Hey Umbracians,
I’ve just released Astroboard v1.1.1 today, our dashboard package for Umbraco, with critical security fixes that may impact projects using:
- SheetJS/XLSX (prototype pollution patched)
- Server-side sourcemaps (CVE-2024-XXXX resolved)
- CSRF middleware (Astro core bypasses fixed)
Why upgrade?
- Prevents potential data exposure and server hijacking.
- Addresses DOM clobbering in PrismJS/Astro router.
This is a maintenance release – no new features, just stability.