Skip to content

v2.3.1 — Security fix: redact sensitive data from logs

Choose a tag to compare

@nodomain nodomain released this 28 Apr 11:06

Security

  • Remove clear-text logging of user coordinates in coordinator (CodeQL CWE-312/CWE-532)
  • Remove clear-text logging of API request URLs containing location data in client (CodeQL CWE-312/CWE-532)

Changelog backfill

  • Added missing CHANGELOG entries for v2.2.0 and v2.3.0

Full changelog: https://github.com/nodomain/haKachelmannWetter/blob/main/CHANGELOG.md