etc

I'm especially annoyed when resolving dev->cf merge conflicts, which make me think the whole bwc would be problematic. So a major update looks natural, unleashing our hands as a bonus.

This can wait for 4.9 release, imo.

Yep, 4.9 is probably a good moment to do it, since we tighten the security here and there. The public cookie is especially weak. Tokens are concerned too.

Note that it's a per user pref, so, when called on the public side, it can return some unexpected default value.

Thanks @petecooper. It looks like we are hold by jQuery file uploader that uses few removed methods.

My local txp runs jQuery 4 beta, so far so good. Should we try using it in dev, to enlarge the testers pool? We'd switch back to jQuery 3 of...

Demo server is blocking something, not sure what.

Not able to save an article, for example. This shouldn't be *directly* related to jQuery 4 since it works on my localhost.

Yep, it looks like a csp conflict. Ironically, jQuery 4 [intends](https://github.com/jquery/jquery/issues/5476#issuecomment-2121312020) to solve them.

@petecooper oops, sorry, I thought you have [seen](https://github.com/textpattern/textpattern/commit/bad4df504130f4218e41229464fec4a265884024). We'd rather do some tests locally before pushing it online.