Merge branch 'main' into feature/tree

# Conflicts:
#	resources/dist/inspirecms.css
#	src/CmsPanelProvider.php

Author: cklei-carly

.github/SECURITY.md

@@ -1,3 +1,47 @@
-# Security Policy
+If you discover a security vulnerability in InspireCMS, please review the following guidelines before submitting a report. We take security very seriously, and we do our best to resolve security issues as quickly as possible.
 
-If you discover any security related issues, please email info@solutionforest.net instead of using the issue tracker.
+## Guidelines
+While working to identify potential security vulnerabilities in InspireCMS, we ask that you:
+
+- **Privately** share any issues that you discover with us via inspirecms.com as soon as possible.
+- Give us a reasonable amount of time to address any reported issues before publicizing them.
+- Only report issues that are in scope.
+- Provide a quality report with precise explanations and concrete attack scenarios.
+
+## Scope
+We are only interested in vulnerabilities that affect InspireCMS itself, tested against **your own local installation** of the software, running the latest version. You can install a local copy of InspireCMS by following these  [instructions](https://inspirecms.net/). 
+Do not test against any InspireCMS installation that you don’t own, including [InspireCMS](https://inspirecms.net/).
+
+### Potentially Qualifying Vulnerabilities
+
+- [Cross-Site Scripting (XSS)](https://en.wikipedia.org/wiki/Cross-site_scripting)
+- [Cross-Site Request Forgery (CSRF)](https://en.wikipedia.org/wiki/Cross-site_request_forgery)
+- [Arbitrary Code Execution](https://en.wikipedia.org/wiki/Arbitrary_code_execution)
+- [Privilege Escalation](https://en.wikipedia.org/wiki/Privilege_escalation)
+- [SQL Injection](https://en.wikipedia.org/wiki/SQL_injection)
+- [Session Hijacking](https://en.wikipedia.org/wiki/Session_hijacking)
+
+### Non-Qualifying Vulnerabilities
+
+- XSS vectors or bugs that rely on an unlikely user interaction (i.e. a privileged user attacking themselves or their own site)
+- Reports from automated tools or scanners
+- Theoretical attacks without actual proof of exploitability
+- Attacks that can be guarded against by following our security recommendations.
+- Server configuration issues outside of InspireCMS’s control
+- [Denial of Service](https://en.wikipedia.org/wiki/Denial-of-service_attack) attacks
+- [Brute force attacks](https://en.wikipedia.org/wiki/Brute-force_attack) (e.g. on password or email address)
+- Username or email address enumeration
+- Social engineering of InspireCMS staff or users of InspireCMS installations
+- Physical attacks against InspireCMS installations
+- Attacks involving physical access to a user’s device, or involving a device or network that is already seriously compromised (e.g. [man-in-the-middle attacks](https://en.wikipedia.org/wiki/Man-in-the-middle_attack))
+- Attacks that are the result of a 3rd party InspireCMS addon should be reported to the addon’s author
+- Attacks that are the result of a 3rd party library should be reported to the library maintainers
+- Disclosure of tools or libraries used by InspireCMS and/or their versions
+- Issues that are the result of a user doing something silly (like sharing their password publicly)
+- Missing security headers which do not lead directly to a vulnerability via proof of concept
+- Vulnerabilities affecting users of outdated/unsupported browsers or platforms
+- Vulnerabilities affecting outdated versions of InspireCMS
+- Any behavior that is clearly documented.
+- Issues discovered while scanning a site you don’t own without permission
+- Missing CSRF tokens on forms (unless you have a proof of concept, many forms either don't need CSRF or are mitigated in other ways) and "logout" CSRF attacks
+- [Open redirects](https://cheatsheetseries.owasp.org/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.html)

.github/workflows/fix-php-code-style-issues.yml

@@ -22,6 +22,6 @@ jobs:
         uses: aglipanci/laravel-pint-action@2.5
 
       - name: Commit changes
-        uses: stefanzweifel/git-auto-commit-action@v5
+        uses: stefanzweifel/git-auto-commit-action@v6
         with:
           commit_message: Fix styling

.github/workflows/update-changelog.yml

@@ -24,7 +24,7 @@ jobs:
           release-notes: ${{ github.event.release.body }}
 
       - name: Commit updated CHANGELOG
-        uses: stefanzweifel/git-auto-commit-action@v5
+        uses: stefanzweifel/git-auto-commit-action@v6
         with:
           branch: main
           commit_message: Update CHANGELOG

CHANGELOG.md

@@ -2,6 +2,76 @@
 
 All notable changes to `inspirecms-core` will be documented in this file.
 
