- 4eef745 enh: update docs, downloads to 3.x by lprimak · 5 days ago main
- 5db3370 enh: added shiro 3.0.0 logo on the home page by lprimak · 6 days ago
- a50cfef added announcement blog for 3.0.0 by lprimak · 6 days ago
- e700011 enh(security-model): add guidelines for handling host, port, and absolute URL in Shiro deployments by lprimak · 12 days ago
- 438c12b enh: updated security model for latest path traversal issue by lprimak · 13 days ago
- 42cf18d build(deps): bump org.apache:apache from 38 to 39 (#312) by dependabot[bot] · 13 days ago
- 031678d build(deps): bump com.github.jnr:jnr-posix from 3.1.22 to 3.2.1 (#313) by dependabot[bot] · 13 days ago
- 4838a26 fix: corrected CVE number for remember-me vulnerability by lprimak · 3 weeks ago
- cd9c9b7 enh(security-reports): add CVE-2026-56091 and CVE-2026-49268 vulnerability details and mitigations by lprimak · 3 weeks ago
- 49a7e73 build(deps): bump org.javassist:javassist from 3.31.0-GA to 3.32.0-GA (#311) by dependabot[bot] · 3 weeks ago
- 95b1628 build(deps): bump actions/checkout in the github-dependencies group (#310) by dependabot[bot] · 3 weeks ago
- e7947e5 enh(blog): added security fixes to 2.2.1 release by lprimak · 3 weeks ago
- ca28586 [release] Announce 2.2.1 (#309) by François Papon · 3 weeks ago
- 0c5c78b enh: added warnIfAuthenticatorFailed flag and AuthenticationExceptionEvent documentation for AtLeastOneSuccessfulStrategy in 3.0 by lprimak · 3 weeks ago
- 4a616ff chore(asf.yaml): enable rebase-and-merge by lprimak · 4 weeks ago
- 72dde72 enh: add CVE-2026-49268 report and mitigation details to security reports by lprimak · 4 weeks ago
- 085e8ed misc: fix typos (#308) by John Bampton · 4 weeks ago
- e1572ce enh: made alpha release optional by lprimak · 7 weeks ago
- 4660e95 [release] Announce 2.2.0 (#306) by François Papon · 7 weeks ago
- 8623aef security-model.adoc: draft additions for adversary model, known non-findings, triage dispositions (#302) by Jarek Potiuk · 7 weeks ago
- fad044d build(deps): bump asm.version from 9.10 to 9.10.1 (#305) by dependabot[bot] · 7 weeks ago
- b8547cd bugfix: update spring matching strategy from markdown to asciidoc format by lprimak · 7 weeks ago
- 61f5225 enh: update Apache Shiro vulnerability reports for CVE-2026-48589, CVE-2026-44598, CVE-2026-43827, and CVE-2026-43828 by lprimak · 7 weeks ago
- 6e7668d security: added shiroSavedRequest cookie CVE by lprimak · 9 weeks ago
- 4970153 added unsecure cookies CVE by lprimak · 10 weeks ago
- 133de50 added note to for servlet-managed sessions by lprimak · 2 months ago
- 259640c enh: reverted secureInDev flag and sync'd with current system proeprties by lprimak · 2 months ago
- 3887978 enh: added CVE-2026-43827 by lprimak · 2 months ago
- 99e5b8d Set up default protection ruleset for default and release branches (#304) by The Apache Software Foundation · 8 weeks ago
- c837609 build(deps): bump asm.version from 9.9.1 to 9.10 (#303) by dependabot[bot] · 8 weeks ago
- ae401fe build(deps): bump org.apache:apache from 37 to 38 (#301) by dependabot[bot] · 9 weeks ago
- 53f6ca1 fix: download button color visibility by lprimak · 2 months ago
- 40718e2 enh: document secure session cookie configuration for Jakarta EE by lprimak · 2 months ago
- 669b9c3 enh: document cookie options by lprimak · 2 months ago
- f99b753 enh: fixed up blog formatting by lprimak · 2 months ago
- a5b44cf docs: sponsorship blog (#299) by Lenny Primak · 2 months ago
- 19701ca build(deps): bump org.javassist:javassist from 3.30.2-GA to 3.31.0-GA (#300) by dependabot[bot] · 3 months ago
- ad6f302 build(deps): bump com.github.jnr:jnr-posix from 3.1.21 to 3.1.22 (#298) by dependabot[bot] · 3 months ago
- db4dc5a shiro 3.0.0-alpha-1 release by lprimak · 4 months ago
- d4d7784 build(deps): bump org.yaml:snakeyaml from 2.5 to 2.6 (#297) by dependabot[bot] · 4 months ago
- daf3447 docs: fix typo (#296) by John Bampton · 5 months ago
- 4974619 build: clarify Java version requirement for shiro-site (#293) by Ganesh Patil · 5 months ago
- e6a6317 Fix typos in artifacts.yaml (#295) by John Bampton · 5 months ago
- 2d2fc30 added CVEs and security reports related to 2.1.0 by lprimak · 5 months ago
- c4e6a26 [release] Fix download page by francois papon · 5 months ago
- 87b3e5f [release] Apache Shiro 2.1.0 (#294) by François Papon · 5 months ago
- 7793fde docs: fix hyphenation in about page (#289) by Sumit Kate · 5 months ago
- 410eb25 Add dark mode support to documentation website (#277) by Ganesh Patil · 5 months ago
- 6bb3a39 enh: scoped values by lprimak · 5 months ago
- d9b9349 This PR updates the documentation to reflect the use of GitHub Issues and GitHub Discussions, and marks JIRA as legacy for archival purposes only. Resolves #281. (#282) by Ganesh Patil · 5 months ago
- 63b0860 Update and link commercial support page (#278) by Ganesh Patil · 5 months ago
