BotKit changelog
Version 0.4.0
To be released.
@fedify/botkit
Added a remote follow button to the web interface. [#10, #14 by Hyeonseo Kim]
- Added a Follow button on the bot's profile page that allows users to follow the bot from their own fediverse instance without manual searching.
- When clicked, the button opens a modal dialog where users can enter their fediverse handle (e.g.,
@username@instance.com). - The feature uses WebFinger to discover the user's instance and automatically redirects to the appropriate follow page using the OStatus subscribe protocol.
Upgraded Fedify to 1.10.0.
Version 0.3.1
Released on December 20, 2025.
- Upgraded Fedify to 1.8.15, which includes a critical security fix CVE-2025-68475 that addresses a ReDoS (Regular Expression Denial of Service) vulnerability in HTML parsing. [CVE-2025-68475]
Version 0.3.0
Released on August 28, 2025.
- BotKit now supports Node.js alongside of Deno. The minimum required version of Node.js is 22.0.0.
@fedify/botkit
BotKit now supports publishing polls. [#7, #8]
- Added
Pollinterface. - Added
Voteinterface. - Added an overload of the
Session.publish()method that acceptsSessionPublishOptionsWithQuestionas the second argument. - Added
SessionPublishOptionsWithQuestioninterface. - Added
Bot.onVoteevent. - Added
VoteEventHandlertype. - Added
KvStoreRepositoryPrefixes.pollsoption.
- Added
Added
@fedify/botkit/repositorymodule that provides repository implementations for BotKit.- Added
RepositoryGetMessagesOptionsinterface. - Added
RepositoryGetFollowersOptionsinterface. - Added
Uuidtype. - Added
KvKeytype. - Added
KvStoretype. - Added
KvStoreRepositoryPrefixesinterface. - Added
Announceclass. - Added
Createclass. - Added
MemoryCachedRepositoryclass.
- Added
Added web frontend followers page. [#2, #13 by Hyeonseo Kim]
- Added
/followersroute that displays a list of bot followers. - Made follower count on the main page clickable, linking to
/followers.
- Added
Upgraded Fedify to 1.8.8.
@fedify/botkit-sqlite
- Added
SqliteRepositoryclass that implements a SQLite-based repository for BotKit. - Added
SqliteRepositoryOptionsinterface.
Version 0.2.4
Released on August 26, 2025.
- Upgraded Fedifyh to 1.5.7 which fixes a bug where HTTP Signature verification failed for requests having
createdorexpiresfields in theirSignatureheader, causing500 Internal Server Errorresponses in inbox handlers.
Version 0.2.3
Released on August 25, 2025.
- Upgraded Fedify to 1.5.6, which fixes a bug where ActivityPub Discovery failed to recognize XHTML self-closing
<link>tags. The HTML/XHTML parser now correctly handles whitespace before the self-closing slash (/>), improving compatibility with XHTML documents that follow the self-closing tag format.
Version 0.2.2
Released on August 8, 2025.
- Upgrade Fedify to 1.5.5, which includes a critical security fix CVE-2025-54888 that addresses an authentication bypass vulnerability allowing actor impersonation. [CVE-2025-54888]
Version 0.2.1
Released on July 8, 2025.
- Fixed a bug where messages from
Session.getOutbox()didn't haveupdate()anddelete()methods. [#9]
Version 0.2.0
Released on April 21, 2025.
Image attachments in posts became shown in the web interface.
Added custom emoji support.
- The return type of
Text.getTags()method becameAsyncIterable<Link | Object>(wasAsyncIterable<Link>). - Added
Bot.addCustomEmojis()method. - Added
CustomEmojiTextclass. - Added
customEmoji()function. - Added
CustomEmojiBaseinterface. - Added
CustomEmojiFromUrlinterface. - Added
CustomEmojiFromFileinterface. - Added
CustomEmojitype. - Added
DeferredCustomEmojitype. - The
texttagged template literal function now acceptsEmojiobjects (provided by Fedify).
- The return type of
Added emoji reaction support.
- Added
Emojitype. - Added
isEmoji()predicate function. - Added
emoji()tagged template literal function. - Added
Message.react()method. - Added
Reactioninterface. - Added
AuthorizedReactioninterface. - Added
Bot.onReactevent. - Added
Bot.onUnreactevent. - Added
ReactionEventHandlertype. - Added
UndoneReactionEventHandlertype.
- Added
Added quote support.
- Added
SessionPublishOptions.quoteTargetoption. - Added
Message.quoteTargetproperty. - Added
Bot.onQuoteevent. - Added
QuoteEventHandlertype.
- Added
Added
SessionGetOutboxOptionsinterface.Activities are more precisely propagated.
- The
Message.reply()method now sends theCreateactivity to the author of the original message as well. - The
Message.share()method now sends theAnnounceactivity to the author of the original message as well. - The
AuthorizedSharedMessage.unshare()method now sends theUndoactivity to the author of the original message as well. - The
AuthorizedMessage.update()method now sends theUpdateactivity to the author of the original message as well if it is a reply. - The
AuthorizedMessage.delete()method now sends theDeleteactivity to the author of the original message as well if it is a reply.
- The
Version 0.1.4
Released on August 26, 2025.
- Upgraded Fedifyh to 1.4.15 which fixes a bug where HTTP Signature verification failed for requests having
createdorexpiresfields in theirSignatureheader, causing500 Internal Server Errorresponses in inbox handlers.
Version 0.1.3
Released on August 25, 2025.
- Upgraded Fedify to 1.4.14, which fixes a bug where ActivityPub Discovery failed to recognize XHTML self-closing
<link>tags. The HTML/XHTML parser now correctly handles whitespace before the self-closing slash (/>), improving compatibility with XHTML documents that follow the self-closing tag format.
Version 0.1.2
Released on August 8, 2025.
- Upgraded Fedify to 1.4.13, which includes a critical security fix CVE-2025-54888 that addresses an authentication bypass vulnerability allowing actor impersonation. [CVE-2025-54888]
Version 0.1.1
Released on February 10, 2025.
- Fixed a bug where direct and followers-only messages that reply to a bot had been forwarded to the bot's followers.
Version 0.1.0
Initial release. Released on February 7, 2025.