2.8.0.beta4: Security Release, New PM Style, and more

New features in 2.8.0.beta4

Security fix

This beta includes a critical security fix. All sites are encouraged to update as soon as possible. This fix ensures that the period parameter for top topic routes is properly validated.

New Personal Message (PM) style

We’ve updated the personal message style to use bubbles, helping to better distinguish PMs from regular topics.

Outside of styles directly impacting the personal messages, there are some supporting additions:

  • Adds class .current-user-post to your own posts
  • Adds class .embedded-reply to embedded posts’ .topic-meta-data
  • Adds new --tertiary-very-low color
  • Reworks some styles for deleted posts

Improvements to the header search widget

We have added some user experience improvements to the header’s search widget. Mentions and categories can now be quickly invoked using @ and # and the search also suggests more powerful filters when typing in:, status: or order:. Here is a quick screencast showing the new functionality:


Even more!

But wait, there’s more! We do our best to highlight new features and changes for you, but there’s always too many changes to detail. For a full list of new features, bug fixes, UX improvements, and more, be sure to review the Additional Features and Fixes listed below.

Security Updates

This beta includes 1 security fix for issues reported by our community and HackerOne.

  • Validate period param for top topic routes

Plugin improvements


Bug Fixes

  • Filter by “nobody” was broken
  • TagsHtmlCallback params can be undefined
  • Make tagsHtml callback respect tagName option

UX Changes

  • Add quick search suggestion entries


UX Changes

  • Add quick search suggestion entries


Bug Fixes

  • Preload all associations used for search


New Features

  • Show/hide campaign banner with goal status


Bug Fixes

  • Attempts to make clicks more correct
  • Missing icon when used with core under stable branch
  • More precise optimal cols count computation
  • Updates state panel popper position after loading users


UX Changes

  • Add in:docs filter to search

Additional Features and Fixes

Click to expand

New Features

  • Per-category default slow mode duration for topics.
  • Add input name so 1password ignores input
  • Add new plugin API to allow plugins to extend Site#categories
  • Add filter box to the themes/components list
  • Stop checking referer for embeds
  • Enable client-side image optimization by default
  • Add assistant to quick search widget
  • Add ‘users.list’ API scope

Bug Fixes

  • Ensure browser history contains correct URLs
  • Update the list of users after user joined group
  • Validate email_accent_bg_color color
  • MyBB importer exposes deleted posts
  • Manually adds frowning_face_with_open_mouth for apple
  • Don’t proxy /qunit URL when using Ember CLI
  • Force timeline/progress to re-insert into DOM on topic change
  • Show user filter hints when typing @ in search
  • Allows to use icon-picker in wizard
  • Allow only groups with flairs to be selected
  • Consider 100 years suspension as permanent (instead of 500-years suspension)
  • Display warning when SSO email is different from invite email
  • User directory - correct variable names
  • Serialize flair group ID for preferences page
  • Change email from to not have via site_name for group SMTP
  • Toggle search menu when click the same button
  • Remove hardcoded value when displaying incoming messages count.
  • Alignment of user badges in user card
  • Don’t allow category and tag tracking settings on staged users
  • Media optimization setting was misnamed
  • Disable the post submit button during image processing properly
  • Clear stale status of reloaded reviewables
  • Use correct setting for DiscourseConnect card background overrides
  • Ascending/descending sorting in the group membership requests page
  • When updating timestamps on topic set a correct bump date
  • Simplify and improve choosing favorite badges
  • Debounce group name validation correctly
  • User’s “Top badges” grid

UX Changes

  • Improve quick search suggestions
  • New text and style for dominating topic message
  • Suspend forever time period messages
  • Tweak groups page css
  • Consistent share modal & popup, refactoring


  • Add scheduled job to delete old stylesheet cache rows