baserow

v2.2.2 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 1mo Relational Databases

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 1 known CVE

Topics

airtable airtable-alternative airtable-replacement application-builder automations dashboards

+10 more

database low-code no-code no-code-database no-code-platform online-database postgresql restful-api self-hosted spreadsheet

Summary

AI summary

Hardened media serving and neutralized active-content vulnerabilities.

Full changelog

New features

[Automation] Send notification when a workflow is disabled #5186
[Core] Allow self-hosted operators to inject custom client-side scripts via environment variables.

Bug fixes

[Builder] Resolved a bug which prevented users from creating data sources from the data source dropdown's footer. #5118
[Core] Give Kuma the current license tier in its context and steer uncertain feature or plan questions to docs search. #5210
[Core] Hardened user uploaded media serving and neutralized active-content file uploads by default.
[Builder] stop infinite /dispatch-data-sources/ refetch loop in page editor

Refactors

[Automation] Optimize Automation History clean-up by moving it to a separate periodic task.

Security Fixes

Hardened user uploaded media serving and neutralized active-content file uploads by default

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track baserow

Get notified when new releases ship.

About baserow

Build databases, automations, apps & agents with AI — no code. Open source platform available on cloud and self-hosted. GDPR, HIPAA, SOC 2 compliant. Best Airtable alternative.

All releases →