Recent Releases

6.1.2214 Nov 2024 19:35 minor feature: Added: Discussion 8092 (Fresh Install - Register - 403 Error - Forbidden) started by @pheonix-devapps. (2FA security improvements) reported by @JC5. Firefly III stores timezone data in a separate field, preparing for a switch to UTC (in the database). : (Inactive accounts are inaccessible when no active accounts of that type exist) reported by @codemicro. (Store/Update Bill API end_date and extension_date cant be null in request) reported by @jkano. ("Attempt to read property "type" on null" when mass editing transactions) reported by @Still34. (Liability amount due calculated incorrectly on liabilities list when the liability is settled with a transfer to another liability) reported by @uumas. Discussion 9234 (Unsupported cipher or incorrect key length ( first run )) started by @spectroman. (Autocomplete not working for rrules having the bill as a trigger) reported by @pvieira84. (Default report - no transactions for no budget) reported by @rymrg. (Repetition counts ignored for recurring transactions) reported by @Syncena. (Rules Rule Action) reported by @EricVanCaenenberghe. (Recurring transactions get group title on overview page) reported by @zeitwidrig. Discussion 9324 (Consistent behavior accross DB Engines) started by @stackcoder. (Date incorrectly shown) reported by @enboig. (Budget and Bill field on Recurring transactions not updating) reported by @HHUBSS. (Linking Transaction to Bill doesn't mark as paid for 31st) reported by @harrhunt. (The standard financial report does not show all transactions for the income categories) reported by @Neroxeles. (Budget report on inactive budget gives a 404) reported by @adyanth. (Printing a page does not include dates) reported by @cachho. (Transaction doesn't show up when attaching HTML file) reported by @Marc928132. API: API version is no longer distinguished from Firefly III version. API jumps from v2.1.0 to v6.1.22. API v2 is cleaned up and misses a few previously available endpoints. They will be added in the
6.1.1902 Aug 2024 19:05 minor bugfix: : (Split recurring transaction gets wrong (split) titles) reported by @dreautall. (bcadd() error during Docker container startup) reported by @NoiTheCat. (Search with "internal_reference_is" finds all transactions with full word of search string) reported by @baflo. (Incorrect Amount Calculation in Reconciliation for Bank Account A) reported by @realzsan3. (Incorrect "Expected Withdrawals" for Daily Recurring Transactions) reported by @xMarcii. (Calendar Not Showing Green Fields for Recurring Transactions) reported by @xMarcii. Improved currency exchange rate downloader.
6.1.1820 Jun 2024 07:45 minor security: : (Error! Internal Firefly III Exception: bcadd(): Argument #2 ( num2) is not well-formed) reported by @el-rhazi. (Data Importer: "500 Server Error" with Firefly III v6.1.17) reported by @qtdzz. Security: CVE-2024-37893.
6.1.1716 Jun 2024 11:25 minor feature: Added: New routine that calculates account balances, first start could take a while. Removed: Removed auto-generated language files. : (Error when adding initial balance: bcadd(): Argument #2 ( num2) must be of type string, int given) reported by @wnklmnn. (Docker container startup very slow) reported by @daften. PR 8929 (icon title chgd from Deposit to Transfer) reported by @stevewasiura. PR 8930 (icon title chgd from Deposit to Transfer) reported by @stevewasiura. PR 8951 (add icon for delete action) reported by @stevewasiura. PR 8957 (Remove nesting level for markdown) reported by @JeroenED. (Weird line appears above the UI when clicking on matching transactions for a rule) reported by @avee87. (API: `reconciled: false` does not have precedence) reported by @dreautall. (Wrong calculation of transaction without category) reported by @anarion80. (Converting deposit to transfer can set incorrect transaction currency) reported by @avee87. Various in release train. There is a confirmation again before you delete data using the page in your profile. Security: Two (undis) MFA bypass errors, reported by @Skelmis. Disclosure will follow in a few weeks. API: Expand v2 chart API.
