2024.07.25

Released to relay.firefox.com on July 30, 2024 with SVCSE-2145.

User-Facing Changes

• MPP-3849: Add Puerto Rico to supported regions by @jwhitlock in #4900

Other Changes

• Added a user allow list to ignore abuse metrics, avoid race conditions in abuse metrics by @rafeerahman in #4885

Dependency Updates

• Bump the boto group with 3 updates by @dependabot in #4886
• Bump pyopenssl from 24.1.0 to 24.2.1 by @dependabot in #4888
• Bump the eslint group with 2 updates by @dependabot in #4892
• Bump @testing-library/dom from 10.3.1 to 10.3.2 in the testing-library group by @dependabot in #4893
• Bump prettier from 3.3.2 to 3.3.3 by @dependabot in #4896
• Bump @playwright/test from 1.45.1 to 1.45.2 by @dependabot in #4897
• Bump sentry-sdk from 2.9.0 to 2.10.0 by @dependabot in #4890
• Bump msw from 2.3.1 to 2.3.2 by @dependabot in #4894
• Bump cryptography from 42.0.8 to 43.0.0 by @dependabot in #4887
• Bump ruff from 0.5.2 to 0.5.4 by @dependabot in #4891
• Bump next from 14.2.4 to 14.2.5 by @dependabot in #4898
• Bump husky from 9.0.11 to 9.1.1 by @dependabot in #4895
• Bump mypy from 1.10.1 to 1.11.0 by @dependabot in #4889
• Bump @next/third-parties from 14.2.4 to 14.2.5 by @dependabot in #4899

Full Changelog: 2024.07.18...2024.07.25

2024.07.18

Released to relay.firefox.com on July 22nd, 2024 with SVCSE-2132

User-facing changes

• MPP-3839: Handle trailing newline in email headers by @jwhitlock in #4879

Other changes

• MPP-3528: Update metrics doc for the extension by @jwhitlock in #4855
• MPP-3846: Allow percent greater than 100%, and run in transaction by @jwhitlock in #4880
• MPP-3839: Update email header logging by @jwhitlock in #4881
• Expand possible iat_age_s values by @jwhitlock in #4883
• remove old intro pricing news entry by @groovecoder in #4878
• Rename to gunicorn.conf.py by @jwhitlock in #4884

Dependency updates

• Bump the boto group with 4 updates by @dependabot in #4859
• Bump actions/setup-node from 4.0.2 to 4.0.3 by @dependabot in #4861
• Bump actions/setup-python from 5.1.0 to 5.1.1 by @dependabot in #4862
• Bump eslint-config-next from 14.2.4 to 14.2.5 by @dependabot in #4873
• Bump @next/eslint-plugin-next from 14.2.4 to 14.2.5 by @dependabot in #4872
• Bump sass from 1.77.6 to 1.77.8 by @dependabot in #4871
• Bump ruff from 0.5.1 to 0.5.2 by @dependabot in #4867
• Bump django-debug-toolbar from 4.4.5 to 4.4.6 by @dependabot in #4864
• Bump types-requests from 2.32.0.20240622 to 2.32.0.20240712 in the typing-stubs group by @dependabot in #4863
• Bump the eslint group with 2 updates by @dependabot in #4869
• Bump django-allauth[socialaccount] from 0.63.3 to 0.63.6 by @dependabot in #4866
• Bump coverage from 7.5.4 to 7.6.0 in the testing-libraries group by @dependabot in #4860
• Bump sentry-sdk from 2.7.1 to 2.9.0 by @dependabot in #4865
• Bump stylelint from 16.6.1 to 16.7.0 by @dependabot in #4875
• Bump react-intersection-observer from 9.10.3 to 9.13.0 by @dependabot in #4876
• Bump stylelint-scss from 6.3.2 to 6.4.1 by @dependabot in #4877
• Bump stylelint-config-recommended-scss from 14.0.0 to 14.1.0 by @dependabot in #4874
• Bump @playwright/test from 1.43.1 to 1.45.1 by @dependabot in #4845
• Bump glean-parser from 14.1.2 to 14.2.0 by @dependabot in #4868

Full Changelog: 2024.07.12...2024.07.18

2024.07.12

Released to relay.firefox.com on July 16th, 2024 with SVCSE-2109.

