This release adds 2 notable features for engineering teams evaluating rollout.
✓ No known CVEs patched in this version
Topics
Affected surfaces
Summary
AI summaryUpdates Dependency Updates, New Features, and OpenID across a mixed release.
Changes in this release
| Type | Severity | Summary | CVE |
|---|---|---|---|
| Feature | Medium |
OpenID: verify token audience if configured OpenID: verify token audience if configured Source: llm_adapter@2026-05-29 Confidence: high |
— |
| Dependency | Low |
Bump redis from 7.4.0 to 8.0.0 Bump redis from 7.4.0 to 8.0.0 Source: llm_adapter@2026-05-29 Confidence: high |
— |
| Dependency | Low |
Update Kinto Admin version to 6.3.0 Update Kinto Admin version to 6.3.0 Source: llm_adapter@2026-05-29 Confidence: high |
— |
Full changelog
What's Changed
New Features
- OpenID: verify token audience if configured by @leplatrem in https://github.com/Kinto/kinto/pull/3713
Dependency Updates
- Bump the minor-patch group with 4 updates by @dependabot[bot] in https://github.com/Kinto/kinto/pull/3711
- Bump redis from 7.4.0 to 8.0.0 by @dependabot[bot] in https://github.com/Kinto/kinto/pull/3715
- Update Kinto Admin version to 6.3.0 by @github-actions[bot] in https://github.com/Kinto/kinto/pull/3712
- Bump the minor-patch group across 1 directory with 6 updates by @dependabot[bot] in https://github.com/Kinto/kinto/pull/3714
Full Changelog: https://github.com/Kinto/kinto/compare/26.1.1...26.2.0
Weekly OSS security release digest.
The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.
No spam, unsubscribe anytime.
Share this release
About kinto
A generic JSON document store with sharing and synchronisation capabilities.
Related context
Beta — feedback welcome: [email protected]