Patch show-stopping security vulnerabilities #1944
Two vulnerabilities found:
GitHub Pages has already been patched. It is strongly recommended that any other Jekyll hosts upgrade to v1.4.3 when it lands (tonight).
Yep, we're aware of this problem (#1948). Basically what we're trying to do is this:
Goal: Don't allow any URL's to be outside the destination directory.
This fix works for unix systems where