We just did a new minor release of Snuffleupagus,
0.2.1, named Elephant Point.
Its name comes from the Elephant
Point promontory, mainly because
we think that the main
inhabitants of this piece of rock
are lookin' awesome!
If you still don't know what Snuffleupagus is, you might want to read the post about its previous release.
This release is mostly a bugfix one:
- The testsuite can now be successfully run as
root. It was previously failing because the
rootuser can write to any file, making the don't execute writeable files protection moot.
- Fix a double execution when snuffleupagus is used with some extensions that
are hooking the
zend_execute_interalfonction too, found by Remi Collet.
- Fix an execution-context related crash, spotted (as usual?) by freetux.
- PCRE2 support, since it's what PHP7.3 is using. We wrote a compatibility layer for this, since apparently, no one on the internet is bothering to write one.
- Improve a bit the portability of the code, especially with regard to Windows.
- Minor code simplification
The next big feature will likely be session cookie encryption, along with some other minor things. Feel free to pick some low hanging fruits if you want to help us to secure a significant part of the web.
See you in your PHP stack!