ci: release#1449
Merged
Merged
Conversation
Deploying with
|
| Status | Name | Latest Commit | Updated (UTC) |
|---|---|---|---|
| ✅ Deployment successful! View logs |
emdash-demo-cache | 5686c3c | Jun 16 2026, 04:24 PM |
Deploying with
|
| Status | Name | Latest Commit | Updated (UTC) |
|---|---|---|---|
| ✅ Deployment successful! View logs |
docs | 5686c3c | Jun 16 2026, 04:25 PM |
Deploying with
|
| Status | Name | Latest Commit | Updated (UTC) |
|---|---|---|---|
| ✅ Deployment successful! View logs |
emdash-playground | 5686c3c | Jun 16 2026, 04:27 PM |
@emdash-cms/admin
@emdash-cms/auth
@emdash-cms/auth-atproto
@emdash-cms/blocks
@emdash-cms/cloudflare
@emdash-cms/contentful-to-portable-text
emdash
create-emdash
@emdash-cms/gutenberg-to-portable-text
@emdash-cms/plugin-cli
@emdash-cms/plugin-types
@emdash-cms/registry-client
@emdash-cms/registry-lexicons
@emdash-cms/sandbox-workerd
@emdash-cms/x402
@emdash-cms/plugin-ai-moderation
@emdash-cms/plugin-atproto
@emdash-cms/plugin-audit-log
@emdash-cms/plugin-color
@emdash-cms/plugin-embeds
@emdash-cms/plugin-field-kit
@emdash-cms/plugin-forms
@emdash-cms/plugin-webhook-notifier
commit: |
github-actions
Bot
added
cla: signed
area/admin
area/auth
area/cloudflare
area/core
area/plugins
bot
size/M
labels
Contributor
Scope checkThis PR touches 29 files. PRs with a broad scope are harder to review. Please confirm the scope hasn't drifted beyond the intended change. If this scope is intentional, no action needed. A maintainer will review it. If not, please consider splitting this into smaller PRs. See CONTRIBUTING.md for contribution guidelines. |
emdashbot
Bot
force-pushed
the
changeset-release/main
branch
from
298ab3b to
8966c93
Compare
emdashbot
Bot
force-pushed
the
changeset-release/main
branch
14 times, most recently
from
fa1f046 to
4472354
Compare
emdashbot
Bot
force-pushed
the
changeset-release/main
branch
7 times, most recently
from
2f5bd63 to
4ca57a1
Compare
emdashbot
Bot
force-pushed
the
changeset-release/main
branch
from
4ca57a1 to
5686c3c
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR was opened by the Changesets release GitHub action. When you're ready to do a release, you can merge this and the packages will be published to npm automatically. If you're not ready to do a release yet, that's fine, whenever you add more changesets to main, this PR will be updated.
Releases
@emdash-cms/admin@0.20.0
Minor Changes
#1427
acfeb89Thanks @swissky! - Media details show the file URL with a Copy URL actionThe media library previously exposed no way to obtain a file's URL — the
detail panel now shows the absolute file URL (relative local-storage paths
are resolved against the current origin) with a one-click copy button, so
editors can paste media URLs wherever a URL field is needed.
#1425
3e344afThanks @swissky! - Repeater fields supportimagesub-fields with the media picker (#1424)Repeater rows previously rendered every non-scalar sub-field as a plain text
input, so galleries had to be built from hand-pasted URLs. Image sub-fields
now render the same media-picker UI as top-level image fields (select,
preview, change, remove) and store the same MediaValue shape — legacy string
URLs keep working.
Includes:
imagein the schema-builder sub-field type select, the sharedImageFieldRendererextracted out ofContentEditorfor reuse, and thesub-field type whitelists in core (
REPEATER_SUB_FIELD_TYPES+ the API Zodenum) extended — the Zod enum also gains the previously missing
urlentrythat the builder already offered.
