labstack/echo v5.1.1
v5.1.1 - Context.Scheme() should validate header values

on GitHub

4 hours ago

Security

Context.Scheme() should validate values taken from header by @aldas in #2953

Thanks to @shblue21 for reporting this issue - Context.Scheme accepts malformed forwarded scheme values used by host redirects.

Enhancements

Add golangci linter configuration by @aldas in #2930
Make StartConfig listener creation context-aware by @EricGusmao in #2936
fix(lint): resolve staticcheck issues and improve code quality by @itsllyaz in #2941
Context.Scheme should validate values taken from header by @aldas in #2953
chore: fix typos in httperror.go by @tisonkun in #2958
Context.Json should not unwrap response by @aldas in #2964

New Contributors

@EricGusmao made their first contribution in #2936
@itsllyaz made their first contribution in #2941
@tisonkun made their first contribution in #2958

Full Changelog: v5.1.0...v5.1.1

Check out latest releases or
releases around labstack/echo v5.1.1

Don't miss a new echo release

NewReleases is sending notifications on new releases.

Get notifications