthttp/pull/2152
• fix: detect master process death in prefork children by @meruiden in https://github.com/valyala/fasthttp/pull/2158
• return prev values by @pjebs in https://github.com/valyala/fasthttp/pull/2123
• docs: added httpgo to related projects by @MUlt1mate in https://github.com/valyala/fasthttp/pull/2169
• chore(deps): bump actions/upload-artifact from 6 to 7 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2149
• chore(deps): bump github.com/andybalholm/brotli from 1.2.0 to 1.2.1 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2170
• chore(deps): bump github.com/klauspost/compress from 1.18.2 to 1.18.3 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2129
• chore(deps): bump github.com/klauspost/compress from 1.18.3 to 1.18.4 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2140
• chore(deps): bump github.com/klauspost/compress from 1.18.4 to 1.18.5 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2166
• chore(deps): bump golang.org/x/crypto from 0.47.0 to 0.48.0 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2139
• chore(deps): bump golang.org/x/net from 0.48.0 to 0.49.0 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2128
• chore(deps): bump golang.org/x/net from 0.49.0 to 0.50.0 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2138
• chore(deps): bump golang.org/x/sys from 0.39.0 to 0.40.0 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2125
• chore(deps): bump golang.org/x/sys from 0.40.0 to 0.41.0 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2137
• chore(deps): bump securego/gosec from 2.22.11 to 2.23.0 by @dependabot[bot] in https://github.com/valyala/fasthttp/pull/2142
• Update securego/gosec from 2.23.0 to 2.25.0 by @erikdubbelboer in https://github.com/valyala/fasthttp/pull/2161

• @MUlt1mate made their first contribution in https://github.com/valyala/fasthttp/pull/2169
• @meruiden made their first contribution in https://github.com/valyala/fasthttp/pull/2158

Full Changelog: https://github.com/valyala/fasthttp/compare/v1.69.0...v1.70.0

• Send datestyle startup parameter, improving compatbility with database engines that use a different default datestyle such as EnterpriseDB (#1312).

• Treat io.ErrUnexpectedEOF as driver.ErrBadConn so database/sql discards the connection. Since v1.12.0 this could result in permanently broken connections, especially with CockroachDB which frequently sends partial messages (#1299).

• balancer: log a warning if a balancer is registered with uppercase letters, as balancer names should be lowercase. In a future release, balancer names will be treated as case-insensitive; see #5288 for details. (#8837)
• xds: update resource error handling and re-resolution logic (#8907)
  • Re-resolve all LOGICAL_DNS clusters simultaneously when re-resolution is requested.
  • Fail all in-flight RPCs immediately upon receipt of listener or route resource errors, instead of allowing them to complete.

• xds: support the LB policy configured in LOGICAL_DNS cluster resources instead of defaulting to pick_first. (#8733)
• credentials/tls: perform per-RPC authority validation against the leaf certificate instead of the entire peer certificate chain. (#8831)
• xds: enabling A76 ring hash endpoint keys no longer causes EDS resources with invalid proxy metadata to be NACKed when HTTP CONNECT (gRFC A86) is disabled. (#8875)
• xds: validate that the sum of endpoint weights in a locality does not exceed the maximum uint32 value. (#8899)
  • Special Thanks: @RAVEYUS
• xds: fix incorrect proto field access in the weighted round robin (WRR) configuration where blackout_period was used instead of weight_expiration_period. (#8915)
  • Special Thanks: @gregbarasch
• xds/rbac: handle addresses with ports in IP matchers. (#8990)

• ringhash: enable gRFC A76 (endpoint hash keys and request hash headers) by default. (#8922)

• credentials/alts: pool write buffers to reduce memory allocations and usage. (#8919)
• grpc: enable the use of pooled write buffers for buffering HTTP/2 frame writes by default. This reduces memory usage when connections are idle. Use the WithSharedWriteBuffer dial option or the SharedWriteBuffer server option to disable this feature. (#8957)
• xds/priority: stop caching child LB policies removed from the configuration. This will help reduce memory and cpu usage when localities are constantly switching between priorities. (#8997)
• mem: add a faster tiered buffer pool; use the experimental mem.NewBinaryTieredBufferPool function to create such pools. (#8775)

This change does not break the API contract, but it does introduce breaking changes in logic/behavior. If your application is using c.RealIP() beware and read https://echo.labstack.com/docs/ip-address

In v5 the c.RealIP() will now return request.RemoteAddr unless e.IPExtractor has been configured. No potentially spoofable headers are used by default anymore.

Configure IPExtractor with proper trust options when you want to read IP from headers. See:

• https://pkg.go.dev/github.com/labstack/echo/v5#ExtractIPFromRealIPHeader
• https://pkg.go.dev/github.com/labstack/echo/v5#ExtractIPFromXFFHeader

v4 behavior can be restored with:

e := echo.New()
e.IPExtractor = echo.LegacyIPExtractor()

Related PR: Remove legacy IP extraction logic from context.RealIP method by @aldas in https://github.com/labstack/echo/pull/2933

• Add echo-opentelemetry to the README.md by @aldas in https://github.com/labstack/echo/pull/2908
• fix: correct spelling mistakes in comments and field name by @crawfordxx in https://github.com/labstack/echo/pull/2916
• Add https://github.com/labstack/echo-prometheus to the middleware list in README.md by @aldas in https://github.com/labstack/echo/pull/2919
• Add StartConfig.Listener so server with custom Listener is easier to create by @aldas in https://github.com/labstack/echo/pull/2920
• Fix rate limiter documentation for default burst value by @karesansui-u in https://github.com/labstack/echo/pull/2925
• Add doc comments to clarify usage of File related methods and leading slash handling by @aldas in https://github.com/labstack/echo/pull/2928
• Add NewDefaultFS function to help create filesystem that allows absolute paths by @aldas in https://github.com/labstack/echo/pull/2931
• Do not set http.Server.WriteTimeout in StartConfig by @aldas in https://github.com/labstack/echo/pull/2932
• Remove legacy IP extraction logic from context.RealIP method by @aldas in https://github.com/labstack/echo/pull/2933

• @crawfordxx made their first contribution in https://github.com/labstack/echo/pull/2916
• @karesansui-u made their first contribution in https://github.com/labstack/echo/pull/2925

Full Changelog: https://github.com/labstack/echo/compare/v5.0.4...v5.1.0