Part-DB 2.12.2

Important

This version contains security fixes, it is recommended to update to this version immediately.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

Part-DB 2.12.2

Security fixes

• MEDIUM: Fixed XSS vulnerability in project BOM import
• MEDIUM: Fixed XSS vulnerability in project BOM table

Bug fixes

• Fixed invalid reference in api docs (PR #1403, @d-buchmann)
• Fixed problem that sidebar hide state was not persisted over page reloads (PR #1404, @d-buchmann)
• Do not log deprecations as the files can quickly get very large, old behavior can be reenabled via env setting. This might also give a small performance boost (fixes #1405)

Other changes

• Updated KiCad symbols
• Updated dependencies
• Fixed deprecations

Full Changelog: v2.12.1...v2.12.2

Part-DB 2.12.1

Important

This version contains critical security fixes, it is recommended to update to this version immediately.

Part-DB 2.12.1

Security fixes

• CRITICAL: Fixed issue that users with editing rights could execute arbitary php code in the docker installations by uploading phar files
• MEDIUM: Fixed XSS issue in unsanatized log entry extra. Due to the Content-Security-Policy this has limited impact, as no arbitrary javascript can be executed.
• MEDIUM: The APP_SECRET env must be changed to prevent forgery of REMEMBERME tokens. To be doable an attacker requires to know the secret password hash of a user, which is not obtainable without another security issue. Administrators will see an warning banner on the homepage, asking to change the APP_SECRET.

Generate an new random 32 character string with openssl rand -hex 32 and put the value for APP_SECRET into your .env.local or the environment section of the docker-compose.yaml.

Other changes

• Updated dependencies to fix known security issues in symfony and twig
• Updated KiCad symbol and footprint lists

Part-DB 2.12.0

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

New features

• Added browser plugin to quickly submit pages from a browser to Part-DB to create parts out of it. As it submits the browser HTML, this allows also for info extraction from pages like ebay, amazon or aliexpress. Plugin is available for Chrome and Firefox
• Added an "unsaved changes" warning, on when a form contains unsaved changes and user tries to navigate away (#1368)
• Changed/Unsaved fields get highlighted with a light blue border in forms
• The discard changes button also now correctly works with rich text editor fields and select fields.

Bug fixes

• Fixed problem with attachment referencing in API (#1370)

Miscellaneous

• Updated dependencies
• Updated translations
• Updated kicad symbols

Full Changelog: v2.11.1...v2.12.0

Part-DB 2.11.1

Part-DB 2.11.1

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

Bug fixes

• Updated watchtower image in watchtower config example (#1363)
• Fixed problems of invalid links when AI Web Extractor encounters non-absolute links

Improvements

• Improved UserAgent randomizer for web scraper

Part-DB 2.11.0

Part-DB 2.11.0

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

New features

• Added AI powered website scraper to provide detailed part infos even from webshops with little structured data
• Added feature to force refresh of info provider search and results, and to skip delegation to specialized providers when using "create part from URL"
• Add Docker update support via Watchtower integration by @Sebbeben in #1330
• Add Quick Apply and batch update to bulk info provider import by @Sebbeben in #1316
• Add 'Add stock' button to part stock info page by @kernchen-brc in #1352
• Added 250 and 500 entry to table lengthes menus

Bug fixes

• Fix sort order after column reorder on page reload by @wschopohl in #1346
• Fixed error making editing of users impossible
• Fixed error with converting existing DB to postgresql database (#1362)
• Fixed error that original category were changed, if category cloned and eda info changed (#1341)
• Keep part table length selection across page loads (#1350)

Miscellaneous

• Updated dependencies
• Updated KiCad symbols and footprint list

Full Changelog: v2.10.0...v2.11.0

Part-DB 2.10.0

Part-DB 2.10.0

Warning

This version requires nodejs 22+ for frontend building. Check that you have it installed, before attempting automatic upgrade.

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

Changes

• Frontend building now requires at least nodejs 22.
• For security hardening reasons Part-DB's generic web provider and the attachment download feature cannot download from local network IPs to avoid SSRF attacks. If you require internal attachment download, you can enable it via an env option.

New features

• Make format06 barcode checking more resiliant for non-standard conform labels and scanners by @mkne in #1321
• Implement parsing of TME QR codes by @alufers in #1324
• Ignore public/.well-known folder by @klausman in #1335
• Enable BOM sorting on part fields (Storage location, Manufacturing status) @mkne in #1338
• Allow to create custom kicad symbol/footprint autocomplete lists @DanTrackpaw in #1342
• Add price columns to project BOM table and build price summary by @MayNiklas in #1345
• Allow to sort by numeric value with SI prefix. This is realized via a separate optional column @wschopohl in #1344

Bugfixes

• Fix creating parts from TME if the SPN contains percent signs by @alufers in #1337

