Strapi Release: 4.25.9

TL;DR

Strapi v4.25.9 brings important bug fixes and enhancements to improve stability and user experience. This release fixes Discord authentication username assignment, updates axios to address security concerns, adds validation to prevent deployment of suspended projects, and includes various maintenance improvements. These changes primarily benefit developers using Discord authentication and those working with Strapi Cloud deployments.

Highlight of the Release

• Fixed Discord authentication username assignment to accommodate Discord's platform changes
• Updated axios dependency to version 1.7.4 for security improvements
• Added validation in CLI to prevent deployment of suspended projects
• Synchronized getstarted schema between v4 and v5

Migration Guide

No specific migration steps are required for this release. This is a patch update that should be backward compatible with previous v4.25.x versions.

For general update guidance:

• Follow the general update guide
• For major version migrations, refer to the migration guides

Upgrade Recommendations

This release contains important bug fixes and security updates, particularly for users utilizing Discord authentication and Strapi Cloud deployments.

Recommended action: All users should upgrade to v4.25.9, especially if you:

• Use Discord authentication in your Strapi application
• Deploy to Strapi Cloud
• Want to ensure you have the latest security patches for axios

To upgrade, run:

npm install [email protected]

or

yarn upgrade [email protected]

Bug Fixes

Discord Authentication Username Fix

Fixed an issue where Discord authentication wasn't correctly assigning usernames (#17067). This fix adapts to changes made by Discord to their platform, ensuring that when users authenticate through Discord, their usernames are properly assigned in Strapi.

CLI Endpoint Path Update

Fixed the endpoint path for listLinkProjects in the Strapi CLI (#21052), ensuring proper functionality when working with linked projects.

New Features

No significant new features were introduced in this release. This update primarily focuses on bug fixes, security improvements, and maintenance tasks to enhance stability and user experience.

Security Updates

Axios Security Update

Updated axios dependency to version 1.7.4 (#21014) to address potential security vulnerabilities in previous versions. This update helps maintain the security posture of Strapi applications by incorporating the latest security patches from the axios library.

Performance Improvements

No specific performance improvements were highlighted in this release. The changes were primarily focused on bug fixes, security updates, and maintenance tasks.

Impact Summary

This release focuses on stability and maintenance with targeted fixes for specific functionality. The Discord authentication fix resolves an issue affecting users who authenticate through Discord, ensuring proper username assignment. The axios security update improves the overall security posture of Strapi applications. For Strapi Cloud users, the CLI enhancements provide better handling of suspended projects and improved project linking functionality. Overall, this is a maintenance release that addresses specific issues without introducing breaking changes, making it a recommended update for all Strapi users to maintain security and stability.

Full Release Notes