chore: prep 1.8.16 (#4586)

imorland · web-flow · commit a2260e4a62f2 · 2026-04-18T21:56:44.000+01:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,5 +1,17 @@
 # Changelog
 
+## [v1.8.16](https://github.com/flarum/framework/compare/v1.8.15...v1.8.16)
+### Security
+* Path traversal in LESS parser via theme color settings, incomplete fix for CVE-2023-27577 (https://github.com/flarum/framework/security/advisories/GHSA-xjvc-pw2r-6878)
+* Account takeover via expired password reset token (https://github.com/flarum/framework/security/advisories/GHSA-649p-3mfg-mx5r)
+* Invalidate active sessions when password is changed (https://github.com/flarum/framework/pull/4546)
+* Delete stale password tokens when requesting a new reset (https://github.com/flarum/framework/pull/4547)
+### Added
+* Sync abandoned extensions list from `flarum/abandoned-extensions` (https://github.com/flarum/framework/pull/4559)
+* Add `forum-widget` extension category (https://github.com/flarum/framework/pull/4542)
+### Fixed
+* [Tags] Use forum description for meta description on tags homepage (https://github.com/flarum/framework/pull/4557)
+
 ## [v1.8.15](https://github.com/flarum/framework/compare/v1.8.14...v1.8.15)
 ### Added
 * Announcements widget on admin dashboard (https://github.com/flarum/framework/pull/4472)
diff --git a/framework/core/src/Foundation/Application.php b/framework/core/src/Foundation/Application.php
@@ -23,7 +23,7 @@ class Application
      *
      * @var string
      */
-    const VERSION = '1.8.15';
+    const VERSION = '1.8.16';
 
     /**
      * The IoC container for the Flarum application.

Original file line number	Diff line number	Diff line change
`@@ -23,7 +23,7 @@ class Application`
`23`	`23`	`*`
`24`	`24`	`* @var string`
`25`	`25`	`*/`
`26`		`- const VERSION = '1.8.15';`
	`26`	`+ const VERSION = '1.8.16';`
`27`	`27`
`28`	`28`	`/**`
`29`	`29`	`* The IoC container for the Flarum application.`