tinyserve (0.3.1-1) unstable; urgency=medium

  * New upstream release. (Closes: #1134907)
    - Fix -Wuse-after-free in src/proxy.c write completion callback.
    - Document -j / -n CLI flags in README and README_CN.
  * Strict DEP-5 debian/copyright with per-subdirectory Files: blocks.
  * Add debian/upstream/metadata for machine-readable upstream pointers.
  * Add Salsa CI pipeline (debian/salsa-ci.yml + .gitlab-ci.yml
    forwarder) running lintian + piuparts + autopkgtest + reprotest +
    blhc + sbuild on every push.
  * Add scripts/debian-release.sh: one-shot orig.tar.gz from upstream
    git tag (debian/ stripped) + dpkg-buildpackage -F + full QA stack.
  * Add docs/DEBIAN_SUBMISSION.md operational checklist plus
    debian/ITP_TEMPLATE.txt and debian/RFS_TEMPLATE.txt.
  * Switch debian/gbp.conf to upstream-tree=TAG (no pristine-tar
    branch yet); orig is generated from the v<ver> upstream tag.

 -- Derrity <derrity0731@proton.me>  Sat, 25 Apr 2026 12:00:00 +0000

tinyserve (0.3.0-1) unstable; urgency=medium

  * Initial release. (Closes: #XXXXXX)
    - Multi-worker HTTP/1.1 server on libuv with SO_REUSEPORT.
    - Static file serving with byte-range, ETag, Last-Modified, 304.
    - Asynchronous directory listings via uv_queue_work.
    - Basic-auth, reverse proxy, JSON route table.
    - Per-connection idle and request timeouts; SOMAXCONN backlog;
      bounded concurrent connections (503 on excess).
    - Hardened HTTP parser: rejects CL+TE smuggling, non-tchar
      header names, NUL/CRLF in request-target.
    - Log-injection sanitization.
    - Hardened Release build (PIE, RELRO, BIND_NOW, FORTIFY_SOURCE,
      stack-protector-strong, stack-clash-protection).
    - Cryptographically strong multipart-range boundaries
      (getrandom / arc4random_buf / /dev/urandom).
    - Unit tests under CTest; man page tinyserve(1).

 -- Derrity <derrity0731@proton.me>  Sun, 23 Nov 2025 00:00:00 +0000
