Draft release notes (review/edit before distributing)

25 February 2015:

• Private messages now support file uploads.
• Moderators with editing permission can now delete other users' attachments.
• Improvements to the Promoted Content module.
• Twitch embeds no longer auto-play.
• Improvements to the new Emoji feature.
• 50 more minor enhancements and fixes.

Looks good!

For Unicode, the big thing is that non-Latin alphabets can now have proper names. Background: https://modelviewculture.com/pieces/i-can-text-you-a-pile-of-poo-but-i-cant-write-my-name Unicode kinda sucks, but before we literally couldn't handle any names in 80% of the world.

My solution then will be to eliminate that line from future release notes. Summarizing those 74 pull requests to a third-party would be a full-time job and not provide any additional value to their QA teams.

April:

• Fixed issues with cross-format quoting (including emoji breaking).
• Moved min & max comment length settings in Dashboard from Flood Control to Advanced.
• Roles with Community Manager permission may now grant the Community Manager permission to others.
• Roles with Moderation permission may edit roles, but may not give roles that would escalate permissions to Moderation or higher.
• Fixed double-enter (or tab) blanking a just-completed mention.
• Fixed case where 'http://' wasn't pre-highlighted in Editor options.
• Fixed missing social share icons in mobile theme 2014.
• JSONP discussion queries will no longer ever return a 404 header.
• Fixed Touch Icon addon's file upload.
• Optimized category data cache updates.
• Optimized polls with large numbers of votes.
• Fixed CSS class on 'count' menu numbers.
• Fixed display of invalid / zeroed birthdays in profiles.
• Fixed missing (default) mobile theme options page
• Fixed a bug in Pockets.
• Fixed SEOLinks addon to not call the category cache too early.
• Added markup to configuration module.
• Fixed a spoilers formatting conflict with BBCode.
• Dirty cache now handles nulls correctly.
• Fixed warning PMs not being sent on some non-English sites.
• Disabled comment caching (no longer needed, and frequent source of data inconsistencies).
• Fixed bug where site description displays on page for subcategory with 'Display as categories' option enabled.
• Fixed bug where CategoryFilterToggle does not work with mixed view.
• Fixed bug where subcategories with 'Display as categories' option enabled have no child categories appear due to max display depth not being updated.
• Civil Tongue now filters discussions list on profiles.
• Security fix to OpenID handling.
• Users with profile editing permission may now delete posts from their own wall.
• Removed unneeded '/vanilla' in several URLs (mostly Dashboard-related).
• Bulk user import addon will now resend previously added invitations.
• Fixed "moved discussion" redirects failing when input formatter was forced to non-HTML value.
• Fixed Ranks settings page link on subcommunities.
• Fixed notice-level error on profile page in certain cases for new users.

Updated it above to something similar.

May:

• Support the ?tags= query string parameter when creating a discussion.
• ProfileExtender: Do not display extra profile fields for banned users.
• Add '<' to list of ending chars in hashtag regex.
• ProfileExtender: Remove ability to add more than one DoB.
• Profile controller: Wall notification preferences fix.
• Always show zero applicants when registration type not Approval.
• Checking if source file is readable before import.
• Fix for saving user with empty DoB (0-00-00).
• Editor: Allow Format opt-out without even unsetting Format.
• NamedParameter() didn't eliminate dashes.
• Speed up the user page in Dashboard.
• Don’t show misleading permissions when editing a role without any permissions.
• Resolved addon: de-conflict with blog comments.
• Add SoundCloud support.
• Disqus plugin: Remove Structure invocation to fix enable bug.
• Don’t fire an event when an already-disabled plugin is disabled again.
• Make Warnings banning respect warnings differentiation.
• Add after-import data checks and fixes.
• AutoSignout: Block the RememberMe feature.
• Enable spoilers in PMs.
• Format Garden.TrustedDomain as a string in config instead of an array.
• SteamConnect: Don't set username on existing users.
• Add Source field to feed-generated discussions.
• Look up CSS from a single method and re-use.
• Add support for internal controller methods.
• Improve the view lookup logic against some edge cases.
• Differentiate the ways users can be banned & show moderators on profiles.
• Reduce some database column lengths.
• Support role synchronization in the SAML SSO plugin.
• ButtonBar: Fix bug where switching back from Editor caused it to disappear.
• Remove empty UserMeta rows where value set is empty string.
• Filter username output on profile page.
• Remove account creation link on sign-in form when invitation-only.
• Format popup notifications as PlainText.
• Add nofollow to social logins.
• Fix issue with accessing CSS from direct paths.
• Fix the CSS and JS locations for the Vanilla stats plugin.
• Fix tag URLs when in a subdirectory.
• Add more error checking to OpenID URLs before discovery.
• Fix issue with category tree building.
• Change HTML class filter on user generated content to a whitelist.
• Only show Activity link to those with Garden.Activity.View permission.
• Remove unnecessary CSS & files from plugins.
• Fix comments not updating the latest post on categories.
• Global banning will now register as bans by the user who created the rule.
• Fix Facebook permissions scope.
• Update Facebook plugin according to changes in the Facebook API.
• Default SSO to only sync roles on registration.
• Mark SAML connections as always trusted.

