·
6732 commits
to develop
since this release
d8b9402
This commit was signed with the committer’s verified signature.
Security fixes
This release fixes a security issue of a possible XSS exploit which can be planted via a malicous SVG file upload.
See CVE-2025-32391 for more details
Enhancements
- Add config options
CMD_SAML_WANT_ASSERTIONS_SIGNEDandCMD_SAML_WANT_AUTHN_RESPONSE_SIGNEDfor SAML auth, since
some instances didn't comply with the new defaults of@node-saml/passport-saml