You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: CHANGELOG.md
+32Lines changed: 32 additions & 0 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,5 +1,37 @@
1
1
# Changelog
2
2
3
+
## Changes 03/24/2026 (v3.11.1)
4
+
5
+
`release(v3.11.1): shared-hosting worker fallback and deleted-user session invalidation (closes #110)`
6
+
7
+
**Commit message**
8
+
9
+
```text
10
+
release(v3.11.1): shared-hosting worker fallback and deleted-user session invalidation (closes #110)
11
+
12
+
- transfer(shared-hosting): fall back from shell_exec to exec or foreground workers so move/copy/zip jobs stay usable on restrictive hosts (#110)
13
+
- compat(shell): degrade ClamAV, archive, and admin diagnostics paths cleanly when PHP command execution is unavailable
14
+
- auth(delete-user): invalidate deleted-account sessions and revoke remember-me tokens so removed users cannot regain access on subsequent requests
15
+
```
16
+
17
+
**Fixed**
18
+
19
+
-**Shared-hosting transfer compatibility**
20
+
- Fixed a case where move/copy jobs could fail with `500` on hosts that disable `proc_open()` / `shell_exec()` and similar process-launch functions, leaving folder operations unusable.
21
+
- FileRise now falls back to safer worker-launch paths and foreground execution where appropriate so transfer and ZIP workflows remain usable on more restrictive shared-hosting environments.
22
+
23
+
-**Deleted-account session invalidation**
24
+
- Fixed a case where a deleted account could continue using an already-established session until the PHP session expired or the web service was restarted.
25
+
- Deleted users can no longer regain access through remember-me restoration, and user deletion now revokes stored remember-me tokens for that account.
26
+
27
+
**Changed**
28
+
29
+
-**Shell-dependent feature degradation**
30
+
- Shell-backed features now report clearer host limitations when PHP command execution is unavailable instead of failing with less actionable worker or command errors.
31
+
- ClamAV diagnostics, archive operations, and related admin/runtime checks now degrade more cleanly on locked-down hosts.
32
+
33
+
---
34
+
3
35
## Changes 03/20/2026 (v3.11.0)
4
36
5
37
`release(v3.11.0): snippet ownership enforcement and phpseclib security update`
0 commit comments