1.8.0b1

See https://github.com/internetstandards/Internet.nl/blob/main/Changelog.md

1.8.0a1

Pre release to test Docker builds only

1.7.1

• Fixed the new display of TLS versions for mail tests.
• Fixed a language mix-up in the security.txt labels.
• Fixed an issue with the connection test and CSP form-action.

1.7.0

(1.7.0 was actually released on April 11th)

• Added specific error messages in the technical details
  for Content-Security-Policy results.
• Added requirements for base-uri and
  form-action to the Content-Security-Policy test.
• Added translations for security.txt error messages.
• The TLS versions tech table
  now shows the detected TLS versions
  instead of only TLS versions with issues.
• Fixed an uncaught exception
  in the security.txt text which could cause the entire test to fail for some HTTP responses.
• Corrected handling of bogus TLSA records.
• A bare "https:" is no longer allowed in Content-Security-Policy
  as it matches any HTTPS host.
• Loosened requirement for null MX
  when a domain has no A or AAAA.
• Fixed an issue where the
  frame-src test was inconsistent with the documentation.
• Added the version number to the footer.
• Added Sentry support for error reporting.
• Code quality was cleaned up in various places.
• Dependencies were updated.

This release has API version 2.3.0:

• The record_org_domain was added for DMARC
  (#489).
• The securitytxt_errors and securitytxt_recommendations types were changed.
  They now contain error codes (and possibly context) rather than full sentences.
• The content_security_policy_errors field was added with error codes for CSP.
• An issue was fixed where the mx_nameservers field was not included in results
  (#882).

1.6.3

Fixed an issue in the HTTPS client code that caused DMARC records to not be detected, due to a missing
public suffix list (#854, #855, #856)

1.6.2

• Fixed issues in the example configs regarding celery concurrency
• Fixed an issue where test failures could cause old test results to be displayed instead
• Added celery task info to log messages to help debugging/tracing
• Small fixes to test explanation content

This release has API version 2.2.0, as there are no API changes.

1.6.1

• Fixed issues in the security.txt check for invalid time formats and empty responses
• Updated social media links
• Fixed an issue in the API and updated the version

1.6.0

• Add security.txt support. For all IPs of web servers, this looks for the existence and validity of a RFC9116 security.txt file.

1.5.1

• Fixed typo in RPKI news post #746

1.5.0

Features

• RPKI support [(#613)]. For all IPs of all name servers, mail servers and web server, this check looks for the existence of an RPKI ROA, and whether all BGP routes covering these IPs are valid. As this is a new check, the total score does not yet include RPKI results.

Other changes

• Fixed issues with the IPv4/IPv6 consistency test for large pages [(#665)]
• Various dependencies updated [(#721)] [(#725)] [(#695)] [(#688)] [(#712)]
• Internal documentation improvements [(#717)]
• Small improvements in cache reset requests [(#724)]
• Small improvements in various test explanations.
• The privacy statement was updated to clarify the use of third party services.

Full Changelog: v1.4.1...v1.5.0