July:

• Default profile URLs are now /profile/name in navigation (previously /profile/id/name) on sites with unique usernames. Both formats have always worked.
• Add config option to control SAML sign out.
• Lithe mobile: Show search results pager.
• Fix initial permissions during site spawning.
• Add GitHub magic field to Profile Extender.
• Reverse order of values in Year select input.
• Add AgeGate MinAgeWithConsent config setting.
• Allow for giving permissions to a rank based on the permissions of a role.
• Add ability to recalculate reaction data through utility controller.
• Fix sharding issue (sort order) and add auto-sharding & randomization to caching layer.
• Hide some unsupported BBCode tags with NBBC.
• Get the user data for profile reaction pages correctly after recent config change.
• Recognize Nintendo 3DS and New 3DS browser as mobile devices.
• IPB Formatter: Add format support to editor, render attachment as anchor if no ImageWidth is given, & remove FileUpload dependence.
• Add linkifying of text links and translation of markup quotes to IPB Formatter.
• Debugger: Show output to admin and superadmins only.
• Add link to register your Disqus application.
• Deflector theme: Fix 'change picture' profile link.
• Editor: Don't process gifs so animation isn't broken.
• Editor: Use textarea id to calculate width of textarea.
• Throw permission exception when attempting to merge discussion redirects.
• Remove double translate on registration forms.

September:

• NEW: "Avatars" menu item in Dashboard that allows default avatar management.
• Add PM filtering to Civil Tongue (censored words addon).
• Add PM formatting to Google Prettify (advanced code block formatting).
• Allow users to see their bookmarked discussions in their groups.
• Allow mentioning usernames with spaces by double-quoting the name.
• Fix caching issue involving new announcements.
• Allow template includes in Customize Theme.
• Fix mentions formatting for usernames with special characters.
• Prevent empty mention when hitting 'return'.
• Fix username validation during SSO scenario that prompts for name.
• Add a link to Remove Picture in the edit profile menu of your own profile.
• Fix bug where selecting the edit comment option from a comment's options dropdown twice shows made the upload preview not read-only.
• Clean up how code blocks are rendered in BBCode.
• Auto-trim user-entered API keys and config text by default in Dashboard.
• Always display discussions as unread for guests (zero-comment discussions could previously appear as read).
• Don't set discussions as read after API-based GET requests.
• Eliminate an edge case where an email could be triggered by SSO connection even if the config was off.
• Fix the Ranks ability to set "edit window" not overriding the global setting.

November:

• Groups: design overhaul
• Add spam check when editing posts.
• API: Remove ability to set Photo URL on profile endpoint, move to /profile/picture.
• Fix incorrect User being set on profiles for Smarty templates.
• Show the preview button again when posting in preview mode.
• Update links to help docs in jsConnect.
• Markdown will now be the default on all new forums.
• Make HTML in categories description consistent across contexts.
• API: Improve /role/get, add, & edit.
• API: Make it easier to save category permissions.
• API: Add endpoint for getting info on a single category.
• Disable spam check when reporting a post.
• Rename “Delete Conversation” to “Leave Conversation”.
• Update inline docs for LinkedIn plugin.
• Fix invalid IP addresses being recorded & submitted to antispam services.
• Correct 'You' links in activity.
• Add missing "leave conversation" view.
• Fix tooltips that weren’t getting translated properly.
• Order user tag search by comment count.
• Rewrite our CDN asset links to always use SSL version.
• Fix ProfileExtender dropping data when email confirmation is used with applicant registration
• Groups: Fix repercussions of deleting LastUser.
• Spoilers: Show label translations.
• Add the ability for admins to add users without passwords.
• Add option to not include usernames in "to" field of outgoing e-mails.
• Allow formatting on Activity page.
• Allow jailed users to always report discussions.
• Promoted Content: Fix excerpt formatting to never show HTML tags.
• Remove the animated scrolling from the Quotes plugin.
• Allow nested quotes in Markdown.
• Stop QnA accepted answer from hijacking '#latest' anchor.
• Add support for OriginalFilename to uploads.
• Groups: Allow bookmark & mention notifications in group-based discussions.
• Don't force notifications for QnA responses (respect settings correctly).
• Update CountUnreadConversations after ignore.
• Subcommunities: Fix category nesting and permissions.

Next release will be late January.