Patch Changes
#1447
141aa11Thanks @ascorbic! - Fixes@atcutepeer dependency warnings on install (#1435)Installing EmDash pulled in mismatched
@atcutepackage versions, sopnpm install/npm installreported unmet peer warnings for@atcute/identityand@atcute/lexicons. The bundled@atcutedependencies are now aligned on v2 and installs are clean. If your project also depends on@atcutepackages directly, note they have moved to v2 (@atcute/client5,@atcute/lexicons2,@atcute/atproto4,@atcute/oauth-node-client2).#1478
ddf8f0dThanks @pitscher! - Fixes localization for sections API fallback error messages in the admin UI#1473
68840a9Thanks @pitscher! - Fixes localization for the dashboard API fallback error message in the admin UI#1468
eaedec0Thanks @pitscher! - Fixes localization for the generic dialog error fallback in the admin UI#1465
8bb20c4Thanks @pitscher! - Fixes untranslated MediaPickerModal references for the library#1486
fb31240Thanks @ascorbic! - Adds an avatar image picker to the byline editor. TheavatarMediaIdfield was already part of the byline model and API but had no admin control, so byline avatars could only be set programmatically, and editing a byline through the UI cleared any avatar that had been set. You can now choose, change, and remove a byline's avatar from the editor.#1476
022fd66Thanks @pitscher! - Fixes localization for search API fallback error messages in the admin UI#1454
5d8358bThanks @pitscher! - Fixes untranslated ContentTypeEditor form text to let it be translatable#1499
ce96271Thanks @swissky! - Capitalize German status labels (published,scheduled,archived,pending) in the admin UI. As standalone badge labels these are nouns and should follow German capitalization (e.g. "publiziert" → "Publiziert"), matching the already-capitalized "Entwurf".#1470
b2e65acThanks @pitscher! - Fixes localization for media API fallback error messages in the admin UI#1475
589d07fThanks @pitscher! - Fixes localization for the current-user API fallback error message in the admin UI#1411
d6269e7Thanks @memdigital! - Adds an en-GB (British English) locale to the admin UI. British spelling and morphology only - terminology is unchanged. en-GB browsers are auto-selected via the existing Accept-Language resolution.#1477
325c673Thanks @pitscher! - Fixes localization for shared API fallback messages in the admin UI#1496
af4af50Thanks @ahliweb! - Fixes the remaining untranslated Indonesian admin strings.#1472
c48604bThanks @pitscher! - Fixes localization for settings API fallback error messages in the admin UI#1455
52ea731Thanks @pitscher! - Fixes untranslated PluginFieldErrorBoundary strings#1507
6c1fe5cThanks @ascorbic! - Speeds up browsing and searching large media libraries. The media library and the media picker now load small resized thumbnails through Astro's image endpoint instead of fetching every grid item's full-size original, so opening the library and searching for older items no longer waits on full-resolution downloads (#1488). Where no runtime image service is available the original is served as before, so nothing renders worse than it did.#1500
6246774Thanks @swissky! - Fix unreadable "Published" status badge in dark mode. The content editor rendered the published badge as<Badge variant="primary" className="text-white">, which produces white text on a light inverted background in dark mode. Use the semanticvariant="success"(green) instead, which is dark-mode aware and matches the green "published" badge used on the content overview list.#1461
b01aa9bThanks @ascorbic! - Fixes registry installs failing with "Plugin manifest has changed since you consented" for plugins that declare hook-registration capabilities (email transport, email events, page fragments) or read user records. Plugin bundles now declare their access as a structureddeclaredAccesscontract that the registry record, the install-consent dialog, and the sandbox all read consistently, so every capability a plugin declares is shown for consent and enforced — no capability is silently dropped. Re-publish affected plugins to adopt the new bundle format; existing installs are unaffected.#1471