6.1.1620 May 2024 03:15 minor feature: Added: Added THANKS.md to give credit to all developers who help with the development of Firefly III. Changed: New data model for "account balance" makes it easier to calculate and use multi-currency accounts. Not yet in use. : (Budget page crash) reported by @JcMinarro. (Empty webhooks page) reported by @mrahmadt. (SQL Integrity constraint violation when inserting into budget_limits) reported by @HedgehogRidingAnOwl. (A single Account constantly loses its Account NUmber / IBAN ) reported by @ypsilonkah. API: New filters for the v2 autocomplete endpoints. Various attempts to make a better v2 accounts endpoint.
6.1.1524 Apr 2024 08:45 minor bugfix: : (Login with `AUTHENTICATION_GUARD=remote_user_guard` fails due to missing UserGroup) reported by @nebulade.
6.1.1302 Apr 2024 11:25 minor feature: Added: sha256 checksums for the release files. git HEAD added to the release files for easier validation. Changed: Updated pages in the `v2`-layout. : (Crashes during initial setup with PG 16 dbs) reported by @Lysholm. (API: Call to `api/v1/bills` without arguments fails) reported by @dreautall. (Error "Division by zero" when opening the "Budget" section) reported by @mrResident. PR 8735 (`Division error by zero` in budget views) reported by @mansuf.
6.1.1221 Mar 2024 12:21 minor feature: Fixed Exclude debug files from release zip file Drop a duplicate index Replace broken Laravel Passport commands Issue 8692 (passport:install step issue when upgrading to 6.1.11) reported by @captainark Discussion 8694 (Getting error on accessing admin panel of Firefly 6.1.11) started by @jameswill
6.1.1120 Mar 2024 13:45 minor feature: Added: New expression engine by @michaelhthomas, still disabled though. Missing database indexes to speed up performance. A button to the experimental `v2`-layout to go back to `v1`. Changed: New login/register screens. New CSP headers. Deprecated: Dropped all old v3 code. Dropped all generated JS and CSS, thanks @paulius-valiunas!. : Discussion 8569 (What is classed as an "automatic transaction" when it comes to notifications?) started by @digitlength. (404 error when deleting a category) reported by @Jademalo. (Create right now option for recurring transaction missing during weekend) reported by @Transportman. PR 8634 ( trivial broken link in readme) reported by @WardenJakx. (No search results returned when using `tag_contains` and `tag_starts`) reported by @Call-Me-G-Now. (Graph error on Reports) reported by @nicolopozzato. (Rule with -has_any_category:true trigger not triggering) reported by @pvieira84. (Can't remove foreign amount using the trash icon) reported by @danielnetop. (Not possible to upload CSV file as an attachment) reported by @dbtdsilva. Removed: Support for Mandrill because the necessary packages aren't maintained anymore.
6.1.1004 Mar 2024 02:05 minor bugfix: Added: Add missing translations for rule page. Changed: The update checker can also deal with development releases. Rule actions no longer complain when the category is already set. Removed: Unused translation on budget page. : (Total et bar is missing when using SQLite) reported by @matlink. (Recurring transaction calendar preview is not working properly) reported by @Maxco10. (Has no budget becomes has no category) reported by @Weiming-Hu. Discussion 8557 ("Delete ALL your transactions" also removes all asset opening balance information) started by @digitlength. (Creating rule from bill no longer pre-fills triggers and actions) reported by @jpelgrom. (Display : foreign currency is red negative in deposits) reported by @dreautall. Errors in incoming webhook URLs are properly caught. Security: Improved Host header validation to prevent a potential attack, reported by Raqib Iskenderli.
6.1.908 Feb 2024 03:16 minor bugfix: : (Wrong version number after update to v6.1.8) reported by @memo-567. (Bulk delete page links to wrong tx) reported by @likuilin.
6.1.804 Feb 2024 10:45 minor bugfix: Added: Added a trigger for v2 layouts that helps with deging. (The Opening/ Virtual Balance must less than or equal 100001709) reported by @binhtran1604. (Budgets - missing summary from the bottom) reported by @g7xtr. Removed: Reference to the "huntr" bounty platform, which is now some shitty AI scam. : PR 8432 (Update favicons.twig) reported by @stevietv. (may be a wrong calculation) reported by @PterX. (v6.1.7 - Not expected this period) reported by @poudenes. (There is an extra X ending symbol here) reported by @PterX. (API Endpoint /data/export/rules produces errorneous CSV output) reported by @not1q84-1. (When left to spend is 0, the info box is red) reported by @nicosomb. (Left to spend is not the same on dashboard and on budget page) reported by @nicosomb. PR 8477 (Bump actions/checkout from 3 to 4) reported by @dependabot bot . (has_any_category:false not possible as a rule) reported by @shrippen. Security: GHSA-29w6-c52g-m8jc Demo users could trick each other into downloading poisoned CSV files, reported by @red5us.
