Skip to content

@balloob balloob released this Sep 7, 2019 · 276 commits to master since this release

We have been notified by Gregor Godbersen that our markdown renderer was vulnerable for an XSS attack if exposed to specially crafted markdown. This was introduced in the Home Assistant 0.98 release. We have verified that Home Assistant 0.98.0 does not render unsafe markdown, yet still wanted to make sure to issue an update as soon as possible.

More information in this frontend pull request.

Assets 2
You can’t perform that action at this time.