5f7cd11Thanks @pitscher! - Fixes localization for email settings API fallback error messages in the admin UI#1469
263392fThanks @pitscher! - Fixes localization for plugin API fallback error messages in the admin UI#1466
eddadf8Thanks @pitscher! - Fixes localization for code block language labels in the admin editorUpdated dependencies [
141aa11,b01aa9b]:@emdash-cms/cloudflare@0.20.0
Minor Changes
7688f0bThanks @ascorbic! - Adds adurableObjects()database adapter that stores the whole CMS in a single Durable Object's SQLite. Withsession: "auto"(plus theexperimentalandreplica_routingcompatibility flags) reads route to the nearest read replica and writes proxy to the primary, cutting read latency for globally distributed traffic. Register the exportedEmDashDBclass in your worker and add anew_sqlite_classesmigration.Patch Changes
141aa11,7688f0b,c7166b0,9c994ad,eddaf91,afc3a0f,3d423a7,b01aa9b,3e344af,7688f0b,8807701]:emdash@0.20.0
Minor Changes
#1461
b01aa9bThanks @ascorbic! - Fixes registry installs failing with "Plugin manifest has changed since you consented" for plugins that declare hook-registration capabilities (email transport, email events, page fragments) or read user records. Plugin bundles now declare their access as a structureddeclaredAccesscontract that the registry record, the install-consent dialog, and the sandbox all read consistently, so every capability a plugin declares is shown for consent and enforced — no capability is silently dropped. Re-publish affected plugins to adopt the new bundle format; existing installs are unaffected.#1425
3e344afThanks @swissky! - Repeater fields supportimagesub-fields with the media picker (#1424)Repeater rows previously rendered every non-scalar sub-field as a plain text
input, so galleries had to be built from hand-pasted URLs. Image sub-fields
now render the same media-picker UI as top-level image fields (select,
preview, change, remove) and store the same MediaValue shape — legacy string
URLs keep working.
Includes:
imagein the schema-builder sub-field type select, the sharedImageFieldRendererextracted out ofContentEditorfor reuse, and thesub-field type whitelists in core (
REPEATER_SUB_FIELD_TYPES+ the API Zodenum) extended — the Zod enum also gains the previously missing
urlentrythat the builder already offered.
Patch Changes
#1447
141aa11Thanks @ascorbic! - Fixes@atcutepeer dependency warnings on install (#1435)Installing EmDash pulled in mismatched
@atcutepackage versions, sopnpm install/npm installreported unmet peer warnings for@atcute/identityand@atcute/lexicons. The bundled@atcutedependencies are now aligned on v2 and installs are clean. If your project also depends on@atcutepackages directly, note they have moved to v2 (@atcute/client5,@atcute/lexicons2,@atcute/atproto4,@atcute/oauth-node-client2).#1492
7688f0bThanks @ascorbic! - Fixes a read-your-writes gap with database read replication: the session bookmark cookie is now persisted even when page rendering throws after a successful write, so an immediately-following request can't read pre-write state from a lagging replica.#1459
c7166b0Thanks @mvanhorn! - Fix scheduled entries staying hidden after their scheduled time (#1402)isVisible()readscheduledAtviadataStr, which returned an empty string for theDatethe loader produced, so entries whose scheduled time had passed never became visible. The visibility check now reads the scheduled time correctly.#1458
9c994adThanks @mvanhorn! - Fixnpx emdash typescrash caused by the schema endpoint envelope (#1188)The
/schemaroute returned an enveloped JSON body whileclient.request()already unwraps the.datafield, soemdash typesreceivedundefinedand crashed. The route now returns the un-enveloped shape the client expects.#1489
eddaf91Thanks @ascorbic! - Fixes admin pages hanging indefinitely (and eventually returning 524 timeouts) on Cloudflare Workers. The worker-lifetime caches for site settings and search-index health could be left holding a request that never completed (for example when a visitor's request was cancelled mid-load), which then stalled every later request served by that worker until it was recycled. These caches now keep resolved values rather than in-flight requests, so a cancelled or interrupted request can no longer wedge the rest.#1481
