BradGroux/veritas-kanban v1.4.1
v1.4.1 — Security Fixes + Version Alignment

on GitHub

9 hours ago

v1.4.1 — Security Fixes + Version Alignment

Security

SEC-001 Path Traversal Prevention — added strict path segment validation + base directory enforcement in server utilities; applied to file-based services that join paths from user-controlled ids
SEC-007 Admin Authorization — enforced admin (or admin+agent where appropriate) on mutating settings/config/activity/status-history/notifications endpoints

Fixed

Agent Status Panel now uses real-time WebSocket updates (useRealtimeAgentStatus) and correctly handles activeAgents payloads
Improved proxy/IP trust behavior for rate limiting (X-Forwarded-For only trusted when trust proxy is configured)

Full Changelog: v1.4.0...v1.4.1

Check out latest releases or
releases around BradGroux/veritas-kanban v1.4.1

Don't miss a new veritas-kanban release

NewReleases is sending notifications on new releases.

Get notifications