Security patch
- Fixed arbitrary modification of API token rate limits by enforcing server-side validation and authorization checks.
- Mitigated SSRF vulnerability in work item link handling through strict URL validation and outbound request controls.
- Fixed member information disclosure via publicly accessible endpoint by applying proper access control checks.
- Resolved IDOR vulnerabilities in asset and attachment endpoints to prevent unauthorized resource access.
- Upgraded Django to 4.2.28
- Upgraded the cryptography to 46.0.5