Skip to content

Mailpit

v1.28.4 Bugfix

This release fixes issues for SREs watching stability and regressions.

Published 4mo Communication & Email
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →

✓ No known CVEs patched in this version

Topics

email-testing go mailpit pop3-server smtp-relay smtp-server
+1 more
smtp-testing

Affected surfaces

auth breaking_upgrade

Summary

AI summary

Fixed SMTP protocol compliance by issuing HELO/EHLO before MAIL and preventing nested MAIL commands.

Full changelog

Chore

  • Increase allowed SMTP email address length to 1024 chars & return clearer SMTP responses for failures (#620)
  • Update Go dependencies
  • Update node dependencies

Fix

  • Ensure SMTP HELO/EHLO command is issued before MAIL as per RFC 5321 (#621)
  • Prevent nested MAIL command during an active SMTP transaction (#623)
  • Avoid error on image type assertion in thumbnail generation
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Mailpit

Get notified when new releases ship.

Sign up free

About Mailpit

Email testing tool and API for developers

All releases →

Related context

Beta — feedback welcome: [email protected]