CKEditor 4.14.0 version is not secure

[PedroTheRealOne]

I'm using the lastest version: "ckeditor4-angular": "^5.1.0",. But today 07/01/24 I got the message on the component: "This CKEditor 4.14.0 version is not secure. Consider upgrading to the latest one, 4.24.0-lts.".

Any plans on updating the angular version to the safest?

Ps.: There is a fix for the message: versionCheck: false

[jacekbogdanski]

@PedroTheRealOne the latest angular component uses 4.24.0-lts by default, so my guess is that you configured CDN link by yourself using the option editorURL.

Please, note that 4.24.0-lts is the only secure CKEditor 4 version, all open source versions are considered non-secure. If you change the versionCheck to false that doesn’t mean you are using a secure CKEditor 4.

You can learn more about why that notification was introduced in our blog post: https://ckeditor.com/blog/important-update-for-ckeditor-4-users/

If you are interested in more details about CKEditor 4 LTS (secure version of the editor), please contact us directly.