Closed nerajchand closed 2 months ago
@Bert-R Any chance we could get the current master
tagged as a release which would address these vulnerabilities?
@davideicardi You normally do the releases. Can you respond to this request?
@Bert-R yes, I can do it tomorrow! (But of course if you prefer to do it yourself for me is completely fine)
Amazing, Thank you π
Firstly thank you for your continuous efforts and hard work on maintaining Kafdrop. It has been an invaluable tool for our Kafka ecosystem.
The latest release
4.0.1
contains a number of vulnerabilities (260 to be exact)I've noticed among other issues raised, there seems to be some comments surrounding that the fix has already been merged into master, but unfortunately a new release hasn't been created since November 2023. ref: https://github.com/obsidiandynamics/kafdrop/issues/649#issuecomment-2167543565
Are you able to kindly please push this into a new release so we can take advantage of these fixes and security improvements ππΌ
Vulnerability Findings:
Thank you so much βΊοΈ