Changes:

• HTML emails now available.
• Applicants list is now asynchronous with improved UI.
• Spoilers added as core feature with updated formatting.
• Automatic bans (from Banning rules) can now be reversed.
• Reactions will now always show on all devices, instead of on-hover for larger screens ("desktop").
• Sign In form now auto-focuses on Username field.
• Fix newest comment data for zero-comment discussions in table view.
• Post excerpts (as in search) now have a minimum length of 32 even if a double-return is found first.
• Remove line breaks in meta description.
• Added events to support new analytics system.
• Fix styling of '/me' posts.
• QnA: Allow users to accept their own answer.
• Reactions: Add an option to allow users to react to their own posts.
• Add advanced editor options to New Poll screen.
• Fix plus signs in URLs, especially usernames / profiles.
• Improve SSO workflow for existing usernames.
• Rework discussion sorting and filtering architecture.
• Add no-store header to profiles so read/unread status updates on Back button.
• Pockets: fix repeating pockets between discussions, and enable on table view.
• Subcommunities: Fix category dropdown filtering when in a subcommunity.
• Hide editor toolbar when previewing.
• Fix double-deletion of comment drafts when posting, which could cause a Javascript error.
• Fix scenario where Quotes could interfere with Spoilers.
• Vanillicons: Now defaults to v2.
• NBBC: Fix scenario that could break search results formatting.
• Fix opaque photo cropping box.
• Fix and unify logic for determining permission to edit a user's photo.
• Allow quotes to be collapsed in reported posts.
• Allow collapsing of quotes with alternate formatting.
• Make even deeply-nested quotes minimally legible.
• Update dropdown menu rendering in several places.
• Update number formatting for discussion & comment counts on All Categories page.
• Update stock themes for Ideation.
• Groups: Allow anyone who can edit an event to also delete it.

New addons available:

• Ideation (vote on ideas)
• Microsoft Account SSO
• CAS SSO
• Keyword Blocker (send posts with certain keywords to mod queue)
• Necro Posts (labels recently-revived discussions)
• User Points Booster (allow awarding points for discussions or comments)
• Whitelist (provide an IP whitelist for site access)

Note they'd need to request any of these to see them. I'm not symlinking them all for the fun of it.

• New plugin: Role Tracker (aggregates discussions with posts by users in particular roles).
• New plugin: Welcome Post (invites newly registered to start an intro discussion immediately).
• Upgrade to Smarty 3 templating engine for custom themes. It's a little bit stricter, faster, and more secure than Smarty 2 was.
• Further improve scaling for large numbers of categories. Faster page loads!
• Add option to exclude moderators and/or admins from leaderboards.
• Move profile thumbnail editing to same page as photo uploading.
• OpenID: Prevent bad rendering when URL is invalid.
• Don't show Google+ login when enabled but not configured.
• Add support for inline (async) forms. Paving the way for more slickness soon.
• Keep attachments when a discussion becomes a comment via Split/Merge.
• Automatically update CSRF token with async requests. This is so we can invalidate them more frequently in the future and improve our security even more.
• Add ideation page as a target for messages.
• Add categories page as a target for messages.
• Set a limit on the page number in Best Of (it helps performance to not let pages go infinitely high).
• Fix edge cases where notifications preferences would not display completely.
• Tighten security of Target parameter during sign in to disallow bad redirects.
• Refresh the page after announcing a discussion.
• Markdown: Allow starting lists without a newline.
• Change how IP addresses are logged and allow IPv6 (no more 0.0.0.2 placeholder addresses appearing).
• Remove the invite feature from the Getting Started page (it was poorly understood and not very good, frankly).
• Remove site logo from Deflector theme footer.
• Fix Cyrillic character recognition in CivilTongueEx.
• Fix Ideation crashing /discussions/promoted.
• Fix default translation of "Post Discussion".
• QnA: Fix "unanswered" status for discussions converted to questions by an admin.
• Hub: Add synchronize for subcommunities and default locale.
• Fix emoji menu not being properly dismissed.
• Hide "Dismiss" option on announcements from guests cuz it never did anything anyway.
• Add CSRF prevention and remove redirect from Mark All Viewed option.
• Encode mail subject properly (UTF-8).
• Fix broken reaction pagination on profile pages.

• Fix emoji, mention rendering inside WYSIWYG code blocks (they shouldn't).

• Add $Homepage Smarty variable that is true/false depending on if you are on the homepage.

• Fix double encoding Open Graph title tag (would've shown up as extra ampersands in Facebook shares and stuff like that).
• Hub: Do not sync category permissions for an overridden role.
• Hub: Add optional landing page.
• Switch to separate library for password hashing. We're compartmentalizing some features like this to make maintenance easier.
• We completed some very large projects to carefully rework several parts of our framework to get ready for API v2, but there's no outward effect of this for you.