Other Changes

• MPP-3838: restore safer CSP by @groovecoder in #4854
• MPP-3807 Remove extension related queries on Glean mentrics by @say-yawn in #4856

Dependency Updates

• Bump markus[datadog] from 4.2.0 to 5.0.0 by @dependabot in #4831
• Bump psycopg[c] from 3.1.19 to 3.2.1 by @dependabot in #4837
• Bump the eslint group with 2 updates by @dependabot in #4842
• Bump the boto group with 4 updates by @dependabot in #4847
• Bump @testing-library/dom from 10.2.0 to 10.3.1 in the testing-library group by @dependabot in #4843
• Bump typescript from 5.5.2 to 5.5.3 by @dependabot in #4846
• Bump twilio from 9.2.2 to 9.2.3 by @dependabot in #4848
• Bump django-debug-toolbar from 4.4.2 to 4.4.5 by @dependabot in #4849
• Bump drf-spectacular-sidecar from 2024.6.1 to 2024.7.1 by @dependabot in #4850
• Bump ruff from 0.5.0 to 0.5.1 by @dependabot in #4851
• Bump phonenumbers from 8.13.39 to 8.13.40 by @dependabot in #4852
• Bump @stripe/stripe-js from 4.0.0 to 4.1.0 by @dependabot in #4844
• Bump django from 4.2.13 to 4.2.14 by @dependabot in #4853

Full Changelog: 2024.07.02.1...2024.07.12

2024.07.02.1

What's Changed

User-facing Changes

• fix Hungary monthly stripe price plan ID by @groovecoder in #4839

Other Changes

• MPP-3827: Move non-model code out of emails/models.py by @jwhitlock in #4799
• MPP-3827: Switch from RequestsClient to APIClient, remove transaction tests by @jwhitlock in #4801
• MPP-3827: Move user creation methods to privaterelay.tests.utils by @jwhitlock in #4802
• MPP-2822: add gtag to Layout and update gaEvent hook to ping both GA endpoints by @groovecoder in #4796
• MPP-3528: Recreate website metrics, add images by @jwhitlock in #4793
• MPP-3827 - Prefer user.profile to Profile.objects.get(user=user) by @jwhitlock in #4798
• MPP-3834: Fix CSP rules for inline styles by @jwhitlock in #4819
• remove CODEOWNERS file by @groovecoder in #4821
• MPP-3835: Workaround next/image's inline style for SVG images by @jwhitlock in #4820
• Command to normalize and aggregate generated_for data by @say-yawn in #4780
• MPP-3827: Optimize badwords and blocklist checks by @jwhitlock in #4822
• call useMetrics hook to check FxA profile metricsEnabled by @groovecoder in #4824
• update script-src and worker-src directives by @groovecoder in #4838

Dependency Updates

• Bump coverage from 7.5.3 to 7.5.4 in the testing-libraries group by @dependabot in #4805
• Bump types-requests from 2.32.0.20240602 to 2.32.0.20240622 in the typing-stubs group by @dependabot in #4806
• Bump ruff from 0.4.9 to 0.4.10 by @dependabot in #4807
• Bump djangorestframework from 3.15.1 to 3.15.2 by @dependabot in #4810
• Bump the eslint group with 2 updates by @dependabot in #4813
• Bump sass from 1.77.5 to 1.77.6 by @dependabot in #4814
• Bump the boto group with 3 updates by @dependabot in #4804
• Bump stylelint-scss from 6.3.1 to 6.3.2 by @dependabot in #4817
• Bump django-cors-headers from 4.3.1 to 4.4.0 by @dependabot in #4808
• Bump twilio from 9.1.1 to 9.2.1 by @dependabot in #4811
• Bump whitenoise from 6.6.0 to 6.7.0 by @dependabot in #4812
• Bump sentry-sdk from 2.5.1 to 2.6.0 by @dependabot in #4809
• Bump typescript from 5.4.5 to 5.5.2 by @dependabot in #4816
• Bump @stripe/stripe-js from 3.5.0 to 4.0.0 by @dependabot in #4815
• Update to django-csp 4.0 by @jwhitlock in #4800
• Bump the eslint group with 2 updates by @dependabot in #4825
• Bump @testing-library/dom from 10.1.0 to 10.2.0 in the testing-library group by @dependabot in #4826
• Bump the boto group with 3 updates by @dependabot in #4828
• Bump model-bakery from 1.18.1 to 1.18.2 in the testing-libraries group by @dependabot in #4829
• Bump twilio from 9.2.1 to 9.2.2 by @dependabot in #4830
• Bump mypy from 1.10.0 to 1.10.1 by @dependabot in #4832
• Bump ruff from 0.4.10 to 0.5.0 by @dependabot in #4833
• Bump sentry-sdk from 2.6.0 to 2.7.1 by @dependabot in #4834

