BookStack v23.02 is here, acting primarily as a maintenance release to upgrade the underlying framework while optimizing things and making a few other additions. »
BookStack Blog
Over the last few years BookStack has gained a few different methods that can be used to customize functionally and aesthetics. »
BookStack v23.01.1 has been released. This is a security release that addresses a potential vulnerability in PDF generation that could be used to make server-side requests or run potential other PHP code. »
To start off our releases for the year we have BookStack v23.01 which adds many user experience enhancements & options while also making subtle further back-end changes to permissions. »
Well 2022 is now in the past. During the year BookStack had a few milestones which included reaching the top of Hacker News, becoming 7 years old and hitting 10K stars on GitHub. »
Just sneaking into November is BookStack v22.11 which comes with a splendid spread of surprises intended to enhance many existing interfaces and features of BookStack. »
This spooky season supplies us with BookStack v22.10, which continues our work to improve permission control while bringing along some extra treats, without any tricks. »
Today, after over 7 years of continuous active development, we’ve now reached 10,000 stars on GitHub! 🥳 🥳 🥳 Previously when hitting star milestones I’ve written about the the project growth relative to this metric but, since I’ve already published such as post this year, I thought we’d do something different via video. »
The BookStack September release is here with a variety of desired features that build upon, and enhance, existing BookStack systems. As usual, it also includes language updates and a bunch of tweaks & fixes. »
As the maintainer of a documentation platform, I find myself taking note of methods of how people go about creating documentation. »
BookStack v22.07.3 has been released. This is a security release that adds additional filtering to page content to prevent certain cross-site-scripting techniques. »
For July we have what could be considered a “stepping-stone” release since it marks the start of some underlying permission system changes but it does bundle in a rich set of system enhancements & minor features. »
Another year goes by with BookStack now being 7 years in development from it’s original commit on the 12th of July 2015. »
BookStack v22.06 is now here! This release was primarily refinement focused but it does include some great new features that may streamline your usage of the platform. »
Today brings the release of BookStack v22.04! This includes the much-awaited feature of easier page editor switching, in addition to a bunch of other additions and improvements. »
To support today’s release of the next LTS version of Ubuntu, 22.04 (Jammy Jellyfish), we have added a new BookStack install script for users of this OS: »
It’s been a while since I last put out a blogpost regarding a GitHub star milestone, with the last being a December 2017 blogpost where we hit 1000 stars. »
Today we release BookStack v22.03 which features some further additions to the WYSIWYG editor, aiming to align its feature-set with our markdown editor. »
Today I’m happy to announce availability of official BookStack support services! These services are broken down into a couple of different plans, the detail of which can be found on our new support page. »
BookStack v22.02.3 has been released. This is a security release that adds better protections against embedded content that could be used in malicious ways. »
Today we announce the first BookStack feature release of 2022. This brings updates & features to the WYSIWYG editor, user management API endpoints and much more. »
A few times recently people have asked how they can get involved and help BookStack so I thought I’d formalize my response into this blog post. »
BookStack v21.12.1 has been released. This is a security release that better enforces permissions on book-sort & chapter-move operations to address scenarios where content could be moved to non-permissible locations. »
Thought it would be nice to take some time out to look back over the last year and review how things have progressed. »
As our last feature release of the year BookStack v21.12 is now available. Upon a bunch of fixes & improvements, this release features outgoing webhooks in addition to the ability of copying entire chapters and books. »
BookStack v21.11.3 has been released. This is a security release that helps prevent potential discovery and harvesting of user details including name and email address. »
BookStack v21.11.2 has been released. This is a security release that address a couple of vulnerabilities relating to API access and page draft related content visibility: »
Today we release BookStack v21.11 which focuses on a couple of areas that have gone untouched for a while; Those areas being tags and the site-wide search system. »
BookStack v21.10.3 has been released. This is a security release that address a couple of vulnerabilities within the attachment and image serving mechanisms. »
BookStack v21.10.2 has been released. This is a security release that builds upon changes in v21.10.1 which covers a vulnerability which would allow malicious users, who have permission to update or create pages, to upload content that could then be utilized for phishing or other general malicious intent. »
BookStack v21.10.1 has been released. This is a security release that covers a vulnerability which would allow malicious users, who have permission to update or create pages, to upload content that could then be utilized for phishing or other general malicious intent. »
October brings us BookStack v21.10. This release is primarily intended to wrap up a few loose ends before we make more substantial framework changes, but it does bring with it a new authentication option in addition to some new API endpoints. »
Now that I’ve got a bit more time to work on BookStack, I thought it’d be good to do something a little different on the blog and pay tribute to the services we use to help manage the project. »
BookStack v21.08.5 has been released. This is a security release that covers a vulnerability which would allow malicious users, who have permission to update or create pages, to load content from files stored within the storage/ or public/ directories (Such as application logs) via the page HTML export system. »
BookStack v21.08.2 has been released. This security release is intended to cover a couple of XSS vulnerabilities, where a malicious user with page edit access could enter script that would execute upon page view. »
Today we release BookStack v21.08, which brings along multi-factor authentication support in addition to a number of other nice features. Within this post we’ll dive into some of the biggest new changes since the v21. »
Well there goes another year, A year of worldwide lock-downs and uncertainty but BookStack development has pushed on and now we’re at 6 years since the original commit on the 12th of July 2015. »
BookStack v21.05 has now been released which brings along new user interface features & enhancements including a favourites system and easier in-book navigation. »
Today is the launch of BookStack v21.04 which is our next feature release after Beta v0.31. For this release we’re dropping the beta and changing our version scheme as detailed below. »
BookStack v0.31.5 has been released. As with the previous release (v0.31.4) this updates the Laravel framework version used to help avoid a potential vulnerability when requests were crafted in a certain manner. »
BookStack v0.31.4 has been released. This security release updates the Laravel framework version, due to a vulnerability that could occur if request data was crafted and then used in a certain way. »
On this BookStack site I have been using Google Analytics to track visitor metrics. While not crucial to know, it’s generally useful to have an idea of the target audience, current popularity and be aware of any visitor spikes. »
We kick of this optimistic year with BookStack v0.31 which includes some great additions & updates to existing functionality including a new recycle bin system, controllable item ownership, audit log changes, page API endpoints and much more. »
In continuation of the patches in v0.30.6, BookStack v0.30.7 has been released to address an issue that could lead to restricted page content being made visible in exports. »
BookStack v0.30.6 has been released to address an issue that could lead to restricted page content being visible in certain circumstances. »
Phishing and and server-side request forgery vulnerabilities have been found within BookStack. Release v0.30.5 will remove this server-side request forgery issue while bringing updated wording and advisories to prevent the potential phishing vulnerability. »
XSS and user-injected auto-redirect vulnerabilities have been found within the page content & attachment components of BookStack which BookStack v0.30.4 looks to address. »
Although intended to be a quick release cycle, v0.30 is now here 5 months after the last major release. Sketchy personal health, a poorly pet & a busy day-job workload, combined with constant working-from-home, have reduced the amount of time I could afford to spare working on the project but with normality somewhat returning I present BookStack v0. »
With a first commit dated Sunday the 12th of July 2015, BookStack is now over 5 years old. Looking back, those 5 years have appeared to fly by but within that time there’s been a lot of growth, both for me as a maintainer and in regards to the project itself. »
BookStack v0.29.3 has been released to address an issue that could expose the names of private/restricted books. Update instructions GitHub release page Impact The name of a restricted book could be viewed by non-authorised users when the book was on a shelf, and the shelves were viewed in “List View”. »