6.1.721 Jan 2024 12:25 minor bugfix: Added: Layout `v2` has some new features. (Additional reconcile link) reported by @chevdor. : (Modifying the direction of a transfer between liabilities yields no effect) reported by @Ezwen. (various typos) reported by @luzpaz. (Query on multiple tags returns duplicates) reported by @chevdor. (Error Graph Income vs. expenses Reports page) reported by @nicolopozzato. (Rule with destination_account_is 'not' is never returning a result.) reported by @EricVanCaenenberghe. (Currencies not saving correctly) reported by @r1bas4. (Unable to create rule with trigger having type has_no_budget via the API ) reported by @tailg8nj. reported by @chevdor. (Broken batch application of non-strict rules with triggers with stop processing) reported by @alexschlueter. Various Carbon `createFromFormat`.
6.1.609 Jan 2024 06:12 minor bugfix: ### Fixed - Type validation error
6.0.416 Mar 2023 15:25 minor feature: Release v6.0.4.
6.0.212 Mar 2023 03:45 minor feature: Release v6.0.2.
5.6.210 Oct 2021 03:15 minor feature: /health will return 200 OK if Firefly III is up and running, thanks @ajgon!. First version of the LDAP filter is up. Option to log via Papertrail. PHP 7.4 will probably not work on any page. LDAP filter (partial ). Use of clone function from search menu. v2 layout: account notes. Removal of rule triggers / actions broken. Crash due to null pointer. The markdown parser was broken. open direct. unrestricted upload. Deleted transactions would get reimported. Broken UI in v2.0 due to translation. Text duplication. Date range. LDAP configuration. Service worker JS would interfere with back button. several low-key CSRF vulnerabilities. an where you could spam the password reset form. Deprecated the "currencies with code"-endpoint (see the API documentation). Add missing "order" field to budget. Add missing "rule_group_title" to rules. Attachment endpoint returns "upload_url" and "download_url" instead of "*_uri".
5.6.126 Sep 2021 03:15 minor feature: This release features new LDAP libraries. Your mileage may vary. Make sure you back up everything. Firefly III may accidentally create a new account for you instead of reusing the old one. There is no option for LDAP filters yet. This release requires PHP 8.0. Deleted transactions would get reimported. Broken UI in v2.0 due to translation. Text duplication. Date range. LDAP configuration. Service worker JS would interfere with back button. several low-key CSRF vulnerabilities. Deprecated the "currencies with code"-endpoint (see the API documentation). Add missing "order" field to budget. Add missing "rule_group_title" to rules. Attachment endpoint returns "upload_url" and "download_url" instead of "*_uri".
5.6.018 Sep 2021 03:15 minor feature: Gitter.im. Twitter. GitHub. GitHub Discussions. A few new pages for the new v2 layout. Thanks @alex6480!. Added a new currency, thanks @kasperkls02!. You can now manage loans and debts a little better, see also the documentation for help. Some screenshots are now in the GitHub repository for better management, thanks @Flightkick!. @LBreda has added a service worker and updated icons, thanks!. @hoshsadiq has added all PHP requirements to the composer file, thanks!. A better cache routine for layout v2 pages. All LDAP libraries have been upgraded. New templates and help text for easier GitHub support. First preparations for multi-administration and group membership options. The search will return nothing if you submit invalid values, instead of everything. All telemetry options have been removed. Bad number comparison. Budgeted amount includes inactive budgets. Can't select liability account from imported transactions. HTTP 500 when creating Personal Access Token or OAuth Client. Various Sonarqube, thanks @hazma-fadil!. Correct menu display, thanks @vonsogt!. The IBAN validator will filter special characters. In some cases, piggy banks would report being full or empty while this was not actually the case. Various other and minor. Feature to be able to rebuild Docker images and show security warnings in new builds. CVE-2021-3663 A missing rate limiter makes brute-forcing the login easy. It also CVE-2021-3728, CVE-2021-3729 and CVE-2021-3730, all variations of the same security vulnerability: some actions in Firefly III were vulnerable to CSRF. You can disable webhooks with an extra field in API submissions. There is a static cron token (see.env.example) which is useful for Docker. A better endpoint to move transactions around, see api-docs.firefly-iii.org.
