SECURITY Fixed the vulnerability that caused exposure of cookies on redirects to third party hosts. (#1312)
Fixed escaping of integer indexes with multiple backslashes in the nested JSON builder. (#1285)
Fixed displaying of status code without a status message on non-auto themes. (#1300)
Fixed redundant issuance of stdin detection warnings on some rare cases due to underlying implementation. (#1303)
Fixed double –quiet so that it will now suppress all python level warnings. (#1271)
Added support for specifying certificate private key passphrases through –cert-key-pass and prompts. (#946)
Added httpie cli export-args command for exposing the parser specification for the http/https commands. (#1293)
Improved regulation of top-level arrays. (#1292)
Improved UI layout for standalone invocations. (#1296)
Reginaldo Silva discovered that due to a packaging issue, a remote attacker
with the ability to execute arbitrary Lua scripts could possibly escape the
Lua sandbox and execute arbitrary code on the host.
