v0.3.3

artifacts

no message

v0.3.0 - Security hardening and Dagger CI

Security:
- Enforce max_body_size limits in h1/h2 servers (returns 413)
- Add read_timeout and request_timeout (returns 408)
- Lock-free buffer pooling via Kcas for thread-safe reuse
- Cryptographically secure random (Mirage_crypto_rng) for CSRF, sessions, tokens, WebSocket
- Constant-time comparison for Basic Auth
- WebSocket origin validation and version checking
- Fix h2_server silent :path fallback (now returns 400)

Performance:
- Buffer for body accumulation instead of String.concat
- Date header caching in h2_server

Dependencies:
- Add bytesrw for compression support
- Add kcas_data, climate

CI:
- Dagger pipeline with Python SDK
- Works with Podman, reports to Dagger Cloud

artifacts

v0.1.1 - Fix dependency isolation and WebSocket upgrade

artifacts

HCS v0.1.0 - Initial release

HTTP library for OCaml 5+ built on Eio.

Features:
- HTTP/1.1 and HTTP/2 client and server
- WebSocket client and server (RFC 6455)
- Server-Sent Events
- Phoenix-style plug middleware system (18 built-in plugs)
- Radix trie router with path parameters
- Connection pooling
- Lock-free pub/sub messaging
- TLS support with ALPN negotiation
- Multipart form data parsing
- Structured logging

artifacts