Sourced fromkoa's releases.

v3.0.3

What's Changed

• fix: normalize referer before redirect by@​fengmk2 inkoajs/koa#1908

Full Changelog:koajs/koa@v3.0.2...v3.0.3

v3.0.2

What's Changed

• fix: fixes response.attachment behaviour leads to Content-Type Sniffing by@​yowainwright inkoajs/koa#1904
• chore: use NPM trusted publishing with semver tag triggers by@​Copilot inkoajs/koa#1907

New Contributors

• @​Copilot made their first contribution inkoajs/koa#1907

Full Changelog:koajs/koa@v3.0.1...v3.0.2

v3.0.1

What's Changed

• fix(security): only allow same origin referer on response backkoajs/koa@422c551
• chore: adds initial doc text refresh; migration guide [CHORE-1870] by@​yowainwright inkoajs/koa#1877
• build(deps-dev): bump formidable from 3.5.2 to 3.5.4 by@​dependabot[bot] inkoajs/koa#1878
• chore: removes done callbacks in tests [CHORE-1870] by@​yowainwright inkoajs/koa#1875
• build(deps-dev): bump supertest from 7.1.0 to 7.1.1 by@​dependabot[bot] inkoajs/koa#1879
• build(deps): bump debug from 4.4.0 to 4.4.1 by@​dependabot[bot] inkoajs/koa#1880
• feat: replace debug module with pure node:util::debuglog by@​3imed-jaberi inkoajs/koa#1885
• feat: replace cache-content-type with mime-types directly by@​3imed-jaberi inkoajs/koa#1886
• build(deps): bump statuses from 2.0.1 to 2.0.2 by@​dependabot[bot] inkoajs/koa#1888
• build(deps-dev): bump supertest from 7.1.1 to 7.1.4 by@​dependabot[bot] inkoajs/koa#1895
• build(deps-dev): bump form-data from 4.0.3 to 4.0.4 by@​dependabot[bot] inkoajs/koa#1894

Full Changelog:koajs/koa@v3.0.0...v3.0.1

v3.0.0

This is a major release.

Breaking

• Minimum node v18
• Removes.redirect('back'), adds.back(fallback_url)@​fl0wkoajs/koa#1115
• For.redirect(), don't render redirect values in anchor refkoajs/koa@ff25eb4
• req.origin should display the origin header if it exists, not the current hostnamekoajs/koa#1008.origin now aligns with theOrigin header as used in CORS.
• .body=<json> should not overwrite type if type already jsonkoajs/koa#1120
• Remove special ENOENT supportkoajs/koa#1861 - this is a big change and will require any file servers to adapt to this change for handling 404s / files not found
• Removes generator deprecation messages. Generators are no longer supported. Koa no longer asserts if generators are used.Set content-length: 0 if body is explicitly set to null@​ognjenjevremovic#1528Remove obsolete createAsyncCtxStorageMiddlewarekoajs/koa#1817
• ctx.throw now requires a format ofctx.throw(status, error, properties). See:https://www.npmjs.com/package/http-errors

... (truncated)

Sourced fromkoa's changelog.

[!IMPORTANT]Moving forwards we are using the GitHub releases page athttps://github.com/koajs/koa/releases in combination withnp for publishing releases and their changelogs.

---

3.0.0-alpha.3 / 2025-02-11

fixes

• Avoid redos on host and protocol getter

3.0.0-alpha.2 / 2024-11-04

breaking changes

• Updatehttp-errors tov2.0.0#1486
  • ctx.throw now requires a format ofctx.throw(status, error, properties). See:https://www.npmjs.com/package/http-errors
• Removeres.redirect('back'), addback() method toctx#1115
• Replace node querystring withURLSearchParams#1828
• Remove obsoletecreateAsyncCtxStorageMiddleware#1817

features

• Add support for web WHATWG#1830

updates

• Updatecookies to~0.9.1#1846
• Updatestatuses to^2.0.1
• Updatesupertest to^7.0.0#1841

fixes

• Fixexports.defaults inpackage.json#1630
• Fix leaky handles in tests#1838
• Fix body null checks#1814
• Fix reformatting redirect URLs#1805#1804
• Fix passingctx in error handler#1758

migrations

• Migrate fromjest to the native node test runner#1845

3.0.0-alpha.1 / 2023-04-12

fixes

• [e98b8d1] - fix: can not get currentContext in error handler (#1758) (Gxkl <gxkl203@gmail.com>)

3.0.0-alpha.0 / 2023-01-02

Breaking Changes

... (truncated)

• ffd497a 3.0.3
• 769fd75 fix: normalize referer before redirect (#1908)
• 433b20c 3.0.2
• 307013b chore: use NPM trusted publishing with semver tag triggers (#1907)
• 83128eb fix: fixes response.attachment behavior leads to Content-Type Sniffing (#1904)
• 1ddb048 3.0.1
• 422c551 Merge commit from fork
• 6e51eb1 build(deps-dev): bump form-data from 4.0.3 to 4.0.4 (#1894)
• d378e5c build(deps-dev): bump supertest from 7.1.1 to 7.1.4 (#1895)
• cb22d8d build(deps): bump statuses from 2.0.1 to 2.0.2 (#1888)
• Additional commits viewable incompare view

This version was pushed to npm by [GitHub Actions](https://www.npmjs.com/~GitHub Actions), a new releaser for koa since your current version.

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot show <dependency name> ignore conditions will show all of the ignore conditions of the specified dependency
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)