0.6.10

Security Notice

We addressed 2 vulnerabilities in this release:

• Do not panic with empty Range header (https://github.com/actix/actix-web/security/advisories/GHSA-gcqf-3g44-vc9p).
• Avoid serving CWD on invalid Files::new inputs (https://github.com/actix/actix-web/security/advisories/GHSA-8v2v-wjwg-vx6r).

We encourage updating your actix-files version as soon as pos...

• No significant changes since 4.12.0.

• Correct derive_more dependency feature requirements.

Short announcement

We've started GitHub Sponsors: https://github.com/sponsors/actix Support our development!

v4.12.0

• actix_web::response::builder::HttpResponseBuilder::streaming() now sets Content-Type to application/octet-stream if Content-Type does not exist.
• actix_web::response::builder::HttpResponseBuilder::streaming() now calls `actix_web::response::builder::Http...

• Properly wake Payload receivers when feeding errors or EOF.
• Add ServiceConfigBuilder type to facilitate future configuration extensions.
• Add a configuration option to allow/disallow half closed connections in HTTP/1. This defaults to allow, reverting the change made in 3.11.1.
• Shutdown connections when HTTP Responses are written without reading full Requests.