Release Notes for Clearsilver 0.10.4                     11/14/2006
-------------------------------------
  Been a long time coming, some important changes contained here-in.

  One major change:
    Will Drewry has made some changes which may make it easier to write
    XSS free clearsilver code.  These changes allow the programmer to
    set a default escaping for all var: expressions, as well as changing
    the default escape for a section of code using <?cs escape:"mode" ?>
    and <?cs /escape ?> commands.  Three different escape types are
    available, "html", "js" and "url".  You can set the default escape
    mode by setting Config.VarEscapeMode.  If a var: expression calls an
    escape function, then the default escaping is not applied.
    Also adds a uvar: directive which doesn't do default escaping.
    I'll need to add some documentation on this in the near future.

  Another new feature:
    Ability to setup file load hooks for cs and hdf files.  This allows
    you to implement your own mechanism for loading the files, ie
    loading them from .zip files, adding an in-memory cache for the
    files, etc.

  A slightly incompatible change:
    Debug dump support (ie, Config.DebugPassword matching Query.debug)
    is now disabled by default.  You need to enable it by setting
    Config.DebugEnabled to 1.  This makes it easy and explicit for your
    code to only enable debug dumps, say only on your internal qa
    server or dev environment, etc.

  Most important Bug Fix:
    python2.5 fixes from dju@gentoo.org