release: v0.39.0
Auth security round: SB3 (email tokens out of URL query → fragment), SA4 (server-side session revocation + 'Log out other sessions'), SA3 (trusted-proxy X-Forwarded-For so rate limits can't be bypassed via a forged header).
This commit is contained in:
parent
776fb38b9b
commit
56dfa9b427
2 changed files with 9 additions and 1 deletions
2
VERSION
2
VERSION
|
|
@ -1 +1 @@
|
|||
0.38.0
|
||||
0.39.0
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue