TattooMate 2.1.0.0 – Document Attachments for All Forms & Security Updates
Version 2.1.0.0 brings one of the most requested features: documents and images can now be attached directly to forms in the admin area – and for all form types. On top of that, the ID upload has been revised and two security improvements have been made. Here's everything at a glance.
✨ Document Attachments for All Form Types
Until now, attachments were only available for piercing forms. Starting with version 2.1.0.0, this feature is available in all form areas – Tattoo, Piercing, Tooth Jewelry, Cosmetic, and Body Modification.
In the detail view of any form, there is now a "Documents & Attachments" section. Files can be uploaded by clicking or drag & drop. Each attachment can be assigned a type (Document, Photo, Reference) and an optional note. The order can be adjusted at any time, and individual attachments can be opened, downloaded, or deleted.
Typical use cases include birth certificates for minors, supplementary documents for piercing forms, or any additional files relevant to a treatment. All attachments are stored encrypted and are only accessible to authorized staff.
🛈 ID Upload Revised
The ID upload in the customer form has been revised. The label has been updated to a region-neutral phrasing that works equally well for customers in Germany, Austria, and Switzerland. A hint showing the accepted ID types is now displayed directly at the upload field. The section for minors is more clearly separated from the rest of the form and better labeled.
🔒 File Size Limit for ID Upload
When uploading ID images, the file size is now checked before the content is loaded into memory. If a file exceeds the 40 MB limit, the upload is cancelled immediately. This prevents unnecessary server load that can occur when an incorrect or oversized file is accidentally selected.
🔒 Security Update: brace-expansion
The npm dependency brace-expansion has been updated to a secure version. The affected versions 5.0.2 to 5.0.5 contained a moderate vulnerability (GHSA-jxxr-4gwj-5jf2): a particularly large numeric range in a brace expansion expression could bypass the built-in DoS protection and cause excessive CPU usage. The update resolves this behavior.