5.6.0-alpha.211 Aug 2021 03:15 minor feature: This version of Firefly III CVE-2021-3663.
5.5.1327 Jul 2021 03:15 minor feature: This version of Firefly III CVE-2021-3663.
5.6.0-alpha.104 Jul 2021 03:15 minor feature: This version of Firefly III a security vulnerability in the export routine. You are advised to upgrade as soon as possible. All credits to the excellent @oomb.
5.5.1204 Jun 2021 03:15 minor feature: This version of Firefly III a security vulnerability in the export routine. You are advised to upgrade as soon as possible. All credits to the excellent @oomb.
5.5.1109 May 2021 03:15 minor feature: Rule tests were broken, and matching transactions were not visible. Top boxes were no longer visible. Second split transaction had today's date. Potential for PostgreSQL and PHP 7.4.18. Was not possible to change liability type.
5.5.1002 May 2021 03:15 minor feature: When searching for the external ID, Firefly III will now only return the exact match. Rare but annoying with PostgreSQL increments will be repaired during image boot time. Thanks @jaylenw!. Some rule actions could not handle liabilities. some titles. Could not remove a split in the new layout.
5.5.925 Apr 2021 03:15 minor feature: Dashboard preferences would some times retain old or bad data. Submitting an existing account with an account number only would store it as a new account. Account interest was a float and not a string. Store Budget API call would not properly handle auto budgets.
5.5.819 Apr 2021 03:15 minor feature: Various in the v2 layout. It was possible to assign a budget to a transfer. Null pointer in bulk editor. Inactive rule groups would not be listed.
5.5.713 Apr 2021 03:15 minor feature: The search and rule engine can search for any transaction with any bill or with no bill at all. Thanks, @devfaz!. Old MySQL servers would choke on the migrations. Some arrays are null when Firefly III starts for the first time. Every transaction appeared to have attachments. Export command ignores your dates. Thanks for the suggested, @urquilla!. Empty select list.
5.5.409 Apr 2021 06:05 minor feature: Could not change or update recurring repetition data. The error handler mailer mails about too many things. Call to bad RSA method. Bad code in set source / set destination rule actions meant that it would not fire in some cases. Firefly III has some extra security-related headers. Sometimes empty amounts would not be properly picked up by the API. New endpoint to bulk update transactions. The chart API endpoint includes the time in the labels.
5.5.304 Apr 2021 03:15 minor feature: Upgraded the render engine for the frontend. Call to bad function breaks several report. Migration error in some cases, with an if-statement. LDAP configuration error in Docker image. The account number would be stored in the BIC field, if the BIC field was set. Hidden budgets were visible in v2. Missing translation marked as intentionally missing. It was impossible to set or change auto budgets. New layout could be one day behind in some cases. Link to reconcile page was broken. error when trying to update bills. Add new date-ranges to the v2 index page. some time selection in v2. Inactive budgets would still get automated budget limits. All endpoints that used to deliver dates (2021-04-27) will now deliver date time strings (2021-04-27T16:43:12+02:00). Some API end points did not deliver the promised data.
