Skip to content

CHANGELOG.md

Latest commit

 

History

History
145 lines (117 loc) · 5.56 KB

CHANGELOG.md

File metadata and controls

145 lines (117 loc) · 5.56 KB

Changelog

All notable changes to the Rendiff project will be documented in this file.

Note: Rendiff is a REST API layer powered by FFmpeg for media processing.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[1.2.0] - 2025-01-10 - Security & Performance Release

🔒 Security

  • BREAKING: Resolved all 34 critical security vulnerabilities
  • Added comprehensive input validation and sanitization
  • Implemented path traversal prevention with canonicalization
  • Added SSRF protection for webhook URLs (blocks internal networks)
  • Implemented timing attack protection for API key validation
  • Added command injection prevention for FFmpeg parameters
  • Enhanced error message sanitization to prevent information disclosure
  • Added file size validation (10GB limit) to prevent DoS attacks
  • Implemented rate limiting with endpoint-specific limits
  • Added Unicode filename support with security validation

⚡ Performance

  • Added database performance indexes for all critical queries
  • Implemented connection pooling for storage backends
  • Converted all file I/O operations to async (aiofiles)
  • Fixed N+1 query problem in job statistics endpoint
  • Added memory leak prevention with guaranteed resource cleanup
  • Implemented efficient webhook retry logic with exponential backoff
  • Optimized progress calculation with logarithmic scaling
  • Added bitrate parsing overflow protection

🚀 Reliability

  • Added comprehensive health checks for all dependencies (database, Redis, storage, FFmpeg)
  • Implemented circuit breaker pattern for external service protection
  • Added Redis-based distributed locking for critical sections
  • Enhanced transaction isolation with proper ACID compliance
  • Fixed race conditions in job creation with flush-before-commit
  • Implemented TOCTOU-safe file operations
  • Added resource limit validation (resolution, bitrate, complexity)
  • Enhanced webhook delivery with retry and failure handling

🛠️ Infrastructure

  • Added api/utils/health_checks.py - Comprehensive dependency monitoring
  • Added api/utils/circuit_breaker.py - Failure protection pattern
  • Added api/utils/distributed_lock.py - Redis-based locking
  • Added api/utils/connection_pool.py - Storage connection pooling
  • Added api/utils/rate_limit.py - Endpoint-specific rate limiting
  • Added alembic/versions/003_add_performance_indexes.py - Database optimization
  • Enhanced api/utils/validators.py - Codec-container compatibility validation

🔧 Configuration

  • Updated dependencies (cryptography to 43.0.1 for security)
  • Added comprehensive security configuration options
  • Enhanced resource limit configuration
  • Added circuit breaker and health check configuration
  • Improved storage backend path normalization

📚 Documentation

  • Updated README.md with security hardening information
  • Added comprehensive security hardening guide
  • Added performance optimization documentation
  • Added security audit and fixes completion reports
  • Enhanced system requirements with enterprise specifications

🐛 Bug Fixes

  • Fixed Celery task acknowledgment conflicts
  • Fixed storage backend path separator confusion
  • Fixed zero-duration media file division errors
  • Fixed incorrect bitrate parsing overflow
  • Fixed streaming validation timing issues
  • Fixed concurrent job limit enforcement
  • Fixed WebSocket connection management (not used, documented)

⬆️ Dependencies

  • Updated cryptography from 43.0.3 to 43.0.1 (security)
  • Added security annotations to Pillow==11.0.0
  • All other dependencies remain current

[1.1.1-beta] - Previous Release

Added

  • Initial production-ready implementation
  • FastAPI-based REST API
  • Celery worker architecture
  • Multi-cloud storage support
  • Hardware acceleration support
  • Quality metrics (VMAF, PSNR, SSIM)
  • Prometheus monitoring
  • Docker containerization

Migration Guide

From 1.1.1-beta to 1.2.0

Required Actions

  1. Database Migration: Run alembic upgrade head to add performance indexes
  2. Environment Review: Update security configuration (see docs/SECURITY_HARDENING.md)
  3. No Breaking Changes: All existing API contracts maintained

Optional Enhancements

  1. Enable circuit breakers: CIRCUIT_BREAKER_ENABLED=true
  2. Configure distributed locking: ENABLE_DISTRIBUTED_LOCKS=true
  3. Update rate limiting: Configure endpoint-specific limits
  4. Enable comprehensive health checks: ENABLE_HEALTH_MONITORING=true

Configuration Updates

# New security options
MAX_FILE_SIZE=10737418240  # 10GB limit
ENABLE_SSRF_PROTECTION=true
WEBHOOK_INTERNAL_NETWORK_BLOCK=true

# New performance options  
ENABLE_CONNECTION_POOLING=true
STORAGE_POOL_SIZE=20
DATABASE_POOL_SIZE=20

# New reliability options
CIRCUIT_BREAKER_ENABLED=true
DISTRIBUTED_LOCKS_ENABLED=true
HEALTH_CHECK_INTERVAL=30

Security Notice

Version 1.2.0 Security Status ✅

  • All Critical Vulnerabilities Resolved: 34/34 issues fixed
  • Production Security Approved: Safe for enterprise deployment
  • Zero Breaking Changes: Full backward compatibility maintained
  • Comprehensive Testing: All fixes validated and tested

Previous Version Security Status ❌

  • Critical Vulnerabilities Present: 34 unresolved security issues
  • Not Recommended for Production: Multiple attack vectors possible
  • Immediate Update Required: Upgrade to 1.2.0 immediately

For detailed security information, see CRITICAL_ISSUES_AUDIT.md and FIXES_COMPLETED_REPORT.md.