Skip to content

v0.24.0

Choose a tag to compare

View all tags
@github-actions github-actions released this 15 Jun 23:10
· 106 commits to main since this release
Immutable release. Only release title and notes can be modified.
v0.24.0
This tag was signed with the committer’s verified signature.
Jaro-c Jose
SSH Key Fingerprint: YIm8nNlaambJF1geurLmCt647MG+AR6yqwrPBFq0CJQ
Verified
Learn about vigilant mode.
560f8cc
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Verified
Learn about vigilant mode.

What's Changed

  • fix(engine): bound file-borne resource exhaustion (DoS caps) by @Jaro-c in #345
  • fix(engine): cp/watch untrusted-content write safety by @Jaro-c in #346
  • fix(engine): fail-closed correctness (hook exit, config-hash, quadlet) by @Jaro-c in #347
  • fix(secrets): reject colon-injection in file: binds + validate names by @Jaro-c in #348
  • fix(update): harden self-update temp write + fetch order by @Jaro-c in #349
  • ci: gate releases on cargo-audit, pin SBOM generators by @Jaro-c in #350
  • release: v0.24.0 by @Jaro-c in #351
  • release: v0.24.0 — pre-launch security hardening by @Jaro-c in #352

Full Changelog: v0.23.0...v0.24.0

Contributors

Jaro-c
Assets 27
Loading