5.5.129 Mar 2021 03:15 minor feature: The CSV export will also export all optional metadata. The message returned when updating transactions using a rull will return the number of changed transactions. Support for Portuguese! . The recurring transactions calendar was off by one day, this is now. A bad redirect would send you to a 404. Any date related rule actions and triggers will pick up the correct date from the transaction. SQL errors when submitting large amounts to the budget overview are now. The cron job could show you a null pointer. The Japanese Yen has been corrected to zero decimals. When bills skip a moment the amounts in the overview would be off. Firefly III now supports webhooks. The search now also supports searching for transactions using id:123. OAuth settings are visible for LDAP users. If you set FIREFLY_III_LAYOUT=v2, Firefly III will show you the new layout on pages where it's available. A new favicon based on the future logo of Firefly III. The URL to call the cron job from the web has changed to api/v1/cron/ token here . The current layout will no longer receive and changes. The error message for "amount missing" now has a look up value. The budget report crashed when opening. The remote user guard would show a 500 error about type conversion. Tagging recurring transactions would not work. Selecting piggy banks in rules was broken. Audit logging would break some Apache servers. Search reports "Firefly III found 50 transactions in x seconds" even when it only finds one. category update in bulk update. Broken redirect after delete. strtolower breaks some translations. Stop processing does not stop other rules in rule group. Sorting by date on category Report sorts alphabetically instead. Bad math in long periods. Could not add translation link. A rare null pointer exception when running rules. the "spent per day" box. Inconsistent hiding of columns. The info popup in the standard financial report does not apply report's account filter. A broken chart works again. RSA token gen
5.5.0-beta.322 Mar 2021 03:15 minor feature: Rule groups can be collapsed. Category now support notes, although they're not displayed anywhere yet. Upgrade to Laravel 8. Special characters are double escaped. Unclear error message. Better handling of headers in Apache. with logout and admin view. Missing help text can now be translated. Demo sites send messages to me, not "demo@firefly".
5.5.0-beta.215 Mar 2021 03:15 minor feature: Rule groups can be collapsed. Category now support notes, although they're not displayed anywhere yet. Upgrade to Laravel 8. Special characters are double escaped. Unclear error message. Better handling of headers in Apache. with logout and admin view. Missing help text can now be translated. Demo sites send messages to me, not "demo@firefly".
5.5.0-beta.130 Jan 2021 03:25 minor feature: Rule groups can be collapsed. Category now support notes, although they're not displayed anywhere yet. Upgrade to Laravel 8. Special characters are double escaped. Unclear error message. Better handling of headers in Apache. with logout and admin view. Missing help text can now be translated. Demo sites send messages to me, not "demo@firefly".
5.4.608 Nov 2020 03:15 minor feature: Rule groups can be collapsed. Category now support notes, although they're not displayed anywhere yet. Upgrade to Laravel 8. Special characters are double escaped. Unclear error message. Better handling of headers in Apache. with logout and admin view. Missing help text can now be translated. Demo sites send messages to me, not "demo@firefly".
5.4.529 Oct 2020 03:15 minor feature: Could not create rules with IBAN values. Hardcoded array key broke editing. Amount problems in account chart for multi-currency charts. Budget chart did not handle multiple currencies well. Was unable to create new auto budget limits in foreign currency. Unescaped content could break the auto-complete.
5.4.425 Oct 2020 03:15 minor feature: You can create a user from CLI. Various code changes and upgrades. See. Remove initial balance accounts from the auto-complete list. It was impossible to rename a group. Execution of inactive rules. Rules not executed in correct order. Rule values for target account id not accepted. Long search queries may break the query parser. Foreign amount button was hidden. Extra space in currency name. Bad paths. LDAP users could not use tokens. broken links. Bad data validation. Renaming categories would not rename the recurring transactions' category. Remove group from bill was broken. Remove attachment broken reference. Remove account from preferences when set inactive. budget index. old help links. Old SQL parameter removed.
5.4.304 Oct 2020 03:15 minor feature: You can now add an alternative email address to users when using the external user guard. See the.env.example for instructions. Sonarcloud.io badges in the readme file, thanks @lastlink. Support for Slovak. Budgets also count foreign currency transactions. Docker image runs PHP 7.4.11. Hard-coded links broken. Preview was broken for boolean search operators. Broken rule triggers when handling accounts. Broken manifest file. Broken pagination, thanks @sephrat. Split transactions could not be edited. Category popup broken. Could store multiple budget limits due to a broken check. Transaction edit form was improperly updated when removing splits. Could not remove bill from transaction. budget bars. auto-complete code. Budget overview properly takes weekly budgets into account, even when on a monthly list. Could not post new amount.