- 8a124d0 added more Spring config options from the Spring-boot page by lprimak · 6 months ago
- c34d6fe Update frontend dependencies (Bootstrap Icons, Highlight.js) (#275) by Ganesh Patil · 6 months ago
- cc58f85 Add troubleshooting and FAQ documentation page (#276) by Ganesh Patil · 6 months ago
- ef8f49b Add migration guide for Shiro 1.x, 2.x, and 3.x (#279) by Ganesh Patil · 6 months ago
- 8fae255 Update documentation for new configuration parameters (#280) by Ganesh Patil · 6 months ago
- f3034af Fix broken and outdated external links in documentation (#274) by Ganesh Patil · 6 months ago
- ec79811 Add consistent JBake metadata to documentation pages (#273) by Ganesh Patil · 6 months ago
- 9d26638 added shiro 3.0 config note by lprimak · 6 months ago
- 41944ca docs: update Jakarta EE documentation to clarify dependency chain applicability and versioning by lprimak · 6 months ago
- dac7d84 Add FlowLogix depchain as easier-than-BOM Shiro-Jakarta-EE dependencies (#219) (#260) by Ganesh Patil · 6 months ago
- 5d8fc21 docs: add note about Shiro version requirement for pre-flight requests feature by lprimak · 6 months ago
- 2242ac1 add Cors Support documentation (#261) by Fatih · 6 months ago
- ea135cb docs(security): update Security Model documentation and add rate limiting section by lprimak · 6 months ago
- 634d15f docs(security): add Security Model documentation (#259) by Ganesh Patil · 6 months ago
- c9dcf32 build(deps): bump org.apache:apache from 36 to 37 (#264) by dependabot[bot] · 6 months ago
- 98a18bf build(deps): bump org.apache:apache from 35 to 36 (#262) by dependabot[bot] · 6 months ago
- a7bd56a build(deps): bump org.jbake:jbake-maven-plugin from 2.7.0-rc.7 to 2.7.0 (#258) by dependabot[bot] · 6 months ago
- 6473142 build(deps): bump org.codehaus.mojo:exec-maven-plugin (#257) by dependabot[bot] · 7 months ago
- ee2cc71 build(deps): bump asm.version from 9.9 to 9.9.1 (#256) by dependabot[bot] · 7 months ago
- 59075f4 build(deps): bump actions/checkout in the github-dependencies group (#254) by dependabot[bot] · 7 months ago
- 9264fa8 [release] Fix download page for 2.0.6 (#253) by François Papon · 8 months ago
- 8c0c348 [release] Announce 2.0.6 (#252) by François Papon · 8 months ago
- 66db979 removed older algorithms and updated to reflect what's in Shiro 2 currently (#249) by Lenny Primak · 8 months ago
- 12d66df build(deps): bump com.github.jnr:jnr-posix from 3.1.20 to 3.1.21 (#250) by dependabot[bot] · 8 months ago
- 004ab22 build(deps): bump org.codehaus.mojo:exec-maven-plugin (#245) by dependabot[bot] · 8 months ago
- 78ae12d Optimize Dependabot by using `groups` for `github-actions` ecosystem (#247) by John Bampton · 8 months ago
- e81bf3a Add basic EditorConfig file (#248) by John Bampton · 8 months ago
- 08f6f69 `README.adoc`: remove small black dot above "F" in "ASF" (#246) by John Bampton · 8 months ago
- 494d38d [DOC] Fix typo (#244) by John Bampton · 9 months ago
- 3503a81 enh: added docs about URL session tracking configuration options in Jakarta EE integration module (#239) by Lenny Primak · 9 months ago
- e1a9740 Add start.flowlogix.com link to documentation (#218) (#238) by Ganesh Patil · 9 months ago
- 0eb4fcb added character encoding docs (#242) by Lenny Primak · 9 months ago
- ac0c769 build(deps): bump org.codehaus.mojo:exec-maven-plugin (#241) by dependabot[bot] · 9 months ago
- 97f4106 build(deps): bump asm.version from 9.8 to 9.9 (#240) by dependabot[bot] · 9 months ago
- cede392 build(deps): bump org.codehaus.mojo:exec-maven-plugin (#237) by dependabot[bot] · 9 months ago
- bd8a64c build(deps): bump org.yaml:snakeyaml from 2.4 to 2.5 (#236) by dependabot[bot] · 10 months ago
- 9416c37 build(deps): bump actions/setup-java from 4 to 5 (#235) by dependabot[bot] · 11 months ago
- b4875f9 build(deps): bump actions/checkout from 4 to 5 (#234) by dependabot[bot] · 11 months ago
- 951c201 misc: fix typos (#233) by John Bampton · 12 months ago
- 976c826 fixed blog post for 7/7/2025 by lprimak · 1 year ago
- 52d3bc3 enh: added version 2.0.5 by lprimak · 1 year ago
- 037c766 chore: remove unneeded trailing whitespace (#232) by John Bampton · 1 year ago
- 19c7c9b chore: fix spelling (#231) by John Bampton · 1 year ago
- 3092ea9 build(deps): bump org.apache:apache from 34 to 35 (#230) by dependabot[bot] · 1 year, 1 month ago
- 721385f build(deps): bump org.codehaus.mojo:exec-maven-plugin (#229) by dependabot[bot] · 1 year, 1 month ago
- 9ccae63 build(deps): bump groovy.version from 3.0.24 to 3.0.25 (#228) by dependabot[bot] · 1 year, 2 months ago
- 3925bce fixed build requirements for older releases as well by lprimak · 1 year, 3 months ago
- da67350 fixed gpg archive release link by lprimak · 1 year, 3 months ago
- 6e00988 download page: by lprimak · 1 year, 3 months ago