Skip to content

Chyrp Lite

v2026.01 Security

This release includes 1 security fix for security teams reviewing exposed deployments.

Published 2mo Dashboards & Home Pages
✓ No known CVEs patched
Read the diff → Tool health → What is this tool? →
This release patches 1 known CVE

Topics

accessible apache blog-engine caddy2 chyrp-flavoured-markdown html5
+10 more
jquery lighttpd lightweight localized mysql nginx php postgresql sqlite twig

Summary

AI summary

Fixed two security vulnerabilities.

Full changelog

New in this release:

  • New bundled theme: Akarui, a cheerful theme for Chyrp Lite.
  • Fixed two security vulnerabilities (reported by @whoamins).
  • Complete Polish translation (contributed by @brunogabuzomeu).
  • Improved caching performance and compatibility with a strong CSP.
  • Content Security Policy module: adds a strict Content-Security-Policy header.
  • MathJax module: updated MathJax to 4.1.1.
  • Expanded options for activating newly registered users.
  • Improved compatibility with PHP 8.5.
  • Updated jQuery to 4.0.0.
  • Updated Twig to 3.23.0.
  • Various other refinements.

Security Fixes

  • Fixed two security vulnerabilities (reported by @whoamins)
View diff on GitHub

Weekly OSS security release digest.

The CVE patches and breaking changes that affected production tools this week. One email, every Sunday.

No spam, unsubscribe anytime.

Share this release

Share on X Share on Bluesky

Track Chyrp Lite

Get notified when new releases ship.

Sign up free

About Chyrp Lite

Extra-awesome, extra-lightweight blog engine.

All releases →

Related context

Beta — feedback welcome: [email protected]