This release includes 1 security fix for security teams reviewing exposed deployments.
Published 5mo
AI Agents & Assistants
✓ No known CVEs patched
This release patches 1 known CVE
Topics
ai
ai-agents
coding
deno
embeddings
insforge
+7 more
nextjs
oauth2
pgvector
postgresql
realtime
vectors
websockets
Affected surfaces
deps
rce_ssrf
Summary
AI summaryUpgrade React to 19.2.1 for critical vulnerability.
Full changelog
What's Changed
- [Security] Upgrade react to 19.2.1 for critical vulnerability in React 19.2.0 RSC by @Fermionic-Lyu in https://github.com/InsForge/InsForge/pull/628
- update changelog for dec 7 by @tonychang04 in https://github.com/InsForge/InsForge/pull/627
- admin token works everytime by @tonychang04 in https://github.com/InsForge/InsForge/pull/630
- update send raw email routes by @tonychang04 in https://github.com/InsForge/InsForge/pull/623
- [Feature] Add realtime by @Fermionic-Lyu in https://github.com/InsForge/InsForge/pull/618
- [Feat] Add Oauth Apple provider by @Fermionic-Lyu in https://github.com/InsForge/InsForge/pull/631
- [Optimization] Rewrite real-time update logic by @tonychang04 in https://github.com/InsForge/InsForge/pull/633
- [Fix] Add scrollbar to FunctionsPage, SecretsPage, RealtimeChannelsPage by @Fermionic-Lyu in https://github.com/InsForge/InsForge/pull/635
Full Changelog: https://github.com/InsForge/InsForge/compare/v1.2.10...v1.3.0
Security Fixes
- CVE-2023-XXXXX — critical vulnerability in React 19.2.0 RSC; upgraded to 19.2.1
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About InsForge
All releases →Related context
Earlier breaking changes
- v2.1.8 Restricts raw SQL permission to project_admin role only.
Beta — feedback welcome: [email protected]