No releases found for the selected project.
YouTube playlist parameter is added conditionally based on the loop setting and deprecated parameters are removed.
playlist={videoId} URL parameter when loop is enabled. Previously it was added unconditionally, which surfaced prev/next navigation buttons in the post-March-2026 YouTube embed redesign.showinfo and modestbranding parameters (no effect since 2018/2023).Fixed YouTube video iframe playback reliability and improved CI testing infrastructure.
origin= URL parameter into the embed src on the client side so YouTube's iframe API dispatches reply postMessages in WordPress Playground and other proxied environments where the server-side origin does not match the actual page origininfoDelivery.info.playerState when needed, and retry late handshakes so playback state transitions are deterministicpauseVideo while the player is in the BUFFERING state (not only PLAYING) so a fast scroll-out cancels a play that has been accepted but has not yet transitioned to playingpage.route() so CI tests verify our bridge end-to-end without depending on YouTube's media pipeline, which aborts on GitHub Actions Ubuntu runners and produced deterministic --playing state-class timeouts despite the bridge transport working correctlyAdds website module presets and REST API endpoints for preset management while replacing auto-enable metadata with preset membership.
auto_enable metadata with preset membership metadata across module definitions, generated module references, and developer documentation.Resolved ESLint warnings across block edit components and admin UI.
useCallback/useMemo, extracted sub-components for handlers created inside .map(), and silenced intentional sequential-await patterns in e2e test helpersAdded dev container variants with SSH agent support for non-standard SSH agents.
Airfleet Nexus Tooling (SSH agent) and Airfleet Nexus + WordPress (SSH agent) dev container variants with explicit SSH_AUTH_SOCK bind-mount for developers using 1Password or other non-standard SSH agentsNew YouTube, Vimeo, and Wistia video blocks are added, along with a shared video architecture and refactored video file block.
video-youtube: New YouTube Video block with URL input, lazy loading, autoplay/autopause, poster, and iframe postMessage bridge.video-vimeo: New Vimeo Video block with lazy loading, autoplay/autopause, poster via WP oEmbed proxy, and iframe postMessage bridge.video-wistia: New Wistia Video block using Aurora Player (<wistia-player> Web Component) with native DOM events, lazy loading, and auto-poster via oEmbed.allow-wistia-oembed: New module that registers Wistia as an oEmbed provider for auto-poster thumbnail fetching.src/shared/scripts/video/ reused across all providers — media controls, iframe bridge, overlay, playback state, unmute indicator, and DOM events (afnx-video-*, afnx-media-*).video-file: Refactored to use shared video modules. Editor uses MediaPlaceholder and MediaReplaceFlow. Settings labels updated for clarity.allow-lottie: Tier changed to enhancement.block-lottie: Live animation preview in editor via sandbox iframe. Simplified poster handling to match video blocks. Poster panel moved after Behavior panel.Adds a module to prevent data deletion during uninstallation or preview version switching.
disable-data-uninstalling: New module allowing site administrators to prevent plugin data from being deleted when the plugin is uninstalled or when switching between plugin preview versions in the Airfleet plugin manager. Module state is checked directly in the uninstall hook via ModuleManager to ensure data protection works correctly outside the normal plugin lifecycle.Unreleased changelog entries are now stored as separate markdown fragments.
changelog/unreleased/*.md fragments and consolidate them into CHANGELOG.md during plugin release via @airfleet/wordpress-dev.@airfleet/wordpress-dev to 4.11.1.Fixed changelog fragment consolidation to merge fragments before release-it and Keep a Changelog validation.
afwp release changelog fragment consolidation so fragments are merged before release-it and Keep a Changelog validate CHANGELOG.md.Added a changelog fragments command and updated release commands to consolidate fragments.
changelog-fragments command for validating and consolidating changelog/unreleased/*.md files into CHANGELOG.md.changelog-add --check now accepts either CHANGELOG.md Unreleased entries or valid changelog/unreleased/*.md fragments, with --skip-changelog-fragments available when fragments should be ignored.version-set now includes changelog fragments when auto-determining and checking .airfleet-release, with --skip-changelog-fragments to use only CHANGELOG.md entries.release github, release npm, release plugin, and release theme now consolidate changelog fragments before Keep a Changelog updates CHANGELOG.md, with --skip-changelog-fragments to bypass consolidation.Adds a new Accordion module and block with auto-close, icon system, and custom events, alongside a CSS color sanitization utility and documentation updates.
