From 17588c0c1ac1ce593d69d8e66d1b2d10849966f2 Mon Sep 17 00:00:00 2001 From: code-snippets-bot <139164393+code-snippets-bot@users.noreply.github.com> Date: Thu, 5 Feb 2026 10:47:17 +0000 Subject: [PATCH 1/5] chore(release): update changelog for v3.9.5 --- CHANGELOG.md | 13 +++++++++++++ 1 file changed, 13 insertions(+) diff --git a/CHANGELOG.md b/CHANGELOG.md index 50ab5193..9345bbee 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,5 +1,18 @@ # Changelog + +## [3.9.5] (2026-02-05) + +### Changed +* Enhanced nonce handling for cloud snippet download and update actions to improve security +* Improved input validation and sanitization for cloud search download actions with early returns for invalid requests +* Added type safety improvements for cloud snippet IDs with proper integer conversion + +### Fixed +* Fixed security vulnerability by implementing proper nonce verification for state-changing cloud snippet operations +* Fixed validation logic to only accept 'download' and 'update' actions for cloud snippet operations +* Improved request validation to prevent processing of incomplete or malformed cloud search requests + ## [3.9.4] (2026-01-14) ### Added From 99c27cceff40a539bfe470ce2c270ec8acc7c8eb Mon Sep 17 00:00:00 2001 From: code-snippets-bot <139164393+code-snippets-bot@users.noreply.github.com> Date: Thu, 5 Feb 2026 10:47:17 +0000 Subject: [PATCH 2/5] chore(release): update readme for v3.9.5 --- src/readme.txt | 15 +++++++++++++++ 1 file changed, 15 insertions(+) diff --git a/src/readme.txt b/src/readme.txt index e7e1469c..551bd3a7 100644 --- a/src/readme.txt +++ b/src/readme.txt @@ -104,6 +104,21 @@ You can report security bugs found in the source code of this plugin through the == Changelog == + += 3.9.5 (2026-02-05) = + +__Changed__ + +* Enhanced nonce handling for cloud snippet download and update actions to improve security +* Improved input validation and sanitization for cloud search download actions with early returns for invalid requests +* Added type safety improvements for cloud snippet IDs with proper integer conversion + +__Fixed__ + +* Fixed security vulnerability by implementing proper nonce verification for state-changing cloud snippet operations +* Fixed validation logic to only accept 'download' and 'update' actions for cloud snippet operations +* Improved request validation to prevent processing of incomplete or malformed cloud search requests + = 3.9.4 (2026-01-14) = __Added__ From 1e952dbe404d99a0c2599fa9417061e41282511b Mon Sep 17 00:00:00 2001 From: code-snippets-bot <139164393+code-snippets-bot@users.noreply.github.com> Date: Thu, 5 Feb 2026 10:47:59 +0000 Subject: [PATCH 3/5] chore(release): bump version to v3.9.5 --- package-lock.json | 4 ++-- package.json | 2 +- src/code-snippets.php | 6 +++--- src/readme.txt | 2 +- 4 files changed, 7 insertions(+), 7 deletions(-) diff --git a/package-lock.json b/package-lock.json index 72a75d7b..4cc2c51c 100644 --- a/package-lock.json +++ b/package-lock.json @@ -1,12 +1,12 @@ { "name": "code-snippets", - "version": "3.9.4", + "version": "3.9.5", "lockfileVersion": 3, "requires": true, "packages": { "": { "name": "code-snippets", - "version": "3.9.4", + "version": "3.9.5", "license": "GPL-2.0-or-later", "dependencies": { "@codemirror/fold": "^0.19.4", diff --git a/package.json b/package.json index 6ff42006..797e798a 100644 --- a/package.json +++ b/package.json @@ -2,7 +2,7 @@ "name": "code-snippets", "description": "Manage code snippets running on a WordPress-powered site through a graphical interface.", "homepage": "https://codesnippets.pro", - "version": "3.9.4", + "version": "3.9.5", "main": "src/dist/edit.js", "directories": { "test": "tests" diff --git a/src/code-snippets.php b/src/code-snippets.php index c1ce0349..211e9516 100644 --- a/src/code-snippets.php +++ b/src/code-snippets.php @@ -8,11 +8,11 @@ * License: GPL-2.0-or-later * License URI: license.txt * Text Domain: code-snippets - * Version: 3.9.4 + * Version: 3.9.5 * Requires PHP: 7.4 * Requires at least: 5.0 * - * @version 3.9.4 + * @version 3.9.5 * @package Code_Snippets * @author Shea Bunge * @copyright 2012-2024 Code Snippets Pro @@ -37,7 +37,7 @@ * * @const string */ - define( 'CODE_SNIPPETS_VERSION', '3.9.4' ); + define( 'CODE_SNIPPETS_VERSION', '3.9.5' ); /** * The full path to the main file of this plugin. diff --git a/src/readme.txt b/src/readme.txt index 551bd3a7..508b813f 100644 --- a/src/readme.txt +++ b/src/readme.txt @@ -4,7 +4,7 @@ Donate link: https://codesnippets.pro Tags: code, snippets, multisite, php, css License: GPL-2.0-or-later License URI: license.txt -Stable tag: 3.9.4 +Stable tag: 3.9.5 Tested up to: 6.9 An easy, clean and simple way to enhance your site with code snippets. From be7a8504189c45481d58734bad5a3a56b845385f Mon Sep 17 00:00:00 2001 From: Code Snippets <139164393+code-snippets-bot@users.noreply.github.com> Date: Thu, 5 Feb 2026 12:52:58 +0200 Subject: [PATCH 4/5] fix: changelog --- CHANGELOG.md | 10 +++------- src/readme.txt | 13 ++++--------- 2 files changed, 7 insertions(+), 16 deletions(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 9345bbee..22ac83ae 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -3,15 +3,11 @@ ## [3.9.5] (2026-02-05) -### Changed -* Enhanced nonce handling for cloud snippet download and update actions to improve security -* Improved input validation and sanitization for cloud search download actions with early returns for invalid requests -* Added type safety improvements for cloud snippet IDs with proper integer conversion +### Added +* Confirmed WordPress 6.9 compatability ### Fixed -* Fixed security vulnerability by implementing proper nonce verification for state-changing cloud snippet operations -* Fixed validation logic to only accept 'download' and 'update' actions for cloud snippet operations -* Improved request validation to prevent processing of incomplete or malformed cloud search requests +* Improved nonce handling for cloud snippet download and update actions to for enhanced security ## [3.9.4] (2026-01-14) diff --git a/src/readme.txt b/src/readme.txt index 508b813f..39dbb679 100644 --- a/src/readme.txt +++ b/src/readme.txt @@ -104,20 +104,15 @@ You can report security bugs found in the source code of this plugin through the == Changelog == - = 3.9.5 (2026-02-05) = -__Changed__ +__Added__ -* Enhanced nonce handling for cloud snippet download and update actions to improve security -* Improved input validation and sanitization for cloud search download actions with early returns for invalid requests -* Added type safety improvements for cloud snippet IDs with proper integer conversion +* Confirmed WordPress 6.9 compatability -__Fixed__ +__Changed__ -* Fixed security vulnerability by implementing proper nonce verification for state-changing cloud snippet operations -* Fixed validation logic to only accept 'download' and 'update' actions for cloud snippet operations -* Improved request validation to prevent processing of incomplete or malformed cloud search requests +* Improved nonce handling for cloud snippet download and update actions to for enhanced security = 3.9.4 (2026-01-14) = From 50a8d382e855763759c7b79112b955f61cc8a089 Mon Sep 17 00:00:00 2001 From: Code Snippets <139164393+code-snippets-bot@users.noreply.github.com> Date: Thu, 5 Feb 2026 12:53:20 +0200 Subject: [PATCH 5/5] fix: remove empty line --- CHANGELOG.md | 1 - 1 file changed, 1 deletion(-) diff --git a/CHANGELOG.md b/CHANGELOG.md index 22ac83ae..2b533db7 100644 --- a/CHANGELOG.md +++ b/CHANGELOG.md @@ -1,6 +1,5 @@ # Changelog - ## [3.9.5] (2026-02-05) ### Added