+## 0.0.91 - 2025-06-24
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.90...0.0.91
+
+## 0.0.90 - 2025-06-23
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.89...0.0.90
+
+## 0.0.89 - 2025-06-20
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.88...0.0.89
+
+## 0.0.88 - 2025-06-20
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.87...0.0.88
+
+## 0.0.87 - 2025-06-19
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.84...0.0.87
+
+## 0.0.86 - 2025-06-19
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.84...0.0.86
+
+## 0.0.85 - 2025-06-19
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.84...0.0.85
+
+## 0.0.84 - 2025-06-19
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.82...0.0.84
+
+## 0.0.83 - 2025-06-19
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.82...0.0.83
+
+## 0.0.82 - 2025-06-18
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.81...0.0.82
+
+## 0.0.81 - 2025-06-17
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.80...0.0.81
+
+## 0.0.80 - 2025-06-17
+
+- Performance tunning for MediaPicker
+- Add doc link and view site link on top right
+- Remove AssetController (replace URL logic by spatie media library)
+
+### What's Changed
+
+* build(deps): bump stefanzweifel/git-auto-commit-action from 5 to 6 by @dependabot in https://github.com/solutionforest/Inspirecms-core/pull/5
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.79...0.0.80
+
+## 0.0.79 - 2025-06-16
+
+- Update Page component instructions on template preview
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.78...0.0.79
+
+## 0.0.78 - 2025-06-16
+
+### Fix
+
+- Preview with livewire
+
+**Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.77...0.0.78
+
 ## 0.0.77 - 2025-06-13
 
 **Full Changelog**: https://github.com/solutionforest/Inspirecms-core/compare/0.0.76...0.0.77

CONTRIBUTING.md

@@ -0,0 +1,73 @@
+# How to Contribute to InspireCMS
+
+:sparkles: Before we get started, thank you for taking the time to contribute! :sparkles:
+
+This is a guideline for contributing to InspireCMS, its documentation, and addons. All of these wonderful things are hosted here in the [InspireCMS organization](https://github.com/solutionforest/inspirecms-core) on GitHub. We welcome your feedback, proposed changes, and updates to these guidelines. We will always welcome thoughtful issues and consider pull requests.
+
+#### Table of Contents
+
+- [What You Should Know Before Contributing](#what-you-should-know-before-contributing)
+- [InspireCMS isn’t FOSS](#InspireCMS-isnt-foss)
+- [How to Get Support](#how-to-get-support)
+- [How You Can Contribute](#how-you-can-contribute)
+- [Which Repo?](#which-repo)
+- [Bug Reports](#bug-reports)
+- [Feature Requests](#feature-requests)
+- [Security Disclosures](#security-disclosures)
+- [Core Enhancements](#core-enhancements)
+- [Documentation Edits](#documentation-edits)
+- [Pull Requests](#pull-requests)
+
+## What You Should Know Before Contributing
+
+### InspireCMS isn’t FOSS
+
+While InspireCMS's source code is open source, publicly available, and can be [used for free](https://inspirecms.net/#pricing) in many cases, it is proprietary. Everything in this repo, including any community-contributed code, is the property of Solution Forest Limited. For that reason there are a few limitations on how you can use the code:
+
+- You cannot alter anything related to licensing, updating, version or edition checking, purchasing, first party notifications or banners, or anything else that attempts to circumvent paying for features that are designated as InspireCMS Pro features. We want to stay in business so we can better support _you_ and the community.
+- You can’t publicly maintain a long-term fork of InspireCMS.
+
+### How to Get Support
+
+If you're looking for official developer support (and you have an active license), please email us halo@inspirecms.net. We will always do our best to reply in a timely manner. **Github issues are intended for reporting bugs.**
+
+## How You Can Contribute
+
+### Which Repo?
+
+InspireCMS is broken out into a few Github repositories. Here's a quick summary of each.
+
+- [`Inspirecms-core`](https://github.com/solutionforest/Inspirecms-core) is the core package. It doesn't run by itself but is instead a dependency consumed by Laravel apps. 99% of the work goes on here.
+
+### Bug Reports
+
+First things first. If the bug is security related refer to our [security disclosures](#security-disclosures) procedures instead of opening an issue.
+
+Next, please search through the [open issues](https://github.com/solutionforest/Inspirecms-core/issues) to see if it has already been opened.
+
+If you _do_ find a similar issue, upvote it by adding a :thumbsup: [reaction](https://github.com/blog/2119-add-reactions-to-pull-requests-issues-and-comments). Only leave a comment if you have relevant information to add.
+
+If no one has filed the issue yet, feel free to [submit a new one](https://github.com/solutionforest/Inspirecms-core/issues/new?template=bug.yml). Please include a clear description of the issue, follow along with the issue template, and provide and as much relevant information as possible. Code examples demonstrating the issue are the best way to ensure a timely solution to the issue.
+
+### Feature Requests
+
+TBC
+
+### Security Disclosures
+
+If you discover a security vulnerability, please review our [Security Policy](https://github.com/solutionforest/Inspirecms-core/security/policy). We will review and respond privately via email.
+
+### Documentation Edits
+
+InspireCMS's documentation lives in the [https://github.com/solutionforest/Inspirecms-core/tree/main/docs](https://github.com/solutionforest/Inspirecms-core/tree/main/docs) repository. Improvements or corrections to them can be submitted as a pull request.
+
+### Core Enhancements
+
+If you would like to work on a new core feature or improvement, first create a [Github issue](https://github.com/solutionforest/Inspirecms-core/issues) for it if there’s not one already. While we appreciate community contributions, we do remain selective about what features make it into InspireCMS itself, so don’t take it the wrong way if we recommend that you pursue the idea as an addon instead.
+
+### Pull Requests
+
+Pull requests should clearly describe the problem and solution. Include the relevant issue number if there is one. If the pull request fixes a bug, it should include a new test case that demonstrates the issue, if possible.
+
+
+

