Please email security reports to info@cube.dev or reach out to maintainers directly in https://slack.cube.dev. Please do not create issues or public conversations for discovered security issues until patch is shipped.
Security: cube-js/cube
Security
SECURITY.md
-
Denial of service attack on the cube-api endpointGHSA-9759-3276-g2pm published
Dec 13, 2023 by bsod90Moderate -
Row level security bypassGHSA-6jqm-3c9g-pch7 published
Dec 9, 2022 by bsod90High -
Default Express middleware security check is ignored in productionGHSA-4j6x-w426-6rc6 published
Nov 8, 2019 by paveltiunovHigh
Learn more about advisories related to cube-js/cube in the GitHub Advisory Database