5.4.226 Sep 2020 03:15 minor feature: Some changes in this release may be backwards incompatible (see below). Invalid triggers in a non-strict rule will cause Firefly III to select ALL transactions. The export volume is no longer used (Docker). The upload volume is now located at /var/www/html/storage/upload (Docker). 5.4.0-alpha.1 on 2020-08-14. 5.4.0-alpha.2 on 2020-08-21. 5.4.0-alpha.3 on 2020-08-21. 5.4.0-beta.1 on 2020-09-13. 5.4.0 on 2020-09-21. When using the remote authentication features of Firefly III, autocomplete endpoints will fail. A new field for transaction URL's. The ability to sort your accounts as you see fit. Add totals to the budget page. You can select an expense when creating a transaction. Meta data and UI changes to count recurring transactions. Ability to add tags in the mass editor, not just replace them. A warning when split transactions may be changed by Firefly III. transfers not showing the right +/- sign, by @sephrat. Create a recurring transaction from a single transaction. Add a message on the bottom of the transaction screen so you see any errors. A summary for the box with bills. You can set your own custom guard header for third party authentication. Add CI support by @hoshsadiq. Added better UTF8 support on Windows, by @sephrat. Redis now supports Unix sockets. Add a basic copy/paste feature. Now supports public clients. You can now click option groups in the report pages. Tag page sum list is now currency aware. A new integrity check that makes sure all transaction types are correct. Support for Bulgarian! . DB version info in the descreen. The admin pages now respect LDAP. All auto-complete code now uses the API; let me know if errors occur. New rule processing engine, which is much faster than the old one, especially on large datasets. Expect several magnitudes of time improvements. Many new search operators, which are documented in the documentation. Use php-intl to do currency formatting, made by @hoshsadiq. Removed features that aren't ne
5.4.122 Sep 2020 03:15 minor feature: Some changes in this release may be backwards incompatible (see below). Invalid triggers in a non-strict rule will cause Firefly III to select ALL transactions. The export volume is no longer used (Docker). The upload volume is now located at /var/www/html/storage/upload (Docker). 5.4.0-alpha.1 on 2020-08-14. 5.4.0-alpha.2 on 2020-08-21. 5.4.0-alpha.3 on 2020-08-21. 5.4.0-beta.1 on 2020-09-13. 5.4.0 on 2020-09-21. When using the remote authentication features of Firefly III, autocomplete endpoints will fail. 2FA and LDAP will NOT work together. A new field for transaction URL's. The ability to sort your accounts as you see fit. Add totals to the budget page. You can select an expense when creating a transaction. Meta data and UI changes to count recurring transactions. Ability to add tags in the mass editor, not just replace them. A warning when split transactions may be changed by Firefly III. transfers not showing the right +/- sign, by @sephrat. Create a recurring transaction from a single transaction. Add a message on the bottom of the transaction screen so you see any errors. A summary for the box with bills. You can set your own custom guard header for third party authentication. Add CI support by @hoshsadiq. Added better UTF8 support on Windows, by @sephrat. Redis now supports Unix sockets. Add a basic copy/paste feature. Now supports public clients. You can now click option groups in the report pages. Tag page sum list is now currency aware. A new integrity check that makes sure all transaction types are correct. Support for Bulgarian! . DB version info in the descreen. All auto-complete code now uses the API; let me know if errors occur. New rule processing engine, which is much faster than the old one, especially on large datasets. Expect several magnitudes of time improvements. Many new search operators, which are documented in the documentation. Use php-intl to do currency formatting, made by @hoshsadiq. Removed features that aren't
5.4.0-beta.114 Sep 2020 03:15 minor feature: Spelling error in API array. in bills chart. With floating number. Link in readme. With floating number.
5.4.0-alpha.330 Aug 2020 03:15 minor feature: Spelling error in API array. in bills chart. With floating number. Link in readme. With floating number.
5.4.0-alpha.222 Aug 2020 03:15 minor feature: Spelling error in API array. in bills chart. With floating number. Link in readme. With floating number.
5.4.0-alpha.115 Aug 2020 03:15 minor feature: Spelling error in API array. in bills chart. With floating number. Link in readme. With floating number.
5.3.318 Jul 2020 03:15 minor feature: Spelling error in API array. in bills chart. With floating number. Link in readme. With floating number.
5.3.213 Jul 2020 14:43 minor bugfix: - Fix problems when installing Docker or composer
5.3.010 Jul 2020 05:56 major feature: - Migrate to PHP 7.4 - Many bug fixes - New features for bill and piggy bank management