This release includes 1 security fix for security teams reviewing exposed deployments.
Topics
+5 more
Affected surfaces
ReleasePort's take
Light signalReleasePort Layer 1 version 6.1.3 blocks users from creating or deleting files and folders system‑wide, and includes security fixes contributed by @bobvandevijver.
Why it matters: The update enforces a hard restriction on file‑system operations for all users (severity 50) and applies targeted security patches with high confidence (80).
Summary
AI summaryPrevent users from creating or deleting folders and files anywhere.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Security | Medium |
Security-related fixes implemented by @bobvandevijver. Security-related fixes implemented by @bobvandevijver. Source: llm_adapter@2026-05-21 Confidence: high |
— |
| Security | Medium |
Prevents user from creating or deleting folder/files anywhere. Prevents user from creating or deleting folder/files anywhere. Source: llm_adapter@2026-05-21 Confidence: low |
— |
Full changelog
What's Changed
- Prevent user to create/delete folder/files anywhere by @kouz75 in https://github.com/bolt/core/pull/3717
- Security related fixes by @bobvandevijver in https://github.com/bolt/core/pull/3723
Full Changelog: https://github.com/bolt/core/compare/6.1.2...6.1.3
Security Fixes
- Prevent user to create/delete folder/files anywhere — security related fixes.
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About Bolt CMS
Content Management Tool, which strives to be as simple and straightforward as possible.
Beta — feedback welcome: [email protected]