Full Changelog: 2024.06.20...2024.07.02.1

2024.07.02

What's Changed

User-facing Changes

None

Other Changes

• MPP-3827: Move non-model code out of emails/models.py by @jwhitlock in #4799
• MPP-3827: Switch from RequestsClient to APIClient, remove transaction tests by @jwhitlock in #4801
• MPP-3827: Move user creation methods to privaterelay.tests.utils by @jwhitlock in #4802
• MPP-2822: add gtag to Layout and update gaEvent hook to ping both GA endpoints by @groovecoder in #4796
• MPP-3528: Recreate website metrics, add images by @jwhitlock in #4793
• MPP-3827 - Prefer user.profile to Profile.objects.get(user=user) by @jwhitlock in #4798
• MPP-3834: Fix CSP rules for inline styles by @jwhitlock in #4819
• remove CODEOWNERS file by @groovecoder in #4821
• MPP-3835: Workaround next/image's inline style for SVG images by @jwhitlock in #4820
• Command to normalize and aggregate generated_for data by @say-yawn in #4780
• MPP-3827: Optimize badwords and blocklist checks by @jwhitlock in #4822
• call useMetrics hook to check FxA profile metricsEnabled by @groovecoder in #4824
• update script-src and worker-src directives by @groovecoder in #4838

Dependency Updates

• Bump coverage from 7.5.3 to 7.5.4 in the testing-libraries group by @dependabot in #4805
• Bump types-requests from 2.32.0.20240602 to 2.32.0.20240622 in the typing-stubs group by @dependabot in #4806
• Bump ruff from 0.4.9 to 0.4.10 by @dependabot in #4807
• Bump djangorestframework from 3.15.1 to 3.15.2 by @dependabot in #4810
• Bump the eslint group with 2 updates by @dependabot in #4813
• Bump sass from 1.77.5 to 1.77.6 by @dependabot in #4814
• Bump the boto group with 3 updates by @dependabot in #4804
• Bump stylelint-scss from 6.3.1 to 6.3.2 by @dependabot in #4817
• Bump django-cors-headers from 4.3.1 to 4.4.0 by @dependabot in #4808
• Bump twilio from 9.1.1 to 9.2.1 by @dependabot in #4811
• Bump whitenoise from 6.6.0 to 6.7.0 by @dependabot in #4812
• Bump sentry-sdk from 2.5.1 to 2.6.0 by @dependabot in #4809
• Bump typescript from 5.4.5 to 5.5.2 by @dependabot in #4816
• Bump @stripe/stripe-js from 3.5.0 to 4.0.0 by @dependabot in #4815
• Update to django-csp 4.0 by @jwhitlock in #4800
• Bump the eslint group with 2 updates by @dependabot in #4825
• Bump @testing-library/dom from 10.1.0 to 10.2.0 in the testing-library group by @dependabot in #4826
• Bump the boto group with 3 updates by @dependabot in #4828
• Bump model-bakery from 1.18.1 to 1.18.2 in the testing-libraries group by @dependabot in #4829
• Bump twilio from 9.2.1 to 9.2.2 by @dependabot in #4830
• Bump mypy from 1.10.0 to 1.10.1 by @dependabot in #4832
• Bump ruff from 0.4.10 to 0.5.0 by @dependabot in #4833
• Bump sentry-sdk from 2.6.0 to 2.7.1 by @dependabot in #4834

Full Changelog: 2024.06.20...2024.07.02

2024.06.20

Planned for release to relay.firefox.com on June 25th, 2024 on SVCSE-2078.

