Skip to content

v0.13.1
Compare
Choose a tag to compare
@stonith404 stonith404 released this 01 Nov 22:58
· 31 commits to main since this release
v0.13.1
ad1d356
This commit was signed with the committer’s verified signature.
stonith404 Elias Schneider
GPG key ID: 07E623B294202B6C
Learn about vigilant mode.

Caution

UPDATE STRONGLY RECOMMENDED: This release fixes a critical bug introduced in v0.12.0 which didn't handle the request abortion correctly in middlewares. This means that the rate limited can be bypassed and all users can be listed without authentication. There is no need to change any passkeys or rotate OIDC secrets as they weren't exposed.

Bug Fixes

  • errors in middleware do not abort the request (376d747)
  • typo in Self-Account Editing description (5b9f4d7)
  • add list empty indicator (becfc00)
Assets 2
Loading