Tag Name: 3.35.1
Release Date: 10/1/2020
GhostOpen-source publishing platform specifically designed for professional bloggers and publications. Focuses on clean, minimalist writing and publishing experience.
This patch release addresses critical issues with newsletter email sending, members form functionality, and member list display. The update ensures newsletters are delivered properly, fixes data attribute handling in member forms, and resolves a UI issue where the first set of members appeared twice in the admin interface. Additional improvements include enhanced member authentication email customization and better handling of Origin headers for security contexts.
No migration steps are required for this patch release. Simply update to version 3.35.1 to benefit from the bug fixes and enhancements.
This patch release fixes several critical bugs affecting newsletter functionality and member management. Immediate upgrade is recommended for all Ghost installations, especially for sites that:
The update is a standard patch release with no breaking changes, making it a low-risk upgrade that addresses important functionality issues.
Fixed a critical typo in the email sending refactor that was causing Error: 'to' parameter is missing errors when attempting to send email previews and bulk emails.
Resolved an issue where the members form was incorrectly assuming the presence of the data-members-name element in the document. The code now properly guards against this scenario and defaults to undefined when the element is not present, falling back to existing behavior.
Fixed a UI bug where the first set of members was appearing twice in the members list interface, causing confusion and potential management issues.
Member authentication emails now support additional customization options:
Updated all Origin header checks to properly handle the string 'null' as specified in RFC 6454. The Origin header must be set to 'null' when in a "privacy-sensitive" context, and Ghost was not handling this string correctly, which was causing errors. The update ensures that when the Origin header value is 'null', it's treated as if the header was not present, improving security in privacy-sensitive contexts.
Reference: RFC 6454 Section 7.3
No specific performance improvements were included in this patch release.
Ghost 3.35.1 is a targeted patch release that fixes three critical bugs affecting core functionality. The most significant impact is on newsletter publishing, where a typo in the email sending code was preventing email previews and bulk emails from being sent properly. This release ensures newsletters can be delivered reliably again.
The update also resolves issues with member management, including fixing duplicate entries in the members list and improving the robustness of member signup forms by properly handling missing data attributes. These fixes ensure a more reliable experience for both administrators and site visitors.
Additionally, the release enhances member authentication emails with more customization options and improves security by correctly handling 'null' Origin headers in privacy-sensitive contexts as specified in RFC 6454.
Overall, this release maintains stability while addressing specific functional issues that were impacting day-to-day operations for Ghost publishers.
See the changelogs for Ghost and Ghost-Admin for the details of every change in this release.