afc3a0fThanks @MA2153! - Fixes collectionwherefilters to apply every taxonomy key instead of silently dropping all but the first. Filtering by two or more taxonomies (e.g.{ category: ["news"], region: ["emea"] }) now returns the intersection — entries tagged in each taxonomy — matching how field and byline filters already compose.#1498
3d423a7Thanks @ascorbic! - Reduces redundant database queries when rendering content pages: widget areas are now request-cached, taxonomy term usage-counts are fetched once per request instead of once per taxonomy widget, andgetTermsForEntriesreuses already-hydrated terms instead of re-querying. Fewer round trips per page on every backend.#1492
7688f0bThanks @ascorbic! - Adds anrpc.countServer-Timing metric reporting physical database round trips, distinct fromdb.count(logical queries). Backends that batch (the new Durable Objects SQL driver coalesces same-turn reads into one round trip) can now surface how many round trips a request actually made.#1504
8807701Thanks @swissky! - Adds image entries to per-collection sitemaps. When a content entry has an SEO image, the sitemap now emits it as a Google<image:image>entry, helping Google discover and index page images for Google Images.Updated dependencies [
141aa11,ddf8f0d,68840a9,eaedec0,8bb20c4,fb31240,022fd66,5d8358b,ce96271,b2e65ac,589d07f,d6269e7,325c673,af4af50,c48604b,52ea731,acfeb89,6c1fe5c,6246774,b01aa9b,3e344af,5f7cd11,263392f,eddadf8]:@emdash-cms/plugin-cli@0.6.0
Minor Changes
b01aa9bThanks @ascorbic! - Fixes registry installs failing with "Plugin manifest has changed since you consented" for plugins that declare hook-registration capabilities (email transport, email events, page fragments) or read user records. Plugin bundles now declare their access as a structureddeclaredAccesscontract that the registry record, the install-consent dialog, and the sandbox all read consistently, so every capability a plugin declares is shown for consent and enforced — no capability is silently dropped. Re-publish affected plugins to adopt the new bundle format; existing installs are unaffected.Patch Changes
#1447
141aa11Thanks @ascorbic! - Fixes@atcutepeer dependency warnings on install (#1435)Installing EmDash pulled in mismatched
@atcutepackage versions, sopnpm install/npm installreported unmet peer warnings for@atcute/identityand@atcute/lexicons. The bundled@atcutedependencies are now aligned on v2 and installs are clean. If your project also depends on@atcutepackages directly, note they have moved to v2 (@atcute/client5,@atcute/lexicons2,@atcute/atproto4,@atcute/oauth-node-client2).Updated dependencies [
141aa11,b01aa9b]:@emdash-cms/plugin-types@0.1.0
Minor Changes
b01aa9bThanks @ascorbic! - Fixes registry installs failing with "Plugin manifest has changed since you consented" for plugins that declare hook-registration capabilities (email transport, email events, page fragments) or read user records. Plugin bundles now declare their access as a structureddeclaredAccesscontract that the registry record, the install-consent dialog, and the sandbox all read consistently, so every capability a plugin declares is shown for consent and enforced — no capability is silently dropped. Re-publish affected plugins to adopt the new bundle format; existing installs are unaffected.@emdash-cms/auth-atproto@0.2.16
Patch Changes
#1447
141aa11Thanks @ascorbic! - Fixes@atcutepeer dependency warnings on install (#1435)Installing EmDash pulled in mismatched
@atcutepackage versions, sopnpm install/npm installreported unmet peer warnings for@atcute/identityand@atcute/lexicons. The bundled@atcutedependencies are now aligned on v2 and installs are clean. If your project also depends on@atcutepackages directly, note they have moved to v2 (@atcute/client5,@atcute/lexicons2,@atcute/atproto4,@atcute/oauth-node-client2).Updated dependencies []:
create-emdash@0.20.0
Patch Changes
#1403
34dd430Thanks @scottbuscemi! - Scaffold local secrets into.envfor every platform, including Cloudflare — previously Cloudflare projects got.dev.vars.Since August 2025, Wrangler and the Cloudflare Vite plugin read
