infisical

v0.160.10 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 2d Secrets & Credentials

✓ No known CVEs patched

This release patches 1 known CVE

Topics

acme certificate-management cli environment-variables go node-js

+9 more

pki postgresql private-ca secrets-management secret-manager secret-scanning security security-tools typescript

Affected surfaces

auth

Summary

AI summary

Updates pam, feat, and acme across a mixed release.

Type	Severity	Summary	CVE
Feature
Feature	Low	Add NTLM and Kerberos auth support for MSSQL in PAM Add NTLM and Kerberos auth support for MSSQL in PAM Source: llm_adapter@2026-06-01 Confidence: high	—
Feature	Low	Add certificate metadata search to inventory UI Add certificate metadata search to inventory UI Source: llm_adapter@2026-06-01 Confidence: high	—
Feature	Low	Seed pre-defined PKI certificate policies at organization creation Seed pre-defined PKI certificate policies at organization creation Source: llm_adapter@2026-06-01 Confidence: high	—
Dependency	Low	Mirror standalone image to Amazon ECR Public Gallery on release Mirror standalone image to Amazon ECR Public Gallery on release Source: llm_adapter@2026-06-01 Confidence: high	—
Dependency	Low	Update over dependencies Update over dependencies Source: llm_adapter@2026-06-01 Confidence: high	—
Bugfix	Medium	Clean up web session lifecycle for PAM Clean up web session lifecycle for PAM Source: llm_adapter@2026-06-01 Confidence: high	—
Bugfix	Medium	Redact EAB HMAC key from ACME API responses Redact EAB HMAC key from ACME API responses Source: llm_adapter@2026-06-01 Confidence: low	—
Refactor	Low	Migrate project create modal to v3 components Migrate project create modal to v3 components Source: llm_adapter@2026-06-01 Confidence: high	—

Full changelog

fix(pam): web session lifecycle cleanup by @saifsmailbox98 in https://github.com/Infisical/infisical/pull/6439
fix(acme): redact EAB HMAC key from API responses by @saifsmailbox98 in https://github.com/Infisical/infisical/pull/6607
feat: add certificate metadata search to inventory UI by @bernie-g in https://github.com/Infisical/infisical/pull/6642
feat(pam): add NTLM and Kerberos auth support for MSSQL by @saifsmailbox98 in https://github.com/Infisical/infisical/pull/6638
improvement: migrate project create modal to v3 components by @scott-ray-wilson in https://github.com/Infisical/infisical/pull/6662
feat: seed pre-defined PKI certificate policies at org creation by @bernie-g in https://github.com/Infisical/infisical/pull/6657
improvement(ci): mirror standalone image to Amazon ECR Public Gallery on release by @PrestigePvP in https://github.com/Infisical/infisical/pull/6659
chore: update over dependencies by @akhilmhdh in https://github.com/Infisical/infisical/pull/6671

Full Changelog: https://github.com/Infisical/infisical/compare/v0.160.9...v0.160.10

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Track infisical

Get notified when new releases ship.

About infisical

Infisical is the open-source platform for secrets, certificates, and privileged access management.