In light of the recent fun of someone deciding that they wanted to try and break the server, this release fixes some less-than-ideal issues, includes some UI fixes, and adds Altcha (https://altcha.org) for some additional barriers on submitting dead links.
4.3.0 New Features
- Fixed that CSRF verification wasn't properly being handled for dead link form submissions
- Fixed UI for text input on dead link form submissions
- Added Altcha as an additional layer of security for forms
I chose Altcha because it's entirely hosted on the server and is purely a "can you do intense math" check as opposed to a user behavioral check (which requires much more tracking and also sending data elsewhere). This is a very privacy-friendly solution because no data is created or saved, and while it's not as effective as, say, Cloudflare's Turnstile system, it should do the trick for the type of barrier we need it to be. (And it doesn't involve sending data to Google or Cloudflare. Bonus.)
As always, let me know if you run into any issues!
