coder

v2.29.17 Security

This release includes 2 security fixes for security teams reviewing exposed deployments.

Published 7d Developer Productivity

View tool

✓ No known CVEs patched

Read the diff → Tool health → What is this tool? →

This release patches 2 known CVEs

Topics

agents dev-tools development-environment go ide jetbrains

+3 more

remote-development terraform vscode

Affected surfaces

auth rbac breaking_upgrade

ReleasePort's take

Moderate signal

editorial:auto 7d

The release introduces breaking changes to OIDC authentication and host validation; it also adds multiple bug‑fixes across server, agent, CLI, and dashboard components.

Why it matters: Affecting Server request handling and OIDC flows, these breaking changes require configuration updates before upgrade. All listed fixes address critical security or stability issues with severity ≥70.

Summary

AI summary

BREAKING CHANGES in OIDC handling and host validation plus bug fixes across Server, Agent, CLI, and Dashboard.

Changes in this release

Type	Severity	Summary	CVE
Breaking
Breaking	High	Only trust x-forwarded-host from configured trusted proxies Only trust x-forwarded-host from configured trusted proxies Source: llm_adapter@2026-06-12 Confidence: high	—
Breaking	High	Restrict OIDC email fallback to first-time account linking Restrict OIDC email fallback to first-time account linking Source: llm_adapter@2026-06-12 Confidence: high	—
Breaking	High	Reject OIDC login when email_verified claim is non-bool or absent Reject OIDC login when email_verified claim is non-bool or absent Source: llm_adapter@2026-06-12 Confidence: high	—
Breaking	High	Validate HostnameSuffix and SSHConfigOptions Validate HostnameSuffix and SSHConfigOptions Source: llm_adapter@2026-06-12 Confidence: high	—
Bugfix
Bugfix	Medium	Verify workspace owner matches app username Verify workspace owner matches app username Source: llm_adapter@2026-06-12 Confidence: high	—
Bugfix	Medium	Reject oversized and invalid zip uploads Reject oversized and invalid zip uploads Source: llm_adapter@2026-06-12 Confidence: high	—
Bugfix	Medium	Prevent command injection in shell execer (Agent) Prevent command injection in shell execer (Agent) Source: llm_adapter@2026-06-12 Confidence: high	—
Bugfix	Medium	Prevent user‑admin from resetting owner password Prevent user‑admin from resetting owner password Source: llm_adapter@2026-06-12 Confidence: high	—
Bugfix	Medium	Validate FileSize in NewDataBuilder to prevent OOM DoS Validate FileSize in NewDataBuilder to prevent OOM DoS Source: llm_adapter@2026-06-12 Confidence: high	—
Bugfix	Medium	Prevent cross‑tenant workspace app rebinding Prevent cross‑tenant workspace app rebinding Source: llm_adapter@2026-06-12 Confidence: high	—
Bugfix	Low	Escape agent log HTML Escape agent log HTML Source: granite4.1:30b@2026-06-12-audit Confidence: low	—
Bugfix	Low	Validate agent-supplied AllowedIPs in coordinator Validate agent-supplied AllowedIPs in coordinator Source: granite4.1:30b@2026-06-12-audit Confidence: low	—
Bugfix	Low	Use a random value for simulated hash of built-in users Use a random value for simulated hash of built-in users Source: granite4.1:30b@2026-06-12-audit Confidence: low	—
Bugfix	Low	Require update permission to recreate devcontainers Require update permission to recreate devcontainers Source: granite4.1:30b@2026-06-12-audit Confidence: low	—
Bugfix	Low	Escape appearance values in dashboard HTML output Escape appearance values in dashboard HTML output Source: granite4.1:30b@2026-06-12-audit Confidence: low	—

Full changelog

Changelog

BREAKING CHANGES

Only trust x-forwarded-host from configured trusted proxies (#26204, 77896ddd9d) (@geokat)
fix(coderd)!: restrict OIDC email fallback to first-time account linking (#25712, ed7e9240fc)
fix!: reject OIDC login when email_verified claim is non-bool or absent (#25713, 3db810caeb)
fix!: validate HostnameSuffix and SSHConfigOptions' (#26154, 320e549fe8)

Bug fixes

Server: Verify workspace owner matches app username (#26085, e01d3f401d)
Reject oversized and invalid zip uploads (#25877, 069f6cf5f6)
Escape agent log HTML (#25808, a51dbcfc02)
Agent: Prevent command injection in shell execer (#26235, 4aa84f2e6a) (@zedkipp)
Server: Prevent user-admin from resetting owner password (#25709, 833eaf8a9d)
Validate FileSize in NewDataBuilder to prevent OOM DoS (#25710, 6f5ff1bb33)
Validate agent-supplied AllowedIPs in coordinator (backport #26144) (#26295, 9181b84440)
Server: Prevent cross-tenant workspace app rebinding (#26103, c05b4d94e6) (@dylanhuff-at-coder)
CLI: Prevent session token exfiltration via external app URLs (#26146, 2044599fff) (@zedkipp)
Clamp template port sharing level in SubAgentAPI (#26061, c1889d0cbd)
Server: Use a random value for a simulated hash for built-in users (#26205, 0951f90b5e)
Server: Require update permission to recreate devcontainers (#25812, 18ded827b1)
Dashboard: Escape appearance values in HTML output (#25804, 77253bfc55)

Compare: v2.29.16...v2.29.17

Container image

docker pull ghcr.io/coder/coder:2.29.17

Install/upgrade

Refer to our docs to install or upgrade Coder, or use a release asset below.

Breaking Changes

Only trust x-forwarded-host from configured trusted proxies
Restrict OIDC email fallback to first-time account linking (coderd)
Reject OIDC login when email_verified claim is non-bool or absent
Validate HostnameSuffix and SSHConfigOptions

Security Fixes

Prevent command injection in Agent shell execer (#26235, @zedkipp)
Prevent session token exfiltration via external app URLs in CLI (#26146, @zedkipp)

View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track coder

Get notified when new releases ship.

About coder

Secure environments for developers and their agents

All releases →