* refactor(misc): Harden request handling, tighten defaults, and pin CI dependencies
* feat(auth): normalize usernames for login rate limiting
* refactor(epub): fix XML document builder creation
* feat(http): enhance image download with redirect handling and DNS rebinding protection
* chore: upgrade Node.js version to 24 and add frontend dependency audit step
* feat(auth): refactor username normalization for login rate limiting and enhance image download security
* fix(metadata): simplify JAXB validation event handling by using direct import
* chore(pipeline): remove unnecessary --force flag from npm ci and format audit step
* chore(pipeline): streamline frontend dependency audits and add validation step
* fix(image): improve error handling for image processing and download, enforce pixel limits
* test(image): update tests
* fix(icon): update DOMPurify import and replace deprecated theme package
* fix(imports): update theme package imports and format code for consistency
* fix(cors): update allowed origins configuration to support wildcard and trim whitespace
* feat: remove nginx and serve Angular directly from Spring Boot
* fix: handle null values in EnabledFields deserialization from persisted JSON
* fix(migration): auto-repair failed Flyway migrations on startup
* fix(migration): replace DB triggers with app-level orphan cleanup
* fix: restore default port to 6060 for backwards compatibility
* fix: align all port references to 6060 and add OPDS compression MIME types
* fix: resolve NG0101 recursive tick error in book browser selection
---------
Co-authored-by: acx10 <acx10@users.noreply.github.com>
* fixing permissions to be able to run springboot with given UID and GID
* Adding USER_ID and GROUP_ID to specify permission without making breaking change
* move su exec to start.sh
---------
Co-authored-by: Aditya Chandel <8075870+adityachandelgit@users.noreply.github.com>
