chore(release): prepare v0.13.0

[nao1215]

Documentation

• multipartkit/infer.content_type_from_filename and content_type_from_bytes docstrings, and the README "Pluggable content-type inference" bullet, now state explicitly that these top-level helpers are default no-ops of the pluggable inference interface and always return None; callers wanting real inference must wire an Inferer (e.g. backed by nao1215/mimetype) into form.add_file_auto_with. (infer.content_type_from_filename/from_bytes are no-op defaults — silently return None for known types #52)

Added

• multipartkit/form.add_field_strict and add_file_strict now reject empty or whitespace-only name with the new Error(EmptyFieldName(value:)) variant, aligning with RFC 7578 §4.2 which requires the Content-Disposition name parameter to be the field name; the non-strict add_field / add_file keep their existing silent-accept behaviour for backward compatibility. (form.add_field accepts empty name silently — RFC 7578 §4.2 says name MUST be field name #51)

Changed

• multipartkit/content_disposition.parse now enforces RFC 7230 §3.2.6 quoted-pair strictly: a \X whose X is outside HTAB / SP / VCHAR / obs-text (for example NUL, CR, LF, or any other ASCII control byte) is rejected with the new Error(InvalidQuotedPair(_)) instead of silently dropping the backslash, blocking NUL-smuggling into the decoded name / filename. (content_disposition.parse over-eager quoted-pair unescape — drops backslash before non-VCHAR (NUL, CR, LF) silently #50)

Summary by CodeRabbit

Release 0.13.0 (2026-05-20)

• New Features

  • Added strict form-builder variants with enhanced validation that rejects empty and whitespace-only field names.

• Bug Fixes

  • Improved RFC 7230 compliance by enforcing stricter validation of quoted-pair sequences in content disposition parsing.

[coderabbitai]

No actionable comments were generated in the recent review. 🎉

ℹ️ Recent review info

⚙️ Run configuration

Configuration used: defaults

Review profile: CHILL

Plan: Pro

Run ID: d25f0c1d-780c-4ba5-aef0-527eccaed5c8

📥 Commits

Reviewing files that changed from the base of the PR and between 15ad7c8 and 46941a9.

📒 Files selected for processing (2)

• CHANGELOG.md
• gleam.toml

---

📝 Walkthrough

Walkthrough

This PR performs a release version bump for the multipartkit package from 0.12.0 to 0.13.0. The package version in gleam.toml is updated, and a new changelog entry documents the 0.13.0 release with improvements to content-type inference, form-builder validation, and RFC 7230 quoted-pair parsing.

Changes

Release 0.13.0

Layer / File(s)	Summary
Version bump and release notes gleam.toml, CHANGELOG.md	Package version bumped to 0.13.0 in gleam.toml with release notes documenting content-type inference clarification, strict form-builder field validation, and RFC 7230 quoted-pair parsing improvements.

Estimated code review effort

🎯 1 (Trivial) | ⏱️ ~2 minutes

Poem

🐰 A version is born, oh 0.13!
The changelog sings of what shall be—
Stricter parsing, form fields refined,
With RFC 7230 in mind.
Release day arrives so bright!

🚥 Pre-merge checks | ✅ 5

✅ Passed checks (5 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title accurately reflects the main change: preparing a new release version (v0.13.0) by updating CHANGELOG.md and gleam.toml.
Docstring Coverage	✅ Passed	No functions found in the changed files to evaluate docstring coverage. Skipping docstring coverage check.
Linked Issues check	✅ Passed	Check skipped because no linked issues were found for this pull request.
Out of Scope Changes check	✅ Passed	Check skipped because no linked issues were found for this pull request.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing Touches

🧪 Generate unit tests (beta)

• Create PR with unit tests
• Commit unit tests in branch release/v0.13.0

---

Thanks for using CodeRabbit! It's free for OSS, and your support helps us grow. If you like it, consider giving us a shout-out.

❤️ Share

• X
• Mastodon
• Reddit
• LinkedIn

_{Comment @coderabbitai help to get the list of available commands and usage tips.}