docs/guide/modules.md and docs/blocks/background-image.md.block-registration - added method to unregister blocks that depend on modules, when the modules are not active.accordion: New Accordion module — registers and manages the lifecycle of the accordion block. Enabled by default; disabling this module will unregister the accordion block and its related child blocks (accordion-item, accordion-item-heading, accordion-item-content).block-accordion: New Accordion block (airfleet-nexus/accordion) — a container block for collapsible content items with autoClose behavior and showIcon context. Toolbar "Add item" button for faster item creation. CSS modifier classes (.afnb-accordion--has-icon, .afnb-accordion--no-icon, .afnb-accordion--icon-left, .afnb-accordion--icon-right) for icon-aware heading padding. Tab color controls (Active/Inactive Background and Text) set via inline style attribute on the wrapper, cascading to all tabs via CSS custom properties. Auto-switch option with timed item cycling, configurable interval, manual click reset, viewport-aware pausing, and optional progress bar animation.block-accordion: Extensible icon system featuring SVG path-based animations (plus-minus and arrows), a filterable PHP configuration, and a server-side localized icon picker in the editor.block-accordion: Custom DOM events dispatched on the wrapper: afnx-accordion-load, afnx-accordion-open, and afnx-accordion-close.block-accordion: Vanilla JS frontend behavior (view.js) — handles expand/collapse toggling, autoClose logic, and deep linking via URL hash. No external dependencies or Interactivity API.block-accordion: Enhanced editor experience mimicking the native accordion block.block-accordion-item: New Accordion Item block (airfleet-nexus/accordion-item) — a wrapper for heading and content, supporting openByDefault for initial state control.block-accordion-item-heading: New Accordion Item Heading block (airfleet-nexus/accordion-item-heading) — locked inner block for accordion-item. Wraps a core/heading and a toggle button HTML element. The heading's native HTML anchor field enables URL deep-linking to that item.block-accordion-item-content: New Accordion Item Content block (airfleet-nexus/accordion-item-content) — locked inner block for accordion-item. Provides the collapsible panel body with CSS grid-based transitions.SanitizeCssColor: New utility for sanitizing CSS color values (hex, rgb/rgba, hsl/hsla, oklch, oklab, color, var, and CSS keywords). Includes comprehensive PHPUnit test suite covering all WordPress-produced color formats and injection attack prevention.Resolved open_basedir warnings by disabling AWS shared config file probing.
open_basedir warnings (is_readable(): open_basedir restriction in effect. File(~/.aws/config) is not within the allowed path(s)) when initializing the S3 client on hosts that restrict access to the home directory (e.g. Kinsta). The AWS SDK is now configured with use_aws_shared_config_files => false, so it no longer probes ~/.aws/config and ~/.aws/credentials since credentials are already supplied explicitly.Fixes spurious invalid grant errors caused by duplicate OAuth callback requests by redirecting already-authenticated users.
invalid_grant: Malformed auth code errors caused by duplicate OAuth callback requests (browser back/forward navigation, link prefetch, and bot replay) re-redeeming a single-use Google authorization code. The callback handler now guards against duplicate processing per state using an atomic object-cache lock with a transient fallback, redirecting already-authenticated users instead of re-exchanging the code.Moves auto-generated documentation to a generated folder and adds it to gitignore to prevent merge conflicts.
docs/api/, docs/release-notes.md) to docs/generated/ and add it to .gitignore to prevent merge conflicts across branches.Fixed a crash in the JobPosting JSON-LD schema when job location data is null.
Weekly Slack digests now list only the latest release per repository and show the total release count.
Enabled Cloudflare Worker observability, adjusted Slack digest schedules, and ensured static pages update after period rollovers.
worker/wrangler.toml and added explicit release-processing/build-hook logs so webhook deliveries, summary generation, and Pages build-trigger attempts can be traced in Cloudflare Workers logs.PAGES_BUILD_HOOK_URL GitHub Actions secret used to refresh the static site after Slack-triggered summary backfills.Automatically recompiles and retries rendering when compiled Blade cache files are missing.
error_log)Fixed worker exception handling to prevent crashes and added guards for missing secrets.
fetch handler's handleWebhook call in a top-level try/catch so any unhandled exception returns a 500 response instead of crashing the Worker with a Cloudflare 1101 error. GitHub retries on 500, so no webhook deliveries are permanently lost.GITHUB_PRIVATE_KEY (in importPrivateKey) and PAGES_BUILD_HOOK_URL (in maybeTriggerBuild), throwing descriptive errors when either secret is not set rather than a cryptic TypeError.