HedgeDoc logo

HedgeDoc

Real-time collaborative markdown notes

Alternative to: hackmd, google docs, notion

HedgeDoc screenshot

About Versions (41)

1.11.0

2026-06-18

This release addresses four security vulnerabilities including HTML injection, DoS, CSRF, and rate-limiting bypass, while adding external link warnings and configuration enhancements.

1.10.8

2026-04-15

Fixes data loss during concurrent editing and prevents crashes from invalid hex color values.

1.10.7

2026-02-24

Fixed issues with cursor color formatting, realtime connection closure, and CLI error handling.

1.10.6

2026-02-04

This release addresses two medium severity security vulnerabilities related to upload file headers and SVG script execution, alongside dependency updates and documentation improvements.

1.10.5

2025-12-06

Fixed the bundled healthcheck in the Docker container.

1.10.4

2025-12-05

This release includes two low-severity security fixes, Node 24 compatibility, and a new configuration option to restrict file uploads.

1.10.3

2025-04-09

This release fixes a security vulnerability related to XSS via SVG uploads and adds new SAML authentication configuration options.

1.10.2

2025-02-14

This release updates SAML authentication attribute mappings for security and fixes OAuth2 and SAML login bugs.

1.10.1

2025-02-02

This release fixes a security vulnerability via login rate-limiting, updates HSTS preload defaults, and deprecates Node 18 support.

v2.0.0-alpha.3

2024-09-18

This release introduces OpenID Connect/OAuth2 support, private S3/Azure storage, and various editor enhancements, while requiring Node 20.

1.10.0

2024-09-02

This release fixes a MySQL security issue, adds a read-only configuration option, and drops support for Node 16.

v2.0.0-alpha.2

2023-10-25

Alpha 2 introduces various bug fixes for the markdown renderer, user list, code suggestions, and UI elements.

v2.0.0-alpha.1

2023-10-08

HedgeDoc 2 alpha 1 is released as a complete rewrite of the collaborative markdown editor to improve maintainability and add new features.

1.9.9

2023-07-30

This release addresses a security vulnerability regarding existing notes and adds support for Docker secrets in OAuth2 client secrets.

1.9.8

2023-06-04

This release drops support for Node 14, migrates to Yarn 3, and introduces various enhancements including a healthcheck endpoint and arm64 Docker support.

1.9.7

2023-02-19

Fixed issues with special characters in note titles during export and the night-mode toggle functionality.

1.9.6

2022-11-06

Fixed a critical bug where migrations would delete all notes when using SQLite.

1.9.5

2022-10-30

This release introduces a dark mode toggle for mobile, improves XSS security, and fixes several crashes, but contains a critical data-loss bug for SQLite users.

1.9.4

2022-07-10

This release drops support for Node 12, adds more S3 configuration options, and optimizes migrations by removing unexpected shell calls.

1.9.3

2022-04-10

This release addresses a security vulnerability regarding upload file names, introduces several enhancements to avatars and SAML authentication, and fixes various bugs.

1.9.2

2021-12-03

Fixed a session handler error occurring during requests to the /metrics and /status endpoints.

1.9.1

2021-12-02

This release increases the minimum required Node versions and includes bugfixes for Safari CSP handling, GitLab API crashes, and Hungarian language issues.

1.9.0

2021-09-13

This release addresses security vulnerabilities, improves database connectivity, optimizes the frontend bundle size, and removes MSSQL support.

1.9.0-rc1

2021-08-29

This release includes critical security fixes for XSS, removes MSSQL support, introduces new CSP configuration options, and improves frontend bundle size.

1.8.2

2021-05-11

This release addresses two security vulnerabilities, including a cross-site scripting (XSS) vector in notes and profile handling.

1.8.1

2021-05-06

This release improves build performance via esbuild and dependency optimization, enhances editor list/quote behavior, and fixes several startup and UI bugs.

1.8.0

2021-05-03

This release addresses several security vulnerabilities, introduces automatic database migrations and a Prometheus endpoint, and drops support for Node 10.

1.8.0-rc1

2021-04-26

This release addresses critical security vulnerabilities, drops support for Node 10, and introduces automatic database migrations and a Prometheus metrics endpoint.

1.7.2

2021-01-15

This release fixes a stored XSS security vulnerability in slide mode and corrects a markdown editor status bar display issue.

1.7.1

2020-12-27

This release addresses two security vulnerabilities involving arbitrary file uploads and stored XSS in mermaid diagrams.

1.7.0

2020-12-21

The project has been renamed to HedgeDoc, introducing OIDC/SAML enhancements, pre-bundled frontend tarballs, and various bugfixes.

1.7.0-rc2

2020-12-02

This release includes bugfixes for OAuth2 configuration crashes and SequelizeMeta table handling on MySQL/MariaDB.

1.7.0-rc1

2020-11-29

The project has been renamed to HedgeDoc, featuring OIDC and SAML enhancements, bug fixes, and bundled frontend assets.

1.6.0

2020-02-17

Version 1.6 introduces AWS endpoint options, OpenGraph support, various feature enhancements, and bug fixes, while marking the end of support for Node 8.

1.5.0

2019-08-15

This update introduces ARM container support, disables PDF export for security, adds Do-Not-Track support, and includes various bug fixes and translations.

1.4.0

2019-05-30

Version 1.4.0 introduces various enhancements, security fixes, and language updates while dropping support for Node.js 6.

1.3.2

2019-03-29

CodiMD has moved to its own organization with updated repository links and a night mode UI fix.

1.3.1

2019-03-27

This release adds Serbian language support, improves translations, and fixes several bugs related to redirects, PDF export, and API integrations.

1.3.0

2019-03-27

This release introduces OpenID support, updates several core dependencies, refactors the frontend build system to Webpack 4, and includes numerous bug fixes and security patches.

1.2.1

2019-03-27

This release introduces unix sockets support, new translations, Cloudron installation, and various bug fixes, while deprecating NodeJS 6 and Mattermost login integration.

1.2.0

2019-03-27

HackMD CE is renamed to CodiMD, featuring new OAuth2 support, Azure blob storage for images, account deletion, and various editor enhancements.