README.md

@@ -1,5 +1,10 @@
-# This is my package inspirecms-core
+<p align="center"><img src="https://github.com/user-attachments/assets/ca52c7ca-41ed-48d2-9f85-2fd706857cf4" width="500" alt="InspireCMS Logo" /></p>
 
+
+# InspireCMS Core
+
+![Laravel Supported Versions](https://img.shields.io/badge/laravel-11.x/12.x-green.svg)
+![Filament Supported Versions](https://img.shields.io/badge/filament->=3.3-green.svg)
 [![Latest Version on Packagist](https://img.shields.io/packagist/v/solution-forest/inspirecms-core.svg?style=flat-square)](https://packagist.org/packages/solution-forest/inspirecms-core)
 [![GitHub Tests Action Status](https://img.shields.io/github/actions/workflow/status/solution-forest/inspirecms-core/run-tests.yml?branch=main&label=tests&style=flat-square)](https://github.com/solutionforest/inspirecms-core/actions?query=workflow%3Arun-tests+branch%3Amain)
 [![GitHub Code Style Action Status](https://img.shields.io/github/actions/workflow/status/solution-forest/inspirecms-core/fix-php-code-styling.yml?branch=main&label=code%20style&style=flat-square)](https://github.com/solutionforest/inspirecms-core/actions?query=workflow%3A"Fix+PHP+code+styling"+branch%3Amain)
@@ -9,11 +14,10 @@
 
 InspireCMS is the foundation library that powers the InspireCMS platform. This package provides essential functionality, including content management, admin interfaces, and extensibility features. Designed with flexibility and developer experience in mind, it allows you to quickly build customized content management systems for your Laravel applications.
 
-## Testing
+## Support
+
+We provide official developer support on [InspireCMS Pro](https://inspirecms.net/#pricing) projects.
 
-```bash
-composer test
-```
 
 ## Contributing
 
@@ -27,15 +31,6 @@ Please see [CHANGELOG](CHANGELOG.md) for more information on what has changed re
 
 Please review [our security policy](../../security/policy) on how to report security vulnerabilities.
 
-## Credits
-
-- [carly](https://github.com/solutionforest)
-- [All Contributors](../../contributors)
-
-## License
-
-The MIT License (MIT). Please see [License File](LICENSE.md) for more information.
-
 ## Resources
 
-* [Documentation](./docs/index.md)
+* [Documentation](https://inspirecms.net/)

composer.json

@@ -27,7 +27,7 @@
         "filament/spatie-laravel-translatable-plugin": "^3.2",
         "guava/filament-icon-picker": "^2.0",
         "khatabwedaa/blade-css-icons": "^1.5",
-        "pboivin/filament-peek": "^2.0",
+        "pboivin/filament-peek": "^2.4",
         "solution-forest/filament-field-group": "^1.0.14",
         "solution-forest/inspirecms-support": "self.version",
         "spatie/laravel-package-tools": "^1.15.0",

config/inspirecms.php

@@ -60,6 +60,7 @@
         'override_plugins' => [
             'field_group_models' => true, // Whether to override field group models
             'spatie_permission' => true,  // Whether to override Spatie Permission package functionality
+            'filament_peek' => true, // Whether to override Filament Peek package functionality
         ],
     ],
 
@@ -169,14 +170,6 @@
              */
             'should_map_video_properties_with_ffmpeg' => false,
 
-            /**
-             * HTTP middleware applied to media requests
-             */
-            'middleware' => [
-                SetUpPoweredBy::class,
-                'cache.headers:public;max_age=2628000;etag',
-            ],
-
             /**
              * Responsive image generation settings
              */
@@ -416,11 +409,6 @@
     ],
 
     'template' => [
-        /**
-         * Default template theme for the CMS
-         */
-        'default_theme' => 'manifest',
-
         /**
          * The prefix for the component names used in the CMS
          */