v1.4.2

dtrudg released this 17 Jan 12:02

· 127 commits to main since this release

b5db2aa

Security Fix

This release includes a fix for CVE-2022-23538 - User credentials leaked to third-party service via HTTP redirect.

See GHSA-7p8m-22h4-9pj7 for full details.

What's Changed

fix: omit credentials for redirected URLs by @EmmEff in GHSA-7p8m-22h4-9pj7

Full Changelog: v1.4.1...v1.4.2

Contributors

EmmEff

Assets 2