LuaExpat 1.5.1

• Fix: Makefile no longer sets .lua files as executable
• Fix: Makefile honors $RPM_OPT_FLAGS and $RPM_LD_FLAGS
• Chore: added BLA test

LuaExpat 1.5.0

• Warning: this update requires a minimum libexpat version of 2.4.0. Though at the time of writing a minimum version of 2.4.6 is recommended due to CVEs fixed in the intermediate versions.
• Added option allowDTD to the threat protection parser.
• Add configuration for Billion Laughs Attack prevention. This includes adding #include "expat_config.h", since these functions are conditionally included in the exposed API of Expat. This means that LuaExpat will now be compiled using the same options used to compile Expat itself.
• Expose Expat compile time constants (lxp._EXPAT_FEATURES), see Expat documentation.

LuaExpat 1.4.1

• Fix bad buffer size calculation in threat parser

LuaExpat 1.4.0

• Improved Lua version support (5.1 - 5.4)
• Fix memory leak when callbacks reference a parser object
• Expose Expat library version (lxp._EXPAT_VERSION)
• Added lxp.totable module
• Fix integers being returned as floats on Lua 5.3+
• Fix XmlDecl callback can also return nil for 'standalone'
• Many documentation updates
• Added triplet namespace setting (returnnstriplet)
• Added EntityDecl handler
• Added AttlistDecl handler
• Added ElementDecl handler
• Added SkippedEntity handler
• Added EndDoctypeDecl handler
• More tests and new test setup; Busted, LuaCheck, Github actions
• Improved finishing, multiple nil-calls no longer throw errors
• Fix lxp.lom to properly handle input as function, table, or file
• Added option for namespace aware parsing to the lxp.lom module
• Repository moved to lunarmodules
• Added threat protection parser (protects against excessivly large inputs), with options for the lxp.lom and lxp.totable to use it