Skip to content

jonradoff/lightcms

v1.0.0 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 3mo Productivity & Wikis
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 1 known CVE

Topics

agentic-workflow content-management-system mcp website-development websites

Summary

AI summary

Security hardening of the MCP server closes an abuse vector.

Full changelog

Changelog

  • 18f71f23d8d491dce27a606e1136adc1e5bcf3c5 Add Fly.io deployment configuration
  • eea3b2831fe481966d3dd522d1dc899badd0fd49 Add LIGHTCMS_CONFIG_DIR support for MCP server setup
  • 091c8ab383891f294bfbed0cd0cf9293e4a63d85 Add MCP registry metadata, tool annotations, and privacy policy
  • 5bc681066385ccbed7efc3041c8cfc63558745ee Add MCP server and security improvements
  • af1b901ef9365892e702c197a0b4c33ff2495567 Add MIT LICENSE and clarify website management focus
  • 9d67e52943ccffa4e49acbbcfcee7208d3d96267 Add MongoDB change stream for real-time content sync
  • 469ae2620aebf6795796fe94aa9e6ce26c6a6e59 Add comprehensive MCP API reference documentation
  • 2c0f8af001eac6c467f749cb14b7ea945d4ce45c Add search/replace, template switching, asset library, and admin branding
  • 093b7f7c7dd168b26c28c434c4a7dd01e1434619 Add theme versioning feature
  • 44d0a35955ee4aa354ea48a127b2e674994d6936 Display environment mode in Configuration page
  • 974001d71524599d824e9ab9df9f7eb50352b9bc Fix copyright year to 2026
  • 284f3a369a346a01092b7887b19579ba6c0bfedf Fix sticky header and mobile footer layout
  • 659960ebd8d2369dc8856bc361a92e9818e7e4e4 Fix template rendering in range blocks and improve deleted content query
  • 39d6650d0c8c61db650447c456c7013364fababd Initial commit: LightCMS v1.0
  • 47784d974d59369fb9d914a13f878f327d75c2c8 Remove sitemap.xml from version control
  • 5a29c7910cfbca07cd74851f5b1f023b0ce3efe7 Remove unused debug and migration utilities
  • fae8ae3597fa8ca5f2d244cac3ba66266c6478e0 Security hardening and inline theme version history
  • 0b99f7f50749b426e3cc15eb8f8019b2e406b428 Update README to emphasize AI-native design

Breaking Changes

  • Removed sitemap.xml from version control.
  • Removed unused debug and migration utilities.

Security Fixes

  • MCP server security hardening closes an abuse vector.
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track jonradoff/lightcms

Get notified when new releases ship.

Sign up free

About jonradoff/lightcms

AI-native CMS with 72 MCP tools for managing websites through natural language. Create and publish content, manage templates, assets, snippets, themes, collections, redirects, and multi-site forks — with full content versioning and semantic search.

All releases →

Related context

Related tools

Beta — feedback welcome: [email protected]