From b1a7c8c3257cc87d0ad9d3be11f17d0b03421414 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E4=BE=9D=E7=91=AA=E8=B2=93?= <imacat@mail.imacat.idv.tw>
Date: Wed, 17 May 2023 23:37:12 +0800
Subject: [PATCH] Advanced to version 1.5.4.

---
 docs/source/changelog.rst  | 14 ++++++++++++++
 src/accounting/__init__.py |  2 +-
 2 files changed, 15 insertions(+), 1 deletion(-)

diff --git a/docs/source/changelog.rst b/docs/source/changelog.rst
index 97454f5..81612de 100644
--- a/docs/source/changelog.rst
+++ b/docs/source/changelog.rst
@@ -2,6 +2,20 @@ Change Log
 ==========
 
 
+Version 1.5.4
+-------------
+
+Released 2023/5/17
+
+Security fixes.
+
+* Added safeguard to the next URI utilities, to prevent Cross-Site
+  Scripting (XSS) attacks.
+* Applied the safe next URI utilities to the test site.
+* Added the ``SameSite`` and ``Secure`` flags to the session cookie
+  of the test site.
+
+
 Version 1.5.3
 -------------
 
diff --git a/src/accounting/__init__.py b/src/accounting/__init__.py
index e6549ba..6d23c19 100644
--- a/src/accounting/__init__.py
+++ b/src/accounting/__init__.py
@@ -24,7 +24,7 @@ from flask_sqlalchemy import SQLAlchemy
 
 from accounting.utils.user import UserUtilityInterface
 
-VERSION: str = "1.5.3"
+VERSION: str = "1.5.4"
 """The package version."""
 db: SQLAlchemy = SQLAlchemy()
 """The database instance."""