0 min read
This is a security fix release. Please consider upgrading it.
- Fixed a bunch of security issues found by huntr.dev
1. Reject the current user operation if the user has just been de-activated.
2. Secure the access token to prevent CSRF attack.
3. Disallow Bytebase to be loaded in an iframe.