.envfiles in local development, so there's no longer a reason to split Node (.env) and Workers (.dev.vars). New projects now writeEMDASH_ENCRYPTION_KEYto a single.envfile regardless of platform, matching the dotenv convention most developers already expect.This is a deliberate, pre-1.0 hard switch away from
.dev.vars. It's called out as a minor bump rather than a patch because the scaffolded file changes name and the surrounding docs/guidance change with it.Backwards compatibility / upgrade notes:
.dev.varsyou already have keeps working; Wrangler still reads it..dev.varsor.env, never both: if a.dev.varsfile is present its values win and.envis ignored entirely. If you migrate an existing project to.env, move your secrets across and delete.dev.vars, otherwise the new.envis silently shadowed..dev.vars,create-emdashnow prints a warning explaining the shadowing rule so the encryption key actually loads.emdash secrets generate --writealready accepted any path and is unchanged; only the documented/suggested target moves to.env.@emdash-cms/plugin-embeds@0.1.24
Patch Changes
@emdash-cms/registry-client@0.3.2
Patch Changes
#1447
141aa11Thanks @ascorbic! - Fixes@atcutepeer dependency warnings on install (#1435)Installing EmDash pulled in mismatched
@atcutepackage versions, sopnpm install/npm installreported unmet peer warnings for@atcute/identityand@atcute/lexicons. The bundled@atcutedependencies are now aligned on v2 and installs are clean. If your project also depends on@atcutepackages directly, note they have moved to v2 (@atcute/client5,@atcute/lexicons2,@atcute/atproto4,@atcute/oauth-node-client2).Updated dependencies [
141aa11,b01aa9b]:@emdash-cms/registry-lexicons@0.1.1
Patch Changes
#1447
141aa11Thanks @ascorbic! - Fixes@atcutepeer dependency warnings on install (#1435)Installing EmDash pulled in mismatched
@atcutepackage versions, sopnpm install/npm installreported unmet peer warnings for@atcute/identityand@atcute/lexicons. The bundled@atcutedependencies are now aligned on v2 and installs are clean. If your project also depends on@atcutepackages directly, note they have moved to v2 (@atcute/client5,@atcute/lexicons2,@atcute/atproto4,@atcute/oauth-node-client2).#1461
b01aa9bThanks @ascorbic! - Fixes registry installs failing with "Plugin manifest has changed since you consented" for plugins that declare hook-registration capabilities (email transport, email events, page fragments) or read user records. Plugin bundles now declare their access as a structureddeclaredAccesscontract that the registry record, the install-consent dialog, and the sandbox all read consistently, so every capability a plugin declares is shown for consent and enforced — no capability is silently dropped. Re-publish affected plugins to adopt the new bundle format; existing installs are unaffected.@emdash-cms/sandbox-workerd@0.1.8
Patch Changes
141aa11,7688f0b,c7166b0,9c994ad,eddaf91,afc3a0f,3d423a7,b01aa9b,3e344af,7688f0b,8807701]:@emdash-cms/auth@0.20.0
@emdash-cms/blocks@0.20.0
@emdash-cms/gutenberg-to-portable-text@0.20.0
@emdash-cms/x402@0.20.0
@emdash-cms/fixture-perf-site@0.0.19
Patch Changes
141aa11,7688f0b,7688f0b,c7166b0,9c994ad,eddaf91,afc3a0f,3d423a7,b01aa9b,3e344af,7688f0b,8807701]:@emdash-cms/perf-demo-site@0.0.19
Patch Changes
141aa11,7688f0b,7688f0b,c7166b0,9c994ad,eddaf91,afc3a0f,3d423a7,b01aa9b,3e344af,7688f0b,8807701]:@emdash-cms/cache-demo-site@0.0.19
Patch Changes
141aa11,7688f0b,7688f0b,c7166b0,9c994ad,eddaf91,afc3a0f,3d423a7,b01aa9b,3e344af,7688f0b,8807701]:@emdash-cms/do-demo-site@0.0.19
Patch Changes
141aa11,7688f0b,7688f0b,c7166b0,9c994ad,eddaf91,afc3a0f,3d423a7,b01aa9b,3e344af,7688f0b,8807701]:@emdash-cms/do-solo-demo-site@0.0.19
Patch Changes
141aa11,7688f0b,7688f0b,c7166b0,9c994ad,eddaf91,afc3a0f,3d423a7,b01aa9b,3e344af,7688f0b,8807701]:Try this PR
Open a fresh playground →
A full working EmDash site, deployed from this branch. Each visit gets its own session-scoped sandbox: no login needed and no shared state. Try the admin, edit content, hit the public site.
Tracks
changeset-release/main. Updated automatically when the playground redeploys.