User-facing changes

• MPP-3821: Fix invisible sign up button in light pages by @rafeerahman in #4779

Other changes

• Fix FxA selectors for e2e tests by @rafeerahman in #4797
• MPP-3439: Refactor DataIssueTask / CleanerTask, clean users with blank emails by @jwhitlock in #4721

Dependency updates

• Bump the boto group with 6 updates by @dependabot in #4764
• Bump the testing-libraries group with 2 updates by @dependabot in #4765
• Bump twilio from 9.1.0 to 9.1.1 by @dependabot in #4767
• Bump ruff from 0.4.7 to 0.4.8 by @dependabot in #4768
• Bump cryptography from 42.0.7 to 42.0.8 by @dependabot in #4769
• Bump the eslint group with 2 updates by @dependabot in #4771
• Bump @stripe/stripe-js from 3.4.1 to 3.5.0 by @dependabot in #4773
• Bump react-intersection-observer from 9.10.2 to 9.10.3 by @dependabot in #4776
• Bump sentry-sdk from 2.3.1 to 2.5.1 by @dependabot in #4766
• Bump phonenumbers from 8.13.37 to 8.13.38 by @dependabot in #4770
• Bump prettier from 3.3.0 to 3.3.1 by @dependabot in #4775
• Bump @testing-library/react from 15.0.7 to 16.0.0 in the testing-library group by @dependabot in #4772
• Bump jest-axe from 8.0.0 to 9.0.0 by @dependabot in #4774
• Bump stylelint-scss from 6.3.0 to 6.3.1 by @dependabot in #4777
• Bump responses from 0.25.2 to 0.25.3 in the testing-libraries group by @dependabot in #4783
• Bump ruff from 0.4.8 to 0.4.9 by @dependabot in #4785
• Bump phonenumbers from 8.13.38 to 8.13.39 by @dependabot in #4786
• Bump the boto group with 3 updates by @dependabot in #4781
• Bump @testing-library/jest-dom from 6.4.5 to 6.4.6 by @dependabot in #4792
• Bump eslint-config-next from 14.2.3 to 14.2.4 by @dependabot in #4791
• Bump prettier from 3.3.1 to 3.3.2 by @dependabot in #4790
• Bump sass from 1.77.4 to 1.77.5 by @dependabot in #4787
• Bump the eslint group with 2 updates by @dependabot in #4782
• Bump lint-staged from 15.2.5 to 15.2.7 by @dependabot in #4789
• Bump ws from 8.12.0 to 8.17.1 by @dependabot in #4795
• Bump next from 14.2.3 to 14.2.4 by @dependabot in #4788

Full Changelog: 2024.06.06...2024.06.20

2024.06.06

Released to relay.firefox.com on June 11, 2024 with SVCSE-2039.

There are no user-facing changes in this release.

Other changes

• For ResponseMetrics middleware, improve view tag and add tests by @jwhitlock in #4746
• Update tests for STATSD_DEBUG=True by @jwhitlock in #4762

Dependency updates

• Bump the eslint group with 2 updates by @dependabot in #4748
• Bump stylelint from 16.6.0 to 16.6.1 by @dependabot in #4749
• Bump the boto group with 2 updates by @dependabot in #4753
• Bump msw from 2.3.0 to 2.3.1 by @dependabot in #4750
• Bump coverage from 7.5.2 to 7.5.3 in the testing-libraries group by @dependabot in #4754
• Bump the typing-stubs group with 2 updates by @dependabot in #4755
• Bump prettier from 3.2.5 to 3.3.0 by @dependabot in #4752
• Bump django-debug-toolbar from 4.4.1 to 4.4.2 by @dependabot in #4756
• Bump requests from 2.32.2 to 2.32.3 by @dependabot in #4757
• Bump drf-spectacular-sidecar from 2024.5.1 to 2024.6.1 by @dependabot in #4758
• Bump django-allauth[socialaccount] from 0.63.2 to 0.63.3 by @dependabot in #4759
• Bump ruff from 0.4.5 to 0.4.7 by @dependabot in #4760
• Bump sass from 1.77.2 to 1.77.4 by @dependabot in #4751
• Bump dj-database-url from 2.1.0 to 2.2.0 by @dependabot in #4761

Full Changelog: 2024.05.31...2024.06.06

2024.05.31

Released to relay.firefox.com on June 4, 2024 with SVCSE-2024

User-facing changes

• for MPP-3817: prevent all Relay operations when user.is_active = False by @groovecoder in #4709

Other Changes

• Remove Sentry logger for SocialAccount does not exist by @say-yawn in #4725
• Use the events logger for warning or error levels by @jwhitlock in #4744
• MPP-3487 - Fix tests, handle missing sqlcommenter in Python 3.12, by @jwhitlock in #4724

