pocketbase

v0.22.46 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 11h API Development

✓ No known CVEs patched

This release patches 1 known CVE

Topics

authentication backend go realtime

ReleasePort's take

Moderate signal

editorial:auto 9h

The release bumps the minimum Go GitHub Action version to 1.26.4, incorporating minor security fixes.

Why it matters: Version ≥ 1.26.4 is required; updates address identified vulnerabilities and protect CI pipelines from known exploits.

AI summary

Bumped minimum Go GitHub Action version to 1.26.4 for minor security fixes.

Type	Severity	Summary	CVE
Security	High	Bumped minimum Go GitHub action version to 1.26.4 including minor security fixes. Bumped minimum Go GitHub action version to 1.26.4 including minor security fixes. Source: llm_adapter@2026-06-03 Confidence: high	—

Full changelog

(Backported from v0.39.1) Bumped the min Go GitHub action version to 1.26.4 as it includes some minor security fixes.

Bumped minimum Go GitHub Action version to 1.26.4 which includes minor security fixes.

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Track pocketbase

Get notified when new releases ship.

About pocketbase

Open Source realtime backend in 1 file