v2.11.3 Security update & minor changes
Warning
If you are deploying NextChat via docker or other on-premise environment, we recommend you update to latest version v2.11.3
ASAP.
Risk Exposure: Services in the unisolated private network deployed with NextChat might be exposed to the public network
CVE Link: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-49785
What's Changed
- feat(tw.ts): added new translations by @chunkiuu in #4142
- Correct cutoff dates by @Algorithm5838 in #4118
- feat: auto detach scrolling by @fred-bf in #4149
- fix: add max_tokens when using vision model by @fred-bf in #4157
- fix: fix the method to detect vision model by @fred-bf in #4162
- [Cherry Pick] Fix [Utils] Regex trimTopic by @H0llyW00dzZ in #4089
- feat: Pasting images into the textbox by @KSnow616 in #4164
- slightly polishes the tw text. by @aliceric27 in #4195
- chore: update GTM_ID definition by @fred-bf in #4218
- fix: 修复导出时字符乱码问题 by @greenjerry in #3972
- Fix EmojiPicker mobile width adaptation and update avatar clicking behavior by @fengzai6 in #4234
- chore: specify yarn 1 in package.json by @SukkaW in #4279
- [Bugfix] Fix CORS SSRF security issue by @fred-bf in #4285
- feat: bump version by @fred-bf in #4287
New Contributors
- @chunkiuu made their first contribution in #4142
- @KSnow616 made their first contribution in #4164
- @aliceric27 made their first contribution in #4195
- @greenjerry made their first contribution in #3972
- @fengzai6 made their first contribution in #4234
- @SukkaW made their first contribution in #4279
Full Changelog: v2.11.2...v2.11.3