• 5f458dd1a6d631f324e4af9a4f5429ffdf199342: feat(auth): add proxy-server authentication (#3877) (@EndlessParadox1)
• 7a865dcf1dbe6ec52e074b1ddce830d278eb72cf: feat(bind): ShouldBindBodyWith shortcut and change doc (#3871) (@RedCrazyGhost)
• a18219566ca25fc51e6d2886bed849c6c3a0cd12: feat(binding): Support custom BindUnmarshaler for binding. (#3933) (@dkkb)
• fd1faaded01aef14a3955ec076f1cbeb9cb87775: feat(binding): support override default binding implement (#3514) (@ssfyn)
• ac5e84d93ce34359bfd2f346cb2971ea754d83e3: feat(engine): Added OptionFunc and With (#3572) (@flc1125)
• c6ae2e69666a2b36203b29650ee75d172c725c66: feat(logger): ability to skip logs based on user-defined logic (#3593) (@palvaneh)

• d4e413648824333726ef65de5defc457e9dbf095: Revert "fix(uri): query binding bug (#3236)" (#3899) (@appleboy)
• 3dc1cd6572b4e3a0cd170a15debe546c2c72294f: fix(binding): binding error while not upload file (#3819) (#3820) (@clearcodecn)
• 82bcd6d39bfe9c22032764ff3b0b6f8ef1673e49: fix(binding): dereference pointer to struct (#3199) (@echovl)
• 2b1da2b0b38dfc5d5841266037c0c8b249eca1dd: fix(context): make context Value method adhere to Go standards (#3897) (@FarmerChillax)
• f70dd00b00bc0a46cb18b55bfe1f918d5d29b511: fix(engine): fix unit test (#3878) (@flc1125)
• 86ff4a64c7efe1a1c875529835eeef9e15de1e86: fix(header): Allow header according to RFC 7231 (HTTP 405) (#3759) (@Crocmagnon)
• 09f8224593e31edf3c58ab3f13bc31ef53473733: fix(route): Add fullPath in context copy (#3784) (@KarthikReddyPuli)
• 9f598a31aafb92d675f38f1c8371e4ac76f858bf: fix(router): catch-all conflicting wildcard (#3812) (@FirePing32)
• 4a40f8f1a49b9086b461d97e167c3b9628d8b923: fix(sec): upgrade golang.org/x/crypto to 0.17.0 (#3832) (@chncaption)
• 386d244068db3693f938db4ead6d1f5f85942e3f: fix(tree): correctly expand the capacity of params (#3502) (@georgijd-form3)
• 8790d08909fc4d193c6c787c9c72f3089168f411: fix(uri): query binding bug (#3236) (@illiafox)
• 44d0dd70924dd154e3b98bc340accc53484efa9c: fix: Add pointer support for url query params (#3659) (#3666) (@omkar-foss)
• 646312aef6a34095476ac846b0920db5fb24b2ea: fix: protect Context.Keys map when call Copy method (#3873) (@kingcanfish)