Dependabot Updates

• Bump sentry-sdk from 2.2.1 to 2.3.1 by @dependabot in #4742
• Bump django-debug-toolbar from 4.3.0 to 4.4.1 by @dependabot in #4741
• Bump ruff from 0.4.4 to 0.4.5 by @dependabot in #4740
• Bump django-allauth[socialaccount] from 0.63.1 to 0.63.2 by @dependabot in #4739
• Bump twilio from 9.0.5 to 9.1.0 by @dependabot in #4738
• Bump the boto group across 1 directory with 2 updates by @dependabot in #4743
• Bump requests from 2.32.0 to 2.32.2 by @dependabot in #4737
• Bump types-requests from 2.31.0.20240406 to 2.32.0.20240523 in the typing-stubs group by @dependabot in #4736
• Bump coverage from 7.5.1 to 7.5.2 in the testing-libraries group by @dependabot in #4735
• Bump @stripe/stripe-js from 3.4.0 to 3.4.1 by @dependabot in #4726
• Bump stylelint from 16.5.0 to 16.6.0 by @dependabot in #4727
• Bump react-aria from 3.33.0 to 3.33.1 by @dependabot in #4728
• Bump @types/react from 18.3.2 to 18.3.3 by @dependabot in #4731
• Bump lint-staged from 15.2.2 to 15.2.5 by @dependabot in #4730
• Bump fast-check from 3.18.0 to 3.19.0 by @dependabot in #4733
• Bump react-stately from 3.31.0 to 3.31.1 by @dependabot in #4732

Full Changelog: 2024.05.23.1...2024.05.31

2024.05.23.1

Deployed to relay.firefox.com on May 24, 2023.

User-facing changes

• mozilla-l10n/fx-private-relay-l10n#172 to fix missing strings on /premium and onboarding pages.

Other changes

• MPP-3815: Reset the database at start of each email by @jwhitlock in #4718 (already deployed with 2024.05.16.1)

Dependency updates

• Bump @testing-library/react from 15.0.6 to 15.0.7 in the testing-library group by @dependabot in #4690
• Bump @types/react from 18.3.1 to 18.3.2 by @dependabot in #4691
• Bump @stripe/stripe-js from 3.3.0 to 3.4.0 by @dependabot in #4692
• Bump sass from 1.76.0 to 1.77.1 by @dependabot in #4694
• Bump msw from 2.2.14 to 2.3.0 by @dependabot in #4695
• Remove react-qr-code and mobile_app flag by @Vinnl in #4710
• Bump phonenumbers from 8.13.36 to 8.13.37 by @dependabot in #4716
• Bump django-allauth[socialaccount] from 0.62.1 to 0.63.1 by @dependabot in #4717
• Bump the boto group with 3 updates by @dependabot in #4713
• Bump requests from 2.31.0 to 2.32.0 by @dependabot in #4719
• Bump sentry-sdk from 2.1.1 to 2.2.1 by @dependabot in #4720
• Bump sass from 1.77.1 to 1.77.2 by @dependabot in #4712
• Bump the eslint group across 1 directory with 4 updates by @dependabot in #4723

Full Changelog: 2024.05.16.1...2024.05.23.1

2024.05.23

Replaced with 2024.05.23.1

User-facing changes

• mozilla-l10n/fx-private-relay-l10n#172 to fix missing strings on /premium and onboarding pages

Other changes

• Bump @testing-library/react from 15.0.6 to 15.0.7 in the testing-library group by @dependabot in #4690
• Bump @types/react from 18.3.1 to 18.3.2 by @dependabot in #4691
• Bump @stripe/stripe-js from 3.3.0 to 3.4.0 by @dependabot in #4692
• Bump sass from 1.76.0 to 1.77.1 by @dependabot in #4694
• Bump msw from 2.2.14 to 2.3.0 by @dependabot in #4695
• Remove react-qr-code and mobile_app flag by @Vinnl in #4710
• Bump phonenumbers from 8.13.36 to 8.13.37 by @dependabot in #4716
• Bump django-allauth[socialaccount] from 0.62.1 to 0.63.1 by @dependabot in #4717
• Bump the boto group with 3 updates by @dependabot in #4713
• MPP-3815: Reset the database at start of each email by @jwhitlock in #4718
• Bump requests from 2.31.0 to 2.32.0 by @dependabot in #4719
• Bump sentry-sdk from 2.1.1 to 2.2.1 by @dependabot in #4720
• Bump sass from 1.77.1 to 1.77.2 by @dependabot in #4712
• Bump the eslint group across 1 directory with 4 updates by @dependabot in #4723

Full Changelog: 2024.05.16.1...2024.05.23