emdash

v@emdash-cms/[email protected] Bugfix

This release fixes issues for SREs watching stability and regressions.

Published 15d Productivity & Wikis

✓ No known CVEs patched

✓ No known CVEs patched in this version

Topics

astro cms emdash typescript

Summary

AI summary

Fixes a Zod type-incompatibility between trusted plugins and core.

Type	Severity	Summary	CVE
Bugfix	Medium	Fixes Zod type-incompatibility between trusted plugins and core. Fixes Zod type-incompatibility between trusted plugins and core. Source: granite4.1:8b-q6_K@2026-05-19 Confidence: high	—

Full changelog

#1019 5681eb2 Thanks @ascorbic! - Fixes a Zod type-incompatibility between trusted plugins and core. Without a workspace-level pin, emdash's zod: ^4.3.5 could resolve to a different patch than Astro's bundled Zod, and Zod 4 embeds the version in the type — so schemas imported via astro/zod in trusted plugins (e.g. @emdash-cms/plugin-forms) were not assignable to definePlugin's PluginRoute<TInput>['input']. Pins Zod in the pnpm catalog so the entire workspace dedupes on one instance.

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Track emdash

Get notified when new releases ship.

About emdash

[email protected] Schema migration adds `locale` and `translation_group` columns to `_emdash_bylines`.
[email protected] Byline hydration now strictly per-locale, suppressing cross‑locale fallback.
v@emdash-cms/[email protected] Changes `_emdash_content_bylines.byline_id` to store translation_group instead of row id, enforcing strict per-locale credit hydration.
v@emdash-cms/[email protected] Registry install handler fails closed on non-conforming aggregator release records.
v@emdash-cms/[email protected] Menu and menu-item API responses now camelCase, breaking clients expecting snake_case keys.