keystonejs/keystone 2026-03-19
19 March 2026

on GitHub

15 hours ago

The following packages have been updated

@keystone-6/core@6.5.2

Bug Fixes

[core] Fix isFilterable bypass via cursor parameter in findMany query (#9790) @n0wsh

🚨 Security Updates

We have identified and fixed 1 security vulnerability

CVE-2026-33326 - {field}.isFilterable access control could be bypassed in findMany queries by passing a cursor. This could be used to confirm the existence of records by protected field values.

👀 Review

See 2025-05-06...2026-03-19 to compare with our previous release.

Check out latest releases or
releases around keystonejs/keystone 2026-03-19

Don't miss a new keystone release

NewReleases is sending notifications on new releases.

Get notifications