Miscellaneous

• Updated dependencies
• Updated translations
• Updated kicad symbols
• Improved documentation

New Contributors

• @alufers made their first contribution in #1324
• @klausman made their first contribution in #1335
• @DanTrackpaw made their first contribution in #1342
• @wschopohl made their first contribution in #1344

Full Changelog: v2.9.1...v2.10.0

Part-DB 2.9.1

Part-DB 2.9.1

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

Improvements

• Removed MPN fallback from LCSC barcode scanner, the SPN field is used instead for part matching (#1302)
• Automatically detect the delimiter on generic CSV BOM imports

Bug fixes

• Fixed intendation of EDA visibility checkboxes
• Fixed SAML login button (#1308, thanks to @mowoe)
• Fixed problem of GenericWeb info provider when used behind traefik (#1296)
• Fixed 500 error, when mapping in generic CSV BOM import fails (#1298)
• Fixed 500 error with displaying part prices, when a user has a currency preference different of base currency, and there is no conversion rate known for it (#1317)

Miscellaneous

• Updated dependencies
• Updated translations
• Updated kicad symbols

New Contributors

• @mowoe made their first contribution in #1308

Full Changelog: v2.9.0...v2.9.1

Part-DB 2.9.0

Part-DB 2.9.0

Warning

After upgrade, you need to run php bin/console doctrine:migrations:migrate (or equivalent) as webserver user after upgrade.. If you are running a docker container, use sudo docker exec --user=www-data partdb php bin/console doctrine:migrations:migrate, or sudo -E inside the docker container, to ensure that the migrations are applied to the correct database.

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

New feautures

• Sidebar trees keep track of page navigations. If you open a certain category, the treenode will be hightlighted
• Show a "Show password" toggle on all password inputs, including login form
• Made form fields wider on large monitors, to remove useless whitespace
• Reset opcache after update manager update (thanks @Sebbeben, PR #1288)
• Allow to create manual backups and download them from the WebUI (thanks @Sebbeben, PR #1255)
• Added user_barcode_filter to API (thanks @MayNiklas, PR #1280)
• Show manufacturing status in project BOM table (thanks @mkne, #1289)
• Create a part lot with quantity, user barcode and order number based on digikey, lcsc or mouser barcode, to reduce amount of manual input

Bug fixes

• Do not scroll sidebar to top, when clicking a tree node
• Fixed description field on KiCAD 9.0.5 and 9.0.6 (#1289)
• Generate correct url for part lots barcode content label placeholders (#1268)
• Correctly import files, where only children elements are specified and no parent field (#1272)
• Clear the input after selecting an option in tomselect (#1264)

Miscellaneous

• Updated dependencies

Full Changelog: v2.8.1...v2.9.0

Version 2.8.1

Part-DB 2.8.1

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

Bug fixes

• Security hardening for some endpoints
• Fixed minor unauthorized information leackage in IPN generation endpoint (#1283)
• Fixed problem with creating digikey parts from barcode when it contained a CREF (#1283)
• Use cache:pool:clear --all for more thorough cache clearing in update process
• Moved settings cache to cache.system adapter, to ensure its cleared on cache:clear (prevents #1279)
• Fixed problem that flash messages were not shown in admin pages

Miscellaneous

• Updated dependencies
• Updated kicad library files

Full Changelog: v2.8.0...v2.8.1

Part-DB 2.8.0

Part-DB 2.8.0

Warning

After upgrade, you need to run php bin/console doctrine:migrations:migrate (or equivalent) as webserver user after upgrade.. If you are running a docker container, use sudo docker exec --user=www-data partdb php bin/console doctrine:migrations:migrate, or sudo -E inside the docker container, to ensure that the migrations are applied to the correct database.

Tip

If you like Part-DB, consider donating to support the development. Press the sponsor button on the main github page, for more info.

Important

If you are using Part-DB it would be helpful if you fill out this short survey on your usage of Part-DB (Google Forms): https://forms.gle/Q15twx3YYq3qCNfe8

New features

• Allow to add parts from barcode scans of LCSC, digikey and other vendor labels (thanks @swdee)
• Allow to scan LCSC labels
• Added Amazon info provider via Canopy API
• Added an optional HTML sandbox for attachments, allowing to view interactive BOM HTML files inside Part-DB (#1150)
• Add option to disable special character keybindings (#1251, thanks @MayNiklas)
• Improve working with an external barcode scanner, allow scanning barcodes from everywhere
• Make KiCad API better cachable (#1241, thanks @Sebbeben)
• Make parameters and order informations visible in KiCad (#1241, thanks @Sebbeben)
• Show EDA value and reference in part tables (#1266, thanks @hrueger)

Miscellaneous

• Updated dependencies
• Updated translations
• Updated KiCad library autocomplete lists
• Security hardening of attachments

New Contributors

• @hrueger made their first contribution in #1266

Full Changelog: v2.7.1...v2.8.0