This release fixes reading blocklists through symlinks, and tweaks config behaviour to prevent the misconfig where configs are downloaded into folders that are not read. Technically this means that from this version onwards you might block things you were not blocking before, but was likely a misconfig where your blocklists were not being read.

What's Changed

• feature: add sourcesStore to sourcedirs by @cottand in #94
• fix: error when blocklists stored in symlinked folders by @cottand in #93
• chore: 1.7.1 by @cottand in #95
• chore: update dependencies by @cottand in #92

Full Changelog: v1.7.0...v1.7.1

This release comes with a significant refactor if the internal workings of leng - you can expect faster responses, especially on high load.

The API endpoint for past queries has been removed, as its functionaly overlapped with high-cardinality prometheus metrics. It also introduced added complexity and state to the app -- removing it simplifies the codebase which makes maintining it easier.

There are other minor improvements, including

• new prometheus metric for cache hit rates
• all round updates and security fixes

What's Changed

• api: (BREAKING) remove question cache by @cottand in #81
• add metric for tracking cache hits by @cottand in #67
• fix cache counter metric not registered by @cottand in #68
• metrics: histogram for upstream resolve duration by @cottand in #71
• document histograms, add doh upstream test by @cottand in #73
• docs: specify how to use leng for local nameserver resolution in NixOS by @cottand in #76
• docs: cover DoH privacy via an additional proxy by @cottand in #70
• ci: install nix with detsys to fix nixos tests by @cottand in #80
• test for locan DNS resolution in machine hosting leng by @cottand in #78
• security: clean path before uploading blocklists by @cottand in #79
• feat: new cache implementation by @cottand in #82
• use new cache in handler, refactor handler by @cottand in #83
• chore: update all dependencies by @cottand in #84
• chore: update gh actions workflows by @cottand in #85
• chore(deps): bump golang.org/x/crypto from 0.24.0 to 0.31.0 by @dependabot in #77
• v1.7.0 by @cottand in #86

Full Changelog: v1.6.1...v1.7.0

This release adds integration tests that use VMs to emulate a DNS server and a client making queries, and fixes a breaking change in Github Actions' upload-artifact v4, which CI relied upon in order to merge Docker manifests for multi-arch images..

To make the CI easier for me to maintain, the Dockerfile-based builds are gone in favour of a single Nix-based container build. This has the breaking change of dropping support for 32-bit ARM on docker, and the benefit of bringing reproducible builds to container images. Given the armv6 images had practically no downloads, few if any existing users should be accepted (do please open an issue if this is you!).

This in turn makes leng practically a FROM SCRACtH image, which reduces its image attack surface. Image size remains about the same (pretty small at 7MB).

Because of the breaking changes above, this marks release 1.6.

What's Changed

• chore(deps): bump actions/download-artifact from 3 to 4.1.7 in /.github/workflows by @dependabot in #62
• test: add integration nixos tests by @cottand in #63
• ci: update upload-artifact in GHA by @cottand in #64
• support for actions artifact-v4, Nix docker builds by @cottand in #65

Full Changelog: v1.5.3...v1.6.0

What's Changed

• Dependencies update by @cottand in #60
• remove outdated blocklist, bump to 1.5.3 by @cottand in #61

Full Changelog: v1.5.2...v1.5.3

Non-functional release - fixes vulnerabilities by updating dependencies and makes the binary smaller by removing dead code.

What's Changed

• Vendor Go dependencies, update miekg/dns, update nixpkgs by @cottand in #54
• clean up stateful activation code by @cottand in #56
• revendor depdendencies (updates protobuf, prometheus) by @cottand in #57
• bump google.golang.org/protobuf from 1.30.0 to 1.33.0 by @dependabot in #58
• bump golang.org/x/net from 0.20.0 to 0.23.0 by @dependabot in #59

Full Changelog: v1.5.1...v1.5.2

This release has no functional changes but it tweaks some metrics labels -- some labels are now disabled by default. Please see the docs on high cardinality metrics.

What's Changed

• doc: fix typo in legacy nix code snippet, and clarify, fixes #47 by @cottand in #48
• chore(deps): bump golang.org/x/crypto from 0.14.0 to 0.17.0 by @dependabot in #46
• fix: add CAP_NET_BIND_SERVICE to flake by @a-jackson in #49
• feat/fix: allow disabling high cardinality metrics, and add an option to periodically reset them by @cottand in #51

New Contributors

• @a-jackson made their first contribution in #49 ❤️

Full Changelog: v1.5.0...v1.5.1

No functional changes for this release, other than adding a new config field that allows changing the sources directory. Leng is also now configurable via a NixOS module.

What's Changed

• feat: NixOS module support, fixes #29 by @cottand in #45
• doc: fix issues with toml in Configuration.md by @wycre in #40

New Contributors

• @wycre made their first contribution in #40 ❤️

Full Changelog: v1.4.1...v1.5.0

This release contains no code changes, but it updates the documentation and adds support for including compiled binaries to Github releases.

Full Changelog: v1.4.0...v1.4.1

First post rename release!

Full Changelog: v1.3.1...v1.4.0