• d4a64265f21993368c90602c18e778bf04ef36db: chore(CI): update release args (#3595) (@qloog)
• bb3519d26f52835cf00e5e430b52651a9c378c97: chore(IP): add TrustedPlatform constant for Fly.io. (#3839) (@ab)
• 1b3c0859693fc85290c01ba098b1440d4776549f: chore(debug): add ability to override the debugPrint statement (#2337) (@josegonzalez)
• a64286a7760be2031209686ce4d36e99d42dd419: chore(deps): update dependencies to latest versions (#3835) (@appleboy)
• 9c61295efeea99f6c9d1722294f1bf61d8e464d6: chore(header): Add support for RFC 9512: application/yaml (#3851) (@vincentbernat)
• a481ee2897af1e368de5c919fbeb21b89aa26fc7: chore(http): use white color for HTTP 1XX (#3741) (@viralparmarme)
• c964ad370bbe007f1b18a7570f058a66f05fbe1f: chore(optimize): the ShouldBindUri method of the Context struct (#3911) (@1911860538)
• 739d2d9c80e0298dafb5df1c30bae35d63935d6c: chore(perf): Optimize the Copy method of the Context struct (#3859) (@1911860538)
• 3ea8bd99fbb4e499d70a0c8e1ce2ce4b7c6348b6: chore(refactor): modify interface check way (#3855) (@demoManito)
• ab8042e9e5370bbe0e93ea5adc6e74ae4c5df95e: chore(request): check reader if it's nil before reading (#3419) (@noahyao1024)
• 0d9dbbb44551a872d30fd89d4d55ba0515d646fd: chore(security): upgrade Protobuf for CVE-2024-24786 (#3893) (@Fotkurz)
• ecdbbbe9483dd12222f2085f717a2c7cb5ac55fe: chore: refactor CI and update dependencies (#3848) (@appleboy)
• 39089af62535b27aa63608f341c0a339aa88f64e: chore: refactor configuration files for better readability (#3951) (@appleboy)
• 160c1730efd30046239c802d5b9f895a708c3f4c: chore: update GitHub Actions configuration (#3792) (@appleboy)
• 0397e5e0c0f8f8176c29f7edd8f1bff8e45df780: chore: update changelog categories and improve documentation (#3917) (@appleboy)
• 62b50cfbc0de877207ff74c160a23dff6394f563: chore: update dependencies to latest versions (#3694) (@appleboy)
• 638aa19e7d30513f7bc777c62ff8558fd5f90ea5: chore: update external dependencies to latest versions (#3950) (@appleboy)
• c6f90df4e0c888c69524307cc35952ec2e7ead41: chore: update various Go dependencies to latest versions (#3901) (@appleboy)

• 78f4687875d72d10392f8a77008cbefdec4c0aa0: build(codecov): Added a codecov configuration (#3891) (@flc1125)
• 56dc72c4d5b1076fc9c6b81f57299739c11910b8: ci(Makefile): vet command add .PHONY (#3915) (@imalasong)
• 8ab47c694ea93fdb442b617961ce9b3171151749: ci(lint): update tooling and workflows for consistency (#3834) (@appleboy)
• 8acbe657f1c140e3fba38f869978cab2376500c9: ci(release): refactor changelog regex patterns and exclusions (#3914) (@appleboy)
• 000fdb3ac95c7c318440afbd98eaf60f7430a1db: ci(testing): add go1.22 version (#3842) (@appleboy)

• 990c44aebf20f0796d99051e53d6ee75b7ed52fb: docs(context): Added deprecation comments to BindWith (#3880) (@flc1125)
• 861ffb9181dc811dc5d76fc450b36d3e68850b95: docs(middleware): comments to function BasicAuthForProxy (#3881) (@EndlessParadox1)
• ee70b30a97205ac1f32889f41d8a494b3b2c81a5: docs: Add document to constant AuthProxyUserKey and BasicAuthForProxy. (#3887) (@EndlessParadox1)
• f75144a356e57c95bd21a048f0a40492dcdb33c5: docs: fix typo in comment (#3868) (@testwill)
• 83fc7673f9797b4c7d8d1c41b94e9922303e6275: docs: fix typo in function documentation (#3872) (@TotomiEcio)
• 49f45a542719df661bd71dd48f1595f0bc1ff6f7: docs: remove redundant comments (#3765) (@WeiTheShinobi)
• 75ccf94d605a05fe24817fc2f166f6f2959d5cea: feat: update version constant to v1.10.0 (#3952) (@appleboy)

• 02e754be9c4889f7ee56db0660cc611eb82b61d6: Upgrade golang.org/x/net -> v0.13.0 (#3684) (@cpcf)
• 97eab7d09a8b048cab4a3d8ebd6c0ea78284c716: test(git): gitignore add develop tools (#3370) (@demoManito)
• ae15646aba14cd8245fbebd263cc7740c6789ef3: test(http): use constant instead of numeric literal (#3863) (@testwill)
• fd60a24ab76c3c92955ba253c1f7eda9e4981c3c: test(path): Optimize unit test execution results (#3883) (@flc1125)
• bb2d8cf486bde2dc69bf05ea917095260ac13723: test(render): increased unit tests coverage (#3691) (@araujo88)

