[0.0.3] - 2026-03-15
Bug Fixes
- security: Improve TeapotController header sanitization (#13)
- ci: Correct bash escaping in dependency checkout step
- ci: Use single-quoted PHP to avoid shell escaping issues
- ci: Hard-code sister package clone instead of PHP parsing
- ci: Correct container image expression
- ci: Use Forgejo-native variables in release workflow
- ci: Simplify release workflow, use FORGEJO_REF_NAME
- ci: Install zip in release workflow
- Rename core/php-framework dependency to core/php
Documentation
- Update CLAUDE.md for core-admin package specifics
- Add package documentation
- Add January 2026 completed items to changelog
- Add Phase 0 environment assessment and test baseline (#2)
- Add CLAUDE.md project instructions
Features
- ci: Use lthn/build:php container image
- Add Forgejo release workflow for Composer registry
- Rename package to lthn/php-admin for Packagist
Miscellaneous
- Use reusable PHP test workflow from core/php
- Inline workflow to bypass reusable workflow cache
- Add composer config for path repositories (v5)
- Retrigger workflow
- Trigger v5 run
- Clean up workflow comment
- Rename package to core/php-admin
- Add .core/ and .idea/ to .gitignore
Refactor
- Update namespaces for L1 package convention
Testing
- forms: Add authorization props tests for form components
- honeypot: Add comprehensive tests for teapot/honeypot anti-spam system
- search: Add comprehensive tests for search provider registry
- modal: Add comprehensive tests for Livewire modal system
- layout: Add comprehensive tests for HLCRF layout system
Security
- Add rate limiting to admin action endpoints (#12)
- Validate JSON metadata fields to prevent mass assignment
Full Changelog: https://github.com/dAppCore/php-admin/commits/v0.0.3