Changelog

BUG FIXES

• fix Request.Context() checks #3512

SECURITY

• fix lack of escaping of filename in Content-Disposition #3556

ENHANCEMENTS

• refactor: use bytes.ReplaceAll directly #3455
• convert strings and slices using the officially recommended way #3344
• improve render code coverage #3525

DOCS

• docs: changed documentation link for trusted proxies #3575
• chore: improve linting, testing, and GitHub Actions setup #3583

Changelog

BREAK CHANGES

• Stop useless panicking in context and render #2150

BUG FIXES

• fix(router): tree bug where loop index is not decremented. #3460
• fix(context): panic on NegotiateFormat - index out of range #3397
• Add escape logic for header #3500 and #3503

SECURITY

• Fix the GO-2022-0969 and GO-2022-0288 vulnerabilities #3333
• fix(security): vulnerability GO-2023-1571 #3505

ENHANCEMENTS

• feat: add sonic json support #3184
• chore(file): Creates a directory named path #3316
• fix: modify interface check way #3327
• remove deprecated of package io/ioutil #3395
• refactor: avoid calling strings.ToLower twice #3343
• console logger HTTP status code bug fixed #3453
• chore(yaml): upgrade dependency to v3 version #3456
• chore(router): match method added to routergroup for multiple HTTP methods supporting #3464
• chore(http): add support for go1.20 http.rwUnwrapper to gin.responseWriter #3489

DOCS

• docs: update markdown format #3260
• docs(readme): Add the TOML rendering example #3400
• docs(readme): move more example to docs/doc.md #3449
• docs: update markdown format #3446

Changelog

Bug fixes

• 0c2a691 fix(engine): missing route params for CreateTestContext (#2778) (#2803)
• e305e21 fix(route): redirectSlash bug (#3227)

Others

• 6a2a260 Fix the GO-2022-1144 vulnerability (#3432)

Changelog

Features

• f197a8b feat(context): add ContextWithFallback feature flag (#3166) (#3172)

Changelog

BUGFIXES

• Fixed SetOutput() panics on go 1.17 #2861
• Fix: wrong when wildcard follows named param #2983
• Fix: missing sameSite when do context.reset() #3123

ENHANCEMENTS

• Use Header() instead of deprecated HeaderMap #2694
• RouterGroup.Handle regular match optimization of http method #2685
• Add support go-json, another drop-in json replacement #2680
• Use errors.New to replace fmt.Errorf will much better #2707
• Use Duration.Truncate for truncating precision #2711
• Get client IP when using Cloudflare #2723
• Optimize code adjust #2700
• Optimize code and reduce code cyclomatic complexity #2737
• gin.Context with fallback value from gin.Context.Request.Context() #2751
• Improve sliceValidateError.Error performance #2765
• Support custom struct tag #2720
• Improve router group tests #2787
• Fallback Context.Deadline() Context.Done() Context.Err() to Context.Request.Context() #2769
• Some codes optimize #2830 #2834 #2838 #2837 #2788 #2848 #2851 #2701
• TrustedProxies: Add default IPv6 support and refactor #2967
• Test(route): expose performRequest func #3012
• Support h2c with prior knowledge #1398
• Feat attachment filename support utf8 #3071
• Feat: add StaticFileFS #2749
• Feat(context): return GIN Context from Value method #2825
• Feat: automatically SetMode to TestMode when run go test #3139
• Add TOML bining for gin #3081
• IPv6 add default trusted proxies #3033

DOCS

• Add note about nomsgpack tag to the readme #2703

BUGFIXES

• Fixed X-Forwarded-For unsafe handling of CVE-2020-28483 #2844, closed issue #2862
• Tree: updated the code logic for latestNode #2897, closed issue #2894 #2878
• Tree: fixed the misplacement of adding slashes #2847, closed issue #2843
• Tree: fixed tsr with mixed static and wildcard paths #2924, closed issue #2918

ENHANCEMENTS

• TrustedProxies: make it backward-compatible #2887, closed issue #2819
• TrustedPlatform: provide custom options for another CDN services #2906

DOCS

• NoMethod: added usage annotation (#2832)

BUGFIXES

• fix level 1 router match #2767, #2796

Handle pre release v1.7.5 error, so release v1.7.6 but still use v1.7.4 codes.